kontakt
/
engelsystem
3
0
Fork 0
Code Issues 12 Pull Requests Projects Releases Wiki Activity

bootstrapping

Browse Source
main
Philip Häusler 14 years ago
parent a537f4bf73
commit e050c0dc7f
27 changed files with 2622 additions and 2876 deletions
Show Stats Download Patch File Download Diff File

1
config/.gitignore vendored
Unescape Escape View File

@ -2,3 +2,4 @@ config_db.php
config_jabber.php
config_modem.php
config.php
config_IAX.php

142
www-ssl/admin/EngelType.php
Unescape Escape View File

@ -1,58 +1,49 @@
<?php
require_once ('../bootstrap.php');
$title = "R&auml;ume";
$header = "Verwaltung der R&auml;ume";
include ("../../../camp2011/includes/header.php");
include("../../../camp2011/includes/funktion_db.php");
include ("includes/header.php");
include ("includes/funktion_db.php");
function runSQL( $SQL)
{
function runSQL($SQL) {
global $con;
// hier muesste das SQL ausgefuehrt werden...
$Erg = mysql_query($SQL, $con);
if ($Erg)
{
if ($Erg) {
echo "&Auml;nderung wurde gesichert...<br />";
echo "[$SQL]<br />";
return 1;
}
else
{
} else {
echo "Fehler beim speichern... bitte noch ein mal probieren :)";
echo "<br /><br />".mysql_error( $con ). "<br />";
echo "<br /><br />" . mysql_error($con) . "<br />";
echo "[$SQL]<br />";
return 0;
}
}
function runSQL_log( $SQL, $commed)
{
function runSQL_log($SQL, $commed) {
global $con;
// hier muesste das SQL ausgefuehrt werden...
$Erg = db_query($SQL, $commed);
if ($Erg)
{
if ($Erg) {
echo "&Auml;nderung wurde gesichert...<br />";
echo "[$SQL]<br />";
return 1;
}
else
{
} else {
echo "Fehler beim speichern... bitte noch ein mal probieren :)";
echo "<br /><br />".mysql_error( $con ). "<br />";
echo "<br /><br />" . mysql_error($con) . "<br />";
echo "[$SQL]<br />";
return 0;
}
}
$Sql = "SELECT * FROM `EngelType` ORDER BY `NAME`";
$Erg = mysql_query($Sql, $con);
if( !IsSet($_GET["action"]) )
{
echo "Hallo ".$_SESSION['Nick'].
",<br />\nhier hast du die M&ouml;glichkeit, neue Engeltypen f&uuml;r die Schichtpl&auml;ne einzutragen ".
if (!IsSet ($_GET["action"])) {
echo "Hallo " . $_SESSION['Nick'] .
",<br />\nhier hast du die M&ouml;glichkeit, neue Engeltypen f&uuml;r die Schichtpl&auml;ne einzutragen " .
"oder vorhandene abzu&auml;ndern:<br /><br />\n";
echo "<a href=\"./EngelType.php?action=new\">- Neuen EngelType eintragen</a><br />\n";
@ -60,39 +51,33 @@ if( !IsSet($_GET["action"]) )
echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n";
echo "<tr class=\"contenttopic\">\n";
for( $i = 1; $i < mysql_num_fields($Erg); $i++ )
{
echo "\t<td>". mysql_field_name($Erg, $i). "</td>";
for ($i = 1; $i < mysql_num_fields($Erg); $i++) {
echo "\t<td>" . mysql_field_name($Erg, $i) . "</td>";
}
echo "\t<td>&Auml;ndern</td>";
echo "</tr>";
for( $t = 0; $t < mysql_num_rows($Erg); $t++ )
{
for ($t = 0; $t < mysql_num_rows($Erg); $t++) {
echo "\t<tr class=\"content\">\n";
for ($j = 1; $j < mysql_num_fields($Erg); $j++)
{
echo "\t\t<td>".mysql_result($Erg, $t, $j)."</td>\n";
for ($j = 1; $j < mysql_num_fields($Erg); $j++) {
echo "\t\t<td>" . mysql_result($Erg, $t, $j) . "</td>\n";
}
echo "\t\t<td><a href=\"./EngelType.php?action=change&TID=".mysql_result($Erg, $t, "TID")."\">###</a></td>\n";
echo "\t\t<td><a href=\"./EngelType.php?action=change&TID=" . mysql_result($Erg, $t, "TID") . "\">###</a></td>\n";
echo "\t</tr>\n";
} // ende Auflistung Raeume
echo "</table>";
}
else
{
} else {
switch ($_GET["action"]) {
switch ($_GET["action"]) {
case 'new':
case 'new' :
echo "Neuen EngelType einrichten: <br />";
echo "<form action=\"./EngelType.php\" method=\"GET\">\n";
echo "<table>\n";
for( $Uj = 1; $Uj < mysql_num_fields($Erg); $Uj++ )
{
echo "<td>".mysql_field_name($Erg, $Uj)."</td>".
"<td><input type=\"text\" size=\"40\" name=\"".mysql_field_name($Erg, $Uj)."\"></td></tr>\n";
for ($Uj = 1; $Uj < mysql_num_fields($Erg); $Uj++) {
echo "<td>" . mysql_field_name($Erg, $Uj) . "</td>" .
"<td><input type=\"text\" size=\"40\" name=\"" . mysql_field_name($Erg, $Uj) . "\"></td></tr>\n";
}
echo "</table>\n";
echo "<input type=\"hidden\" name=\"action\" value=\"newsave\">\n";
@ -100,92 +85,83 @@ case 'new':
echo "</form>";
break;
case 'newsave':
case 'newsave' :
$vars = $_GET;
$count = count($vars) - 1;
$vars = array_splice($vars, 0, $count);
$Keys="";
$Values="";
foreach($vars as $key => $value){
$Keys = "";
$Values = "";
foreach ($vars as $key => $value) {
$Keys .= ", `$key`";
$Values .= ", '$value'";
}
if( runSQL_log( "INSERT INTO `EngelType` (". substr($Keys, 2). ") VALUES (". substr($Values, 2). ")",
"save new EngelType") )
{
if (runSQL_log("INSERT INTO `EngelType` (" . substr($Keys, 2) . ") VALUES (" . substr($Values, 2) . ")", "save new EngelType")) {
SetHeaderGo2Back();
$SQL2 = "SELECT * FROM `EngelType` WHERE `Name`='". $_GET["Name"]. "'";
$SQL2 = "SELECT * FROM `EngelType` WHERE `Name`='" . $_GET["Name"] . "'";
$ERG = mysql_query($SQL2, $con);
if( mysql_num_rows($ERG) == 1)
runSQL_log( "ALTER TABLE `Room` ADD `DEFAULT_EID_". mysql_result( $ERG, 0, 0).
"` INT DEFAULT '0' NOT NULL;",
"add new EngelType in Romm Table");
if (mysql_num_rows($ERG) == 1)
runSQL_log("ALTER TABLE `Room` ADD `DEFAULT_EID_" . mysql_result($ERG, 0, 0) .
"` INT DEFAULT '0' NOT NULL;", "add new EngelType in Romm Table");
}
break;
case 'change':
if (! IsSet($_GET["TID"]))
case 'change' :
if (!IsSet ($_GET["TID"]))
echo "Fehlerhafter Aufruf!";
else
{
else {
echo "Raum ab&auml;ndern:\n";
echo "Hier kannst du eintragen, den EngelType &auml;ndern.";
echo "<form action=\"./EngelType.php\" method=\"GET\">\n";
echo "<table>\n";
$SQL2 = "SELECT * FROM `EngelType` WHERE `TID`='". $_GET["TID"]. "'";
$SQL2 = "SELECT * FROM `EngelType` WHERE `TID`='" . $_GET["TID"] . "'";
$ERG = mysql_query($SQL2, $con);
for ($Uj = 1; $Uj < mysql_num_fields($ERG); $Uj++)
echo "<tr><td>". mysql_field_name($ERG, $Uj). "</td>".
"<td><input type=\"text\" size=\"40\" name=\"e". mysql_field_name($ERG, $Uj). "\" ".
"value=\"". mysql_result($ERG, 0, $Uj). "\"></td></tr>\n";
echo "<tr><td>" . mysql_field_name($ERG, $Uj) . "</td>" .
"<td><input type=\"text\" size=\"40\" name=\"e" . mysql_field_name($ERG, $Uj) . "\" " .
"value=\"" . mysql_result($ERG, 0, $Uj) . "\"></td></tr>\n";
echo "</table>\n";
echo "<input type=\"hidden\" name=\"eTID\" value=\"". $_GET["TID"]. "\">\n";
echo "<input type=\"hidden\" name=\"eTID\" value=\"" . $_GET["TID"] . "\">\n";
echo "<input type=\"hidden\" name=\"action\" value=\"changesave\">\n";
echo "<input type=\"submit\" value=\"sichern...\">\n";
echo "</form>";
echo "<form action=\"./EngelType.php\" method=\"GET\">\n";
echo "<input type=\"hidden\" name=\"TID\" value=\"". $_GET["TID"]. "\">\n";
echo "<input type=\"hidden\" name=\"TID\" value=\"" . $_GET["TID"] . "\">\n";
echo "<input type=\"hidden\" name=\"action\" value=\"delete\">\n";
echo "<input type=\"submit\" value=\"L&ouml;schen...\">";
echo "</form>";
}
break;
case 'changesave':
case 'changesave' :
$vars = $_GET;
$count = count($vars) - 2;
$vars = array_splice($vars, 0, $count);
$keys="";
$sql="";
foreach($vars as $key => $value)
{
$keys = substr( $key, 1);
$sql .= ", `". $keys. "`='". $value. "'";
$keys = "";
$sql = "";
foreach ($vars as $key => $value) {
$keys = substr($key, 1);
$sql .= ", `" . $keys . "`='" . $value . "'";
}
runSQL_log( "UPDATE `EngelType` SET ". substr($sql, 2). " WHERE `TID`='". $_GET["eTID"]. "'",
"Save Change EngelType");
runSQL_log("UPDATE `EngelType` SET " . substr($sql, 2) . " WHERE `TID`='" . $_GET["eTID"] . "'", "Save Change EngelType");
SetHeaderGo2Back();
break;
case 'delete':
if (IsSet($_GET["TID"]))
{
if( runSQL_log( "DELETE FROM `EngelType` WHERE `TID`='". $_GET["TID"]. "'", "delete EngelType"))
runSQL_log( "ALTER TABLE `Room` DROP `DEFAULT_EID_". $_GET["TID"]. "`;",
"delete EngelType in Room Table");
}
else
case 'delete' :
if (IsSet ($_GET["TID"])) {
if (runSQL_log("DELETE FROM `EngelType` WHERE `TID`='" . $_GET["TID"] . "'", "delete EngelType"))
runSQL_log("ALTER TABLE `Room` DROP `DEFAULT_EID_" . $_GET["TID"] . "`;", "delete EngelType in Room Table");
} else
echo "Fehlerhafter Aufruf";
SetHeaderGo2Back();
break;
}
}
}
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?>

16
www-ssl/admin/Recentchanges.php
Unescape Escape View File

@ -1,8 +1,9 @@
<?php
require_once ('../bootstrap.php');
$title = "ChangeLog";
$header = "Datenbank-Auszug";
include ("../../../camp2011/includes/header.php");
include ("includes/header.php");
$SQL = "SELECT * FROM `ChangeLog` ORDER BY `Time` DESC LIMIT 0,10000";
$Erg = mysql_query($SQL, $con);
@ -12,18 +13,17 @@ echo mysql_error($con);
echo "<table border=1>\n";
echo "<tr>\n\t<th>Time</th>\n\t<th>User</th>\n\t<th>Commend</th>\n\t<th>SQL Commad</th>\n</tr>\n";
for ($n = 0 ; $n < mysql_num_rows($Erg) ; $n++)
{
for ($n = 0; $n < mysql_num_rows($Erg); $n++) {
echo "<tr>\n";
echo "\t<td>". mysql_result( $Erg, $n, "Time"). "</td>\n";
echo "\t<td>". UID2Nick(mysql_result( $Erg, $n, "UID")). displayavatar(mysql_result( $Erg, $n, "UID")). "</td>\n";
echo "\t<td>". mysql_result( $Erg, $n, "Commend"). "</td>\n";
echo "\t<td>". mysql_result( $Erg, $n, "SQLCommad"). "</td>\n";
echo "\t<td>" . mysql_result($Erg, $n, "Time") . "</td>\n";
echo "\t<td>" . UID2Nick(mysql_result($Erg, $n, "UID")) . displayavatar(mysql_result($Erg, $n, "UID")) . "</td>\n";
echo "\t<td>" . mysql_result($Erg, $n, "Commend") . "</td>\n";
echo "\t<td>" . mysql_result($Erg, $n, "SQLCommad") . "</td>\n";
echo "</tr>\n";
}
echo "</table>\n";
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?>

142
www-ssl/admin/UserPicture.php
Unescape Escape View File

@ -1,120 +1,104 @@
<?php
require_once ('../bootstrap.php');
$title = "UserPicture";
$header = "Verwaltung der User Picture";
include ("../../../camp2011/includes/header.php");
include ("../../../camp2011/includes/funktion_schichtplan_aray.php");
include ("includes/header.php");
include ("includes/funktion_schichtplan_aray.php");
if( IsSet($_GET["action"]) )
{
UnSet($SQL);
if (IsSet ($_GET["action"])) {
UnSet ($SQL);
switch ($_GET["action"])
{
case 'FormUpload':
switch ($_GET["action"]) {
case 'FormUpload' :
echo "Hier kannst Du ein Foto hochladen f&ouml;r:";
echo "<form action=\"./UserPicture.php?action=sendPicture\" method=\"post\" enctype=\"multipart/form-data\">\n";
echo "\t<select name=\"UID\">\n";
$usql="SELECT * FROM `User` ORDER BY `Nick`";
$usql = "SELECT * FROM `User` ORDER BY `Nick`";
$uErg = mysql_query($usql, $con);
for ($k=0; $k<mysql_num_rows($uErg); $k++)
echo "\t\t<option value=\"".mysql_result($uErg, $k, "UID")."\">". mysql_result($uErg, $k, "Nick"). "</option>\n";
for ($k = 0; $k < mysql_num_rows($uErg); $k++)
echo "\t\t<option value=\"" . mysql_result($uErg, $k, "UID") . "\">" . mysql_result($uErg, $k, "Nick") . "</option>\n";
echo "\t</select>\n";
echo "\t<input type=\"hidden\" name=\"action\" value=\"sendPicture\">\n";
echo "\t<input name=\"file\" type=\"file\" size=\"50\" maxlength=\"". get_cfg_var("post_max_size"). "\">\n";
echo "\t(max ". get_cfg_var("post_max_size"). "Byte)<br />\n";
echo "\t<input type=\"submit\" value=\"". Get_Text("upload"),"\">\n";
echo "\t<input name=\"file\" type=\"file\" size=\"50\" maxlength=\"" . get_cfg_var("post_max_size") . "\">\n";
echo "\t(max " . get_cfg_var("post_max_size") . "Byte)<br />\n";
echo "\t<input type=\"submit\" value=\"" . Get_Text("upload"), "\">\n";
echo "</form>\n";
break;
case 'sendPicture':
if( ($_FILES["file"]["size"] > 0) && (isset( $_POST["UID"])) )
{
if( ($_FILES["file"]["type"] == "image/jpeg") ||
($_FILES["file"]["type"] == "image/png") ||
($_FILES["file"]["type"] == "image/gif") )
{
case 'sendPicture' :
if (($_FILES["file"]["size"] > 0) && (isset ($_POST["UID"]))) {
if (($_FILES["file"]["type"] == "image/jpeg") || ($_FILES["file"]["type"] == "image/png") || ($_FILES["file"]["type"] == "image/gif")) {
$data = addslashes(fread(fopen($_FILES["file"]["tmp_name"], "r"), filesize($_FILES["file"]["tmp_name"])));
if( GetPicturShow( $_POST['UID']) == "")
$SQL = "INSERT INTO `UserPicture` ".
"( `UID`,`Bild`, `ContentType`, `show`) ".
"VALUES ('". $_POST['UID']. "', '$data', '". $_FILES["file"]["type"]. "', 'N')";
else
$SQL = "UPDATE `UserPicture` SET ".
"`Bild`='$data', ".
"`ContentType`='". $_FILES["file"]["type"]. "' ".
"WHERE `UID`='". $_POST['UID']. "'";
echo "Upload Pictur:'" . $_FILES["file"]["name"] . "', ".
"MIME-Type: " . $_FILES["file"]["type"]. ", ".
$_FILES["file"]["size"]. " Byte ".
"for ". UID2Nick( $_POST["UID"]);
}
if (GetPicturShow($_POST['UID']) == "")
$SQL = "INSERT INTO `UserPicture` " .
"( `UID`,`Bild`, `ContentType`, `show`) " .
"VALUES ('" . $_POST['UID'] . "', '$data', '" . $_FILES["file"]["type"] . "', 'N')";
else
$SQL = "UPDATE `UserPicture` SET " .
"`Bild`='$data', " .
"`ContentType`='" . $_FILES["file"]["type"] . "' " .
"WHERE `UID`='" . $_POST['UID'] . "'";
echo "Upload Pictur:'" . $_FILES["file"]["name"] . "', " .
"MIME-Type: " . $_FILES["file"]["type"] . ", " .
$_FILES["file"]["size"] . " Byte " .
"for " . UID2Nick($_POST["UID"]);
} else
Print_Text("pub_einstellungen_send_KO");
}
else
} else
Print_Text("pub_einstellungen_send_KO");
break;
case 'SetN':
if (IsSet($_GET["UID"]))
{
echo "Bild von '". UID2Nick( $_GET["UID"]). "' wurde gesperrt:<br />";
$SQL = "UPDATE `UserPicture` SET `show`='N' WHERE `UID`='". $_GET["UID"]. "'";
}
else
case 'SetN' :
if (IsSet ($_GET["UID"])) {
echo "Bild von '" . UID2Nick($_GET["UID"]) . "' wurde gesperrt:<br />";
$SQL = "UPDATE `UserPicture` SET `show`='N' WHERE `UID`='" . $_GET["UID"] . "'";
} else
echo "Fehlerhafter Aufruf";
break;
case 'SetY':
if (IsSet($_GET["UID"]))
{
echo "Bild von '". UID2Nick( $_GET["UID"]). "' wurde Freigegeben:<br />";
$SQL = "UPDATE `UserPicture` SET `show`='Y' WHERE `UID`='". $_GET["UID"]. "'";
}
else
case 'SetY' :
if (IsSet ($_GET["UID"])) {
echo "Bild von '" . UID2Nick($_GET["UID"]) . "' wurde Freigegeben:<br />";
$SQL = "UPDATE `UserPicture` SET `show`='Y' WHERE `UID`='" . $_GET["UID"] . "'";
} else
echo "Fehlerhafter Aufruf";
break;
case 'del':
echo "Wollen Sie das Bild von '". UID2Nick( $_GET["UID"]). "' wirklich l&ouml;schen? ".
"<a href=\"./UserPicture.php?action=delYes&UID=". $_GET["UID"]. "\">Yes</a>";
case 'del' :
echo "Wollen Sie das Bild von '" . UID2Nick($_GET["UID"]) . "' wirklich l&ouml;schen? " .
"<a href=\"./UserPicture.php?action=delYes&UID=" . $_GET["UID"] . "\">Yes</a>";
break;
case 'delYes':
if (IsSet($_GET["UID"]))
{
echo "Bild von '". UID2Nick( $_GET["UID"]). "' wurde gel&ouml;scht:<br />";
$SQL = "DELETE FROM `UserPicture` WHERE `UID`='". $_GET["UID"]. "' LIMIT 1";
}
else
case 'delYes' :
if (IsSet ($_GET["UID"])) {
echo "Bild von '" . UID2Nick($_GET["UID"]) . "' wurde gel&ouml;scht:<br />";
$SQL = "DELETE FROM `UserPicture` WHERE `UID`='" . $_GET["UID"] . "' LIMIT 1";
} else
echo "Fehlerhafter Aufruf";
break;
default:
default :
echo "Fehlerhafter Aufruf";
} //switch
// Update ???
if (IsSet($SQL))
{
if (IsSet ($SQL)) {
// hier muesste das SQL ausgefuehrt werden...
$Erg = mysql_query($SQL, $con);
if ($Erg == 1)
echo "&Auml;nderung wurde gesichert...<br />";
else
{
else {
echo "Fehler beim speichern... bitte noch ein mal probieren :)";
echo "<br /><br />".mysql_error( $con ). "<br />($SQL)<br />";
echo "<br /><br />" . mysql_error($con) . "<br />($SQL)<br />";
}
} // Ende Update
echo "<br />\n<hr width=\"100%\">\n<br />\n\n";
} //IF IsSet($action)
//ausgabe der Liste
$Sql = "SELECT * FROM `UserPicture` WHERE `UID`>0;";
$Erg = mysql_query($Sql, $con);
echo "Hallo ". $_SESSION['Nick']. ",<br />\nhier hast du die M&ouml;glichkeit, die Bilder der Engel freizugeben:<br /><br />\n";
echo "Hallo " . $_SESSION['Nick'] . ",<br />\nhier hast du die M&ouml;glichkeit, die Bilder der Engel freizugeben:<br /><br />\n";
echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n";
echo "<tr class=\"contenttopic\">\n";
@ -124,20 +108,18 @@ echo "\t<td>Status</td>\n";
echo "\t<td>L&ouml;schen</td>\n";
echo "</tr>";
for( $t = 0; $t < mysql_num_rows($Erg); $t++ )
{
for ($t = 0; $t < mysql_num_rows($Erg); $t++) {
$UIDs = mysql_result($Erg, $t, "UID");
echo "\t<tr class=\"content\">\n";
echo "\t\t<td>". UID2Nick(mysql_result($Erg, $t, "UID")). "</td>\n";
echo "\t\t<td>". displayPictur( $UIDs, 0). "</td>\n";
echo "\t\t<td>" . UID2Nick(mysql_result($Erg, $t, "UID")) . "</td>\n";
echo "\t\t<td>" . displayPictur($UIDs, 0) . "</td>\n";
if( GetPicturShow( $UIDs) == "Y")
if (GetPicturShow($UIDs) == "Y")
echo "\t\t<td><a href=\"./UserPicture.php?action=SetN&UID=$UIDs\">sperren</a></td>\n";
elseif( GetPicturShow( $UIDs) == "N")
echo "\t\t<td><a href=\"./UserPicture.php?action=SetY&UID=$UIDs\">freigeben</a></td>\n";
elseif (GetPicturShow($UIDs) == "N") echo "\t\t<td><a href=\"./UserPicture.php?action=SetY&UID=$UIDs\">freigeben</a></td>\n";
else
echo "\t\t<td>ERROR: show='". GetPicturShow( $UIDs). "'</td>\n";
echo "\t\t<td>ERROR: show='" . GetPicturShow($UIDs) . "'</td>\n";
echo "\t\t<td><a href=\"./UserPicture.php?action=del&UID=$UIDs\">del</a></td>\n";
echo "\t</tr>\n";
} // ende Auflistung Raeume
@ -145,5 +127,5 @@ echo "</table>";
echo "<br /><a href=\"./UserPicture.php?action=FormUpload\">picture upload</a>\n";
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?>

77
www-ssl/admin/aktiv.php
Unescape Escape View File

@ -1,31 +1,31 @@
<?php
require_once ('../bootstrap.php');
$title = "akive Engel";
$header = "Liste der aktiven Engel";
include ("../../../camp2011/includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php");
include ("includes/header.php");
include ("includes/funktion_db_list.php");
echo "<form action=\"./aktiv.php\" method=\"post\">";
echo Get_Text("pub_aktive_Text1")."<br />\n";
echo Get_Text("pub_aktive_Text2")."<br /><br />\n";
echo Get_Text("pub_aktive_Text1") . "<br />\n";
echo Get_Text("pub_aktive_Text2") . "<br /><br />\n";
// auswahlbox
echo Get_Text("pub_aktive_Text31")."\n";
echo Get_Text("pub_aktive_Text31") . "\n";
echo "<select name=\"Anzahl\">\n";
for( $i=0; $i<50; $i++)
for ($i = 0; $i < 50; $i++)
echo "\t<option value=\"$i\">$i</option>\n";
echo "</select>";
echo Get_Text("pub_aktive_Text32")."<br /><br />\n";
echo Get_Text("pub_aktive_Text32") . "<br /><br />\n";
echo "<input type=\"submit\" name=\"SendType\" value=\"Show..\">\n";
echo "<input type=\"submit\" name=\"SendType\" value=\"Write..\">\n";
echo "</form>\n";
echo "<form action=\"./aktiv.php\" method=\"post\">\n";
echo "\t<br /><input type=\"submit\" name=\"ResetActive\" value=\"reset Active setting\">\n";
echo "\t<br /><input type=\"submit\" name=\"ResetActive\" value=\"reset Active setting\">\n";
echo "</form>\n";
if( Isset($_POST["ResetActive"]) )
{
if (Isset ($_POST["ResetActive"])) {
$SQLreset = "UPDATE `User` SET `Aktiv`='0'";
$ErgReset = db_query($SQLreset, "Reset Active");
if ($ErgReset != 1)
@ -34,22 +34,22 @@ if( Isset($_POST["ResetActive"]) )
echo "Active wurde erfolgreich zurueckgesetzt\n";
}
if( IsSet($_POST["Anzahl"]) )
echo "<br />\n\n".Get_Text("pub_aktive_Text5_1"). $_POST["Anzahl"]. Get_Text("pub_aktive_Text5_2"). ":";
if (IsSet ($_POST["Anzahl"]))
echo "<br />\n\n" . Get_Text("pub_aktive_Text5_1") . $_POST["Anzahl"] . Get_Text("pub_aktive_Text5_2") . ":";
echo "<br /><br />\n\n";
//ausgabe tabelle
echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n";
echo "<tr class=\"contenttopic\">\n";
echo "\t<td>". Get_Text("pub_aktive_Nick"). "</td>\n";
echo "\t<td>". Get_Text("pub_aktive_Anzahl"). "</td>\n";
echo "\t<td>". Get_Text("pub_aktive_Time"). "</td>\n";
echo "\t<td>". Get_Text("pub_aktive_Time"). " Weight</td>\n";
echo "\t<td>Freeloader ". Get_Text("pub_aktive_Anzahl"). "</td>\n";
echo "\t<td>Freeloader ". Get_Text("pub_aktive_Time"). "</td>\n";
echo "\t<td>". Get_Text("pub_aktive_Time"). " result</td>\n";
echo "\t<td>". Get_Text("pub_aktive_Active"). "</td>\n";
echo "\t<td>" . Get_Text("pub_aktive_Nick") . "</td>\n";
echo "\t<td>" . Get_Text("pub_aktive_Anzahl") . "</td>\n";
echo "\t<td>" . Get_Text("pub_aktive_Time") . "</td>\n";
echo "\t<td>" . Get_Text("pub_aktive_Time") . " Weight</td>\n";
echo "\t<td>Freeloader " . Get_Text("pub_aktive_Anzahl") . "</td>\n";
echo "\t<td>Freeloader " . Get_Text("pub_aktive_Time") . "</td>\n";
echo "\t<td>" . Get_Text("pub_aktive_Time") . " result</td>\n";
echo "\t<td>" . Get_Text("pub_aktive_Active") . "</td>\n";
echo "</tr>\n";
$SQL = "
@ -65,33 +65,28 @@ $Erg = mysql_query($SQL, $con);
echo mysql_error($con);
$rowcount = mysql_num_rows($Erg);
$aktivecount=0;
for ($i=0; $i<$rowcount; $i++)
{
$aktivecount = 0;
for ($i = 0; $i < $rowcount; $i++) {
echo "\n\n\t<tr class=\"content\">\n";
echo "\t\t<td>". UID2Nick(mysql_result($Erg, $i, "UID")). "</td>\n";
echo "\t\t<td>". mysql_result($Erg, $i, "nr"). "x</td>\n";
echo "\t\t<td>". mysql_result($Erg, $i, "len"). "h</td>\n";
echo "\t\t<td>". mysql_result($Erg, $i, "lenWeight"). "h</td>\n";
echo "\t\t<td>". mysql_result($Erg, $i, "nrFree"). "x</td>\n";
echo "\t\t<td>". mysql_result($Erg, $i, "lenFree"). "h</td>\n";
echo "\t\t<td>". mysql_result($Erg, $i, "lenReal"). "h</td>\n";
echo "\t\t<td>" . UID2Nick(mysql_result($Erg, $i, "UID")) . "</td>\n";
echo "\t\t<td>" . mysql_result($Erg, $i, "nr") . "x</td>\n";
echo "\t\t<td>" . mysql_result($Erg, $i, "len") . "h</td>\n";
echo "\t\t<td>" . mysql_result($Erg, $i, "lenWeight") . "h</td>\n";
echo "\t\t<td>" . mysql_result($Erg, $i, "nrFree") . "x</td>\n";
echo "\t\t<td>" . mysql_result($Erg, $i, "lenFree") . "h</td>\n";
echo "\t\t<td>" . mysql_result($Erg, $i, "lenReal") . "h</td>\n";
echo "\t\t<td>";
if (IsSet($_POST["Anzahl"]))
{
if( $_POST["Anzahl"] < mysql_result($Erg, $i, "lenReal") )
{
if (IsSet ($_POST["Anzahl"])) {
if ($_POST["Anzahl"] < mysql_result($Erg, $i, "lenReal")) {
$aktivecount++;
if( $_POST["SendType"]=="Show..")
if ($_POST["SendType"] == "Show..")
echo "show set";
else
{
$SQL2="UPDATE `User` SET `Aktiv`='1' WHERE `UID`='". mysql_result($Erg, $i, "UID"). "' LIMIT 1";
else {
$SQL2 = "UPDATE `User` SET `Aktiv`='1' WHERE `UID`='" . mysql_result($Erg, $i, "UID") . "' LIMIT 1";
$Erg2 = db_query($SQL2, "update Active State");
if ($Erg2 != 1)
echo "Fehler beim speichern bei Engel ".UID2Nick(mysql_result($Erg, $i, "UID"));
echo "Fehler beim speichern bei Engel " . UID2Nick(mysql_result($Erg, $i, "UID"));
else
echo "write set";
}
@ -105,6 +100,6 @@ echo "</table>";
echo "<br />Anzahl eintraege: $aktivecount / $rowcount (Aktive/Mitschichten)<br /><br />";
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?>

287
www-ssl/admin/dbUpdateFromXLS.php
Unescape Escape View File

@ -1,8 +1,10 @@
<?php
require_once ('../bootstrap.php');
$title = "DB Update from XML";
$header = "DB Update from XML";
include ("../../../camp2011/includes/header.php");
include ("../../../camp2011/includes/funktion_xml.php");
include ("includes/header.php");
include ("includes/funktion_xml.php");
///////////
// DEBUG //
@ -14,26 +16,23 @@ $EnableSchudleFunctions = 1;
$EnableSchudle = 1;
$EnableSchudleDB = 1;
/*##############################################################################################
erstellt Arrays der Reume
##############################################################################################*/
function CreateRoomArrays()
{
function CreateRoomArrays() {
global $Room, $RoomID, $RoomName, $con;
$sql = "SELECT `RID`, `Name` FROM `Room` ".
"WHERE `Show`='Y'".
$sql = "SELECT `RID`, `Name` FROM `Room` " .
"WHERE `Show`='Y'" .
"ORDER BY `Number`, `Name`;";
$Erg = mysql_query($sql, $con);
$rowcount = mysql_num_rows($Erg);
for ($i=0; $i<$rowcount; $i++)
{
for ($i = 0; $i < $rowcount; $i++) {
$Room[$i]["RID"] = mysql_result($Erg, $i, "RID");
$Room[$i]["Name"] = mysql_result($Erg, $i, "Name");
$RoomID[ mysql_result($Erg, $i, "RID") ] = mysql_result($Erg, $i, "Name");
$RoomName[ mysql_result($Erg, $i, "Name") ] = mysql_result($Erg, $i, "RID");
$RoomID[mysql_result($Erg, $i, "RID")] = mysql_result($Erg, $i, "Name");
$RoomName[mysql_result($Erg, $i, "Name")] = mysql_result($Erg, $i, "RID");
}
}
CreateRoomArrays();
@ -42,252 +41,212 @@ CreateRoomArrays();
F I L E
##############################################################################################*/
echo "\n\n<br />\n<h1>XML File:</h1>\n";
if( isset($_POST["PentabarfUser"]) && isset($_POST["password"]) && isset($_POST["PentabarfURL"]))
{
if (isset ($_POST["PentabarfUser"]) && isset ($_POST["password"]) && isset ($_POST["PentabarfURL"])) {
echo "Update XCAL-File from Pentabarf..";
if($PentabarfGetWith=="fsockopen")
{
if ($PentabarfGetWith == "fsockopen") {
//backup error messeges and delate
$Backuperror_messages = $error_messages;
$fp = fsockopen( "ssl://$PentabarfXMLhost", 443, $errno, $errstr, 30);
// $error_messages = $Backuperror_messages;
$fp = fsockopen("ssl://$PentabarfXMLhost", 443, $errno, $errstr, 30);
// $error_messages = $Backuperror_messages;
if( !$fp)
{
echo "<h2>fail: File 'https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"]. "' not readable!".
if (!$fp) {
echo "<h2>fail: File 'https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] . "' not readable!" .
"[$errstr ($errno)]</h2>";
}
else
{
if( ($fileOut = fopen( "$Tempdir/engelXML", "w")) != FALSE)
{
$head = 'GET /'. $PentabarfXMLpath. $_POST["PentabarfURL"]. ' HTTP/1.1'."\r\n".
'Host: '. $PentabarfXMLhost. "\r\n".
'User-Agent: Engelsystem'. "\r\n".
'Authorization: Basic '.
base64_encode($_POST["PentabarfUser"]. ':'. $_POST["password"])."\r\n".
} else {
if (($fileOut = fopen("$Tempdir/engelXML", "w")) != FALSE) {
$head = 'GET /' . $PentabarfXMLpath . $_POST["PentabarfURL"] . ' HTTP/1.1' . "\r\n" .
'Host: ' . $PentabarfXMLhost . "\r\n" .
'User-Agent: Engelsystem' . "\r\n" .
'Authorization: Basic ' .
base64_encode($_POST["PentabarfUser"] . ':' . $_POST["password"]) . "\r\n" .
"\r\n";
fputs( $fp, $head);
fputs($fp, $head);
$Zeilen = -1;
while (!feof($fp))
{
$Temp= fgets($fp,1024);
while (!feof($fp)) {
$Temp = fgets($fp, 1024);
// ende des headers
if( $Temp== "f20\r\n" )
{
if ($Temp == "f20\r\n") {
$Zeilen = 0;
$Temp="";
$Temp = "";
}
//file ende?
if( $Temp=="0\r\n")
if ($Temp == "0\r\n")
break;
if( ($Zeilen>-1) && ($Temp!="ffb\r\n") )
{
if (($Zeilen > -1) && ($Temp != "ffb\r\n")) {
//steuerzeichen ausfiltern
if( strpos( "#$Temp", "\r\n") > 0)
$Temp = substr($Temp, 0, strlen($Temp)-2);
if( strpos( "#$Temp", "1005") > 0)
if (strpos("#$Temp", "\r\n") > 0)
$Temp = substr($Temp, 0, strlen($Temp) - 2);
if (strpos("#$Temp", "1005") > 0)
$Temp = "";
if( strpos( "#$Temp", "783") > 0)
if (strpos("#$Temp", "783") > 0)
$Temp = "";
//schreiben in file
fputs( $fileOut, $Temp);
fputs($fileOut, $Temp);
$Zeilen++;
}
}
fclose( $fileOut);
fclose($fileOut);
echo "<br />Es wurden $Zeilen Zeilen eingelesen<br />";
}
else
} else
echo "<h2>fail: File '$Tempdir/engelXML' not writeable!</h2>";
fclose($fp);
}
}
elseif($PentabarfGetWith=="fopen")
{
elseif ($PentabarfGetWith == "fopen") {
//user uns password in url einbauen
$FileNameIn = "https://". $_POST["PentabarfUser"]. ':'. $_POST["password"]. "@".
$PentabarfXMLhost. "/". $PentabarfXMLpath. $_POST["PentabarfURL"];
$FileNameIn = "https://" . $_POST["PentabarfUser"] . ':' . $_POST["password"] . "@" .
$PentabarfXMLhost . "/" . $PentabarfXMLpath . $_POST["PentabarfURL"];
if( ($fileIn = fopen( $FileNameIn, "r")) != FALSE)
{
if( ($fileOut = fopen( "$Tempdir/engelXML", "w")) != FALSE)
{
if (($fileIn = fopen($FileNameIn, "r")) != FALSE) {
if (($fileOut = fopen("$Tempdir/engelXML", "w")) != FALSE) {
$Zeilen = 0;
while (!feof($fileIn))
{
while (!feof($fileIn)) {
$Zeilen++;
fputs( $fileOut, fgets( $fileIn));
fputs($fileOut, fgets($fileIn));
}
fclose( $fileOut);
fclose($fileOut);
echo "<br />Es wurden $Zeilen Zeilen eingelesen<br />";
}
else
} else
echo "<h2>fail: File '$Tempdir/engelXML' not writeable!</h2>";
fclose( $fileIn);
}
else
echo "<h2>fail: File 'https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"]. "' not readable!</h2>";
}
elseif( $PentabarfGetWith=="wget")
{
$Command = "wget --http-user=". $_POST["PentabarfUser"]. " --http-passwd=".$_POST["password"]. " ".
"https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"].
" --output-file=$Tempdir/engelXMLwgetLog --output-document=$Tempdir/engelXML".
fclose($fileIn);
} else
echo "<h2>fail: File 'https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] . "' not readable!</h2>";
}
elseif ($PentabarfGetWith == "wget") {
$Command = "wget --http-user=" . $_POST["PentabarfUser"] . " --http-passwd=" . $_POST["password"] . " " .
"https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] .
" --output-file=$Tempdir/engelXMLwgetLog --output-document=$Tempdir/engelXML" .
" --no-check-certificate";
echo system( $Command, $Status);
if( $Status==0)
echo system($Command, $Status);
if ($Status == 0)
echo "OK.<br />";
else
echo "fail ($Status)($Command).<br />";
}
elseif( $PentabarfGetWith=="lynx")
{
$Command = "lynx -auth=". $_POST["PentabarfUser"]. ":".$_POST["password"]. " -dump ".
"https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"]. " > $Tempdir/engelXML";
echo system( $Command, $Status);
if( $Status==0)
elseif ($PentabarfGetWith == "lynx") {
$Command = "lynx -auth=" . $_POST["PentabarfUser"] . ":" . $_POST["password"] . " -dump " .
"https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] . " > $Tempdir/engelXML";
echo system($Command, $Status);
if ($Status == 0)
echo "OK.<br />";
else
echo "fail ($Status)($Command).<br />";
}
elseif($PentabarfGetWith=="fopen")
{
elseif ($PentabarfGetWith == "fopen") {
//user uns password in url einbauen
$FileNameIn = "https://". $_POST["PentabarfUser"]. ':'. $_POST["password"]. "@".
$PentabarfXMLhost. "/". $PentabarfXMLpath. $_POST["PentabarfURL"];
$FileNameIn = "https://" . $_POST["PentabarfUser"] . ':' . $_POST["password"] . "@" .
$PentabarfXMLhost . "/" . $PentabarfXMLpath . $_POST["PentabarfURL"];
if( ($fileIn = fopen( $FileNameIn, "r")) != FALSE)
{
if( ($fileOut = fopen( "$Tempdir/engelXML", "w")) != FALSE)
{
if (($fileIn = fopen($FileNameIn, "r")) != FALSE) {
if (($fileOut = fopen("$Tempdir/engelXML", "w")) != FALSE) {
$Zeilen = 0;
while (!feof($fileIn))
{
while (!feof($fileIn)) {
$Zeilen++;
fputs( $fileOut, fgets( $fileIn));
fputs($fileOut, fgets($fileIn));
}
fclose( $fileOut);
fclose($fileOut);
echo "<br />Es wurden $Zeilen Zeilen eingelesen<br />";
}
else
} else
echo "<h2>fail: File '$Tempdir/engelXML' not writeable!</h2>";
fclose( $fileIn);
}
else
echo "<h2>fail: File 'https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"]. "' not readable!</h2>";
}
elseif( $PentabarfGetWith=="wget")
{
$Command = "wget --http-user=". $_POST["PentabarfUser"]. " --http-passwd=".$_POST["password"]. " ".
"https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"].
" --output-file=$Tempdir/engelXMLwgetLog --output-document=$Tempdir/engelXML".
fclose($fileIn);
} else
echo "<h2>fail: File 'https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] . "' not readable!</h2>";
}
elseif ($PentabarfGetWith == "wget") {
$Command = "wget --http-user=" . $_POST["PentabarfUser"] . " --http-passwd=" . $_POST["password"] . " " .
"https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] .
" --output-file=$Tempdir/engelXMLwgetLog --output-document=$Tempdir/engelXML" .
" --no-check-certificate";
echo system( $Command, $Status);
if( $Status==0)
echo system($Command, $Status);
if ($Status == 0)
echo "OK.<br />";
else
echo "fail ($Status)($Command).<br />";
}
elseif( $PentabarfGetWith=="lynx")
{
$Command = "lynx -auth=". $_POST["PentabarfUser"]. ":".$_POST["password"]. " -dump ".
"https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"]. " > $Tempdir/engelXML";
echo system( $Command, $Status);
if( $Status==0)
elseif ($PentabarfGetWith == "lynx") {
$Command = "lynx -auth=" . $_POST["PentabarfUser"] . ":" . $_POST["password"] . " -dump " .
"https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] . " > $Tempdir/engelXML";
echo system($Command, $Status);
if ($Status == 0)
echo "OK.<br />";
else
echo "fail ($Status)($Command).<br />";
}
else
} else
echo "<h1>The PentabarfGetWith='$PentabarfGetWith' not supported</h1>";
}
else
{
} else {
echo "<form action=\"dbUpdateFromXLS.php\" method=\"post\">\n";
echo "<table border=\"0\">\n";
echo "\t<tr><td>XCAL-File: https://$PentabarfXMLhost/$PentabarfXMLpath</td>".
"<td><input name=\"PentabarfURL\" type=\"text\" size=\"4\" maxlength=\"5\" ".
echo "\t<tr><td>XCAL-File: https://$PentabarfXMLhost/$PentabarfXMLpath</td>" .
"<td><input name=\"PentabarfURL\" type=\"text\" size=\"4\" maxlength=\"5\" " .
"value=\"$PentabarfXMLEventID\"></td></tr>\n";
echo "\t<tr><td>Username:</td>".
echo "\t<tr><td>Username:</td>" .
"<td><input name=\"PentabarfUser\" type=\"text\" size=\"30\" maxlength=\"30\"></td></tr>\n";
echo "\t<tr><td>Password:</td>".
echo "\t<tr><td>Password:</td>" .
"<td><input name=\"password\" type=\"password\" size=\"30\" maxlength=\"30\"></td></tr>\n";
echo "\t<tr><td></td><td><input type=\"submit\" name=\"FileUpload\" value=\"upload\"></td></tr>\n";
echo "</table>\n";
echo "</form>\n";
}
//readXMLfile("xml.php.xml");
if( readXMLfile("$Tempdir/engelXML") == 0)
{
$XMLmain = getXMLsubPease( $XMLmain, "VCALENDAR");
if (readXMLfile("$Tempdir/engelXML") == 0) {
$XMLmain = getXMLsubPease($XMLmain, "VCALENDAR");
if( $ShowDataStrukture)
{
if ($ShowDataStrukture) {
echo "<pre><br />";
echo $XMLmain->name;
echo "<br />";
print_r(array_values ($XMLmain->sub));
print_r(array_values($XMLmain->sub));
echo "</pre>";
}
}
/*
echo "<br />";
$Feld=7;
echo "$Feld#". $XMLmain->sub[$Feld]->name. "<br />";
echo "$Feld#". $XMLmain->sub[$Feld]->sub;
//print_r(array_values ($XMLmain->sub[$Feld]->sub));
while(list($key, $value) = each($XMLmain->sub[$Feld]->sub))
/*
echo "<br />";
$Feld=7;
echo "$Feld#". $XMLmain->sub[$Feld]->name. "<br />";
echo "$Feld#". $XMLmain->sub[$Feld]->sub;
//print_r(array_values ($XMLmain->sub[$Feld]->sub));
while(list($key, $value) = each($XMLmain->sub[$Feld]->sub))
echo "?ID".$value->sub[1]->data. "=". $value->sub[2]->data. "\n";
echo "</pre>";
*/
echo "</pre>";
*/
/*##############################################################################################
/*##############################################################################################
V e r s i o n
##############################################################################################*/
echo "<hr>\n";
$XMLrelease = getXMLsubPease( $XMLmain, "X-WR-CALDESC");
echo "release: ". $XMLrelease->data. "<br />\n";
//$XMLreleaseDate = getXMLsubPease( $XMLmain, "RELEASE-DATE");
//echo "release date: ". $XMLreleaseDate->data. "<br />\n";
echo "<hr>\n";
echo "<hr>\n";
$XMLrelease = getXMLsubPease($XMLmain, "X-WR-CALDESC");
echo "release: " . $XMLrelease->data . "<br />\n";
//$XMLreleaseDate = getXMLsubPease( $XMLmain, "RELEASE-DATE");
//echo "release date: ". $XMLreleaseDate->data. "<br />\n";
echo "<hr>\n";
/*##############################################################################################
/*##############################################################################################
V e r s i o n
##############################################################################################*/
if( $EnableRoomFunctions)
include("../../../camp2011/includes/funktion_xml_room.php");
if( $EnableSchudleFunctions)
include("../../../camp2011/includes/funktion_xml_schudle.php");
if ($EnableRoomFunctions)
include ("includes/funktion_xml_room.php");
if ($EnableSchudleFunctions)
include ("includes/funktion_xml_schudle.php");
/*##############################################################################################
/*##############################################################################################
U P D A T E A L L
##############################################################################################*/
echo "\n\n<br />\n<h1>Update ALL:</h1>\n";
echo "\n\n<br />\n<h1>Update ALL:</h1>\n";
echo "<form action=\"dbUpdateFromXLS.php\">\n";
echo "\t<input type=\"submit\" name=\"UpdateALL\" value=\"now\">\n";
echo "</form>\n";
echo "<form action=\"dbUpdateFromXLS.php\">\n";
echo "\t<input type=\"submit\" name=\"UpdateALL\" value=\"now\">\n";
echo "</form>\n";
} //if XMLopenOOK
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?>

37
www-ssl/admin/debug.php
Unescape Escape View File

@ -1,9 +1,10 @@
<?php
require_once ('../bootstrap.php');
$title = "Debug-Liste";
$header = "Datenbank-Auszug";
include ("../../../camp2011/includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php");
include ("includes/header.php");
include ("includes/funktion_db_list.php");
echo "<h1>Web Counter</h1>";
funktion_db_list("Counter");
@ -31,39 +32,27 @@ echo "Deaktiviert";
*/
echo "<hr>\n";
funktion_db_element_list_2row( "Tshirt-Size aller engel",
"SELECT `Size`, COUNT(`Size`) FROM `User` GROUP BY `Size`");
funktion_db_element_list_2row("Tshirt-Size aller engel", "SELECT `Size`, COUNT(`Size`) FROM `User` GROUP BY `Size`");
echo "<br />\n";
funktion_db_element_list_2row( "Tshirt ausgegeben",
"SELECT `Size`, COUNT(`Size`) FROM `User` WHERE `Tshirt`='1' GROUP BY `Size`");
funktion_db_element_list_2row("Tshirt ausgegeben", "SELECT `Size`, COUNT(`Size`) FROM `User` WHERE `Tshirt`='1' GROUP BY `Size`");
echo "<br />\n";
funktion_db_element_list_2row( "Tshirt nicht ausgegeben (Gekommen=1)",
"SELECT COUNT(`Size`), `Size` FROM `User` WHERE `Gekommen`='1' and `Tshirt`='0' GROUP BY `Size`");
funktion_db_element_list_2row("Tshirt nicht ausgegeben (Gekommen=1)", "SELECT COUNT(`Size`), `Size` FROM `User` WHERE `Gekommen`='1' and `Tshirt`='0' GROUP BY `Size`");
echo "<hr>\n";
funktion_db_element_list_2row( "Hometown",
"SELECT COUNT(`Hometown`), `Hometown` FROM `User` GROUP BY `Hometown`");
funktion_db_element_list_2row("Hometown", "SELECT COUNT(`Hometown`), `Hometown` FROM `User` GROUP BY `Hometown`");
echo "<br />\n";
funktion_db_element_list_2row( "Engeltypen",
"SELECT COUNT(`Art`), `Art` FROM `User` GROUP BY `Art`");
funktion_db_element_list_2row("Engeltypen", "SELECT COUNT(`Art`), `Art` FROM `User` GROUP BY `Art`");
echo "<hr>\n";
funktion_db_element_list_2row( "Gesamte Arbeit",
"SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID)");
funktion_db_element_list_2row("Gesamte Arbeit", "SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID)");
echo "<br />\n";
funktion_db_element_list_2row( "Geleisteter Arbeit",
"SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID) WHERE (ShiftEntry.UID!=0)");
funktion_db_element_list_2row("Geleisteter Arbeit", "SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID) WHERE (ShiftEntry.UID!=0)");
echo "<hr>\n";
funktion_db_element_list_2row( "Gesamte Arbeit (Ohne Raum aufabau (RID=7)",
"SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID) WHERE (Shifts.RID!=7)");
funktion_db_element_list_2row("Gesamte Arbeit (Ohne Raum aufabau (RID=7)", "SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID) WHERE (Shifts.RID!=7)");
echo "<br />\n";
funktion_db_element_list_2row( "Geleisteter Arbeit (Ohne Raum aufabau (RID=7)",
"SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID) WHERE (ShiftEntry.UID!=0) AND (Shifts.RID!=7)");
funktion_db_element_list_2row("Geleisteter Arbeit (Ohne Raum aufabau (RID=7)", "SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID) WHERE (ShiftEntry.UID!=0) AND (Shifts.RID!=7)");
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?>

83
www-ssl/admin/dect.php
Unescape Escape View File

@ -1,70 +1,69 @@
<?php
require_once ('../bootstrap.php');
$title = "Engelsystem - DECT";
$header = "DECT send call";
include ("../../../camp2011/includes/header.php");
include ("includes/header.php");
include ("../../../camp2011/includes/config_IAX.php");
include ("config/config_IAX.php");
//include ("../../../camp2011/includes/funktion_modem.php");
include ("../../../camp2011/includes/funktion_cron.php");
include ("includes/funktion_cron.php");
if( !isset($_GET["dial"])) $_GET["dial"] = "";
if( !isset($_GET["custum"])) $_GET["custum"] = "";
if (!isset ($_GET["dial"]))
$_GET["dial"] = "";
if (!isset ($_GET["custum"]))
$_GET["custum"] = "";
if( $_GET["dial"]=="dial")
{
if( $_GET["DECT"]=="")
if ($_GET["dial"] == "dial") {
if ($_GET["DECT"] == "")
$Number = $_GET["custum"];
else
$Number = $_GET["DECT"];
if( strlen( $_GET["timeh"])== 1)
$_GET["timeh"] = "0". $_GET["timeh"];
if (strlen($_GET["timeh"]) == 1)
$_GET["timeh"] = "0" . $_GET["timeh"];
if( strlen( $_GET["timem"])== 1)
$_GET["timem"] = "0". $_GET["timem"];
if (strlen($_GET["timem"]) == 1)
$_GET["timem"] = "0" . $_GET["timem"];
// SetWackeup( $Number, $_GET["timeh"], $_GET["timem"]);
DialNumberIAX($Number, $_GET["timeh"], $_GET["timem"],0);
// SetWackeup( $Number, $_GET["timeh"], $_GET["timem"]);
DialNumberIAX($Number, $_GET["timeh"], $_GET["timem"], 0);
$_GET["custum"] = $Number;
}
echo "<form action=\"./dect.php\" method=\"GET\">\n";
echo "<table>\n";
echo "<form action=\"./dect.php\" method=\"GET\">\n";
echo "<table>\n";
echo "<tr><th>Number</th><th>h:m</th><th></th></tr>\n";
echo "<tr><th>Number</th><th>h:m</th><th></th></tr>\n";
echo "<tr><td>\n";
// Listet alle Nicks auf
echo "<select name=\"DECT\">\n";
echo "\t<option value=\"\">costum</option>\n";
echo "<tr><td>\n";
// Listet alle Nicks auf
echo "<select name=\"DECT\">\n";
echo "\t<option value=\"\">costum</option>\n";
$usql="SELECT * FROM `User` WHERE NOT `DECT`='' ORDER BY `Nick`";
$uErg = mysql_query($usql, $con);
$urowcount = mysql_num_rows($uErg);
for ($k=0; $k<$urowcount; $k++)
{
echo "\t<option value=\"".mysql_result($uErg, $k, "DECT")."\">".
mysql_result($uErg, $k, "Nick").
" (". mysql_result($uErg, $k, "DECT"). ")".
$usql = "SELECT * FROM `User` WHERE NOT `DECT`='' ORDER BY `Nick`";
$uErg = mysql_query($usql, $con);
$urowcount = mysql_num_rows($uErg);
for ($k = 0; $k < $urowcount; $k++) {
echo "\t<option value=\"" . mysql_result($uErg, $k, "DECT") . "\">" .
mysql_result($uErg, $k, "Nick") .
" (" . mysql_result($uErg, $k, "DECT") . ")" .
"</option>\n";
}
echo "</select>\n";
echo "<input type=\"text\" name=\"custum\" size=\"4\" maxlength=\"4\" value=\"". $_GET["custum"]. "\">\n";
echo "</td>\n";
}
echo "</select>\n";
echo "<td><input type=\"text\" name=\"timeh\" size=\"2\" maxlength=\"2\" value=\"". gmdate("H", time()+90+3600). "\">:";
echo "<input type=\"text\" name=\"timem\" size=\"2\" maxlength=\"2\" value=\"". gmdate("i", time()+90+3600). "\"></td>\n";
echo "<td><input type=\"submit\" name=\"dial\" value=\"dial\"></td>\n";
echo "</tr>";
echo "</table>\n";
echo "<input type=\"text\" name=\"custum\" size=\"4\" maxlength=\"4\" value=\"" . $_GET["custum"] . "\">\n";
echo "</td>\n";
echo "</form>";
echo "<td><input type=\"text\" name=\"timeh\" size=\"2\" maxlength=\"2\" value=\"" . gmdate("H", time() + 90 + 3600) . "\">:";
echo "<input type=\"text\" name=\"timem\" size=\"2\" maxlength=\"2\" value=\"" . gmdate("i", time() + 90 + 3600) . "\"></td>\n";
echo "<td><input type=\"submit\" name=\"dial\" value=\"dial\"></td>\n";
echo "</tr>";
echo "</table>\n";
echo "</form>";
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?>

5
www-ssl/admin/dect_call.php
Unescape Escape View File

@ -1,7 +1,8 @@
<?php
include ("../../../camp2011/includes/header.php");
require_once ('../bootstrap.php');
include ("includes/header.php");
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?>

214
www-ssl/admin/faq.php
Unescape Escape View File

@ -1,28 +1,28 @@
<?php
require_once ('../bootstrap.php');
$title = "Himmel";
$header = "FAQ / Fragen an die Erzengel";
$submenus = 1;
include ("../../../camp2011/includes/header.php");
include ("../../../camp2011/includes/funktion_db.php");
include ("includes/header.php");
include ("includes/funktion_db.php");
//var init
$quest_bearb=0;
$quest_bearb = 0;
if (IsSet($_GET["quest"]))
{
if (IsSet ($_GET["quest"])) {
switch ($_GET["quest"])
{
switch ($_GET["quest"]) {
// *---------------------------------------------------------------------------
// * Anfragen - Bearbeitung
// *---------------------------------------------------------------------------
// * je nach Übergabeoption ($quest) koennen Anfragen beantwortet werden oder
// * als FAQ uebergeben werden
// *---------------------------------------------------------------------------
// *---------------------------------------------------------------------------
// * Anfragen - Bearbeitung
// *---------------------------------------------------------------------------
// * je nach <20>bergabeoption ($quest) koennen Anfragen beantwortet werden oder
// * als FAQ uebergeben werden
// *---------------------------------------------------------------------------
case "all":
$SQL="SELECT * FROM `Questions` ORDER BY QID DESC";
case "all" :
$SQL = "SELECT * FROM `Questions` ORDER BY QID DESC";
?>
Alle Anfragen:<br />
<table width="100%" class="border" cellpadding="2" cellspacing="1">
@ -37,96 +37,88 @@ case "all":
<?php
$Erg = mysql_query($SQL, $con);
// anzahl zeilen
$Zeilen = mysql_num_rows($Erg);
for ($n = 0 ; $n < $Zeilen ; $n++) {
for ($n = 0; $n < $Zeilen; $n++) {
echo "<tr class=\"content\">\n";
echo "<td>".mysql_result($Erg, $n, "Question")."</td>\n";
echo "<td>".UID2Nick(mysql_result($Erg, $n, "UID"))."</td>\n";
echo "<td>" . mysql_result($Erg, $n, "Question") . "</td>\n";
echo "<td>" . UID2Nick(mysql_result($Erg, $n, "UID")) . "</td>\n";
echo "<td>";
if (mysql_result($Erg, $n, "AID")>0)
{
if (mysql_result($Erg, $n, "AID") > 0) {
echo "Ja</td>\n";
echo "<td>".mysql_result($Erg, $n, "Answer")."</td>\n";
echo "<td>".UID2Nick(mysql_result($Erg, $n, "AID"))."</td>\n";
}
else
{
echo "<td>" . mysql_result($Erg, $n, "Answer") . "</td>\n";
echo "<td>" . UID2Nick(mysql_result($Erg, $n, "AID")) . "</td>\n";
} else {
echo "Nein</td>\n";
echo "<td>&nbsp;</td>\n";
echo "<td>&nbsp;</td>\n";
}
echo "<td><a href=\"faq.php?quest=edit&QID=".mysql_result($Erg, $n, "QID")."\">xxx</a></td>";
echo "<td><a href=\"faq.php?quest=edit&QID=" . mysql_result($Erg, $n, "QID") . "\">xxx</a></td>";
echo "</tr>\n";
}
echo "</table>\n";
break;
case "open":
$SQL="SELECT * FROM `Questions` WHERE `AID`='0' ORDER BY `QID` DESC";
$quest_bearb=1; // Fragenliste anzeigen
case "open" :
$SQL = "SELECT * FROM `Questions` WHERE `AID`='0' ORDER BY `QID` DESC";
$quest_bearb = 1; // Fragenliste anzeigen
echo "\t\tOffene Anfragen:<br />\n";
break;
case "edit":
if (!IsSet($_GET["QID"]))
case "edit" :
if (!IsSet ($_GET["QID"]))
echo "\t\tFehlerhafter Aufruf...<br />Bitte die Bearbeitung nochmals beginnen :)\n";
else
{
$SQL = "SELECT * FROM `Questions` WHERE `QID`='". $_GET["QID"]. "'";
else {
$SQL = "SELECT * FROM `Questions` WHERE `QID`='" . $_GET["QID"] . "'";
$Erg = mysql_query($SQL, $con);
echo "\t\t<form action=\"./faq.php\" method=\"GET\">\n";
echo "\t\tAnfrage von <b>". UID2NICK(mysql_result($Erg, 0, "UID")). "</b>:<br />\n";
echo "\t\t<textarea name=\"Question\" rows=\"3\" cols=\"80\">".
mysql_result($Erg, 0, "Question"). "</textarea>\n";
echo "\t\tAnfrage von <b>" . UID2NICK(mysql_result($Erg, 0, "UID")) . "</b>:<br />\n";
echo "\t\t<textarea name=\"Question\" rows=\"3\" cols=\"80\">" .
mysql_result($Erg, 0, "Question") . "</textarea>\n";
echo "<br /><br />Antwort der Erzengel:<br />\n";
if (mysql_result($Erg, 0, "Answer")=="")
echo "\t\t<textarea name=\"Answer\" rows=\"5\" cols=\"80\">".
if (mysql_result($Erg, 0, "Answer") == "")
echo "\t\t<textarea name=\"Answer\" rows=\"5\" cols=\"80\">" .
"Bitte hier die Antwort eintragen...</textarea><br />\n";
else
echo "\t\t<textarea name=\"Answer\" rows=\"5\" cols=\"80\">".
mysql_result($Erg, 0, "Answer"). "</textarea>\n<br />\n";
echo "\t\t<input type=\"hidden\" name=\"QID\" value=\"". $_GET["QID"]. "\">\n";
echo "\t\t<textarea name=\"Answer\" rows=\"5\" cols=\"80\">" .
mysql_result($Erg, 0, "Answer") . "</textarea>\n<br />\n";
echo "\t\t<input type=\"hidden\" name=\"QID\" value=\"" . $_GET["QID"] . "\">\n";
echo "\t\t<input type=\"hidden\" name=\"quest\" value=\"save\">\n";
echo "\t\t<input type=\"submit\" value=\"Sichern...\">\n";
echo "\t</form>\n";
if (mysql_result($Erg, 0, "AID")<>"0")
{
if (mysql_result($Erg, 0, "AID") <> "0") {
echo "\tDu kannst diese Anfrage so wie sie ist, als Engel-FAQ eintrag &uuml;bernehmen.<br />\n";
echo "<a href=\"./faq.php?quest=transfer&QID=". $_GET["QID"]. "\">Als FAQ-Eintrag sichern...</a>\n";
echo "<a href=\"./faq.php?quest=transfer&QID=" . $_GET["QID"] . "\">Als FAQ-Eintrag sichern...</a>\n";
}
} // Abfrage der QID
break;
case "save":
if (!IsSet($_GET["QID"]))
case "save" :
if (!IsSet ($_GET["QID"]))
echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten...";
else
{
$SQL = "UPDATE `Questions` SET `Question`='". $_GET["Question"].
"', `AID`='". $_SESSION['UID']. "' , `Answer`='". $_GET["Answer"]. "' ".
"WHERE `QID`='". $_GET["QID"]. "' LIMIT 1";
else {
$SQL = "UPDATE `Questions` SET `Question`='" . $_GET["Question"] .
"', `AID`='" . $_SESSION['UID'] . "' , `Answer`='" . $_GET["Answer"] . "' " .
"WHERE `QID`='" . $_GET["QID"] . "' LIMIT 1";
$Erg = db_query($SQL, "save Question");
if ($Erg == 1)
{
if ($Erg == 1) {
echo "\tDer Eintrag wurde ge&auml;ndert<br />\n";
SetHeaderGo2Back();
}
else
} else
echo "\tEin Fehler ist aufgetreten. Sorry, du kannst es aber ja nochmal probieren :)\n";
}
break;
case "transfer":
if (!IsSet($_GET["QID"]))
case "transfer" :
if (!IsSet ($_GET["QID"]))
echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten...\n";
else
{
$SQL1="SELECT * FROM `Questions` WHERE `QID`='". $_GET["QID"]. "'";
else {
$SQL1 = "SELECT * FROM `Questions` WHERE `QID`='" . $_GET["QID"] . "'";
$Erg = mysql_query($SQL1, $con);
$SQL2="INSERT INTO `FAQ` Values ('', '".
mysql_result($Erg, 0, "Question")."', '".mysql_result($Erg, 0, "Answer")."')";
$SQL2 = "INSERT INTO `FAQ` Values ('', '" .
mysql_result($Erg, 0, "Question") . "', '" . mysql_result($Erg, 0, "Answer") . "')";
$Erg = db_query($SQL2, "trasfert to request to the FAQ");
if ($Erg == 1)
echo "\tDer Eintrag wurde &uuml;bertragen.<br />\n";
@ -136,14 +128,14 @@ case "transfer":
break;
// *---------------------------------------------------------------------------
// * FAQ - Bearbeitung
// *---------------------------------------------------------------------------
// * je nach Übergabeoption ($quest) koennen FAQ's erfasst werden,
// * geaendert oder geloscht werden...
// *---------------------------------------------------------------------------
case "faq":
$quest_bearb=0; // keine Fragenliste anzeigen, FAQ editieren...
// *---------------------------------------------------------------------------
// * FAQ - Bearbeitung
// *---------------------------------------------------------------------------
// * je nach <20>bergabeoption ($quest) koennen FAQ's erfasst werden,
// * geaendert oder geloscht werden...
// *---------------------------------------------------------------------------
case "faq" :
$quest_bearb = 0; // keine Fragenliste anzeigen, FAQ editieren...
echo "\tFAQ-Liste:<br />";
echo "<a href=\"./faq.php?quest=faqnew\">Neuen Eintrag</a>";
@ -153,22 +145,20 @@ case "faq":
// anzahl zeilen
$Zeilen = mysql_num_rows($Erg);
for ($n = 0 ; $n < $Zeilen ; $n++)
if (mysql_result($Erg, $n, "Antwort")!="")
{
echo "\t<p class=\"question\">". mysql_result($Erg, $n, "Frage"). "</p>\n";
echo "\t<p class=\"answetion\">". mysql_result($Erg, $n, "Antwort")."</p>\n";
echo "\t<a href=\"./faq.php?quest=faqedit&FAQID=". mysql_result($Erg, $n, "FID").
for ($n = 0; $n < $Zeilen; $n++)
if (mysql_result($Erg, $n, "Antwort") != "") {
echo "\t<p class=\"question\">" . mysql_result($Erg, $n, "Frage") . "</p>\n";
echo "\t<p class=\"answetion\">" . mysql_result($Erg, $n, "Antwort") . "</p>\n";
echo "\t<a href=\"./faq.php?quest=faqedit&FAQID=" . mysql_result($Erg, $n, "FID") .
"\">Bearbeiten</a>\n<br />---<br />\n";
}
break;
case "faqedit":
if (!IsSet($_GET["FAQID"]))
case "faqedit" :
if (!IsSet ($_GET["FAQID"]))
echo "\tFehlerhafter Aufruf...<br />Bitte die Bearbeitung nochmals beginnen :)\n";
else
{
$SQL = "SELECT * FROM `FAQ` WHERE `FID`='". $_GET["FAQID"]. "'";
else {
$SQL = "SELECT * FROM `FAQ` WHERE `FID`='" . $_GET["FAQID"] . "'";
$Erg = mysql_query($SQL, $con);
// anzahl zeilen
@ -190,15 +180,16 @@ case "faqedit":
<input type="submit" value="L&ouml;schen...">
</form>
<?php
}
break;
case "faqdelete";
if (!IsSet($_GET["FAQID"]))
case "faqdelete";
if (!IsSet ($_GET["FAQID"]))
echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten...\n";
else
{
$SQL = "DELETE FROM `FAQ` WHERE `FID`='". $_GET["FAQID"]. "' LIMIT 1";
else {
$SQL = "DELETE FROM `FAQ` WHERE `FID`='" . $_GET["FAQID"] . "' LIMIT 1";
$Erg = db_query($SQL, "delate faq item");
if ($Erg == 1)
echo "\tDer Eintrag wurde gel&ouml;scht<br />\n";
@ -207,13 +198,12 @@ case "faqdelete";
}
break;
case "faqsave";
if (!IsSet($_GET["FAQID"]))
case "faqsave";
if (!IsSet ($_GET["FAQID"]))
echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten...\n";
else
{
$SQL = "UPDATE `FAQ` SET `Frage`='". $_GET["Frage"]. "', `Antwort`='". $_GET["Antwort"].
"' WHERE `FID`='". $_GET["FAQID"]. "' LIMIT 1";
else {
$SQL = "UPDATE `FAQ` SET `Frage`='" . $_GET["Frage"] . "', `Antwort`='" . $_GET["Antwort"] .
"' WHERE `FID`='" . $_GET["FAQID"] . "' LIMIT 1";
$Erg = db_query($SQL, $con);
if ($Erg == 1)
echo "\tDer Eintrag wurde ge&auml;ndert<br />\n";
@ -222,7 +212,7 @@ case "faqsave";
}
break;
case "faqnew":
case "faqnew" :
?>
<form action="./faq.php" method="GET">
Frage:<br />
@ -233,10 +223,12 @@ case "faqnew":
<input type="submit" value="Sichern...">
</form>
<?php
break;
case "faqnewsave";
$SQL = "INSERT INTO `FAQ` VALUES ('', '". $_GET["Frage"]. "', '". $_GET["Antwort"]. "')";
case "faqnewsave";
$SQL = "INSERT INTO `FAQ` VALUES ('', '" . $_GET["Frage"] . "', '" . $_GET["Antwort"] . "')";
$Erg = db_query($SQL, "Save new FAQ entry");
if ($Erg == 1)
echo "\tDer Eintrag wurde erfasst.<br />\n";
@ -244,40 +236,36 @@ case "faqnewsave";
echo "\tEin Fehler ist aufgetreten. Sorry, du kannst es aber ja nochmal probieren :)\n";
break;
} //switch ($_GET["quest"])
} //switch ($_GET["quest"])
// Hilfsroutine für die Anfragen:
// Fragenliste anzeigen???
if ($quest_bearb==1)
{
// Hilfsroutine f<>r die Anfragen:
// Fragenliste anzeigen???
if ($quest_bearb == 1) {
$Erg = mysql_query($SQL, $con);
// anzahl zeilen
$Zeilen = mysql_num_rows($Erg);
if ($Zeilen==0)
if ($Zeilen == 0)
echo "\tkeine vorhanden...\n";
else
for ($n = 0 ; $n < $Zeilen ; $n++)
{
echo "\t<p>". nl2br(mysql_result($Erg, $n, "Question"))."\n</p><br />\n";
echo "\t<a href=\"./faq.php?quest=edit&QID=". mysql_result($Erg, $n, "QID"). "\">Bearbeiten</a>\n";
for ($n = 0; $n < $Zeilen; $n++) {
echo "\t<p>" . nl2br(mysql_result($Erg, $n, "Question")) . "\n</p><br />\n";
echo "\t<a href=\"./faq.php?quest=edit&QID=" . mysql_result($Erg, $n, "QID") . "\">Bearbeiten</a>\n";
echo "<br />---<br />\n";
}
}
}
} //if (IsSet($_GET["quest"]))
else
{
else {
echo "Bitte w&auml;hle aus, ob du:\n";
echo "<ul>\n";
echo "\t<li><a href=\"./faq.php?quest=all\">Alle Anfragen anzeigen/bearbeiten m&ouml;chtest</a></li>\n";
echo "\t<li><a href=\"./faq.php?quest=open\">Alle offenen Anfragen anzeigen/bearbeiten m&ouml;chtest (".
noAnswer(). ")</a></li>\n";
echo "\t<li><a href=\"./faq.php?quest=open\">Alle offenen Anfragen anzeigen/bearbeiten m&ouml;chtest (" .
noAnswer() . ")</a></li>\n";
echo "\t<li><a href=\"./faq.php?quest=faq\">Die FAQ's anzeigen/bearbeiten</a></li>\n";
echo "</ul>\n";
}
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?>

58
www-ssl/admin/free.php
Unescape Escape View File

@ -1,16 +1,15 @@
<?php
require_once ('../bootstrap.php');
$title = "Erzengel";
$header = "Freie Engel";
include ("../../../camp2011/includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php");
include ("includes/header.php");
include ("includes/funktion_db_list.php");
echo "Hallo ".$_SESSION['Nick'].",<br />\n";
echo "Hallo " . $_SESSION['Nick'] . ",<br />\n";
echo "<br /><br />\n\nHier findest du alle Engel, welche zur Zeit in keiner Schicht verplant sind:<br /><br />\n";
#######################################################
# Ermitteln freier Engel
#
@ -33,9 +32,9 @@ $SQL = "SELECT Shifts.*, ShiftEntry.*, User.Nick ".
"INNER JOIN (Shifts INNER JOIN ShiftEntry ON Shifts.SID = ShiftEntry.SID) ON User.UID = ShiftEntry.UID ".
"WHERE (Shifts.DateS<=Now() AND Shifts.DateE>=Now() );";
*/
$SQL = "SELECT Shifts.*, ShiftEntry.* ".
"FROM `Shifts` INNER JOIN ShiftEntry ON Shifts.SID = ShiftEntry.SID ".
"WHERE (Shifts.DateS<=Now() AND Shifts.DateE>=Now() AND ShiftEntry.UID>0);";
$SQL = "SELECT Shifts.*, ShiftEntry.* " .
"FROM `Shifts` INNER JOIN ShiftEntry ON Shifts.SID = ShiftEntry.SID " .
"WHERE (Shifts.DateS<=Now() AND Shifts.DateE>=Now() AND ShiftEntry.UID>0);";
//SELECT User.Nick, Schichtplan.*, Schichtbelegung. * FROM User LEFT JOIN Schichtbelegung ON User.UID=Schichtbelegung.UID, Schichtplan LEFT JOIN Schichtbelegung ON Schichtplan.SID = Schichtbelegung.SID WHERE Schichtplan.Date < now() and Schichtplan.EndDate > now() ORDER BY Nick
@ -47,8 +46,6 @@ $Zeilen = mysql_num_rows($Erg);
// for ($i = 1; $i < mysql_num_fields($Erg); $i++)
// echo "|".mysql_field_name($Erg, $i);
echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n";
echo "\t<tr class=\"contenttopic\">\n";
echo "\t\t<td>Nick</td>\n";
@ -58,47 +55,44 @@ echo "\t\t<td>Von</td>\n";
echo "\t\t<td>Bis</td>\n";
echo "\t</tr>\n";
$inuse="";
for ($i=0; $i < $Zeilen; $i++)
{
$inuse = "";
for ($i = 0; $i < $Zeilen; $i++) {
echo "<tr class=\"content\">\n";
echo "<td><a href=\"./userChangeNormal.php?Type=Normal&enterUID=". mysql_result($Erg, $i, "UID"). "\">".
UID2Nick(mysql_result($Erg, $i, "UID")). "</td></a>\n";
echo "<td><a href=\"./userChangeNormal.php?Type=Normal&enterUID=" . mysql_result($Erg, $i, "UID") . "\">" .
UID2Nick(mysql_result($Erg, $i, "UID")) . "</td></a>\n";
echo "<td></td>\n";
echo "<td>". mysql_result($Erg, $i, "RID"). "</td>\n";
echo "<td>". mysql_result($Erg, $i, "DateS"). "</td>\n";
echo "<td>". mysql_result($Erg, $i, "DateE"). "</td>\n";
echo "<td>" . mysql_result($Erg, $i, "RID") . "</td>\n";
echo "<td>" . mysql_result($Erg, $i, "DateS") . "</td>\n";
echo "<td>" . mysql_result($Erg, $i, "DateE") . "</td>\n";
echo "</tr>\n";
if ($inuse!="")
$inuse.= " OR ";
$inuse.= "(Nick = \"". UID2Nick(mysql_result($Erg, $i, "UID")). "\")";
if ($inuse != "")
$inuse .= " OR ";
$inuse .= "(Nick = \"" . UID2Nick(mysql_result($Erg, $i, "UID")) . "\")";
}
if ($inuse!="")
$inuse=" WHERE NOT (".$inuse.")";
if ($inuse != "")
$inuse = " WHERE NOT (" .
$inuse . ")";
echo "</table>\n";
//##########################################################################################################
echo "<br /><br />\n\nhier findest du alle Engel, welche zur Zeit in keiner Schichten verplant sind:<br /><br />\n";
echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\"\>\n";
echo "\t<tr class=\"contenttopic\">\n\t\t<td>Nick</td>\n\t\t<td>DECT</td>\n\t</tr>\n";
$SQL = "SELECT Nick, UID, DECT FROM User".$inuse.";";
$SQL = "SELECT Nick, UID, DECT FROM User" . $inuse . ";";
$Erg = mysql_query($SQL, $con);
$Zeilen = mysql_num_rows($Erg);
for ($i=0; $i < $Zeilen; $i++)
{
for ($i = 0; $i < $Zeilen; $i++) {
echo "\t<tr class=\"content\">\n";
echo "\t\t<td><a href=\"./userChangeNormal.php?Type=Normal&enterUID=". mysql_result($Erg, $i, "UID"). "\">".
mysql_result($Erg, $i, "Nick"). "</a></td>\n";
echo "\t\t<td>". mysql_result($Erg, $i, "DECT"). "</td>\n";
echo "\t\t<td><a href=\"./userChangeNormal.php?Type=Normal&enterUID=" . mysql_result($Erg, $i, "UID") . "\">" .
mysql_result($Erg, $i, "Nick") . "</a></td>\n";
echo "\t\t<td>" . mysql_result($Erg, $i, "DECT") . "</td>\n";
echo "\n</tr>\n";
}
echo "</table>\n";
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?>

67
www-ssl/admin/free_DECT.php
Unescape Escape View File

@ -1,9 +1,9 @@
<?php
require_once ('../bootstrap.php');
include ("../../../camp2011/includes/config_db.php");
include ("../../../camp2011/includes/funktion_db_list.php");
include ("../../../camp2011/includes/funktion_user.php");
include ("config/config_db.php");
include ("includes/funktion_db_list.php");
include ("includes/funktion_user.php");
#######################################################
# Ermitteln freier Engel
@ -11,68 +11,55 @@ include ("../../../camp2011/includes/funktion_user.php");
# auslesen aller Engel und dazugehoerige Schichten
#######################################################
$SQL = "SELECT Shifts.*, ShiftEntry.* ".
"FROM `Shifts` INNER JOIN ShiftEntry ON Shifts.SID = ShiftEntry.SID ".
"WHERE (Shifts.DateS<=Now() AND Shifts.DateE>=Now() AND ShiftEntry.UID>0);";
$SQL = "SELECT Shifts.*, ShiftEntry.* " .
"FROM `Shifts` INNER JOIN ShiftEntry ON Shifts.SID = ShiftEntry.SID " .
"WHERE (Shifts.DateS<=Now() AND Shifts.DateE>=Now() AND ShiftEntry.UID>0);";
$Erg = mysql_query($SQL, $con);
$Zeilen = mysql_num_rows($Erg);
$inuse="";
for ($i=0; $i < $Zeilen; $i++)
{
if ($inuse!="")
$inuse.= " OR ";
$inuse.= "(UID = \"". mysql_result($Erg, $i, "UID"). "\")";
}
if ($inuse!="")
{
$inuse=" WHERE (NOT (".$inuse.")) AND (DECT!='')";
$inuse = "";
for ($i = 0; $i < $Zeilen; $i++) {
if ($inuse != "")
$inuse .= " OR ";
$inuse .= "(UID = \"" . mysql_result($Erg, $i, "UID") . "\")";
}
else
{
$inuse=" WHERE (DECT!='')";
if ($inuse != "") {
$inuse = " WHERE (NOT (" . $inuse . ")) AND (DECT!='')";
} else {
$inuse = " WHERE (DECT!='')";
}
//##########################################################################################################
$SQL = "SELECT * FROM User".$inuse.";";
$SQL = "SELECT * FROM User" . $inuse . ";";
$Erg = mysql_query($SQL, $con);
$Zeilen = mysql_num_rows($Erg);
for ($i=0; $i < $Zeilen; $i++)
{
for ($i = 0; $i < $Zeilen; $i++) {
// get DECT number
echo mysql_result($Erg, $i, "DECT"). "\t";
echo mysql_result($Erg, $i, "DECT") . "\t";
// get all user rights
$SQL_RIGHT = "SELECT * FROM UserCVS WHERE UID=". mysql_result($Erg, $i, "UID"). ";";
$SQL_RIGHT = "SELECT * FROM UserCVS WHERE UID=" . mysql_result($Erg, $i, "UID") . ";";
$Erg_RIGHT = mysql_query($SQL_RIGHT, $con);
$UserRights = mysql_fetch_array($Erg_RIGHT);
foreach( $UserRights as $Var => $Value)
{
if( (strpos( $Var, ".php") === false) AND
(strpos( $Var, "/") === false) AND
(strpos( $Var, "UID") === false) AND
(is_numeric($Var) === false) )
{
echo "\"".$Var. "\"=". $Value. "\t";
foreach ($UserRights as $Var => $Value) {
if ((strpos($Var, ".php") === false) AND (strpos($Var, "/") === false) AND (strpos($Var, "UID") === false) AND (is_numeric($Var) === false)) {
echo "\"" . $Var . "\"=" . $Value . "\t";
}
}
// get shift types
$SQL_TYPES = "SELECT TID FROM `ShiftEntry` WHERE UID=". mysql_result($Erg, $i, "UID"). " GROUP BY TID;";
$SQL_TYPES = "SELECT TID FROM `ShiftEntry` WHERE UID=" . mysql_result($Erg, $i, "UID") . " GROUP BY TID;";
$Erg_TYPES = mysql_query($SQL_TYPES, $con);
$Zeilen_Typen = mysql_num_rows($Erg_TYPES);
for ($j=0; $j < $Zeilen_Typen; $j++)
{
echo "\"TID_". TID2Type( mysql_result($Erg_TYPES, $j, "TID")). "\"=Y\t";
for ($j = 0; $j < $Zeilen_Typen; $j++) {
echo "\"TID_" . TID2Type(mysql_result($Erg_TYPES, $j, "TID")) . "\"=Y\t";
}
echo "\n";
// echo "<br />";
// echo "<br />";
}
?>

18
www-ssl/admin/group.php
Unescape Escape View File

@ -1,12 +1,12 @@
<?php
require_once ('../bootstrap.php');
$title = "User-Liste";
$header = "Editieren der Engelliste";
include ("../../../camp2011/includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php");
include ("includes/header.php");
include ("includes/funktion_db_list.php");
if (!IsSet($_GET["enterGID"]))
{
if (!IsSet ($_GET["enterGID"])) {
// Userliste, keine UID uebergeben...
$SQL = "SELECT * FROM `UserGroups` ORDER BY `Name` ASC";
@ -22,12 +22,12 @@ if (!IsSet($_GET["enterGID"]))
echo "\t<td>Link</td>\n";
echo "</tr>\n";
for ($n = 0 ; $n < $Zeilen ; $n++) {
for ($n = 0; $n < $Zeilen; $n++) {
echo "<tr class=\"content\">\n";
echo "\t<td>".mysql_result($Erg, $n, "Name")."</td>\n";
echo "\t<td>" . mysql_result($Erg, $n, "Name") . "</td>\n";
echo "<td><a href=\"./userChangeSecure.php?enterUID=".
mysql_result($Erg, $n, "UID")."&Type=Secure\">change</a></td>\n";
echo "<td><a href=\"./userChangeSecure.php?enterUID=" .
mysql_result($Erg, $n, "UID") . "&Type=Secure\">change</a></td>\n";
echo "</tr>\n";
}
@ -43,7 +43,7 @@ if (!IsSet($_GET["enterGID"]))
// Ende Userliste
}
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?>

12
www-ssl/admin/index.php
Unescape Escape View File

@ -1,12 +1,12 @@
<?php
require_once ('../bootstrap.php');
$title = "Erzengel";
$header = "Index";
include ("../../../camp2011/includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php");
echo "Hallo Erzengel ".$_SESSION['Nick'].",<br />\n";
include ("includes/header.php");
include ("includes/funktion_db_list.php");
echo "Hallo Erzengel " . $_SESSION['Nick'] . ",<br />\n";
?>
du bist jetzt im Erzengel-Bereich. Hier kannst du die Engel-Verwaltung vornehmen.<br /><br />
@ -14,6 +14,8 @@ du bist jetzt im Erzengel-Bereich. Hier kannst du die Engel-Verwaltung vornehmen
Bitte melde dich <a href="../logout.php">hier</a> nach getaner Arbeit immer ab, damit kein anderer hier &Auml;nderungen vornehmen kann.
<?php
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?>

165
www-ssl/admin/room.php
Unescape Escape View File

@ -1,16 +1,17 @@
<?php
require_once ('../bootstrap.php');
$title = "R&auml;ume";
$header = "Verwaltung der R&auml;ume";
include ("../../../camp2011/includes/header.php");
include ("../../../camp2011/includes/funktion_schichtplan_aray.php");
include ("includes/header.php");
include ("funktion_schichtplan_aray.php");
$Sql = "SELECT * FROM `Room` ORDER BY `Number`, `Name`";
$Erg = mysql_query($Sql, $con);
if( !IsSet($_GET["action"]) )
{
echo "Hallo ".$_SESSION['Nick'].
",<br />\nhier hast du die M&ouml;glichkeit, neue R&auml;ume f&uuml;r die Schichtpl&auml;ne einzutragen ".
if (!IsSet ($_GET["action"])) {
echo "Hallo " . $_SESSION['Nick'] .
",<br />\nhier hast du die M&ouml;glichkeit, neue R&auml;ume f&uuml;r die Schichtpl&auml;ne einzutragen " .
"oder vorhandene abzu&auml;ndern:<br /><br />\n";
echo "<a href=\"./room.php?action=new\">- Neuen Raum/Ort eintragen</a><br />\n";
@ -18,60 +19,51 @@ if( !IsSet($_GET["action"]) )
echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n";
echo "<tr class=\"contenttopic\">\n";
for( $i = 1; $i < mysql_num_fields($Erg); $i++ )
{
if( substr( mysql_field_name($Erg, $i), 0, 12) == "DEFAULT_EID_")
echo "\t<td> Anzahl ". $EngelTypeID[substr( mysql_field_name($Erg, $i), 12)]. "</td>";
for ($i = 1; $i < mysql_num_fields($Erg); $i++) {
if (substr(mysql_field_name($Erg, $i), 0, 12) == "DEFAULT_EID_")
echo "\t<td> Anzahl " . $EngelTypeID[substr(mysql_field_name($Erg, $i), 12)] . "</td>";
else
echo "\t<td>". mysql_field_name($Erg, $i)."</td>";
echo "\t<td>" . mysql_field_name($Erg, $i) . "</td>";
}
echo "\t<td>&Auml;ndern</td>";
echo "</tr>";
for( $t = 0; $t < mysql_num_rows($Erg); $t++ )
{
for ($t = 0; $t < mysql_num_rows($Erg); $t++) {
echo "\t<tr class=\"content\">\n";
for ($j = 1; $j < mysql_num_fields($Erg); $j++)
{
echo "\t\t<td>".mysql_result($Erg, $t, $j)."</td>\n";
for ($j = 1; $j < mysql_num_fields($Erg); $j++) {
echo "\t\t<td>" . mysql_result($Erg, $t, $j) . "</td>\n";
}
echo "\t\t<td><a href=\"./room.php?action=change&RID=".mysql_result($Erg, $t, "RID")."\">###</a></td>\n";
echo "\t\t<td><a href=\"./room.php?action=change&RID=" . mysql_result($Erg, $t, "RID") . "\">###</a></td>\n";
echo "\t</tr>\n";
} // ende Auflistung Raeume
echo "</table>";
}
else
{
} else {
UnSet($SQL);
UnSet ($SQL);
switch ($_GET["action"]) {
switch ($_GET["action"]) {
case 'new':
case 'new' :
echo "Neuen Raum einrichten: <br />";
echo "<form action=\"./room.php\" method=\"GET\">\n";
echo "<table>\n";
for( $Uj = 1; $Uj < mysql_num_fields($Erg); $Uj++ )
{
if( (mysql_field_name($Erg, $Uj) == "show") || (mysql_field_name($Erg, $Uj) == "FromPentabarf") )
{
echo "<tr><td>". mysql_field_name($Erg, $Uj). "</td>".
"<td>".
"<input type=\"radio\" name=\"". mysql_field_name($Erg, $Uj). "\" value=\"Y\">Yes".
"<input type=\"radio\" name=\"". mysql_field_name($Erg, $Uj). "\" value=\"N\">No".
for ($Uj = 1; $Uj < mysql_num_fields($Erg); $Uj++) {
if ((mysql_field_name($Erg, $Uj) == "show") || (mysql_field_name($Erg, $Uj) == "FromPentabarf")) {
echo "<tr><td>" . mysql_field_name($Erg, $Uj) . "</td>" .
"<td>" .
"<input type=\"radio\" name=\"" . mysql_field_name($Erg, $Uj) . "\" value=\"Y\">Yes" .
"<input type=\"radio\" name=\"" . mysql_field_name($Erg, $Uj) . "\" value=\"N\">No" .
"</td></tr>\n";
}
else
{
} else {
//sonderfall fuer Default Engel
if( substr( mysql_field_name($Erg, $Uj), 0, 12) == "DEFAULT_EID_")
$FeldName = "Anzahl ". $EngelTypeID[substr( mysql_field_name($Erg, $Uj), 12)];
if (substr(mysql_field_name($Erg, $Uj), 0, 12) == "DEFAULT_EID_")
$FeldName = "Anzahl " . $EngelTypeID[substr(mysql_field_name($Erg, $Uj), 12)];
else
$FeldName = mysql_field_name($Erg, $Uj);
echo "<td>$FeldName</td>".
"<td><input type=\"text\" size=\"40\" name=\"".mysql_field_name($Erg, $Uj)."\">";
echo "<td>$FeldName</td>" .
"<td><input type=\"text\" size=\"40\" name=\"" . mysql_field_name($Erg, $Uj) . "\">";
echo "</td></tr>\n";
}
}
@ -81,119 +73,108 @@ case 'new':
echo "</form>";
break;
case 'newsave':
case 'newsave' :
$vars = $_GET;
$count = count($vars) - 1;
$vars = array_splice($vars, 0, $count);
$Keys = "";
$Values = "";
foreach($vars as $key => $value)
{
foreach ($vars as $key => $value) {
$Keys .= ", `$key`";
$Values .= ", '$value'";
}
$SQL = "INSERT INTO `Room` (". substr( $Keys, 2). ") VALUES (". substr( $Values, 2). ")";
$SQL = "INSERT INTO `Room` (" . substr($Keys, 2) . ") VALUES (" . substr($Values, 2) . ")";
SetHeaderGo2Back();
break;
case 'change':
if (! IsSet($_GET["RID"]))
case 'change' :
if (!IsSet ($_GET["RID"]))
echo "Fehlerhafter Aufruf!";
else
{
$SQL2 = "SELECT * FROM `Room` WHERE `RID`='". $_GET["RID"]. "'";
else {
$SQL2 = "SELECT * FROM `Room` WHERE `RID`='" . $_GET["RID"] . "'";
$ERG = mysql_query($SQL2, $con);
if( mysql_num_rows( $ERG)>0)
{
if (mysql_num_rows($ERG) > 0) {
echo "Raum ab&auml;ndern:\n";
echo "Hier kannst du eintragen, welche und wieviele Engel f&uuml;r den Raum zur Verf?gung stehen m&uuml;ssen.";
echo "<form action=\"./room.php\" method=\"GET\">\n";
echo "<table>\n";
for ($Uj = 1; $Uj < mysql_num_fields($ERG); $Uj++)
{
if( (mysql_field_name($ERG, $Uj) == "show") || (mysql_field_name($ERG, $Uj) == "FromPentabarf") )
{
echo "<tr><td>". mysql_field_name($Erg, $Uj). "</td>".
"<td>".
"<input type=\"radio\" name=\"e". mysql_field_name($ERG, $Uj).
"\" value=\"Y\"". (mysql_result($ERG, 0, $Uj)=='Y'? " checked":""). ">Yes".
"<input type=\"radio\" name=\"e". mysql_field_name($ERG, $Uj).
"\" value=\"N\"". (mysql_result($ERG, 0, $Uj)=='N'? " checked":""). ">No".
for ($Uj = 1; $Uj < mysql_num_fields($ERG); $Uj++) {
if ((mysql_field_name($ERG, $Uj) == "show") || (mysql_field_name($ERG, $Uj) == "FromPentabarf")) {
echo "<tr><td>" . mysql_field_name($Erg, $Uj) . "</td>" .
"<td>" .
"<input type=\"radio\" name=\"e" . mysql_field_name($ERG, $Uj) .
"\" value=\"Y\"" . (mysql_result($ERG, 0, $Uj) == 'Y' ? " checked" : "") . ">Yes" .
"<input type=\"radio\" name=\"e" . mysql_field_name($ERG, $Uj) .
"\" value=\"N\"" . (mysql_result($ERG, 0, $Uj) == 'N' ? " checked" : "") . ">No" .
"</td></tr>\n";
}
else
{
if( substr( mysql_field_name($ERG, $Uj), 0, 12) == "DEFAULT_EID_")
} else {
if (substr(mysql_field_name($ERG, $Uj), 0, 12) == "DEFAULT_EID_")
//sonderfall fuer Default Engel
$FeldName = "Anzahl ". $EngelTypeID[substr( mysql_field_name($ERG, $Uj), 12)];
$FeldName = "Anzahl " . $EngelTypeID[substr(mysql_field_name($ERG, $Uj), 12)];
else
$FeldName = mysql_field_name($ERG, $Uj);
echo "<tr><td>$FeldName</td>".
"<td><input type=\"text\" size=\"40\" name=\"e".mysql_field_name($ERG, $Uj)."\" ".
"value=\"".mysql_result($ERG, 0, $Uj)."\">".
echo "<tr><td>$FeldName</td>" .
"<td><input type=\"text\" size=\"40\" name=\"e" . mysql_field_name($ERG, $Uj) . "\" " .
"value=\"" . mysql_result($ERG, 0, $Uj) . "\">" .
"</td></tr>\n";
}
}
echo "</table>\n";
echo "<input type=\"hidden\" name=\"eRID\" value=\"". $_GET["RID"]. "\">\n";
echo "<input type=\"hidden\" name=\"eRID\" value=\"" . $_GET["RID"] . "\">\n";
echo "<input type=\"hidden\" name=\"action\" value=\"changesave\">\n";
echo "<input type=\"submit\" value=\"sichern...\">\n";
echo "</form>";
echo "<form action=\"./room.php\" method=\"GET\">\n";
echo "<input type=\"hidden\" name=\"RID\" value=\"". $_GET["RID"]. "\">\n";
echo "<input type=\"hidden\" name=\"RID\" value=\"" . $_GET["RID"] . "\">\n";
echo "<input type=\"hidden\" name=\"action\" value=\"delete\">\n";
echo "<input type=\"submit\" value=\"L&ouml;schen...\">";
echo "</form>";
}
else
echo "FEHLER: Room ID ". $_GET["RID"]. " nicht gefunden";
} else
echo "FEHLER: Room ID " . $_GET["RID"] . " nicht gefunden";
}
break;
case 'changesave':
$sql="";
case 'changesave' :
$sql = "";
$vars = $_GET;
$count = count($vars) - 2;
$vars = array_splice($vars, 0, $count);
foreach($vars as $key => $value)
{
$keys = substr($key,1);
$sql .= ", `".$keys."`='".$value."' ";
foreach ($vars as $key => $value) {
$keys = substr($key, 1);
$sql .= ", `" . $keys . "`='" . $value . "' ";
}
$SQL = "UPDATE `Room` SET ". substr($sql, 2). " WHERE `RID`='". $_GET["eRID"]. "'";
$SQL = "UPDATE `Room` SET " . substr($sql, 2) . " WHERE `RID`='" . $_GET["eRID"] . "'";
SetHeaderGo2Back();
break;
case 'delete':
if (IsSet($_GET["RID"])) {
$SQL="DELETE FROM `Room` WHERE `RID`='". $_GET["RID"]. "'";
case 'delete' :
if (IsSet ($_GET["RID"])) {
$SQL = "DELETE FROM `Room` WHERE `RID`='" . $_GET["RID"] . "'";
} else {
echo "Fehlerhafter Aufruf";
}
SetHeaderGo2Back();
break;
} //switch
} //switch
// Update ???
// Update ???
if (IsSet($SQL)){
// echo $SQL;
if (IsSet ($SQL)) {
// echo $SQL;
// hier muesste das SQL ausgefuehrt werden...
$Erg = db_query($SQL, "exec SQL");
if ($Erg == 1)
echo "&Auml;nderung wurde gesichert...<br />";
else
{
else {
echo "Fehler beim speichern... bitte noch ein mal probieren :)";
echo "<br /><br />".mysql_error( $con ). "<br />($SQL)<br />";
echo "<br /><br />" . mysql_error($con) . "<br />($SQL)<br />";
}
} // Ende Update
} // Ende Update
} //IF IsSet($action)
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?>

357
www-ssl/admin/schichtplan.php
Unescape Escape View File

@ -1,32 +1,30 @@
<?php
require_once ('../bootstrap.php');
$title = "Schichtplan";
$header = "Neue Schichten erfassen";
$submenus = 1;
include ("../../../camp2011/includes/header.php");
include ("includes/header.php");
function executeSQL( $SQL)
{
function executeSQL($SQL) {
global $debug, $con;
$Erg = mysql_query($SQL, $con);
if( $debug )
if ($debug)
echo "DEBUG SQL: $SQL<br />\n";
if ($Erg == 1)
{
if ($Erg == 1) {
echo "SQL war erfolgreich";
}
else
{
echo "SQL Fehler (". mysql_error($con).")" ;
} else {
echo "SQL Fehler (" . mysql_error($con) . ")";
}
}
if (!IsSet($_GET["action"])) {
echo "Hallo ".$_SESSION['Nick'].",<br />\n";
echo "hier kannst du Schichten anlegen, &auml;ndern oder l&ouml;schen.<br /><br />";
echo "<a href=\"./shiftadd.php\">Neue Schicht einplanen</a><br /><br />\n\n";
if (!IsSet ($_GET["action"])) {
echo "Hallo " . $_SESSION['Nick'] . ",<br />\n";
echo "hier kannst du Schichten anlegen, &auml;ndern oder l&ouml;schen.<br /><br />";
echo "<a href=\"./shiftadd.php\">Neue Schicht einplanen</a><br /><br />\n\n";
echo "<form action=\"".$_SERVER['SCRIPT_NAME']."\" method=\"GET\" >\n";
echo "<form action=\"" . $_SERVER['SCRIPT_NAME'] . "\" method=\"GET\" >\n";
?>
<table width="100%" class="border" cellpadding="2" cellspacing="1">
<tr class="contenttopic">
@ -38,60 +36,56 @@ echo "<form action=\"".$_SERVER['SCRIPT_NAME']."\" method=\"GET\" >\n";
</tr>
<?php
$sql = "SELECT `SID`, `DateS`, `RID`, `Len` FROM `Shifts` ".
$sql = "SELECT `SID`, `DateS`, `RID`, `Len` FROM `Shifts` " .
"ORDER BY `RID`, `DateS` ";
$Erg = mysql_query($sql, $con);
$rowcount = mysql_num_rows($Erg);
for( $i = 0; $i < $rowcount; $i++)
{
$Erg = mysql_query($sql, $con);
$rowcount = mysql_num_rows($Erg);
for ($i = 0; $i < $rowcount; $i++) {
echo "\t<tr class=\"content\">\n";
echo "\t\t<td><input type=\"checkbox\" name=\"SID". mysql_result($Erg, $i, "SID"). "\" ".
"value=\"". mysql_result($Erg, $i, "SID"). "\"></td>\n";
echo "\t\t<td>".mysql_result($Erg, $i, "DateS")."</td>\n";
echo "\t\t<td><input type=\"checkbox\" name=\"SID" . mysql_result($Erg, $i, "SID") . "\" " .
"value=\"" . mysql_result($Erg, $i, "SID") . "\"></td>\n";
echo "\t\t<td>" . mysql_result($Erg, $i, "DateS") . "</td>\n";
$sql2= "SELECT `Name` FROM `Room` WHERE `RID`='".mysql_result($Erg, $i, "RID")."'";
$sql2 = "SELECT `Name` FROM `Room` WHERE `RID`='" . mysql_result($Erg, $i, "RID") . "'";
$Erg2 = mysql_query($sql2, $con);
if( mysql_num_rows($Erg2) > 0)
echo "\t\t<td>".mysql_result($Erg2, 0, "Name")."</td>\n";
if (mysql_num_rows($Erg2) > 0)
echo "\t\t<td>" . mysql_result($Erg2, 0, "Name") . "</td>\n";
else
echo "\t\t<td>Unbenkannt (RID=". mysql_result($Erg, $i, "RID"). ")</td>\n";
echo "\t\t<td>".mysql_result($Erg, $i, "Len")." Std. </td>\n";
echo "\t\t<td><a href=\"./schichtplan.php?action=change&SID=".
mysql_result($Erg, $i, "SID")."\">####</a></td>\n";
echo "\t\t<td>Unbenkannt (RID=" . mysql_result($Erg, $i, "RID") . ")</td>\n";
echo "\t\t<td>" . mysql_result($Erg, $i, "Len") . " Std. </td>\n";
echo "\t\t<td><a href=\"./schichtplan.php?action=change&SID=" .
mysql_result($Erg, $i, "SID") . "\">####</a></td>\n";
echo "\t</tr>\n";
}
echo "</table>\n";
echo "<input type=\"hidden\" name=\"action\" value=\"deleteShifs\">\n";
echo "<input type=\"submit\" value=\"L&ouml;schen...\">\n";
echo "</form>\n";
}
echo "</table>\n";
echo "<input type=\"hidden\" name=\"action\" value=\"deleteShifs\">\n";
echo "<input type=\"submit\" value=\"L&ouml;schen...\">\n";
echo "</form>\n";
} else {
// aus sicherheitzgründen wegen späterer genuzung
UnSet($chSQL);
// aus sicherheitzgr<67>nden wegen sp<73>terer genuzung
UnSet ($chSQL);
switch ($_GET["action"]){
switch ($_GET["action"]) {
case 'change':
if ( !IsSet($_GET["SID"]) )
{
case 'change' :
if (!IsSet ($_GET["SID"])) {
echo "Fehlerhafter Aufruf!\n";
}
else
{
} else {
$sql = "SELECT * FROM `Shifts` WHERE (`SID` = '". $_GET["SID"]. "' )";
$sql = "SELECT * FROM `Shifts` WHERE (`SID` = '" . $_GET["SID"] . "' )";
$Erg = mysql_query($sql, $con);
echo "Schicht ab&auml;ndern: <br />\n";
// Anzeige Allgemeiner schaischt daten
echo "<form action=\"".$_SERVER['SCRIPT_NAME']."\" method=\"GET\" >";
echo "<form action=\"" . $_SERVER['SCRIPT_NAME'] . "\" method=\"GET\" >";
echo "<table>\n";
echo " <tr><td>Schichtbeginn</td>".
"<td><input value=\"". mysql_result($Erg, 0, "DateS").
echo " <tr><td>Schichtbeginn</td>" .
"<td><input value=\"" . mysql_result($Erg, 0, "DateS") .
"\" type=\"text\" size=\"40\" name=\"eDate\"></td></tr>\n";
echo " <tr><td>Raum</td><td>\n<select name=\"eRID\">\n";
@ -99,43 +93,40 @@ case 'change':
$Erg2 = mysql_query($sql2, $con);
$rowcount = mysql_num_rows($Erg2);
$FromPentabarf = "N";
for( $i = 0; $i < $rowcount; $i++ )
{
$RID=mysql_result($Erg2, $i, "RID");
echo " <option value=\"".$RID."\"";
if( $RID == mysql_result($Erg, 0, "RID") )
{
for ($i = 0; $i < $rowcount; $i++) {
$RID = mysql_result($Erg2, $i, "RID");
echo " <option value=\"" . $RID . "\"";
if ($RID == mysql_result($Erg, 0, "RID")) {
echo " selected";
$FromPentabarf = mysql_result($Erg2, $i, "FromPentabarf");
}
echo ">".mysql_result($Erg2, $i, "Name")."</option>\n";
echo ">" . mysql_result($Erg2, $i, "Name") . "</option>\n";
}
echo " </select>\n</td></tr>\n";
echo " <tr><td>Dauer in h</td>".
"<td><input value=\"". mysql_result($Erg, 0, "Len").
echo " <tr><td>Dauer in h</td>" .
"<td><input value=\"" . mysql_result($Erg, 0, "Len") .
"\" type=\"text\" size=\"40\" name=\"eDauer\"></td></tr>\n";
echo " <tr><td>Beschreibung</td>".
"<td><input value=\"". mysql_result($Erg, 0, "Man").
echo " <tr><td>Beschreibung</td>" .
"<td><input value=\"" . mysql_result($Erg, 0, "Man") .
"\" type=\"text\" size=\"40\" name=\"eName\"></td></tr>\n";
echo " <tr><td>URL</td>".
"<td><input value=\"". mysql_result($Erg, 0, "URL").
echo " <tr><td>URL</td>" .
"<td><input value=\"" . mysql_result($Erg, 0, "URL") .
"\" type=\"text\" size=\"40\" name=\"eURL\"></td></tr>\n";
if( $FromPentabarf == "Y")
{
echo " <tr><td></td>".
if ($FromPentabarf == "Y") {
echo " <tr><td></td>" .
"<td><h1>!!! Imported from Pentabarf !!!</h1></td></tr>\n";
}
echo "</table>\n";
echo "<input type=\"hidden\" name=\"SID\" value=\"". $_GET["SID"]. "\">\n";
echo "<input type=\"hidden\" name=\"SID\" value=\"" . $_GET["SID"] . "\">\n";
echo "<input type=\"hidden\" name=\"action\" value=\"changesave\">\n";
echo "<input type=\"submit\" value=\"sichern...\">\n";
echo "</form>\n\n";
// Löschen
echo "<form action=\"". $_SERVER['SCRIPT_NAME']. "\" method=\"GET\" >\n";
echo "<input type=\"hidden\" name=\"SID\" value=\"". $_GET["SID"]. "\">\n";
// L<>schen
echo "<form action=\"" . $_SERVER['SCRIPT_NAME'] . "\" method=\"GET\" >\n";
echo "<input type=\"hidden\" name=\"SID\" value=\"" . $_GET["SID"] . "\">\n";
echo "<input type=\"hidden\" name=\"action\" value=\"delete\">\n";
echo "<input type=\"submit\" value=\"L&ouml;schen...\">\n";
echo "</form>\n\n";
@ -146,43 +137,41 @@ case 'change':
echo "<br /><hr>\n\n\n\n";
//Freie Engelschichten
$sql3 = "SELECT `TID` FROM `ShiftEntry` WHERE `SID`='". $_GET["SID"]. "' AND `UID`='0'";
$sql3 = "SELECT `TID` FROM `ShiftEntry` WHERE `SID`='" . $_GET["SID"] . "' AND `UID`='0'";
$Erg3 = mysql_query($sql3, $con);
$rowcount = mysql_num_rows($Erg3);
echo "Folgende Engelschichten sind noch nicht vergeben.\n";
echo "Und koenen, wenn diese nSchicht nicht benoetigt wird geloet werden:<br />\n";
for ($j=0; $j < $rowcount; $j++)
{
for ($j = 0; $j < $rowcount; $j++) {
$TID = mysql_result($Erg3, $j, 0);
echo "<a href=\"./schichtplan.php?action=engelshiftdel&SID=". $_GET["SID"]. "&TID=$TID\">".
"freie ". TID2Type($TID). Get_Text("inc_schicht_Engel"). "schicht loeschen</a><br />\n";
echo "<a href=\"./schichtplan.php?action=engelshiftdel&SID=" . $_GET["SID"] . "&TID=$TID\">" .
"freie " . TID2Type($TID) . Get_Text("inc_schicht_Engel") . "schicht loeschen</a><br />\n";
}
echo "<br /><hr>\n\n\n\n";
//Ausgabe eingetragener schischten
$sql3 = "SELECT * FROM `ShiftEntry` WHERE `SID`='". $_GET["SID"]. "' AND NOT `UID`='0'";
$sql3 = "SELECT * FROM `ShiftEntry` WHERE `SID`='" . $_GET["SID"] . "' AND NOT `UID`='0'";
$Erg3 = mysql_query($sql3, $con);
$rowcount = mysql_num_rows($Erg3);
echo "Folgende Engel Sind fuer die Schicht eingetargen.\n";
echo "Und koennen, wenn diese nicht zu Schicht erschienen sind ausgetragen werden:<br />\n";
echo "<table border=\"1\">\n".
"<tr class=\"contenttopic\">".
"<th>nick</th>".
"<th>type</th>".
"<th>normal</th>".
"<th>freeloader :-(</th>".
echo "<table border=\"1\">\n" .
"<tr class=\"contenttopic\">" .
"<th>nick</th>" .
"<th>type</th>" .
"<th>normal</th>" .
"<th>freeloader :-(</th>" .
"</tr>";
for ($j=0; $j < $rowcount; $j++)
{
$userUID=mysql_result($Erg3, $j, "UID");
for ($j = 0; $j < $rowcount; $j++) {
$userUID = mysql_result($Erg3, $j, "UID");
echo "\t<tr>\n";
echo "\t\t<td>". UID2Nick($userUID). "</td>\n";
echo "\t\t<td>". TID2Type(mysql_result($Erg3, $j, "TID")). Get_Text("inc_schicht_Engel"). "</td>\n";
echo "\t\t<td><a href=\"./schichtplan.php?action=engeldel&SID=". $_GET["SID"]. "&UIDs=$userUID&freeloader=0\">###-austragen-###</a></td>\n";
echo "\t\t<td><a href=\"./schichtplan.php?action=engeldel&SID=". $_GET["SID"]. "&UIDs=$userUID&freeloader=1\">###-austragen-freeloader-###</a></td>\n";
echo "\t\t<td>" . UID2Nick($userUID) . "</td>\n";
echo "\t\t<td>" . TID2Type(mysql_result($Erg3, $j, "TID")) . Get_Text("inc_schicht_Engel") . "</td>\n";
echo "\t\t<td><a href=\"./schichtplan.php?action=engeldel&SID=" . $_GET["SID"] . "&UIDs=$userUID&freeloader=0\">###-austragen-###</a></td>\n";
echo "\t\t<td><a href=\"./schichtplan.php?action=engeldel&SID=" . $_GET["SID"] . "&UIDs=$userUID&freeloader=1\">###-austragen-freeloader-###</a></td>\n";
echo "\t</tr>\n";
} // FOR
@ -190,54 +179,50 @@ case 'change':
//Nachtragen von Engeln
echo "Hat ein anderer Engel die Schicht &uuml;bernommen, trage ihn bitte ein:";
echo "<form action=\"".$_SERVER['SCRIPT_NAME']."\" method=\"GET\" >\n";
echo "<input type=\"hidden\" name=\"SID\" value=\"". $_GET["SID"]. "\">\n";
echo "<form action=\"" . $_SERVER['SCRIPT_NAME'] . "\" method=\"GET\" >\n";
echo "<input type=\"hidden\" name=\"SID\" value=\"" . $_GET["SID"] . "\">\n";
echo "<input type=\"hidden\" name=\"action\" value=\"engeladd\">\n";
// Listet alle Nicks auf
echo "<select name=\"UIDs\">\n";
if( $FromPentabarf != "Y")
{
if ($FromPentabarf != "Y") {
echo "\t<option value=\"0\">--neu--</option>\n";
}
$usql="SELECT * FROM `User` ORDER BY `Nick`";
$usql = "SELECT * FROM `User` ORDER BY `Nick`";
$uErg = mysql_query($usql, $con);
$urowcount = mysql_num_rows($uErg);
for ($k=0; $k<$urowcount; $k++)
{
echo "\t<option value=\"".mysql_result($uErg, $k, "UID")."\">".
mysql_result($uErg, $k, "Nick").
for ($k = 0; $k < $urowcount; $k++) {
echo "\t<option value=\"" . mysql_result($uErg, $k, "UID") . "\">" .
mysql_result($uErg, $k, "Nick") .
"</option>\n";
}
echo "</select>\n";
echo " als \n";
// holt eine liste der benötigten Engel zu dieser Schischt
// holt eine liste der ben<65>tigten Engel zu dieser Schischt
$sql3 = "SELECT Count(`TID`) AS `CTID`, `TID` FROM `ShiftEntry` ";
$sql3.= "WHERE (`SID`='". $_GET["SID"]. "' AND `UID`='0') ";
$sql3.= "GROUP BY `SID`, `TID`, `UID` ";
$sql3 .= "WHERE (`SID`='" . $_GET["SID"] . "' AND `UID`='0') ";
$sql3 .= "GROUP BY `SID`, `TID`, `UID` ";
$Erg3 = mysql_query($sql3, $con);
$i=-1;
while( ++$i < mysql_num_rows($Erg3))
{
$i = -1;
while (++ $i < mysql_num_rows($Erg3)) {
$EngelNeed[mysql_result($Erg3, $i, "TID")] = mysql_result($Erg3, $i, "CTID");
}
// Gibt dei möglich Engeltypen aus und zeigt wíefiel noch beötigt werden
// Gibt dei m<>glich Engeltypen aus und zeigt w<>efiel noch be<62>tigt werden
echo "<select name=\"TID\">\n";
$SQL2 = "SELECT `TID`, `Name` FROM `EngelType` ORDER BY `Name`";
$Erg2 = mysql_query($SQL2, $con);
for ($l = 0; $l < mysql_num_rows($Erg2); $l++)
{
for ($l = 0; $l < mysql_num_rows($Erg2); $l++) {
$EngelTID = mysql_result($Erg2, $l, "TID");
echo "<option value=\"$EngelTID\">";
echo mysql_result($Erg2, $l, "Name"). Get_Text("inc_schicht_engel");
if( !isset($EngelNeed[$EngelTID]) )
echo mysql_result($Erg2, $l, "Name") . Get_Text("inc_schicht_engel");
if (!isset ($EngelNeed[$EngelTID]))
echo " (0)";
else
echo " (".$EngelNeed[$EngelTID].")";
echo " (" . $EngelNeed[$EngelTID] . ")";
echo "</option>\n";
}
echo "</select>\n";
@ -251,47 +236,37 @@ case 'change':
} // IF ISSET(
break;
case 'engeladd':
if( $_GET["UIDs"]>0)
{
case 'engeladd' :
if ($_GET["UIDs"] > 0) {
$SQL = "SELECT * FROM `ShiftEntry` ".
"WHERE (`SID`='". $_GET["SID"]. "' AND `TID`='". $_GET["TID"]. "' AND `UID`='0')";
$SQL = "SELECT * FROM `ShiftEntry` " .
"WHERE (`SID`='" . $_GET["SID"] . "' AND `TID`='" . $_GET["TID"] . "' AND `UID`='0')";
$ERG = mysql_query($SQL, $con);
if( mysql_num_rows($ERG) != 0 )
{
$chSQL = "UPDATE `ShiftEntry` SET ".
"`UID`='". $_GET["UIDs"]. "', `Comment`='shift added by ".$_SESSION['Nick']."' ".
"WHERE (`SID`='". $_GET["SID"]. "' AND ".
"`TID`='". $_GET["TID"]. "' AND `UID`='0' ) LIMIT 1";
}
else
{
$chSQL = "INSERT INTO `ShiftEntry` (`SID`, `TID`, `UID`, `Comment`) VALUES (".
"'". $_GET["SID"]. "', '". $_GET["TID"]. "', ".
"'". $_GET["UIDs"]. "', 'shift added by ".$_SESSION['Nick']."')";
if (mysql_num_rows($ERG) != 0) {
$chSQL = "UPDATE `ShiftEntry` SET " .
"`UID`='" . $_GET["UIDs"] . "', `Comment`='shift added by " . $_SESSION['Nick'] . "' " .
"WHERE (`SID`='" . $_GET["SID"] . "' AND " .
"`TID`='" . $_GET["TID"] . "' AND `UID`='0' ) LIMIT 1";
} else {
$chSQL = "INSERT INTO `ShiftEntry` (`SID`, `TID`, `UID`, `Comment`) VALUES (" .
"'" . $_GET["SID"] . "', '" . $_GET["TID"] . "', " .
"'" . $_GET["UIDs"] . "', 'shift added by " . $_SESSION['Nick'] . "')";
}
echo "Es wird folgende Schicht zus&auml;tzlich eingetragen:<br />\n";
echo "Engel: ".UID2Nick($_GET["UIDs"])."<br />\n";
echo "Bemerkung: Schicht eingetragen durch Erzengel ".$_SESSION['Nick']."<br />\n<br />\n";
}
else
{
echo "Es wird folgende Schicht wurde ". $_GET["eAnzahlNew"]. "x zus&auml;tzlich eingetragen:<br />\n";
for( $i=0; $i<$_GET["eAnzahlNew"]; $i++)
{
echo "Engel: " . UID2Nick($_GET["UIDs"]) . "<br />\n";
echo "Bemerkung: Schicht eingetragen durch Erzengel " . $_SESSION['Nick'] . "<br />\n<br />\n";
} else {
echo "Es wird folgende Schicht wurde " . $_GET["eAnzahlNew"] . "x zus&auml;tzlich eingetragen:<br />\n";
for ($i = 0; $i < $_GET["eAnzahlNew"]; $i++) {
echo "$i. <br />\n";
$SQL = "INSERT INTO `ShiftEntry` (`SID`, `TID`, `UID`, `Comment`) VALUES (";
$SQL .= "'". $_GET["SID"]. "', '". $_GET["TID"]. "', '0', NULL)";
$SQL .= "'" . $_GET["SID"] . "', '" . $_GET["TID"] . "', '0', NULL)";
$ERG = mysql_query($SQL, $con);
if( $debug )
if ($debug)
echo "DEBUG SQL: $SQL<br />\n";
if ($ERG == 1)
{
if ($ERG == 1) {
echo "&Auml;nderung wurde gesichert...<br />";
}
else
{
} else {
echo "Fehler beim speichern... bitte noch ein mal probieren :)<br />";
echo mysql_error($con);
}
@ -300,96 +275,88 @@ case 'engeladd':
}
break;
case 'engeldel':
$chSQL = "UPDATE `ShiftEntry` SET `UID`='0', `Comment`= 'NULL' WHERE (`SID`='". $_GET["SID"].
"' AND `UID`='". $_GET["UIDs"]. "') LIMIT 1";
if( isset($_GET["freeloader"]) && $_GET["freeloader"]==1)
{
$sql = "SELECT * FROM `Shifts` WHERE (`SID` = '". $_GET["SID"]. "' )";
case 'engeldel' :
$chSQL = "UPDATE `ShiftEntry` SET `UID`='0', `Comment`= 'NULL' WHERE (`SID`='" . $_GET["SID"] .
"' AND `UID`='" . $_GET["UIDs"] . "') LIMIT 1";
if (isset ($_GET["freeloader"]) && $_GET["freeloader"] == 1) {
$sql = "SELECT * FROM `Shifts` WHERE (`SID` = '" . $_GET["SID"] . "' )";
$Erg = mysql_query($sql, $con);
if( mysql_num_rows( $Erg) == 1)
{
if (mysql_num_rows($Erg) == 1) {
$UID = $_GET["UIDs"];
$Length = mysql_result($Erg, 0, "Len");
$Comment = "Start: ". mysql_result($Erg, 0, "DateS"). "; ".
"Beschreibung: ". mysql_result($Erg, 0, "Man"). "; ".
"Removed by ". $_SESSION['Nick'];
$ch2SQL =
"INSERT INTO `ShiftFreeloader` (`Remove_Time`, `UID`, `Length`, `Comment`) ".
$Comment = "Start: " . mysql_result($Erg, 0, "DateS") . "; " .
"Beschreibung: " . mysql_result($Erg, 0, "Man") . "; " .
"Removed by " . $_SESSION['Nick'];
$ch2SQL = "INSERT INTO `ShiftFreeloader` (`Remove_Time`, `UID`, `Length`, `Comment`) " .
"VALUES ( CURRENT_TIMESTAMP, '$UID', '$Length', '$Comment');";
}
}
break;
case 'engelshiftdel':
$chSQL = "DELETE FROM `ShiftEntry` WHERE `SID`='". $_GET["SID"]. "' AND `TID`='".
$_GET["TID"]. "' AND `UID`='0' LIMIT 1";
case 'engelshiftdel' :
$chSQL = "DELETE FROM `ShiftEntry` WHERE `SID`='" . $_GET["SID"] . "' AND `TID`='" .
$_GET["TID"] . "' AND `UID`='0' LIMIT 1";
break;
case 'changesave':
$query = mysql_query("SELECT DATE_ADD('". $_GET["eDate"]. "', INTERVAL '+0 ". $_GET["eDauer"]. "' DAY_HOUR)", $con);
case 'changesave' :
$query = mysql_query("SELECT DATE_ADD('" . $_GET["eDate"] . "', INTERVAL '+0 " . $_GET["eDauer"] . "' DAY_HOUR)", $con);
$enddate = mysql_fetch_row($query);
$chSQL = "UPDATE `Shifts` SET ".
"`DateS`='". $_GET["eDate"]. "', ".
"`DateE`='".$enddate[0]. "', ".
"`RID`='". $_GET["eRID"]. "', ".
"`Len`='". $_GET["eDauer"]. "', ".
"`Man`='". $_GET["eName"]. "', ".
"`URL`='". $_GET["eURL"]. "' ".
"WHERE `SID`='". $_GET["SID"]. "'";
$chSQL = "UPDATE `Shifts` SET " .
"`DateS`='" . $_GET["eDate"] . "', " .
"`DateE`='" . $enddate[0] . "', " .
"`RID`='" . $_GET["eRID"] . "', " .
"`Len`='" . $_GET["eDauer"] . "', " .
"`Man`='" . $_GET["eName"] . "', " .
"`URL`='" . $_GET["eURL"] . "' " .
"WHERE `SID`='" . $_GET["SID"] . "'";
SetHeaderGo2Back();
break;
case 'delete':
$chSQL = "DELETE FROM `Shifts` WHERE `SID`='". $_GET["SID"]. "' LIMIT 1";
$ch2SQL = "DELETE FROM `ShiftEntry` WHERE `SID`='". $_GET["SID"]. "'";
case 'delete' :
$chSQL = "DELETE FROM `Shifts` WHERE `SID`='" . $_GET["SID"] . "' LIMIT 1";
$ch2SQL = "DELETE FROM `ShiftEntry` WHERE `SID`='" . $_GET["SID"] . "'";
SetHeaderGo2Back();
break;
case 'deleteShifs':
case 'deleteShifs' :
foreach ($_GET as $k => $v)
if( strpos( " ".$k, "SID") == 1)
{
echo "Shifts $v wird gelöscht...";
executeSQL( "DELETE FROM `Shifts` WHERE `SID`='$v' LIMIT 1");
if (strpos(" " . $k, "SID") == 1) {
echo "Shifts $v wird gel<65>scht...";
executeSQL("DELETE FROM `Shifts` WHERE `SID`='$v' LIMIT 1");
echo "<br />\n";
echo "ShiftEntry $v wird gelöscht...";
executeSQL( "DELETE FROM `ShiftEntry` WHERE `SID`='$v'");
echo "ShiftEntry $v wird gel<65>scht...";
executeSQL("DELETE FROM `ShiftEntry` WHERE `SID`='$v'");
echo "<br /><br />\n";
}
break;
} // end switch
} // end switch
if (IsSet($chSQL)){
// echo $chSQL;
if (IsSet ($chSQL)) {
// echo $chSQL;
// hier muesste das SQL ausgefuehrt werden...
$Erg = mysql_query($chSQL, $con);
if( $debug )
if ($debug)
echo "DEBUG SQL: $chSQL<br />\n";
if ($Erg == 1)
{
if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...<br />";
if( $debug )
echo "DEBUG: ergebniss". $Erg. "<br />\n";
if (IsSet($ch2SQL))
{
if ($debug)
echo "DEBUG: ergebniss" . $Erg . "<br />\n";
if (IsSet ($ch2SQL)) {
$Erg = mysql_query($ch2SQL, $con);
if( $debug )
if ($debug)
echo "DEBUG SQL: $ch2SQL<br />\n";
if( $debug ) echo "DEBUG: ergebniss". $Erg. "<br />\n";
}
if ($debug)
echo "DEBUG: ergebniss" . $Erg . "<br />\n";
}
else
{
} else {
echo "Fehler beim speichern... bitte noch ein mal probieren :)<br />";
echo mysql_error($con);
}
} // Ende Update
} // Ende Update
}
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?>

108
www-ssl/admin/schichtplan_druck.php
Unescape Escape View File

@ -1,28 +1,26 @@
<?php
require_once ('../bootstrap.php');
$title = "Himmel";
$header = "Schichtpl&auml;ne";
$submenus = 1;
if (!IsSet ($_GET["action"])) {
include ("includes/header.php");
include ("includes/funktionen.php");
include ("includes/funktion_schichtplan_aray.php");
include ("includes/funktion_schichtplan.php");
if (!IsSet($_GET["action"]))
{
include ("../../../camp2011/includes/header.php");
include ("../../../camp2011/includes/funktionen.php");
include ("../../../camp2011/includes/funktion_schichtplan_aray.php");
include ("../../../camp2011/includes/funktion_schichtplan.php");
echo "Hallo ". $_SESSION['Nick']. "<br />\n".
"auf dieser Seite kannst du dir den Schichtplan in einer Druckansicht generieren lassen. W&auml;hle hierf&uuml;r ein Datum und den Raum:\n".
echo "Hallo " . $_SESSION['Nick'] . "<br />\n" .
"auf dieser Seite kannst du dir den Schichtplan in einer Druckansicht generieren lassen. W&auml;hle hierf&uuml;r ein Datum und den Raum:\n" .
"<br />\n";
foreach( $VeranstaltungsTage as $k => $v)
{
foreach ($VeranstaltungsTage as $k => $v) {
$res = mysql_query("SELECT Name, RID FROM `Room` WHERE `show`!='N' ORDER BY `Name`;",$con);
for ($i = 0; $i < mysql_num_rows($res); $i++)
{
$res = mysql_query("SELECT Name, RID FROM `Room` WHERE `show`!='N' ORDER BY `Name`;", $con);
for ($i = 0; $i < mysql_num_rows($res); $i++) {
$Tag = $VeranstaltungsTage[$k];
$RID = mysql_result($res,$i,"RID");
$RID = mysql_result($res, $i, "RID");
$Rname = mysql_result($res, $i, "Name");
echo "\t<a href=\"./schichtplan_druck.php?action=1&Raum=$RID&ausdatum=$Tag\" target=\"_blank\">$Tag $Rname</a><br />\n";
}
@ -30,25 +28,23 @@ if (!IsSet($_GET["action"]))
}
echo "<br /><br />";
include ("../../../camp2011/includes/footer.php");
}
else //#################################################################
{
if (IsSet($_GET["Raum"]) AND IsSet($_GET["ausdatum"]))
include ("includes/footer.php");
} else //#################################################################
{
if (IsSet ($_GET["Raum"]) AND IsSet ($_GET["ausdatum"])) {
$Raum = $_GET["Raum"];
$ausdatum = $_GET["ausdatum"];
include ("../../../camp2011/includes/config_db.php");
include ("../../../camp2011/includes/config.php");
include ("../../../camp2011/includes/secure.php");
include ("config/config_db.php");
include ("config/config.php");
include ("includes/secure.php");
//var wird nur gesetzt immer edit auszublenden, achtung sesion darf nicht gestart sein !!!
$_SESSION['CVS'][ "admin/schichtplan.php" ] = "N";
include ("../../../camp2011/includes/funktion_lang.php");
include ("../../../camp2011/includes/funktion_schichtplan.php");
include ("../../../camp2011/includes/funktion_schichtplan_aray.php");
include ("../../../camp2011/includes/funktion_user.php");
?>
$_SESSION['CVS']["admin/schichtplan.php"] = "N";
include ("includes/funktion_lang.php");
include ("includes/funktion_schichtplan.php");
include ("includes/funktion_schichtplan_aray.php");
include ("includes/funktion_user.php");
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
@ -81,7 +77,7 @@ else //#################################################################
<table border="2" width="650" class="border" cellpadding="2" cellspacing="1">
<!--Ausgabe Spalten überschrift-->
<!--Ausgabe Spalten <EFBFBD>berschrift-->
<tr class="contenttopic">
<th bgcolor="#E0E0E0">Uhrzeit</th>
@ -89,41 +85,35 @@ else //#################################################################
</tr>
<?php
//Zeit Ausgeben
for( $i = 0; $i < 24; $i++ )
for( $j = 0; $j < $GlobalZeileProStunde; $j++)
{
$Spalten[$i * $GlobalZeileProStunde + $j] =
"\t<tr class=\"content\">\n";
if( $j==0)
{
$Spalten[$i * $GlobalZeileProStunde + $j].=
"\t\t<td rowspan=\"$GlobalZeileProStunde\">";
if( $i < 10 )
$Spalten[$i * $GlobalZeileProStunde + $j].= "0";
$Spalten[$i * $GlobalZeileProStunde + $j].= "$i:";
if( ( ($j*60) / $GlobalZeileProStunde) < 10 )
$Spalten[$i * $GlobalZeileProStunde + $j].= "0";
$Spalten[$i * $GlobalZeileProStunde + $j].=
( ($j*60) / $GlobalZeileProStunde). "</td>\n";
//Zeit Ausgeben
for ($i = 0; $i < 24; $i++)
for ($j = 0; $j < $GlobalZeileProStunde; $j++) {
$Spalten[$i * $GlobalZeileProStunde + $j] = "\t<tr class=\"content\">\n";
if ($j == 0) {
$Spalten[$i * $GlobalZeileProStunde + $j] .= "\t\t<td rowspan=\"$GlobalZeileProStunde\">";
if ($i < 10)
$Spalten[$i * $GlobalZeileProStunde + $j] .= "0";
$Spalten[$i * $GlobalZeileProStunde + $j] .= "$i:";
if ((($j * 60) / $GlobalZeileProStunde) < 10)
$Spalten[$i * $GlobalZeileProStunde + $j] .= "0";
$Spalten[$i * $GlobalZeileProStunde + $j] .= (($j * 60) / $GlobalZeileProStunde) . "</td>\n";
}
}
CreateRoomShifts($Raum);
CreateRoomShifts( $Raum );
// Ausgabe Zeilen
for ($i = 0; $i < (24 * $GlobalZeileProStunde); $i++)
echo $Spalten[$i];
// Ende
echo "</table>\n";
// Ausgabe Zeilen
for ($i = 0; $i < (24 * $GlobalZeileProStunde); $i++) echo $Spalten[$i];
// Ende
echo "</table>\n";
echo "Stand: " . gmdate("Y-m-d H:i") . "\n";
echo "</body>\n";
echo "</html>\n";
echo "Stand: ". gmdate("Y-m-d H:i"). "\n";
echo "</body>\n";
echo "</html>\n";
} //isset($Vars)
} //isset($Vars)
} //isset($Action)
?>

300
www-ssl/admin/shiftadd.php
Unescape Escape View File

@ -1,38 +1,37 @@
<?php
$title = "Schicht Hinzufügen";
require_once ('../bootstrap.php');
$title = "Schicht Hinzufügen";
$header = "Neue Schichten erfassen";
include ("../../../camp2011/includes/header.php");
include ("includes/header.php");
$Time = time()+3600+3600;
$Time = time() + 3600 + 3600;
echo "Hallo ".$_SESSION['Nick'].",<br />\n";
echo "Hallo " . $_SESSION['Nick'] . ",<br />\n";
// erstellt ein Array der Reume
$sql = "SELECT `RID`, `Name` FROM `Room` ORDER BY `Name`";
$Erg = mysql_query($sql, $con);
$rowcount = mysql_num_rows($Erg);
$sql = "SELECT `RID`, `Name` FROM `Room` ORDER BY `Name`";
$Erg = mysql_query($sql, $con);
$rowcount = mysql_num_rows($Erg);
for ($i=0; $i<$rowcount; $i++)
{
for ($i = 0; $i < $rowcount; $i++) {
$Room[$i]["RID"] = mysql_result($Erg, $i, "RID");
$Room[$i]["Name"] = mysql_result($Erg, $i, "Name");
}
}
// erstellt ein Aray der Engeltypen
$sql = "SELECT `TID`, `Name` FROM `EngelType` ORDER BY `Name`";
$Erg = mysql_query($sql, $con);
$rowcount = mysql_num_rows($Erg);
$sql = "SELECT `TID`, `Name` FROM `EngelType` ORDER BY `Name`";
$Erg = mysql_query($sql, $con);
$rowcount = mysql_num_rows($Erg);
for ($i=0; $i<$rowcount; $i++)
{
for ($i = 0; $i < $rowcount; $i++) {
$EngelType[$i]["TID"] = mysql_result($Erg, $i, "TID");
$EngelType[$i]["Name"] = mysql_result($Erg, $i, "Name").Get_Text("inc_schicht_engel");
}
$EngelType[$i]["Name"] = mysql_result($Erg, $i, "Name") . Get_Text("inc_schicht_engel");
}
// sesion mit stanadrt werten befüllen
if( !isset( $_SESSION['shiftadd.php']['SchichtName']))
{
// sesion mit stanadrt werten bef<65>llen
if (!isset ($_SESSION['shiftadd.php']['SchichtName'])) {
$_SESSION['shiftadd.php']['SchichtName'] = "--???--";
$_SESSION['shiftadd.php']['RID'] = "";
$_SESSION['shiftadd.php']['MonthJahr'] = gmdate("Y-m", $Time);
@ -45,26 +44,22 @@ if( !isset( $_SESSION['shiftadd.php']['SchichtName']))
$_SESSION['shiftadd.php']['NachtON'] = "OFF";
$_SESSION['shiftadd.php']['len_night'] = "00-04-08-10-12-14-16-18-20-22-24";
}
// wenn werte übergeben in sesion eintragen
if( !isset($_GET["NachtON"]))
// wenn werte <EFBFBD>bergeben in sesion eintragen
if (!isset ($_GET["NachtON"]))
$_GET["NachtON"] = "OFF";
if( !isset($_GET["MoreThenOne"]))
if (!isset ($_GET["MoreThenOne"]))
$_GET["MoreThenOne"] = "OFF";
if( isset( $_GET["SchichtName"]))
{
foreach ($_GET as $k => $v)
{
if (isset ($_GET["SchichtName"])) {
foreach ($_GET as $k => $v) {
$_SESSION['shiftadd.php'][$k] = $v;
}
}
if (!IsSet($_GET["action"]))
if (!IsSet ($_GET["action"]))
$_GET["action"] = "new";
switch( $_GET["action"])
{
case 'new':
switch ($_GET["action"]) {
case 'new' :
?>
Hier kannst du neue Schichten eintragen. Dazu musst du den Anfang und das Ende der Schichten eintragen.
&Uuml;ber die L&auml;nge der Schichten errechnet sich dadurch die Anzahl dieser. Dadurch k&ouml;nnen gleich
@ -80,14 +75,15 @@ mehrere Schichten auf einmal erfasst werden:
<td align="right">Ort:</td>
<td><select name="RID">
<?php
foreach ($Room As $RTemp)
{
echo "\t<option value=\"". $RTemp["RID"]. "\"";
if( $RTemp["RID"] == $_SESSION["shiftadd.php"]["RID"])
foreach ($Room As $RTemp) {
echo "\t<option value=\"" . $RTemp["RID"] . "\"";
if ($RTemp["RID"] == $_SESSION["shiftadd.php"]["RID"])
echo " SELECTED";
echo ">". $RTemp["Name"]. "</option>\n";
echo ">" . $RTemp["Name"] . "</option>\n";
}
?>
?>
</select></td>
</tr>
@ -104,9 +100,11 @@ mehrere Schichten auf einmal erfasst werden:
<tr>
<td align="right">More then One</td>
<td><input type="checkbox" name="MoreThenOne" value="ON" <?php
if( $_SESSION["shiftadd.php"]["MoreThenOne"]=="ON")
if ($_SESSION["shiftadd.php"]["MoreThenOne"] == "ON")
echo " CHECKED";
?>></td>
?>></td>
</tr>
<tr>
<td align="right">End:</td>
@ -120,9 +118,11 @@ mehrere Schichten auf einmal erfasst werden:
<tr>
<td align="right">Sonderschichten ein:</td>
<td><input type="checkbox" name="NachtON" value="ON" <?php
if($_SESSION["shiftadd.php"]["NachtON"]=="ON")
if ($_SESSION["shiftadd.php"]["NachtON"] == "ON")
echo " CHECKED";
?>></td>
?>></td>
</tr>
<tr>
<td align="right">Sonder in h (Time;Time):</td>
@ -131,12 +131,13 @@ mehrere Schichten auf einmal erfasst werden:
<tr><td><u>Anzahl Engel je Type:</u></td></tr>
<?php
foreach ($EngelType As $TTemp)
{
echo " <tr><td align=\"right\">". $TTemp["Name"]. ":</td>\n";
echo " <td><input type=\"text\" name=\"EngelType". $TTemp["TID"]. "\" size=\"5\" value=\"";
if( isset($_SESSION["shiftadd.php"][ "EngelType". $TTemp["TID"] ]))
echo $_SESSION["shiftadd.php"][ "EngelType". $TTemp["TID"] ];
foreach ($EngelType As $TTemp) {
echo " <tr><td align=\"right\">" . $TTemp["Name"] . ":</td>\n";
echo " <td><input type=\"text\" name=\"EngelType" . $TTemp["TID"] . "\" size=\"5\" value=\"";
if (isset ($_SESSION["shiftadd.php"]["EngelType" . $TTemp["TID"]]))
echo $_SESSION["shiftadd.php"]["EngelType" . $TTemp["TID"]];
else
echo "0";
echo "\"></td>\n";
@ -150,22 +151,21 @@ mehrere Schichten auf einmal erfasst werden:
</form>
<?php
break; // Ende new
case 'newsave':
if (isset($_GET["SDatum"]) && ($_GET["len"] > 0))
{
case 'newsave' :
if (isset ($_GET["SDatum"]) && ($_GET["len"] > 0)) {
$lenOrg = $_GET["len"];
if( $_GET["NachtON"] == "ON" )
{
$lenArrayDummy = explode( "-", $_GET["len_night"]);
foreach ( $lenArrayDummy as $Temp )
{
if( isset($Temp2) )
$lenArray[intval($Temp2)] = intval($Temp)-intval($Temp2);
if ($_GET["NachtON"] == "ON") {
$lenArrayDummy = explode("-", $_GET["len_night"]);
foreach ($lenArrayDummy as $Temp) {
if (isset ($Temp2))
$lenArray[intval($Temp2)] = intval($Temp) - intval($Temp2);
$Temp2 = $Temp;
}//foreach
}//IF( $NachtON == "ON" )
} //foreach
} //IF( $NachtON == "ON" )
echo "<table border=\"1\">\n";
echo "<tr>\n";
@ -181,66 +181,65 @@ case 'newsave':
$DateEnd = $_GET["SDatum"];
$TimeEnd = intval($_GET["STime"]);
$len=0;
do
{
$len = 0;
do {
// define Start time
$Date = $DateEnd;
$Time = $TimeEnd;
$_DateS = $_GET["MonthJahr"]. "-". $Date. " ". $Time. ":00:00";
$_DateS = $_GET["MonthJahr"] . "-" . $Date . " " . $Time . ":00:00";
// define End time
if( $_GET["NachtON"] == "ON" )
{
if( !isset($lenArray[$Time])) die("Zeit $Time h nicht definiert.");
if ($_GET["NachtON"] == "ON") {
if (!isset ($lenArray[$Time]))
die("Zeit $Time h nicht definiert.");
$_GET["len"] = $lenArray[$Time];
if( $_GET["len"]<1) die("len <1");
if ($_GET["len"] < 1)
die("len <1");
}
$TimeEnd = $Time+ $_GET["len"];
$TimeEnd = $Time + $_GET["len"];
//Tagesüberschreitung
while( $TimeEnd >= 24 )
{
//Tages<65>berschreitung
while ($TimeEnd >= 24) {
$TimeEnd -= 24;
$DateEnd += 1;
}
//ist schischt zu lang dan verkürzen
if( $DateEnd > $_GET["EDatum"] || ($DateEnd == $_GET["EDatum"] && $TimeEnd >= $_GET["ETime"]) )
{
$_GET["len"] -= ($DateEnd- $_GET["EDatum"])*24;
$_GET["len"] -= ($TimeEnd- $_GET["ETime"]); // -(-) ->> +
//ist schischt zu lang dan verk<72>rzen
if ($DateEnd > $_GET["EDatum"] || ($DateEnd == $_GET["EDatum"] && $TimeEnd >= $_GET["ETime"])) {
$_GET["len"] -= ($DateEnd - $_GET["EDatum"]) * 24;
$_GET["len"] -= ($TimeEnd - $_GET["ETime"]); // -(-) ->> +
$DateEnd = $_GET["EDatum"];
$TimeEnd = $_GET["ETime"];
}
$_DateE = $_GET["MonthJahr"]. "-". $DateEnd. " ". $TimeEnd. ":00:00";
$_DateE = $_GET["MonthJahr"] . "-" . $DateEnd . " " . $TimeEnd . ":00:00";
if( $_DateS != $_DateE )
if ($_DateS != $_DateE)
CreateNewEntry();
if( $_GET["MoreThenOne"]!="ON" ) break;
if( $DateEnd >= $_GET["EDatum"] && $TimeEnd >= intval($_GET["ETime"]) ) break;
} while( true );
if ($_GET["MoreThenOne"] != "ON")
break;
if ($DateEnd >= $_GET["EDatum"] && $TimeEnd >= intval($_GET["ETime"]))
break;
}
while (true);
echo "</table>";
if( $_GET["OnlyShow"]=="ON" )
{
echo "<form action=\"". $_SERVER['SCRIPT_NAME']. "\">";
echo "\n\t<Input type=\"hidden\" name=\"SchichtName\" value=\"". $_GET["SchichtName"]. "\">";
echo "\n\t<input type=\"hidden\" name=\"MonthJahr\" value=\"". $_GET["MonthJahr"]. "\">";
echo "\n\t<input type=\"hidden\" name=\"SDatum\" value=\"". $_GET["SDatum"]. "\">";
echo "\n\t<input type=\"hidden\" name=\"STime\" value=\"". $_GET["STime"]. "\">";
echo "\n\t<input type=\"hidden\" name=\"MoreThenOne\" value=\"". $_GET["MoreThenOne"]. "\">";
echo "\n\t<input type=\"hidden\" name=\"EDatum\" value=\"". $_GET["EDatum"]. "\">";
echo "\n\t<input type=\"hidden\" name=\"ETime\" value=\"". $_GET["ETime"]. "\">";
echo "\n\t<input type=\"hidden\" name=\"len\" value=\"". $lenOrg. "\">";
echo "\n\t<input type=\"hidden\" name=\"RID\" value=\"". $_GET["RID"]. "\">";
echo "\n\t<input type=\"hidden\" name=\"NachtON\" value=\"". $_GET["NachtON"]. "\">";
echo "\n\t<input type=\"hidden\" name=\"len_night\" value=\"". $_GET["len_night"]. "\">";
if ($_GET["OnlyShow"] == "ON") {
echo "<form action=\"" . $_SERVER['SCRIPT_NAME'] . "\">";
echo "\n\t<Input type=\"hidden\" name=\"SchichtName\" value=\"" . $_GET["SchichtName"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"MonthJahr\" value=\"" . $_GET["MonthJahr"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"SDatum\" value=\"" . $_GET["SDatum"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"STime\" value=\"" . $_GET["STime"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"MoreThenOne\" value=\"" . $_GET["MoreThenOne"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"EDatum\" value=\"" . $_GET["EDatum"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"ETime\" value=\"" . $_GET["ETime"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"len\" value=\"" . $lenOrg . "\">";
echo "\n\t<input type=\"hidden\" name=\"RID\" value=\"" . $_GET["RID"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"NachtON\" value=\"" . $_GET["NachtON"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"len_night\" value=\"" . $_GET["len_night"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"OnlyShow\" value=\"OFF\">";
foreach ($EngelType As $TTemp)
{
$Temp = "EngelType".$TTemp["TID"];
echo "\n\t<input type=\"hidden\" name=\"". $Temp. "\" value=\"". $_GET[$Temp]. "\">";
foreach ($EngelType As $TTemp) {
$Temp = "EngelType" . $TTemp["TID"];
echo "\n\t<input type=\"hidden\" name=\"" . $Temp . "\" value=\"" . $_GET[$Temp] . "\">";
}
echo "\n\t<input type=\"hidden\" name=\"action\" value=\"newsave\">";
echo "\n\t<input type=\"submit\" value=\"mach mal Gabriel!\">";
@ -249,19 +248,15 @@ case 'newsave':
} //IF
break;
case 'engeldel':
case 'engeldel' :
break;
} // end switch
function CreateNewEntry()
{
function CreateNewEntry() {
global $con, $_DateS, $_DateE, $EngelType, $debug;
foreach ($EngelType As $TTemp)
{
$Temp = "EngelType".$TTemp["TID"];
foreach ($EngelType As $TTemp) {
$Temp = "EngelType" . $TTemp["TID"];
global $$Temp;
}
@ -269,81 +264,78 @@ function CreateNewEntry()
echo "\t<td>$_DateS</td>\n";
echo "\t<td>$_DateE</td>\n";
echo "\t<td>". $_GET["len"]. "</td>\n";
echo "\t<td>". $_GET["RID"]. "</td>\n";
echo "\t<td>". $_GET["SchichtName"]. "</td>\n";
echo "\t<td>" . $_GET["len"] . "</td>\n";
echo "\t<td>" . $_GET["RID"] . "</td>\n";
echo "\t<td>" . $_GET["SchichtName"] . "</td>\n";
// Ist eintarg schon vorhanden?
$SQL = "SELECT `SID` FROM `Shifts` ";
$SQL .= "WHERE (".
"`DateS` = '". $_DateS. "' AND ".
"`DateE` = '". $_DateE. "' AND ".
"`RID` = '". $_GET["RID"]. "');";
$SQL .= "WHERE (" .
"`DateS` = '" . $_DateS . "' AND " .
"`DateE` = '" . $_DateE . "' AND " .
"`RID` = '" . $_GET["RID"] . "');";
$Erg = mysql_query($SQL, $con);
if( mysql_num_rows($Erg) != 0 )
if (mysql_num_rows($Erg) != 0)
echo "\t<td>exists</td>";
elseif( $_GET["OnlyShow"] == "OFF" )
{
// erstellt Eintrag in Shifts für die algemeine schicht
elseif ($_GET["OnlyShow"] == "OFF") {
// erstellt Eintrag in Shifts f<>r die algemeine schicht
$SQL = "INSERT INTO `Shifts` ( `DateS`, `DateE`, `Len`, `RID`, `Man`) VALUES ( ";
$SQL .= "'". $_DateS. "', '". $_DateE. "', ";
$SQL .= "'". $_GET["len"]. "', '". $_GET["RID"]. "', ";
$SQL .= "'". $_GET["SchichtName"]. "');";
$SQL .= "'" . $_DateS . "', '" . $_DateE . "', ";
$SQL .= "'" . $_GET["len"] . "', '" . $_GET["RID"] . "', ";
$SQL .= "'" . $_GET["SchichtName"] . "');";
$Erg = db_query($SQL, "create shift");
$SQLFail = "\n\t<br />[".$SQL. "]";
$SQLFail = "\n\t<br />[" . $SQL . "]";
if ($Erg == 1) echo "\t<td>pass</td>\n";
else echo "\t<td>fail <br />\n<u>". mysql_error($con). "</u>$SQLFail</td>\n";
if ($Erg == 1)
echo "\t<td>pass</td>\n";
else
echo "\t<td>fail <br />\n<u>" . mysql_error($con) . "</u>$SQLFail</td>\n";
} else
echo "\t<td>only show</td>\n";
// sucht SID von eingetragennen schiten
$SQL = "SELECT SID FROM `Shifts` ";
$SQL .= "WHERE (".
"`DateS` = '". $_DateS. "' AND ".
"`DateE` = '". $_DateE. "' AND ".
"`Len` = '". $_GET["len"]. "' AND ".
"`RID` = '". $_GET["RID"]. "');";
$SQL .= "WHERE (" .
"`DateS` = '" . $_DateS . "' AND " .
"`DateE` = '" . $_DateE . "' AND " .
"`Len` = '" . $_GET["len"] . "' AND " .
"`RID` = '" . $_GET["RID"] . "');";
$Erg = mysql_query($SQL, $con);
if( mysql_num_rows($Erg) == 0 )
if (mysql_num_rows($Erg) == 0)
echo "\t<td>?</td>";
else
{
else {
$SID = mysql_result($Erg, 0, "SID");
echo "\t<td>". $SID. "</td>";
echo "\t<td>" . $SID . "</td>";
}
// erstellt für jeden Engeltypen die eintrage in 'ShiftEntry'
// erstellt f<>r jeden Engeltypen die eintrage in 'ShiftEntry'
echo "\t<td>";
foreach ($EngelType As $TTemp)
{
$Temp = "EngelType".$TTemp["TID"];
foreach ($EngelType As $TTemp) {
$Temp = "EngelType" . $TTemp["TID"];
if( $_GET[$Temp] > 0 )
{
if ($_GET[$Temp] > 0) {
$i = 0;
echo $_GET[$Temp]. " ".$TTemp["Name"]. "<br />\t";
while( $i++ < $_GET[$Temp] )
{
if( $_GET["OnlyShow"] == "OFF" )
{
echo $_GET[$Temp] . " " . $TTemp["Name"] . "<br />\t";
while ($i++ < $_GET[$Temp]) {
if ($_GET["OnlyShow"] == "OFF") {
$SQL = "INSERT INTO `ShiftEntry` (`SID`, `TID`) VALUES (";
$SQL .= "'". $SID. "', ";
$SQL .= "'". $TTemp["TID"]. "');";
$SQL .= "'" . $SID . "', ";
$SQL .= "'" . $TTemp["TID"] . "');";
$Erg = mysql_query($SQL, $con);
if( $debug ) $SQLFail = "\n\t<br />[".$SQL. "]";
if ($Erg == 1) echo "'pass' ";
else echo "'fail' <u>". mysql_error($con). "</u>$SQLFail</td>\n";
if ($debug)
$SQLFail = "\n\t<br />[" . $SQL . "]";
}
if ($Erg == 1)
echo "'pass' ";
else
echo "'fail' <u>" . mysql_error($con) . "</u>$SQLFail</td>\n";
} else
echo "+";
}
echo "<br />";
@ -354,5 +346,5 @@ function CreateNewEntry()
echo "</tr>\n";
}
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?>

92
www-ssl/admin/sprache.php
Unescape Escape View File

@ -1,57 +1,51 @@
<?php
require_once ('../bootstrap.php');
$title = "Sprache";
$header = "Liste der existierenden Sprcheintr&auml;ge";
include ("../../../camp2011/includes/header.php");
include ("includes/header.php");
if (!isset ($_GET["TextID"])) {
echo Get_Text("Hello") . $_SESSION['Nick'] . ", <br />\n";
echo Get_Text("pub_sprache_text1") . "<br /><br />\n";
if( !isset( $_GET["TextID"] ) )
{
echo Get_Text("Hello").$_SESSION['Nick'].", <br />\n";
echo Get_Text("pub_sprache_text1")."<br /><br />\n";
echo "<a href=\"?ShowEntry=y\">". Get_Text("pub_sprache_ShowEntry"). "</a>";
echo "<a href=\"?ShowEntry=y\">" . Get_Text("pub_sprache_ShowEntry") . "</a>";
// ausgabe Tabellenueberschift
$SQL_Sprachen = "SELECT `Sprache` FROM `Sprache` GROUP BY `Sprache`;";
$erg_Sprachen = mysql_query($SQL_Sprachen, $con);
echo mysql_error($con);
for( $i=0; $i<mysql_num_rows( $erg_Sprachen ); $i++ )
$Sprachen[mysql_result( $erg_Sprachen, $i, "Sprache" )] = $i;
for ($i = 0; $i < mysql_num_rows($erg_Sprachen); $i++)
$Sprachen[mysql_result($erg_Sprachen, $i, "Sprache")] = $i;
echo "\t<table border=\"0\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n\t\t<tr>";
echo "\t\t<td class=\"contenttopic\"><b>". Get_Text("pub_sprache_TextID"). "</b></td>";
foreach( $Sprachen as $Name => $Value )
echo "<td class=\"contenttopic\"><b>".
Get_Text("pub_sprache_Sprache"). " ". $Name.
echo "\t\t<td class=\"contenttopic\"><b>" . Get_Text("pub_sprache_TextID") . "</b></td>";
foreach ($Sprachen as $Name => $Value)
echo "<td class=\"contenttopic\"><b>" .
Get_Text("pub_sprache_Sprache") . " " . $Name .
"</b></td>";
echo "\t\t<td class=\"contenttopic\"><b>". Get_Text("pub_sprache_Edit"). "</b></td>";
echo "\t\t<td class=\"contenttopic\"><b>" . Get_Text("pub_sprache_Edit") . "</b></td>";
echo "\t\t</tr>";
if( isset($_GET["ShowEntry"]))
{
if (isset ($_GET["ShowEntry"])) {
// ausgabe eintraege
$SQL = "SELECT * FROM `Sprache` ORDER BY `TextID`;";
$erg = mysql_query($SQL, $con);
echo mysql_error($con);
$TextID_Old = mysql_result( $erg, 0, "TextID" );
for( $i=0; $i<mysql_num_rows( $erg ); $i++ )
{
$TextID_New = mysql_result( $erg, $i, "TextID" );
if( $TextID_Old != $TextID_New )
{
$TextID_Old = mysql_result($erg, 0, "TextID");
for ($i = 0; $i < mysql_num_rows($erg); $i++) {
$TextID_New = mysql_result($erg, $i, "TextID");
if ($TextID_Old != $TextID_New) {
echo "<form action=\"sprache.php\">";
echo "<tr class=\"content\">\n";
echo "\t\t<td>$TextID_Old ".
echo "\t\t<td>$TextID_Old " .
"<input name=\"TextID\" type=\"hidden\" value=\"$TextID_Old\"> </td>\n";
foreach( $Sprachen as $Name => $Value )
{
$Value = html_entity_decode( $Value, ENT_QUOTES);
foreach ($Sprachen as $Name => $Value) {
$Value = html_entity_decode($Value, ENT_QUOTES);
echo "\t\t<td><textarea name=\"$Name\" cols=\"22\" rows=\"8\">$Value</textarea></td>\n";
$Sprachen[ $Name ] = "";
$Sprachen[$Name] = "";
}
echo "\t\t<td><input type=\"submit\" value=\"Save\"></td>\n";
@ -59,7 +53,7 @@ if( !isset( $_GET["TextID"] ) )
echo "</form>\n";
$TextID_Old = $TextID_New;
}
$Sprachen[ mysql_result( $erg, $i, "Sprache" ) ] = mysql_result( $erg, $i, "Text" );
$Sprachen[mysql_result($erg, $i, "Sprache")] = mysql_result($erg, $i, "Text");
} /*FOR*/
}
@ -68,55 +62,49 @@ if( !isset( $_GET["TextID"] ) )
echo "<tr class=\"content\">\n";
echo "\t\t<td><input name=\"TextID\" type=\"text\" size=\"40\" value=\"new\"> </td>\n";
foreach( $Sprachen as $Name => $Value )
foreach ($Sprachen as $Name => $Value)
echo "\t\t<td><textarea name=\"$Name\" cols=\"22\" rows=\"8\">$Name Text</textarea></td>\n";
echo "\t\t<td><input type=\"submit\" value=\"Save\"></td>\n";
echo "</tr>";
echo "</form>\n";
echo "</table>\n";
} /*if( !isset( $TextID ) )*/
else
{
echo "edit: ". $_GET["TextID"]. "<br /><br />";
else {
echo "edit: " . $_GET["TextID"] . "<br /><br />";
foreach ($_GET as $k => $v) {
if( $k != "TextID" )
{
$sql_test = "SELECT * FROM `Sprache` ".
"WHERE `TextID`='". $_GET["TextID"]. "' AND `Sprache`='$k'";
if ($k != "TextID") {
$sql_test = "SELECT * FROM `Sprache` " .
"WHERE `TextID`='" . $_GET["TextID"] . "' AND `Sprache`='$k'";
$erg_test = mysql_query($sql_test, $con);
if( mysql_num_rows($erg_test)==0 )
{
$sql_save = "INSERT INTO `Sprache` (`TextID`, `Sprache`, `Text`) ".
"VALUES ('". $_GET["TextID"]. "', '$k', '$v')";
echo $sql_save."<br />";
if (mysql_num_rows($erg_test) == 0) {
$sql_save = "INSERT INTO `Sprache` (`TextID`, `Sprache`, `Text`) " .
"VALUES ('" . $_GET["TextID"] . "', '$k', '$v')";
echo $sql_save . "<br />";
$Erg = mysql_query($sql_save, $con);
if ($Erg == 1)
echo "\t $k Save: OK<br />\n";
else
echo "\t $k Save: KO<br />\n";
}
else if( mysql_result($erg_test, 0, "Text")!=$v )
{
$sql_save = "UPDATE `Sprache` SET `Text`='$v' ".
"WHERE `TextID`='". $_GET["TextID"]. "' AND `Sprache`='$k' ";
echo $sql_save."<br />";
} else
if (mysql_result($erg_test, 0, "Text") != $v) {
$sql_save = "UPDATE `Sprache` SET `Text`='$v' " .
"WHERE `TextID`='" . $_GET["TextID"] . "' AND `Sprache`='$k' ";
echo $sql_save . "<br />";
$Erg = mysql_query($sql_save, $con);
if ($Erg == 1)
echo "\t $k Update: OK<br />\n";
else
echo "\t $k Update: KO<br />\n";
}
else
} else
echo "\t $k no changes<br />\n";
}
}
}
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?>

31
www-ssl/admin/tshirt.php
Unescape Escape View File

@ -1,21 +1,20 @@
<?php
require_once ('../bootstrap.php');
$title = "T-Shirt-Ausgabe";
$header = "T-Shirt-Ausgabe f&uuml;r aktiven Engel";
include ("../../../camp2011/includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php");
include ("includes/header.php");
include ("includes/funktion_db_list.php");
If (IsSet ($_GET["aktiv"])) {
If (IsSet($_GET["aktiv"])) {
$SQL="UPDATE `User` SET `Tshirt`='1' WHERE `UID`='". $_GET["aktiv"]. "' limit 1";
$SQL = "UPDATE `User` SET `Tshirt`='1' WHERE `UID`='" . $_GET["aktiv"] . "' limit 1";
$Erg = mysql_query($SQL, $con);
if ($Erg == 1) {
} else {
echo "Fehler beim speichern bei Engel ". UID2Nick($_GET["aktive"]). "<br />";
echo "Fehler beim speichern bei Engel " . UID2Nick($_GET["aktive"]) . "<br />";
}
}
?>
&Uuml;ber die Suchen-Funktion des Browsers kann diese Liste schnell nach einem Nick abgesucht werden.<br />
@ -24,6 +23,8 @@ Hinter diesem erscheint ein Link, &uuml;ber den man eintragen kann, dass der Eng
Liste aller aktiven Engel:
<?php
$SQL = "SELECT * FROM `User` WHERE (`Aktiv`='1') ORDER BY `Nick` ASC";
$Erg = mysql_query($SQL, $con);
@ -37,14 +38,16 @@ $rowcount = mysql_num_rows($Erg);
<td>T-Shirt ausgeben:</td>
</td>
<?php
for ($i=0; $i<$rowcount; $i++){
for ($i = 0; $i < $rowcount; $i++) {
echo "\t<tr class=\"content\">\n";
$eUID=mysql_result($Erg, $i, "UID");
echo "\t\t<td>".UID2Nick($eUID)."</td>\n";
echo "\t\t<td>".mysql_result($Erg, $i, "Aktiv")."</td>\n";
echo "\t\t<td>".mysql_result($Erg, $i, "Size")."</td>\n";
$eUID = mysql_result($Erg, $i, "UID");
echo "\t\t<td>" . UID2Nick($eUID) . "</td>\n";
echo "\t\t<td>" . mysql_result($Erg, $i, "Aktiv") . "</td>\n";
echo "\t\t<td>" . mysql_result($Erg, $i, "Size") . "</td>\n";
if (mysql_result($Erg, $i, "Tshirt") =="1") {
if (mysql_result($Erg, $i, "Tshirt") == "1") {
echo "\t\t<td>bereits erhalten</td>";
} else {
echo "\t\t<td><a href=\"./tshirt.php?aktiv=$eUID\">XXXXXXXX</a></td>";
@ -54,6 +57,6 @@ for ($i=0; $i<$rowcount; $i++){
echo "</table>";
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?>

121
www-ssl/admin/user.php
Unescape Escape View File

@ -1,21 +1,22 @@
<?php
require_once ('../bootstrap.php');
$title = "User-Liste";
$header = "Editieren der Engelliste";
include ("../../../camp2011/includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php");
include ("includes/header.php");
include ("includes/funktion_db_list.php");
if (!IsSet($_GET["enterUID"]))
{
if (!IsSet ($_GET["enterUID"])) {
// Userliste, keine UID uebergeben...
echo "<a href=\"../makeuser.php\">Neuen Engel eintragen</a><br /><br />\n";
if( !isset($_GET["OrderBy"]) ) $_GET["OrderBy"] = "Nick";
$SQL = "SELECT User.*, UserGroups.Name AS 'Group' FROM `User` ".
"LEFT JOIN `UserCVS` ON User.UID = UserCVS.UID ".
"LEFT JOIN `UserGroups` ON UserGroups.UID = UserCVS.GroupID ".
"ORDER BY `". $_GET["OrderBy"]. "` ASC";
if (!isset ($_GET["OrderBy"]))
$_GET["OrderBy"] = "Nick";
$SQL = "SELECT User.*, UserGroups.Name AS 'Group' FROM `User` " .
"LEFT JOIN `UserCVS` ON User.UID = UserCVS.UID " .
"LEFT JOIN `UserGroups` ON UserGroups.UID = UserCVS.GroupID " .
"ORDER BY `" . $_GET["OrderBy"] . "` ASC";
$Erg = mysql_query($SQL, $con);
echo mysql_error($con);
@ -23,8 +24,7 @@ if (!IsSet($_GET["enterUID"]))
$Zeilen = mysql_num_rows($Erg);
echo "Anzahl Engel: $Zeilen<br /><br />\n";
?><table width="100%" class="border" cellpadding="2" cellspacing="1">
?><table width="100%" class="border" cellpadding="2" cellspacing="1">
<tr class="contenttopic">
<td>
<a href="<?php echo $_SERVER["PHP_SELF"]; ?>?OrderBy=Nick">Nick</a> |
@ -53,88 +53,81 @@ if (!IsSet($_GET["enterUID"]))
<?php
$Gekommen = 0;
$Active = 0;
$Tshirt = 0;
for ($n = 0 ; $n < $Zeilen ; $n++) {
for ($n = 0; $n < $Zeilen; $n++) {
echo "<tr class=\"content\">\n";
echo "\t<td>".mysql_result($Erg, $n, "Nick"). "<br />(Create: ". mysql_result($Erg, $n, "CreateDate"). ")</td>\n";
echo "\t<td>".mysql_result($Erg, $n, "Name")."</td>\n";
echo "\t<td>".mysql_result($Erg, $n, "Vorname")."</td>\n";
echo "\t<td>".mysql_result($Erg, $n, "Alter")."</td>\n";
echo "\t<td>" . mysql_result($Erg, $n, "Nick") . "<br />(Create: " . mysql_result($Erg, $n, "CreateDate") . ")</td>\n";
echo "\t<td>" . mysql_result($Erg, $n, "Name") . "</td>\n";
echo "\t<td>" . mysql_result($Erg, $n, "Vorname") . "</td>\n";
echo "\t<td>" . mysql_result($Erg, $n, "Alter") . "</td>\n";
echo "\t<td>";
if( strlen( mysql_result($Erg, $n, "Telefon"))>0)
echo "\n\t\tTel: ". mysql_result($Erg, $n, "Telefon"). "<br />";
if( strlen( mysql_result($Erg, $n, "Handy"))>0)
echo "\n\t\tHandy: ". mysql_result($Erg, $n, "Handy"). "<br />";
if( strlen( mysql_result($Erg, $n, "DECT"))>0)
echo "\n\t\tDECT: <a href=\"./dect.php?custum=". mysql_result($Erg, $n, "DECT"). "\">".
mysql_result($Erg, $n, "DECT"). "</a><br />";
if( strlen( mysql_result($Erg, $n, "email"))>0)
echo "\n\t\temail: <a href=\"mailto:".mysql_result($Erg, $n, "email")."\">".
mysql_result($Erg, $n, "email")."</a><br />";
if( strlen( mysql_result($Erg, $n, "Hometown"))>0)
echo "\n\t\tHometown: ". mysql_result($Erg, $n, "Hometown"). "<br />";
if( strlen( mysql_result($Erg, $n, "lastLogIn"))>0)
echo "\n\t\tlastLogIn: ". mysql_result($Erg, $n, "lastLogIn"). "<br />";
if( strlen( mysql_result($Erg, $n, "Art"))>0)
echo "\n\t\tType: ". mysql_result($Erg, $n, "Art"). "<br />";
if( strlen( mysql_result($Erg, $n, "ICQ"))>0)
echo "\n\t\tICQ: ". mysql_result($Erg, $n, "ICQ"). "<br />";
if( strlen( mysql_result($Erg, $n, "jabber"))>0)
echo "\n\t\tjabber: ". mysql_result($Erg, $n, "jabber"). "<br />";
echo "\n\t\tGroup: ". mysql_result($Erg, $n, "Group"). "<br />";
if (strlen(mysql_result($Erg, $n, "Telefon")) > 0)
echo "\n\t\tTel: " . mysql_result($Erg, $n, "Telefon") . "<br />";
if (strlen(mysql_result($Erg, $n, "Handy")) > 0)
echo "\n\t\tHandy: " . mysql_result($Erg, $n, "Handy") . "<br />";
if (strlen(mysql_result($Erg, $n, "DECT")) > 0)
echo "\n\t\tDECT: <a href=\"./dect.php?custum=" . mysql_result($Erg, $n, "DECT") . "\">" .
mysql_result($Erg, $n, "DECT") . "</a><br />";
if (strlen(mysql_result($Erg, $n, "email")) > 0)
echo "\n\t\temail: <a href=\"mailto:" . mysql_result($Erg, $n, "email") . "\">" .
mysql_result($Erg, $n, "email") . "</a><br />";
if (strlen(mysql_result($Erg, $n, "Hometown")) > 0)
echo "\n\t\tHometown: " . mysql_result($Erg, $n, "Hometown") . "<br />";
if (strlen(mysql_result($Erg, $n, "lastLogIn")) > 0)
echo "\n\t\tlastLogIn: " . mysql_result($Erg, $n, "lastLogIn") . "<br />";
if (strlen(mysql_result($Erg, $n, "Art")) > 0)
echo "\n\t\tType: " . mysql_result($Erg, $n, "Art") . "<br />";
if (strlen(mysql_result($Erg, $n, "ICQ")) > 0)
echo "\n\t\tICQ: " . mysql_result($Erg, $n, "ICQ") . "<br />";
if (strlen(mysql_result($Erg, $n, "jabber")) > 0)
echo "\n\t\tjabber: " . mysql_result($Erg, $n, "jabber") . "<br />";
echo "\n\t\tGroup: " . mysql_result($Erg, $n, "Group") . "<br />";
echo "</td>\n";
echo "\t<td>".mysql_result($Erg, $n, "Size")."</td>\n";
echo "\t<td>" . mysql_result($Erg, $n, "Size") . "</td>\n";
$Gekommen += mysql_result($Erg, $n, "Gekommen");
echo "\t<td>".mysql_result($Erg, $n, "Gekommen")."</td>\n";
echo "\t<td>" . mysql_result($Erg, $n, "Gekommen") . "</td>\n";
$Active += mysql_result($Erg, $n, "Aktiv");
echo "\t<td>".mysql_result($Erg, $n, "Aktiv")."</td>\n";
echo "\t<td>" . mysql_result($Erg, $n, "Aktiv") . "</td>\n";
$Tshirt += mysql_result($Erg, $n, "Tshirt");
echo "\t<td>".mysql_result($Erg, $n, "Tshirt")."</td>\n";
echo "\t<td>". funktion_isLinkAllowed_addLink_OrEmpty(
"admin/userChangeNormal.php?enterUID=".
mysql_result($Erg, $n, "UID")."&Type=Normal",
"&Auml;nd.").
echo "\t<td>" . mysql_result($Erg, $n, "Tshirt") . "</td>\n";
echo "\t<td>" . funktion_isLinkAllowed_addLink_OrEmpty("admin/userChangeNormal.php?enterUID=" .
mysql_result($Erg, $n, "UID") . "&Type=Normal", "&Auml;nd.") .
"</td>\n";
echo "\t<td>". funktion_isLinkAllowed_addLink_OrEmpty(
"admin/userChangeSecure.php?enterUID=".
mysql_result($Erg, $n, "UID")."&Type=Secure",
"Secure").
echo "\t<td>" . funktion_isLinkAllowed_addLink_OrEmpty("admin/userChangeSecure.php?enterUID=" .
mysql_result($Erg, $n, "UID") . "&Type=Secure", "Secure") .
"</td>\n";
echo "</tr>\n";
}
echo "<tr>".
"<td></td><td></td><td></td><td></td><td></td><td></td>".
echo "<tr>" .
"<td></td><td></td><td></td><td></td><td></td><td></td>" .
"<td>$Gekommen</td><td>$Active</td><td>$Tshirt</td><td></td></tr>\n";
echo "\t</table>\n";
// Ende Userliste
echo "<h1>Statistics</h1>";
funktion_db_element_list_2row( "Hometown",
"SELECT COUNT(`Hometown`), `Hometown` FROM `User` GROUP BY `Hometown`");
funktion_db_element_list_2row("Hometown", "SELECT COUNT(`Hometown`), `Hometown` FROM `User` GROUP BY `Hometown`");
echo "<br />\n";
funktion_db_element_list_2row( "Engeltypen",
"SELECT COUNT(`Art`), `Art` FROM `User` GROUP BY `Art`");
funktion_db_element_list_2row("Engeltypen", "SELECT COUNT(`Art`), `Art` FROM `User` GROUP BY `Art`");
echo "<br />\n";
funktion_db_element_list_2row( "Used Groups",
"SELECT UserGroups.Name AS 'GroupName', COUNT(UserGroups.Name) AS Count FROM `UserCVS` ".
"LEFT JOIN `UserGroups` ON UserGroups.UID = UserCVS.GroupID ".
"WHERE (UserCVS.GroupID!='NULL') ".
"GROUP BY `GroupName` ".
funktion_db_element_list_2row("Used Groups", "SELECT UserGroups.Name AS 'GroupName', COUNT(UserGroups.Name) AS Count FROM `UserCVS` " .
"LEFT JOIN `UserGroups` ON UserGroups.UID = UserCVS.GroupID " .
"WHERE (UserCVS.GroupID!='NULL') " .
"GROUP BY `GroupName` " .
"");
}
else
{
} else {
echo "error";
}
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?>

41
www-ssl/admin/userArrived.php
Unescape Escape View File

@ -1,24 +1,24 @@
<?php
require_once ('../bootstrap.php');
$title = "Engel Arrived";
$header = "Engel was arrived";
include ("../../../camp2011/includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php");
include ("includes/header.php");
include ("includes/funktion_db_list.php");
If (IsSet ($_GET["arrived"])) {
If (IsSet($_GET["arrived"])) {
$SQL="UPDATE `User` SET `Gekommen`='1' WHERE `UID`='". $_GET["arrived"]. "' limit 1";
$SQL = "UPDATE `User` SET `Gekommen`='1' WHERE `UID`='" . $_GET["arrived"] . "' limit 1";
$Erg = db_query($SQL, "Set User as Gekommen");
if ($Erg == 1) {
echo "<h2>". Get_Text("pri_userArrived_WriteOK"). " \"". UID2Nick($_GET["arrived"]). "\"</h2>";
echo "<h2>" . Get_Text("pri_userArrived_WriteOK") . " \"" . UID2Nick($_GET["arrived"]) . "\"</h2>";
} else {
echo "<h1>". Get_Text("pri_userArrived_WriteError"). " \"". UID2Nick($_GET["arrived"]). "\"</h1>";
echo "<h1>" . Get_Text("pri_userArrived_WriteError") . " \"" . UID2Nick($_GET["arrived"]) . "\"</h1>";
}
}
echo Get_Text("pri_userArrived_Text1"). "<br />";
echo Get_Text("pri_userArrived_Text2"). "<br /><br />";
echo Get_Text("pri_userArrived_Text1") . "<br />";
echo Get_Text("pri_userArrived_Text2") . "<br /><br />";
echo Get_Text("pri_userArrived_TableToppic");
$SQL = "SELECT * FROM `User` ORDER BY `Nick` ASC";
@ -28,27 +28,26 @@ $rowcount = mysql_num_rows($Erg);
echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n";
echo "\t<tr class=\"contenttopic\">\n";
echo "\t\t<td>". Get_Text("pri_userArrived_TableTD_Nick"). "</td>\n";
echo "\t\t<td>". Get_Text("pri_userArrived_TableTD_ArrivedShow"). "</td>\n";
echo "\t\t<td>". Get_Text("pri_userArrived_TableTD_ArrivedSet"). "</td>\n";
echo "\t\t<td>" . Get_Text("pri_userArrived_TableTD_Nick") . "</td>\n";
echo "\t\t<td>" . Get_Text("pri_userArrived_TableTD_ArrivedShow") . "</td>\n";
echo "\t\t<td>" . Get_Text("pri_userArrived_TableTD_ArrivedSet") . "</td>\n";
echo "\t</td>\n";
for ($i=0; $i<$rowcount; $i++){
for ($i = 0; $i < $rowcount; $i++) {
echo "\t<tr class=\"content\">\n";
$eUID=mysql_result($Erg, $i, "UID");
echo "\t\t<td>".UID2Nick($eUID)."</td>\n";
echo "\t\t<td>".mysql_result($Erg, $i, "Gekommen")."</td>\n";
$eUID = mysql_result($Erg, $i, "UID");
echo "\t\t<td>" . UID2Nick($eUID) . "</td>\n";
echo "\t\t<td>" . mysql_result($Erg, $i, "Gekommen") . "</td>\n";
if (mysql_result($Erg, $i, "Gekommen") =="1")
{
echo "\t\t<td>". Get_Text("pri_userArrived_TableEntry_Arrived"). "</td>";
if (mysql_result($Erg, $i, "Gekommen") == "1") {
echo "\t\t<td>" . Get_Text("pri_userArrived_TableEntry_Arrived") . "</td>";
} else {
echo "\t\t<td><a href=\"./userArrived.php?arrived=$eUID\">". Get_Text("pri_userArrived_TableEntry_Set"). "</a></td>";
echo "\t\t<td><a href=\"./userArrived.php?arrived=$eUID\">" . Get_Text("pri_userArrived_TableEntry_Set") . "</a></td>";
}
echo "\t</tr>\n";
}
echo "</table>";
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?>

134
www-ssl/admin/userChangeNormal.php
Unescape Escape View File

@ -1,83 +1,82 @@
<?php
require_once ('../bootstrap.php');
$title = "User-Liste";
$header = "Editieren der Engelliste";
include ("../../../camp2011/includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php");
include ("includes/header.php");
include ("includes/funktion_db_list.php");
if (IsSet($_GET["enterUID"]))
{
if (IsSet ($_GET["enterUID"])) {
// UserID wurde mit uebergeben --> Aendern...
echo "Hallo,<br />".
"hier kannst du den Eintrag &auml;ndern. Unter dem Punkt 'Gekommen' ".
"wird der Engel als anwesend markiert, ein Ja bei Aktiv bedeutet, ".
"dass der Engel aktiv war und damit ein Anspruch auf ein T-Shirt hat. ".
"Wenn T-Shirt ein 'Ja' enth&auml;lt, bedeutet dies, dass der Engel ".
echo "Hallo,<br />" .
"hier kannst du den Eintrag &auml;ndern. Unter dem Punkt 'Gekommen' " .
"wird der Engel als anwesend markiert, ein Ja bei Aktiv bedeutet, " .
"dass der Engel aktiv war und damit ein Anspruch auf ein T-Shirt hat. " .
"Wenn T-Shirt ein 'Ja' enth&auml;lt, bedeutet dies, dass der Engel " .
"bereits sein T-Shirt erhalten hat.<br /><br />\n";
echo "<form action=\"./userSaveNormal.php?action=change\" method=\"POST\">\n";
echo "<table border=\"0\">\n";
echo "<input type=\"hidden\" name=\"Type\" value=\"Normal\">\n";
$SQL = "SELECT * FROM `User` WHERE `UID`='". $_GET["enterUID"]. "'";
$SQL = "SELECT * FROM `User` WHERE `UID`='" . $_GET["enterUID"] . "'";
$Erg = mysql_query($SQL, $con);
if (mysql_num_rows($Erg) != 1)
echo "<tr><td>Sorry, der Engel (UID=". $_GET["enterUID"].
echo "<tr><td>Sorry, der Engel (UID=" . $_GET["enterUID"] .
") wurde in der Liste nicht gefunden.</td></tr>";
else
{
else {
echo "<tr><td>\n";
echo "<table>\n";
echo " <tr><td>Nick</td><td>".
"<input type=\"text\" size=\"40\" name=\"eNick\" value=\"".
mysql_result($Erg, 0, "Nick")."\"></td></tr>\n";
echo " <tr><td>lastLogIn</td><td>".
"<input type=\"text\" size=\"20\" name=\"elastLogIn\" value=\"".
mysql_result($Erg, 0, "lastLogIn"). "\" disabled></td></tr>\n";
echo " <tr><td>Name</td><td>".
"<input type=\"text\" size=\"40\" name=\"eName\" value=\"".
mysql_result($Erg, 0, "Name")."\"></td></tr>\n";
echo " <tr><td>Vorname</td><td>".
"<input type=\"text\" size=\"40\" name=\"eVorname\" value=\"".
mysql_result($Erg, 0, "Vorname")."\"></td></tr>\n";
echo " <tr><td>Alter</td><td>".
"<input type=\"text\" size=\"5\" name=\"eAlter\" value=\"".
mysql_result($Erg, 0, "Alter")."\"></td></tr>\n";
echo " <tr><td>Telefon</td><td>".
"<input type=\"text\" size=\"40\" name=\"eTelefon\" value=\"".
mysql_result($Erg, 0, "Telefon")."\"></td></tr>\n";
echo " <tr><td>Handy</td><td>".
"<input type=\"text\" size=\"40\" name=\"eHandy\" value=\"".
mysql_result($Erg, 0, "Handy")."\"></td></tr>\n";
echo " <tr><td>DECT</td><td>".
"<input type=\"text\" size=\"4\" name=\"eDECT\" value=\"".
mysql_result($Erg, 0, "DECT")."\"></td></tr>\n";
echo " <tr><td>email</td><td>".
"<input type=\"text\" size=\"40\" name=\"eemail\" value=\"".
mysql_result($Erg, 0, "email")."\"></td></tr>\n";
echo " <tr><td>ICQ</td><td>".
"<input type=\"text\" size=\"40\" name=\"eICQ\" value=\"".
mysql_result($Erg, 0, "ICQ")."\"></td></tr>\n";
echo " <tr><td>jabber</td><td>".
"<input type=\"text\" size=\"40\" name=\"ejabber\" value=\"".
mysql_result($Erg, 0, "jabber")."\"></td></tr>\n";
echo " <tr><td>Size</td><td>".
"<input type=\"text\" size=\"5\" name=\"eSize\" value=\"".
mysql_result($Erg, 0, "Size")."\"></td></tr>\n";
echo " <tr><td>Passwort</td><td>".
"<a href=\"./userSaveNormal.php?action=newpw&eUID="
.mysql_result($Erg, 0, "UID")."\">neues Kennwort setzen</a></td></tr>\n";
echo " <tr><td>Nick</td><td>" .
"<input type=\"text\" size=\"40\" name=\"eNick\" value=\"" .
mysql_result($Erg, 0, "Nick") . "\"></td></tr>\n";
echo " <tr><td>lastLogIn</td><td>" .
"<input type=\"text\" size=\"20\" name=\"elastLogIn\" value=\"" .
mysql_result($Erg, 0, "lastLogIn") . "\" disabled></td></tr>\n";
echo " <tr><td>Name</td><td>" .
"<input type=\"text\" size=\"40\" name=\"eName\" value=\"" .
mysql_result($Erg, 0, "Name") . "\"></td></tr>\n";
echo " <tr><td>Vorname</td><td>" .
"<input type=\"text\" size=\"40\" name=\"eVorname\" value=\"" .
mysql_result($Erg, 0, "Vorname") . "\"></td></tr>\n";
echo " <tr><td>Alter</td><td>" .
"<input type=\"text\" size=\"5\" name=\"eAlter\" value=\"" .
mysql_result($Erg, 0, "Alter") . "\"></td></tr>\n";
echo " <tr><td>Telefon</td><td>" .
"<input type=\"text\" size=\"40\" name=\"eTelefon\" value=\"" .
mysql_result($Erg, 0, "Telefon") . "\"></td></tr>\n";
echo " <tr><td>Handy</td><td>" .
"<input type=\"text\" size=\"40\" name=\"eHandy\" value=\"" .
mysql_result($Erg, 0, "Handy") . "\"></td></tr>\n";
echo " <tr><td>DECT</td><td>" .
"<input type=\"text\" size=\"4\" name=\"eDECT\" value=\"" .
mysql_result($Erg, 0, "DECT") . "\"></td></tr>\n";
echo " <tr><td>email</td><td>" .
"<input type=\"text\" size=\"40\" name=\"eemail\" value=\"" .
mysql_result($Erg, 0, "email") . "\"></td></tr>\n";
echo " <tr><td>ICQ</td><td>" .
"<input type=\"text\" size=\"40\" name=\"eICQ\" value=\"" .
mysql_result($Erg, 0, "ICQ") . "\"></td></tr>\n";
echo " <tr><td>jabber</td><td>" .
"<input type=\"text\" size=\"40\" name=\"ejabber\" value=\"" .
mysql_result($Erg, 0, "jabber") . "\"></td></tr>\n";
echo " <tr><td>Size</td><td>" .
"<input type=\"text\" size=\"5\" name=\"eSize\" value=\"" .
mysql_result($Erg, 0, "Size") . "\"></td></tr>\n";
echo " <tr><td>Passwort</td><td>" .
"<a href=\"./userSaveNormal.php?action=newpw&eUID=" .
mysql_result($Erg, 0, "UID") . "\">neues Kennwort setzen</a></td></tr>\n";
// Gekommen?
echo " <tr><td>Gekommen</td><td>\n";
echo " <input type=\"radio\" name=\"eGekommen\" value=\"0\"";
if (mysql_result($Erg, 0, "Gekommen")=='0')
if (mysql_result($Erg, 0, "Gekommen") == '0')
echo " checked";
echo ">No \n";
echo " <input type=\"radio\" name=\"eGekommen\" value=\"1\"";
if (mysql_result($Erg, 0, "Gekommen")=='1')
if (mysql_result($Erg, 0, "Gekommen") == '1')
echo " checked";
echo ">Yes \n";
echo "</td></tr>\n";
@ -85,11 +84,11 @@ if (IsSet($_GET["enterUID"]))
// Aktiv?
echo " <tr><td>Aktiv</td><td>\n";
echo " <input type=\"radio\" name=\"eAktiv\" value=\"0\"";
if (mysql_result($Erg, 0, "Aktiv")=='0')
if (mysql_result($Erg, 0, "Aktiv") == '0')
echo " checked";
echo ">No \n";
echo " <input type=\"radio\" name=\"eAktiv\" value=\"1\"";
if (mysql_result($Erg, 0, "Aktiv")=='1')
if (mysql_result($Erg, 0, "Aktiv") == '1')
echo " checked";
echo ">Yes \n";
echo "</td></tr>\n";
@ -97,41 +96,38 @@ if (IsSet($_GET["enterUID"]))
// T-Shirt bekommen?
echo " <tr><td>T-Shirt</td><td>\n";
echo " <input type=\"radio\" name=\"eTshirt\" value=\"0\"";
if (mysql_result($Erg, 0, "Tshirt")=='0')
if (mysql_result($Erg, 0, "Tshirt") == '0')
echo " checked";
echo ">No \n";
echo " <input type=\"radio\" name=\"eTshirt\" value=\"1\"";
if (mysql_result($Erg, 0, "Tshirt")=='1')
if (mysql_result($Erg, 0, "Tshirt") == '1')
echo " checked";
echo ">Yes \n";
echo "</td></tr>\n";
echo " <tr><td>Hometown</td><td>".
"<input type=\"text\" size=\"40\" name=\"Hometown\" value=\"".
mysql_result($Erg, 0, "Hometown")."\"></td></tr>\n";
echo " <tr><td>Hometown</td><td>" .
"<input type=\"text\" size=\"40\" name=\"Hometown\" value=\"" .
mysql_result($Erg, 0, "Hometown") . "\"></td></tr>\n";
echo "</table>\n</td><td valign=\"top\">". displayavatar($_GET["enterUID"], FALSE). "</td></tr>";
echo "</table>\n</td><td valign=\"top\">" . displayavatar($_GET["enterUID"], FALSE) . "</td></tr>";
}
echo "</td></tr>\n";
echo "</table>\n<br />\n";
echo "<input type=\"hidden\" name=\"enterUID\" value=\"". $_GET["enterUID"]. "\">\n";
echo "<input type=\"hidden\" name=\"enterUID\" value=\"" . $_GET["enterUID"] . "\">\n";
echo "<input type=\"submit\" value=\"sichern...\">\n";
echo "</form>";
echo "<form action=\"./userSaveNormal.php?action=delete\" method=\"POST\">\n";
echo "<input type=\"hidden\" name=\"enterUID\" value=\"". $_GET["enterUID"]. "\">\n";
echo "<input type=\"hidden\" name=\"enterUID\" value=\"" . $_GET["enterUID"] . "\">\n";
echo "<input type=\"submit\" value=\"l&ouml;schen...\">\n";
echo "</form>";
echo "<hr>";
funktion_db_element_list_2row(
"Freeloader Shifts",
"SELECT `Remove_Time`, `Length`, `Comment` FROM `ShiftFreeloader` WHERE UID=". $_GET["enterUID"]);
funktion_db_element_list_2row("Freeloader Shifts", "SELECT `Remove_Time`, `Length`, `Comment` FROM `ShiftFreeloader` WHERE UID=" . $_GET["enterUID"]);
}
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?>

82
www-ssl/admin/userChangeSecure.php
Unescape Escape View File

@ -1,38 +1,36 @@
<?php
require_once ('../bootstrap.php');
$title = "User-Liste";
$header = "Editieren der Engelliste";
include ("../../../camp2011/includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php");
include ("includes/header.php");
include ("includes/funktion_db_list.php");
if (IsSet($_GET["enterUID"]))
{
if (IsSet ($_GET["enterUID"])) {
// UserID wurde mit uebergeben --> Aendern...
echo "Hallo,<br />".
"hier kannst du den Eintrag &auml;ndern. Unter dem Punkt 'Gekommen' ".
"wird der Engel als anwesend markiert, ein Ja bei Aktiv bedeutet, ".
"dass der Engel aktiv war und damit ein Anspruch auf ein T-Shirt hat. ".
"Wenn T-Shirt ein 'Ja' enth&auml;lt, bedeutet dies, dass der Engel ".
echo "Hallo,<br />" .
"hier kannst du den Eintrag &auml;ndern. Unter dem Punkt 'Gekommen' " .
"wird der Engel als anwesend markiert, ein Ja bei Aktiv bedeutet, " .
"dass der Engel aktiv war und damit ein Anspruch auf ein T-Shirt hat. " .
"Wenn T-Shirt ein 'Ja' enth&auml;lt, bedeutet dies, dass der Engel " .
"bereits sein T-Shirt erhalten hat.<br /><br />\n";
$SQL_CVS = "SELECT * FROM `UserCVS` WHERE `UID`='". $_GET["enterUID"]. "'";
$SQL_CVS = "SELECT * FROM `UserCVS` WHERE `UID`='" . $_GET["enterUID"] . "'";
$Erg_CVS = mysql_query($SQL_CVS, $con);
if( mysql_num_rows($Erg_CVS) != 1)
echo "Sorry, der Engel (UID=". $_GET["enterUID"]. ") wurde in der Liste nicht gefunden.";
else
{
if (mysql_num_rows($Erg_CVS) != 1)
echo "Sorry, der Engel (UID=" . $_GET["enterUID"] . ") wurde in der Liste nicht gefunden.";
else {
// Rename if is an group
if( $_GET["enterUID"] < 0 ) {
$SQLname = "SELECT `Name` FROM `UserGroups` WHERE `UID`='". $_GET["enterUID"]. "'";
if ($_GET["enterUID"] < 0) {
$SQLname = "SELECT `Name` FROM `UserGroups` WHERE `UID`='" . $_GET["enterUID"] . "'";
$ErgName = mysql_query($SQLname, $con);
echo mysql_error($con);
echo "<form action=\"./userSaveSecure.php?action=changeGroupName\" method=\"POST\">\n";
echo "<input type=\"hidden\" name=\"enterUID\" value=\"". $_GET["enterUID"]. "\">\n";
echo "<input type=\"text\" name=\"GroupName\" value=\"". mysql_result($ErgName, 0, "Name"). "\">\n";
echo "<input type=\"hidden\" name=\"enterUID\" value=\"" . $_GET["enterUID"] . "\">\n";
echo "<input type=\"text\" name=\"GroupName\" value=\"" . mysql_result($ErgName, 0, "Name") . "\">\n";
echo "<input type=\"submit\" value=\"rename\">\n";
echo "</form>";
}
@ -40,49 +38,43 @@ if (IsSet($_GET["enterUID"]))
echo "<form action=\"./userSaveSecure.php?action=change\" method=\"POST\">\n";
echo "<table border=\"0\">\n";
echo "<input type=\"hidden\" name=\"Type\" value=\"Secure\">\n";
echo " <tr><td><br /><u>Rights of \"". UID2Nick($_GET["enterUID"]). "\":</u></td></tr>\n";
echo " <tr><td><br /><u>Rights of \"" . UID2Nick($_GET["enterUID"]) . "\":</u></td></tr>\n";
$CVS_Data = mysql_fetch_array($Erg_CVS);
$CVS_Data_i = 1;
foreach ($CVS_Data as $CVS_Data_Name => $CVS_Data_Value)
{
foreach ($CVS_Data as $CVS_Data_Name => $CVS_Data_Value) {
$CVS_Data_i++;
//nur jeder zweiter sonst wird für jeden text noch die position (Zahl) ausgegeben
if( $CVS_Data_i%2 && $CVS_Data_Name!="UID")
{
if($CVS_Data_Name=="GroupID") {
if( $_GET["enterUID"] > 0 )
{
echo "<tr><td><b>Group</b></td>\n".
//nur jeder zweiter sonst wird f<>r jeden text noch die position (Zahl) ausgegeben
if ($CVS_Data_i % 2 && $CVS_Data_Name != "UID") {
if ($CVS_Data_Name == "GroupID") {
if ($_GET["enterUID"] > 0) {
echo "<tr><td><b>Group</b></td>\n" .
"<td><select name=\"GroupID\">";
$SQL_Group = "SELECT * FROM `UserGroups`";
$Erg_Group = mysql_query($SQL_Group, $con);
for ($n = 0 ; $n < mysql_num_rows($Erg_Group) ; $n++)
{
for ($n = 0; $n < mysql_num_rows($Erg_Group); $n++) {
$UID = mysql_result($Erg_Group, $n, "UID");
echo "\t<option value=\"$UID\"";
if( $CVS_Data_Value == $UID)
if ($CVS_Data_Value == $UID)
echo " selected";
echo ">". mysql_result($Erg_Group, $n, "Name"). "</option>\n";
echo ">" . mysql_result($Erg_Group, $n, "Name") . "</option>\n";
}
echo "</select></td></tr>";
}
} else {
echo "<tr><td>$CVS_Data_Name</td>\n<td>";
echo "<input type=\"radio\" name=\"".($CVS_Data_i-1)."\" value=\"Y\" ";
if( $CVS_Data_Value == "Y" )
echo "<input type=\"radio\" name=\"" . ($CVS_Data_i -1) . "\" value=\"Y\" ";
if ($CVS_Data_Value == "Y")
echo " checked";
echo ">allow \n";
echo "<input type=\"radio\" name=\"".($CVS_Data_i-1)."\" value=\"N\" ";
if( $CVS_Data_Value == "N" )
echo "<input type=\"radio\" name=\"" . ($CVS_Data_i -1) . "\" value=\"N\" ";
if ($CVS_Data_Value == "N")
echo " checked";
echo ">denied \n";
if( $_GET["enterUID"] > 0 )
{
echo "<input type=\"radio\" name=\"".($CVS_Data_i-1)."\" value=\"G\" ";
if( $CVS_Data_Value == "G" )
if ($_GET["enterUID"] > 0) {
echo "<input type=\"radio\" name=\"" . ($CVS_Data_i -1) . "\" value=\"G\" ";
if ($CVS_Data_Value == "G")
echo " checked";
echo ">group-setting \n";
echo "</td></tr>";
@ -95,18 +87,18 @@ if (IsSet($_GET["enterUID"]))
// Ende Formular
echo "</td></tr>\n";
echo "</table>\n<br />\n";
echo "<input type=\"hidden\" name=\"enterUID\" value=\"". $_GET["enterUID"]. "\">\n";
echo "<input type=\"hidden\" name=\"enterUID\" value=\"" . $_GET["enterUID"] . "\">\n";
echo "<input type=\"submit\" value=\"sichern...\">\n";
echo "</form>";
echo "<br /><form action=\"./userSaveSecure.php?action=delete\" method=\"POST\">\n";
echo "<input type=\"hidden\" name=\"enterUID\" value=\"". $_GET["enterUID"]. "\">\n";
echo "<input type=\"hidden\" name=\"enterUID\" value=\"" . $_GET["enterUID"] . "\">\n";
echo "<input type=\"submit\" value=\"l&ouml;schen...\">\n";
echo "</form>";
}
}
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?>

106
www-ssl/admin/userDefaultSetting.php
Unescape Escape View File

@ -1,72 +1,70 @@
<?php
require_once ('../bootstrap.php');
$title = "Defalut User Setting";
$header = "Defalut User Setting";
include ("../../../camp2011/includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php");
include ("includes/header.php");
include ("includes/funktion_db_list.php");
echo "Hallo ".$_SESSION['Nick'].
",<br />\nhier hast du die M&ouml;glichkeit, die Defaulteinstellungen f&uuml;r neue User einzustellen:<br /><br />\n";
echo "Hallo " . $_SESSION['Nick'] .
",<br />\nhier hast du die M&ouml;glichkeit, die Defaulteinstellungen f&uuml;r neue User einzustellen:<br /><br />\n";
echo "<table border=\"0\" class=\"border\">\n";
echo "\t<tr class=\"contenttopic\">\n";
echo "\t\t<th>Page</th>\n\t\t<th>Show</th>\n\t\t<th></th>\n";
echo "\t</tr>\n";
if( isset( $_GET["Field"]) && isset( $_GET["Default"]) && isset( $_GET["Send"]))
{
switch( $_GET["Send"])
{
case "New":
$SQL = "ALTER TABLE `UserCVS` ADD `". $_GET["Field"]. "` ".
"CHAR( 1 ) DEFAULT '". $_GET["Default"]. "' NOT NULL";
$Erg = db_query( $SQL, "New user default setting");
if( $Erg == 1)
echo "<H2>Create ".$_GET["Field"]. " = ". $_GET["Default"]. " succesfull</h2>\n";
if (isset ($_GET["Field"]) && isset ($_GET["Default"]) && isset ($_GET["Send"])) {
switch ($_GET["Send"]) {
case "New" :
$SQL = "ALTER TABLE `UserCVS` ADD `" . $_GET["Field"] . "` " .
"CHAR( 1 ) DEFAULT '" . $_GET["Default"] . "' NOT NULL";
$Erg = db_query($SQL, "New user default setting");
if ($Erg == 1)
echo "<H2>Create " . $_GET["Field"] . " = " . $_GET["Default"] . " succesfull</h2>\n";
else
echo "<H2>Create ".$_GET["Field"]. " = ". $_GET["Default"]. " error...</h2>\n".
"[". mysql_error(). "]<br /><br />";
echo "<H2>Create " . $_GET["Field"] . " = " . $_GET["Default"] . " error...</h2>\n" .
"[" . mysql_error() . "]<br /><br />";
break;
case "Del":
case "Del" :
echo "\t<tr class=\"content\">\n";
echo "\t\t<form action=\"userDefaultSetting.php\">\n";
echo "\t\t\t<td><input name=\"Field\" type=\"text\" value=\"". $_GET["Field"]. "\" readonly></td>\n";
echo "\t\t\t<td><input name=\"Default\" type=\"text\" value=\"". $_GET["Default"]. "\" readonly></td>\n";
echo "\t\t\t<td><input name=\"Field\" type=\"text\" value=\"" . $_GET["Field"] . "\" readonly></td>\n";
echo "\t\t\t<td><input name=\"Default\" type=\"text\" value=\"" . $_GET["Default"] . "\" readonly></td>\n";
echo "\t\t\t<td><input type=\"submit\" name=\"Send\" value=\"Del sure\"></td>\n";
echo "\t\t</form>\n";
echo "\t</tr>\n";
break;
case "Del sure":
$SQL = "ALTER TABLE `UserCVS` DROP `". $_GET["Field"]. "` ";
$Erg = db_query( $SQL, "del user default setting");
if( $Erg == 1)
echo "<H2>Delete ".$_GET["Field"]. " succesfull</h2>\n";
case "Del sure" :
$SQL = "ALTER TABLE `UserCVS` DROP `" . $_GET["Field"] . "` ";
$Erg = db_query($SQL, "del user default setting");
if ($Erg == 1)
echo "<H2>Delete " . $_GET["Field"] . " succesfull</h2>\n";
else
echo "<H2>Delete ".$_GET["Field"]. " error...</h2>\n".
"[". mysql_error(). "]<br /><br />";
echo "<H2>Delete " . $_GET["Field"] . " error...</h2>\n" .
"[" . mysql_error() . "]<br /><br />";
break;
case "SetForAllUser":
$SQL = "UPDATE `UserCVS` SET `". $_GET["Field"]. "`='". $_GET["Default"]. "' WHERE UID>0";
$Erg = db_query( $SQL, "Set new user default setting for all user");
if( $Erg == 1)
echo "<H2>UPDATE ".$_GET["Field"]. " = ". $_GET["Default"]. " for all Users succesfull</h2>\n";
case "SetForAllUser" :
$SQL = "UPDATE `UserCVS` SET `" . $_GET["Field"] . "`='" . $_GET["Default"] . "' WHERE UID>0";
$Erg = db_query($SQL, "Set new user default setting for all user");
if ($Erg == 1)
echo "<H2>UPDATE " . $_GET["Field"] . " = " . $_GET["Default"] . " for all Users succesfull</h2>\n";
else
echo "<H2>UPDATE ".$_GET["Field"]. " = ". $_GET["Default"]. " for all Users error...</h2>\n".
"[". mysql_error(). "]<br /><br />";
case "Save":
$SQL = "ALTER TABLE `UserCVS` CHANGE `". $_GET["Field"]. "` ".
"`". $_GET["Field"]. "` CHAR( 1 ) NOT NULL DEFAULT '". $_GET["Default"]. "'";
$Erg = db_query( $SQL, "Save user default setting");
if( $Erg == 1)
echo "<H2>Write ".$_GET["Field"]. " = ". $_GET["Default"]. " succesfull</h2>\n";
echo "<H2>UPDATE " . $_GET["Field"] . " = " . $_GET["Default"] . " for all Users error...</h2>\n" .
"[" . mysql_error() . "]<br /><br />";
case "Save" :
$SQL = "ALTER TABLE `UserCVS` CHANGE `" . $_GET["Field"] . "` " .
"`" . $_GET["Field"] . "` CHAR( 1 ) NOT NULL DEFAULT '" . $_GET["Default"] . "'";
$Erg = db_query($SQL, "Save user default setting");
if ($Erg == 1)
echo "<H2>Write " . $_GET["Field"] . " = " . $_GET["Default"] . " succesfull</h2>\n";
else
echo "<H2>Write ".$_GET["Field"]. " = ". $_GET["Default"]. " error...</h2>\n".
"[". mysql_error(). "]<br /><br />";
echo "<H2>Write " . $_GET["Field"] . " = " . $_GET["Default"] . " error...</h2>\n" .
"[" . mysql_error() . "]<br /><br />";
break;
} //SWITCH
} //IF(
$erg = mysql_query("SHOW COLUMNS FROM `UserCVS`");
echo mysql_error();
echo "\t<tr class=\"content\">\n";
@ -77,13 +75,12 @@ echo "\t\t\t<td><select name=\"GroupID\">";
$SQL_Group = "SELECT * FROM `UserGroups`";
$Erg_Group = mysql_query($SQL_Group, $con);
for ($n = 0 ; $n < mysql_num_rows($Erg_Group) ; $n++)
{
for ($n = 0; $n < mysql_num_rows($Erg_Group); $n++) {
$UID = mysql_result($Erg_Group, $n, "UID");
echo "\t<option value=\"$UID\"";
if( mysql_result( $erg, 1, "Default") == $UID)
if (mysql_result($erg, 1, "Default") == $UID)
echo " selected";
echo ">". mysql_result($Erg_Group, $n, "Name"). "</option>\n";
echo ">" . mysql_result($Erg_Group, $n, "Name") . "</option>\n";
}
echo "</select></td>\n";
echo "\t\t\t<td><input type=\"submit\" name=\"Send\" value=\"Save\">\n";
@ -91,26 +88,25 @@ echo "\t\t\t <input type=\"submit\" name=\"Send\" value=\"SetForAllUser\"></t
echo "\t\t</form>\n";
echo "\t</tr>\n";
for( $i=2; $i<mysql_num_rows($erg); $i++)
{
for ($i = 2; $i < mysql_num_rows($erg); $i++) {
echo "\t<tr class=\"content\">\n";
echo "\t\t<form action=\"userDefaultSetting.php\">\n";
echo "\t\t\t<input name=\"Field\" type=\"hidden\" value=\"". mysql_result( $erg, $i, "Field"). "\">\n";
echo "\t\t\t<td>". mysql_result( $erg, $i, "Field"). "</td>\n";
echo "\t\t\t<input name=\"Field\" type=\"hidden\" value=\"" . mysql_result($erg, $i, "Field") . "\">\n";
echo "\t\t\t<td>" . mysql_result($erg, $i, "Field") . "</td>\n";
echo "\t\t\t<td>\n";
echo "\t\t\t\t<input type=\"radio\" name=\"Default\" value=\"Y\"";
if( mysql_result( $erg, $i, "Default") == "Y")
if (mysql_result($erg, $i, "Default") == "Y")
echo " checked";
echo ">allow\n";
echo "\t\t\t\t<input type=\"radio\" name=\"Default\" value=\"N\"";
if( mysql_result( $erg, $i, "Default") == "N")
if (mysql_result($erg, $i, "Default") == "N")
echo " checked";
echo ">denied\n";
echo "\t\t\t\t<input type=\"radio\" name=\"Default\" value=\"G\"";
if( mysql_result( $erg, $i, "Default") == "G")
if (mysql_result($erg, $i, "Default") == "G")
echo " checked";
echo ">group-setting\n";
@ -135,10 +131,8 @@ echo "\t\t\t<td><input type=\"submit\" name=\"Send\" value=\"New\"></td>\n";
echo "\t\t</form>\n";
echo "\t</tr>\n";
echo "</table>\n";
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?>

113
www-ssl/admin/userSaveNormal.php
Unescape Escape View File

@ -1,130 +1,119 @@
<?php
require_once ('../bootstrap.php');
$title = "User-Liste";
$header = "Index";
include ("../../../camp2011/includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php");
include ("../../../camp2011/includes/crypt.php");
include ("../../../camp2011/includes/funktion_db.php");
include ("includes/header.php");
include ("includes/funktion_db_list.php");
include ("includes/crypt.php");
include ("includes/funktion_db.php");
if (IsSet($_GET["action"]))
{
if (IsSet ($_GET["action"])) {
SetHeaderGo2Back();
echo "Gesendeter Befehl: ". $_GET["action"]. "<br />";
echo "Gesendeter Befehl: " . $_GET["action"] . "<br />";
switch ($_GET["action"])
{
case "change":
if (IsSet($_POST["enterUID"]))
{
if ($_POST["Type"] == "Normal")
{
switch ($_GET["action"]) {
case "change" :
if (IsSet ($_POST["enterUID"])) {
if ($_POST["Type"] == "Normal") {
$SQL = "UPDATE `User` SET ";
$SQL.= " `Nick` = '". $_POST["eNick"]. "', `Name` = '". $_POST["eName"]. "', ".
"`Vorname` = '". $_POST["eVorname"]. "', ".
"`Telefon` = '". $_POST["eTelefon"]. "', ".
"`Handy` = '". $_POST["eHandy"]. "', ".
"`DECT` = '". $_POST["eDECT"]. "', ".
"`email` = '". $_POST["eemail"]. "', ".
"`ICQ` = '". $_POST["eICQ"]. "', ".
"`jabber` = '". $_POST["ejabber"]. "', ".
"`Size` = '". $_POST["eSize"]. "', ".
"`Gekommen`= '". $_POST["eGekommen"]. "', ".
"`Aktiv`= '". $_POST["eAktiv"]. "', ".
"`Tshirt` = '". $_POST["eTshirt"]. "', ".
"`Hometown` = '". $_POST["Hometown"]. "' ".
"WHERE `UID` = '". $_POST["enterUID"].
$SQL .= " `Nick` = '" . $_POST["eNick"] . "', `Name` = '" . $_POST["eName"] . "', " .
"`Vorname` = '" . $_POST["eVorname"] . "', " .
"`Telefon` = '" . $_POST["eTelefon"] . "', " .
"`Handy` = '" . $_POST["eHandy"] . "', " .
"`DECT` = '" . $_POST["eDECT"] . "', " .
"`email` = '" . $_POST["eemail"] . "', " .
"`ICQ` = '" . $_POST["eICQ"] . "', " .
"`jabber` = '" . $_POST["ejabber"] . "', " .
"`Size` = '" . $_POST["eSize"] . "', " .
"`Gekommen`= '" . $_POST["eGekommen"] . "', " .
"`Aktiv`= '" . $_POST["eAktiv"] . "', " .
"`Tshirt` = '" . $_POST["eTshirt"] . "', " .
"`Hometown` = '" . $_POST["Hometown"] . "' " .
"WHERE `UID` = '" . $_POST["enterUID"] .
"' LIMIT 1;";
echo "User-";
$Erg = db_query($SQL, "change user details");
if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n";
} else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")";
echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
}
}
else
echo "<h1>Fehler: Unbekanter Type (". $_POST["Type"]. ") übergeben\n</h1>\n";
}
else
echo "<h1>Fehler: UserID (enterUID) wurde nicht per POST übergeben</h1>\n";
} else
echo "<h1>Fehler: Unbekanter Type (" . $_POST["Type"] . ") <20>bergeben\n</h1>\n";
} else
echo "<h1>Fehler: UserID (enterUID) wurde nicht per POST <20>bergeben</h1>\n";
break;
case "delete":
if (IsSet($_POST["enterUID"]))
{
case "delete" :
if (IsSet ($_POST["enterUID"])) {
echo "delate User...";
$SQL="DELETE FROM `User` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;";
$SQL = "DELETE FROM `User` WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;";
$Erg = db_query($SQL, "User delete");
if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n";
} else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")";
echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
}
echo "<br />\ndelate UserCVS...";
$SQL2="DELETE FROM `UserCVS` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;";
$SQL2 = "DELETE FROM `UserCVS` WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;";
$Erg = db_query($SQL2, "User CVS delete");
if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n";
} else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")";
echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
}
echo "<br />\ndelate UserEntry...";
$SQL3="UPDATE `ShiftEntry` SET `UID`='0', `Comment`=NULL ".
"WHERE `UID`='". $_POST["enterUID"]. "';";
$SQL3 = "UPDATE `ShiftEntry` SET `UID`='0', `Comment`=NULL " .
"WHERE `UID`='" . $_POST["enterUID"] . "';";
$Erg = db_query($SQL3, "delate UserEntry");
if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n";
} else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")";
echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
}
}
break;
case "newpw":
case "newpw" :
echo "Bitte neues Kennwort f&uuml;r <b>";
// Get Nick
$USQL = "SELECT * FROM `User` WHERE `UID`='". $_GET["eUID"]. "'";
$USQL = "SELECT * FROM `User` WHERE `UID`='" . $_GET["eUID"] . "'";
$Erg = mysql_query($USQL, $con);
echo mysql_result($Erg, 0, "Nick");
echo "</b> eingeben:<br />";
echo "<form action=\"./userSaveNormal.php?action=newpwsave\" method=\"POST\">\n";
echo "<input type=\"Password\" name=\"ePasswort\">";
echo "<input type=\"Password\" name=\"ePasswort2\">";
echo "<input type=\"hidden\" name=\"eUID\" value=\"". $_GET["eUID"]. "\">";
echo "<input type=\"hidden\" name=\"eUID\" value=\"" . $_GET["eUID"] . "\">";
echo "<input type=\"submit\" value=\"sichern...\">\n";
echo "</form>";
break;
case "newpwsave":
if ($_POST["ePasswort"] == $_POST["ePasswort2"])
{ // beide Passwoerter passen...
case "newpwsave" :
if ($_POST["ePasswort"] == $_POST["ePasswort2"]) { // beide Passwoerter passen...
$_POST["ePasswort"] = PassCrypt($_POST["ePasswort"]);
$SQL = "UPDATE `User` SET `Passwort`='". $_POST["ePasswort"]. "' ".
"WHERE `UID`='". $_POST["eUID"]. "'";
$SQL = "UPDATE `User` SET `Passwort`='" . $_POST["ePasswort"] . "' " .
"WHERE `UID`='" . $_POST["eUID"] . "'";
$Erg = db_query($SQL, "User new passwort");
if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n";
} else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")";
echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
}
}
else
} else
echo "Das Passwort wurde nicht &uuml;bereinstimmend eingegeben!";
break;
} // end switch
// ende - Action ist gesetzt
}
else
{
// ende - Action ist gesetzt
} else {
// kein Action gesetzt -> abbruch
echo "Unzul&auml;ssiger Aufruf.<br />Bitte neu editieren...";
}
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?>

147
www-ssl/admin/userSaveSecure.php
Unescape Escape View File

@ -1,171 +1,160 @@
<?php
require_once ('../bootstrap.php');
$title = "User-Liste";
$header = "Index";
include ("../../../camp2011/includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php");
include ("../../../camp2011/includes/crypt.php");
include ("../../../camp2011/includes/funktion_db.php");
include ("includes/header.php");
include ("includes/funktion_db_list.php");
include ("includes/crypt.php");
include ("includes/funktion_db.php");
if( !IsSet($_POST["enterUID"]) )
{
if (!IsSet ($_POST["enterUID"])) {
$Right = "N";
} elseif( $_POST["enterUID"] > 0 ) {
$Right = $_SESSION['CVS'][ "admin/user.php"];
}
elseif ($_POST["enterUID"] > 0) {
$Right = $_SESSION['CVS']["admin/user.php"];
} else {
$Right = $_SESSION['CVS'][ "admin/group.php"];
$Right = $_SESSION['CVS']["admin/group.php"];
}
if ( ($Right=="Y") && IsSet($_GET["action"]))
{
if (($Right == "Y") && IsSet ($_GET["action"])) {
SetHeaderGo2Back();
echo "Gesendeter Befehl: ". $_GET["action"]. "<br />";
switch ($_GET["action"])
{
case "change":
if (IsSet($_POST["enterUID"]))
{
if ($_POST["Type"] == "Secure")
{
echo "Gesendeter Befehl: " . $_GET["action"] . "<br />";
switch ($_GET["action"]) {
case "change" :
if (IsSet ($_POST["enterUID"])) {
if ($_POST["Type"] == "Secure") {
$SQL2 = "UPDATE `UserCVS` SET ";
$SQL_CVS = "SELECT * FROM `UserCVS` WHERE `UID`='". $_POST["enterUID"]. "'";
$SQL_CVS = "SELECT * FROM `UserCVS` WHERE `UID`='" . $_POST["enterUID"] . "'";
$Erg_CVS = mysql_query($SQL_CVS, $con);
$CVS_Data = mysql_fetch_array($Erg_CVS);
$CVS_Data_i = 1;
foreach ($CVS_Data as $CVS_Data_Name => $CVS_Data_Value)
{
if( ($CVS_Data_i+1)%2 && $CVS_Data_Name!="UID") {
if( $CVS_Data_Name == "GroupID")
{
if( $_POST["enterUID"] > 0 )
$SQL2.= "`$CVS_Data_Name` = '". $_POST["GroupID"]."', ";
foreach ($CVS_Data as $CVS_Data_Name => $CVS_Data_Value) {
if (($CVS_Data_i +1) % 2 && $CVS_Data_Name != "UID") {
if ($CVS_Data_Name == "GroupID") {
if ($_POST["enterUID"] > 0)
$SQL2 .= "`$CVS_Data_Name` = '" . $_POST["GroupID"] . "', ";
else
$SQL2.= "`$CVS_Data_Name` = NULL, ";
$SQL2 .= "`$CVS_Data_Name` = NULL, ";
} else {
$SQL2.= "`$CVS_Data_Name` = '". $_POST[$CVS_Data_i]."', ";
$SQL2 .= "`$CVS_Data_Name` = '" . $_POST[$CVS_Data_i] . "', ";
}
}
$CVS_Data_i++;
}
$SQL2 = substr( $SQL2, 0, strlen($SQL2)-2 );
$SQL2.= " WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;";
$SQL2 = substr($SQL2, 0, strlen($SQL2) - 2);
$SQL2 .= " WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;";
echo "<br />Secure-";
$Erg = db_query($SQL2, "change user CVS");
if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n";
} else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")";
}
echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
}
else
echo "<h1>Fehler: Unbekanter Type (". $_POST["Type"]. ") übergeben\n</h1>\n";
}
else
echo "<h1>Fehler: UserID (enterUID) wurde nicht per POST übergeben</h1>\n";
} else
echo "<h1>Fehler: Unbekanter Type (" . $_POST["Type"] . ") <20>bergeben\n</h1>\n";
} else
echo "<h1>Fehler: UserID (enterUID) wurde nicht per POST <20>bergeben</h1>\n";
break;
case "changeGroupName":
if (IsSet($_POST["enterUID"]) && ($_POST["enterUID"]<0) )
{
$SQL = "UPDATE `UserGroups` SET `Name`='". $_POST["GroupName"]. "' WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1 ;";
case "changeGroupName" :
if (IsSet ($_POST["enterUID"]) && ($_POST["enterUID"] < 0)) {
$SQL = "UPDATE `UserGroups` SET `Name`='" . $_POST["GroupName"] . "' WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1 ;";
$Erg = db_query($SQL, "Update Group Name");
if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n";
} else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")";
echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
}
}
else
echo "<h1>Fehler: UserID (enterUID) wurde nicht per POST übergeben</h1>\n";
} else
echo "<h1>Fehler: UserID (enterUID) wurde nicht per POST <20>bergeben</h1>\n";
break;
case "delete":
if (IsSet($_POST["enterUID"]) && ($_POST["enterUID"]>0) )
{
case "delete" :
if (IsSet ($_POST["enterUID"]) && ($_POST["enterUID"] > 0)) {
echo "delate User...";
$SQL="DELETE FROM `User` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;";
$SQL = "DELETE FROM `User` WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;";
$Erg = db_query($SQL, "User delete");
if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n";
} else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")";
echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
}
echo "<br />\ndelate UserCVS...";
$SQL2="DELETE FROM `UserCVS` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;";
$SQL2 = "DELETE FROM `UserCVS` WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;";
$Erg = db_query($SQL2, "User CVS delete");
if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n";
} else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")";
echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
}
echo "<br />\ndelate UserEntry...";
$SQL3="UPDATE `ShiftEntry` SET `UID`='0', `Comment`=NULL ".
"WHERE `UID`='". $_POST["enterUID"]. "';";
$SQL3 = "UPDATE `ShiftEntry` SET `UID`='0', `Comment`=NULL " .
"WHERE `UID`='" . $_POST["enterUID"] . "';";
$Erg = db_query($SQL3, "delate UserEntry");
if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n";
} else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")";
echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
}
}
} elseif (IsSet($_POST["enterUID"]) && ($_POST["enterUID"]<0) ) {
elseif (IsSet ($_POST["enterUID"]) && ($_POST["enterUID"] < 0)) {
echo "delate Group...";
$SQL="DELETE FROM `UserGroups` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;";
$SQL = "DELETE FROM `UserGroups` WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;";
$Erg = db_query($SQL, "Group delete");
if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n";
} else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")";
echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
}
echo "<br />\ndelate UserCVS...";
$SQL2="DELETE FROM `UserCVS` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;";
$SQL2 = "DELETE FROM `UserCVS` WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;";
$Erg = db_query($SQL2, "User CVS delete");
if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n";
} else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")";
echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
}
}
break;
} // end switch
// ende - Action ist gesetzt
} elseif ( IsSet($_GET["new"]) && ($_SESSION['CVS']["admin/group.php"]=="Y") ) {
echo "Gesendeter Befehl: ". $_GET["new"]. "<br />";
// ende - Action ist gesetzt
}
elseif (IsSet ($_GET["new"]) && ($_SESSION['CVS']["admin/group.php"] == "Y")) {
echo "Gesendeter Befehl: " . $_GET["new"] . "<br />";
switch ($_GET["new"])
{
case "newGroup":
switch ($_GET["new"]) {
case "newGroup" :
echo "\tGenerate new Group ID...\n";
$SQLid="SELECT MIN(`UID`) FROM `UserCVS`;";
$Erg = mysql_query( $SQLid);
$SQLid = "SELECT MIN(`UID`) FROM `UserCVS`;";
$Erg = mysql_query($SQLid);
if( mysql_num_rows($Erg) == 1) {
$NewId = mysql_result( $Erg, 0, 0)-1;
$SQLnew1 = "INSERT INTO `UserGroups` (`UID`, `Name`) VALUES ('$NewId', '". $_POST["GroupName"]. "' );";
if (mysql_num_rows($Erg) == 1) {
$NewId = mysql_result($Erg, 0, 0) - 1;
$SQLnew1 = "INSERT INTO `UserGroups` (`UID`, `Name`) VALUES ('$NewId', '" . $_POST["GroupName"] . "' );";
$SQLnew2 = "INSERT INTO `UserCVS` (`UID`, `GroupID`) VALUES ('$NewId', NULL );";
echo "\t<br />Generate new UserGroup ...\n";
$ErgNew1 = db_query($SQLnew1, "create UserGroups Entry");
if ($ErgNew1 == 1)
{
if ($ErgNew1 == 1) {
echo "\t<br />Generate new User rights...\n";
$ErgNew2 = db_query($SQLnew2, "UserCVS Entry");
if ($ErgNew1 == 1) {
echo "\t<br />New group was created.\n";
} else {
echo "Error on creation\n(". mysql_error($con). ")";
echo "Error on creation\n(" . mysql_error($con) . ")";
}
} else {
echo "Error on creation\n(". mysql_error($con). ")";
echo "Error on creation\n(" . mysql_error($con) . ")";
}
}
break;
}
} else {
@ -173,6 +162,6 @@ if ( ($Right=="Y") && IsSet($_GET["action"]))
echo "Unzul&auml;ssiger Aufruf.<br />Bitte neu editieren...";
}
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?>

Write Preview
Loading…
Cancel
Save