GetUIDFromAltUID($altuid); break; case 'getInstanceList': GetInstanceList($u); break; case 'getProjectList': GetProjectList($u, $instance); break; case 'getSiteList': GetSiteList($u, $instance); break; case 'getEquipmentList': GetEquipmentList(); break; case 'startTransaction': StartTransaction($u); break; case 'endTransaction': EndTransaction($transactionid); break; default: echo "Welcome to NiDB v" . $GLOBALS['cfg']['version']; } /* -------------------------------------------- */ /* ------- Authenticate ----------------------- */ /* -------------------------------------------- */ function Authenticate($username, $password) { $username = mysql_real_escape_string($username); $password = mysql_real_escape_string($password); if (AuthenticateUnixUser($username, $password) && !$GLOBALS['ispublic']) {
<?php //Functions include_once 'scripts/session_functions.php'; include_once 'scripts/transaction_functions.php'; //Startup include_once 'scripts/connect_to_mysql.php'; $requestID = $_POST['requestID']; $sessionID = $_POST['sessionID']; $action = $_POST['action']; //'getall', 'available', 'start', 'update', 'finish', 'reset' //Setup our transaction StartTransaction(); //Print some stuff that's going back no matter what Output("Action", $action); Output("RequestID", $requestID); //On to the meat of the matter~ if (!TouchValidSession($sessionID)) { CompleteTransaction("Session timed out."); return; } $userID = GetUserForSession($sessionID); if (!$userID) { CompleteTransaction("Unable to retrieve user for session."); return; } if ($action == 'getall') { //Retrieve a string that represents all info about all quests for the user $questsResults = mysql_query("\r\n\t\tSELECT\r\n\t\t\tp_ID,\r\n\t\t\tQuestIndex,\r\n\t\t\tRequestID,\r\n\t\t\tType,\r\n\t\t\tState\r\n\t\tFROM\r\n\t\t\ttblQuests\r\n\t\tWHERE\r\n\t\t\tUserID = {$userID}\r\n\t\t"); if (!$questsResults) { CompleteTransaction("Error in quest getall query");
$instanceid = GetVariable("instanceid"); $transactionid = GetVariable("transactionid"); $altuid = GetVariable("altuid"); $instance = GetVariable("instance"); $dataformat = GetVariable("dataformat"); $matchidonly = GetVariable("matchidonly"); switch($action) { case 'UploadNonDICOM': UploadDICOM($uuid, $anonymize, $dataformat, $equipmentid, $siteid, $projectid, $instanceid, $matchidonly,$transactionid); break; case 'UploadDICOM': UploadDICOM($uuid, $anonymize, $dataformat, $equipmentid, $siteid, $projectid, $instanceid, $matchidonly,$transactionid); break; case 'getUID': GetUIDFromAltUID($altuid); break; case 'getInstanceList': GetInstanceList($u); break; case 'getProjectList': GetProjectList($u, $instance); break; case 'getSiteList': GetSiteList($u, $instance); break; case 'getEquipmentList': GetEquipmentList(); break; case 'startTransaction': StartTransaction($u); break; case 'endTransaction': EndTransaction($transactionid); break; default: echo "Welcome to NiDB v" . $GLOBALS['cfg']['version']; } /* -------------------------------------------- */ /* ------- Authenticate ----------------------- */ /* -------------------------------------------- */ function Authenticate($username, $password) { $username = mysql_real_escape_string($username); $password = mysql_real_escape_string($password); if ((AuthenticateUnixUser($username, $password)) && (!$GLOBALS['ispublic'])) { $sqlstring = "insert into remote_logins (username, ip, login_date, login_result) values ('$username', '" . $_SERVER['REMOTE_ADDR'] . "', now(), 'success')"; $result = mysql_query($sqlstring) or die("Query failed: " . mysql_error() . "<br><i>$sqlstring</i><br>"); return true;