GetUIDFromAltUID($altuid);
break;
case 'getInstanceList':
GetInstanceList($u);
break;
case 'getProjectList':
GetProjectList($u, $instance);
break;
case 'getSiteList':
GetSiteList($u, $instance);
break;
case 'getEquipmentList':
GetEquipmentList();
break;
case 'startTransaction':
StartTransaction($u);
break;
case 'endTransaction':
EndTransaction($transactionid);
break;
default:
echo "Welcome to NiDB v" . $GLOBALS['cfg']['version'];
}
/* -------------------------------------------- */
/* ------- Authenticate ----------------------- */
/* -------------------------------------------- */
function Authenticate($username, $password)
{
$username = mysql_real_escape_string($username);
$password = mysql_real_escape_string($password);
if (AuthenticateUnixUser($username, $password) && !$GLOBALS['ispublic']) {
<?php
//Functions
include_once 'scripts/session_functions.php';
include_once 'scripts/transaction_functions.php';
//Startup
include_once 'scripts/connect_to_mysql.php';
$requestID = $_POST['requestID'];
$sessionID = $_POST['sessionID'];
$action = $_POST['action'];
//'getall', 'available', 'start', 'update', 'finish', 'reset'
//Setup our transaction
StartTransaction();
//Print some stuff that's going back no matter what
Output("Action", $action);
Output("RequestID", $requestID);
//On to the meat of the matter~
if (!TouchValidSession($sessionID)) {
CompleteTransaction("Session timed out.");
return;
}
$userID = GetUserForSession($sessionID);
if (!$userID) {
CompleteTransaction("Unable to retrieve user for session.");
return;
}
if ($action == 'getall') {
//Retrieve a string that represents all info about all quests for the user
$questsResults = mysql_query("\r\n\t\tSELECT\r\n\t\t\tp_ID,\r\n\t\t\tQuestIndex,\r\n\t\t\tRequestID,\r\n\t\t\tType,\r\n\t\t\tState\r\n\t\tFROM\r\n\t\t\ttblQuests\r\n\t\tWHERE\r\n\t\t\tUserID = {$userID}\r\n\t\t");
if (!$questsResults) {
CompleteTransaction("Error in quest getall query");
$instanceid = GetVariable("instanceid");
$transactionid = GetVariable("transactionid");
$altuid = GetVariable("altuid");
$instance = GetVariable("instance");
$dataformat = GetVariable("dataformat");
$matchidonly = GetVariable("matchidonly");
switch($action) {
case 'UploadNonDICOM': UploadDICOM($uuid, $anonymize, $dataformat, $equipmentid, $siteid, $projectid, $instanceid, $matchidonly,$transactionid); break;
case 'UploadDICOM': UploadDICOM($uuid, $anonymize, $dataformat, $equipmentid, $siteid, $projectid, $instanceid, $matchidonly,$transactionid); break;
case 'getUID': GetUIDFromAltUID($altuid); break;
case 'getInstanceList': GetInstanceList($u); break;
case 'getProjectList': GetProjectList($u, $instance); break;
case 'getSiteList': GetSiteList($u, $instance); break;
case 'getEquipmentList': GetEquipmentList(); break;
case 'startTransaction': StartTransaction($u); break;
case 'endTransaction': EndTransaction($transactionid); break;
default: echo "Welcome to NiDB v" . $GLOBALS['cfg']['version'];
}
/* -------------------------------------------- */
/* ------- Authenticate ----------------------- */
/* -------------------------------------------- */
function Authenticate($username, $password) {
$username = mysql_real_escape_string($username);
$password = mysql_real_escape_string($password);
if ((AuthenticateUnixUser($username, $password)) && (!$GLOBALS['ispublic'])) {
$sqlstring = "insert into remote_logins (username, ip, login_date, login_result) values ('$username', '" . $_SERVER['REMOTE_ADDR'] . "', now(), 'success')";
$result = mysql_query($sqlstring) or die("Query failed: " . mysql_error() . "<br><i>$sqlstring</i><br>");
return true;
