<?php
session_start();
include_once "basic.php";
if (checkClearanceLevel(ORGANIZER)) {
include_once "DBInterface.php";
$dbConn = new DBInterface();
$typeName = $dbConn->getTypeName($_POST['typeID']);
if ($typeName['name'] == "Semester") {
$data = array("id_person" => $_POST['personID'], "year" => $_POST['year'], "id_type_name" => $_POST['typeID'], "display_area" => "UpperField");
} else {
$data = array("id_person" => $_POST['personID'], "year" => $_POST['year'], "id_type_name" => $_POST['typeID'], "display_area" => $_POST['display']);
}
$dbConn->createHoursExtra($data);
echo $typeName['name'];
}
echo "<div id='bgDiv'><img id='background-img' class='bg' src='./images/Sven_Logo_192.png' alt=''></div>";
echo "<a href='index.php' title='Start' class='logoLink'></a>";
echo '<div id="username">Inloggad som <strong>' . $user_name . '</strong><br />';
echo '<a href="logoff.php">Logga ut</a></div>';
include "savelogin.php";
echo "<nav id='mainNav'><ul>";
//Different tabs depending of user type
if (checkClearanceLevel(CLIENT)) {
menuheading("Om Sven", "Main", $tabname);
menuheading("Kursbudgetvy", "ViewCoursebudgets", $tabname);
menuheading("Personlig vy", "personalView", $tabname);
}
if (checkClearanceLevel(ORGANIZER)) {
menuheading("Hantera användare", "ManageUsers", $tabname);
}
if (checkClearanceLevel(ADMIN)) {
menuheading("Hantera kurser", "ManageCourses", $tabname);
menuheading("Hantera kurstillfällen", "ManageCoursesPerPeriod", $tabname);
menuheading("Ladok", "ladokView", $tabname);
}
echo '<div class="clearfix"></div>';
echo "</ul></nav>";
echo "</header>";
echo "<div id='content'>";
echo "<div id='helpboxbutton'><a href=\"#\">Hjälp</a></div>";
include "tab_main.php";
include "tab_viewcoursebudgets.php";
include "tab_personalview.php";
include "tab_manageusers.php";
include "tab_managecourses.php";
include "tab_managecoursesperperiod.php";
public function getAvailableTypes($personId, $year)
{
if (!checkClearanceLevel(ORGANIZER)) {
return false;
}
// Sanitize input data
$personId = sanitizeInput($personId);
$year = sanitizeInput($year);
$query = "SELECT * FROM type AS t WHERE NOT EXISTS (SELECT * FROM hours_extra AS he WHERE he.id_type_name=t.id && he.year={$year} && he.id_person={$personId} && NOT (t.name='Projekt' || t.name='Övrigt'))";
$result = mysql_query($query, $this->dbConn);
if (!$result) {
ErrorLog(mysql_error($this->dbConn));
return false;
}
$availableTypes = array();
while ($row = mysql_fetch_assoc($result)) {
$availableTypes[$row['id']] = $row;
}
return $availableTypes;
}
echo "<legend>Efternamn</legend>";
echo "<input type='text' name='lastname' value='" . $userData['lastname'] . "' class='textfield' title='Skriv in användarens efternamn.' />";
echo "</fieldset>";
echo "<fieldset>";
echo "<legend>Signatur</legend>";
echo "<input type='text' id='sign' name='sign' value='" . $userData['sign'] . "' class='textfield' title='Skriv användarens signatur.' />";
echo "</fieldset>";
echo "<fieldset>";
echo "<legend>Lösenord</legend>";
echo "<input type='password' name='password' value='' class='textfield' title='Skriv in användarens lösenord.' />";
echo "</fieldset>";
echo "<fieldset>";
echo "<legend>Bekräfta lösenord</legend>";
echo "<input type='password' name='confirmPassword' value='' class='textfield' title='Upprepa användarens lösenord.' />";
echo "</fieldset>";
if (checkClearanceLevel(ADMIN) && $userData['sign'] != $_SESSION['user_name']) {
echo "<fieldset>";
echo "<legend>Användartyp</legend>";
echo "<select name='type' id='type'>";
echo "<option value='superadmin'";
if ($userData['type'] == ADMIN) {
echo " selected='selected'";
}
echo ">Administratör</option>";
echo "<option value='organizer'";
echo "<option value='organizer'";
if ($userData['type'] == ORGANIZER) {
echo " selected='selected'";
}
echo ">Organisatör</option>";
echo "<option value='user'";
