<?php // ** GET CONFIGURATION DATA ** require_once 'constants.inc'; require_once FILE_FUNCTIONS; require_once FILE_CLASS_OPTIONS; require_once FILE_CLASS_CONTACTLIST; require_once FILE_CLASSES; session_start(); // ** OPEN CONNECTION TO THE DATABASE ** $db_link = openDatabase($db_hostname, $db_username, $db_password, $db_name); // ** CHECK FOR LOGIN ** checkForLogin(); include_once $student_index;
* ************************************************************* * edit.php * Edit address book entries. * *************************************************************/ error_reporting(E_ALL); // ** GET CONFIGURATION DATA ** require_once 'constants.inc'; require_once FILE_FUNCTIONS; require_once FILE_CLASS_OPTIONS; session_start(); // ** OPEN CONNECTION TO THE DATABASE ** $db_link = openDatabase($db_hostname, $db_username, $db_password, $db_name); // ** CHECK FOR LOGIN ** checkForLogin("admin", "user"); // ** RETRIEVE OPTIONS THAT PERTAIN TO THIS PAGE ** $options = new Options(); // ** CHECK FOR ID ** $mode = $_GET['mode']; if ($mode == 'new') { $id = '0'; // this is to create empty variables from the database } else { $mode = 'edit'; $id = check_id(); } // ** END INITIALIZATION ******************************************************* // RETRIEVE ENTRY INFORMATION GIVEN AN ID if (isset($id)) { $r_contact = mysql_query("SELECT * FROM " . TABLE_CONTACT . " AS contact WHERE contact.id={$id}", $db_link) or die(reportSQLError());
$actionMsg = $lang['ERR_USERNAME_ILLEGAL_CHARS']; } if (isset($_POST['newuserNature'])) { if ($_POST['newuserNature'] == "teacher") { echo "<h1>Please Provide This Additional Info :-</h1>"; echo "<FORM ACTION = 'users.php?action=addinfo' METHOD = 'post'>\n\t\t\t\t<B>Department</B>\n\t \t\t\t<TD WIDTH=150 CLASS='data'>\n\t \t\t\t\n\t \t\t\t\t<SELECT NAME='newuserDepartment' CLASS='formSelect'>\n\t \t\t\t\t<OPTION VALUE='it' SELECTED>Information Technology</OPTION>\n\t \t\t\t\t<OPTION VALUE='cse'>Computer Science</OPTION>\n\t \t\t\t\t<OPTION VALUE='ece'>Electronics And Commumication</OPTION>\n\t \t\t\t\t<OPTION VALUE='ee'>Electrical</OPTION>\n\t \t\t\t\t<OPTION VALUE='pe'>Production</OPTION>\n\t \t\t\t\t<OPTION VALUE='me'>Mechanical</OPTION>\n\t \t\t\t\t<OPTION VALUE='ce'>Civil</OPTION>\n\t \t\t\t\t<OPTION VALUE='mca'>MCA</OPTION>\n\t \t\t\t\t<OPTION VALUE='mba'>MBA</OPTION>\n\t\t\t\t\t\t\t</SELECT></TD></TR>\n\t\t\t\t\t\t\n\t\t\t\t\t\t\t<INPUT TYPE='hidden' name ='nnnuser' value='{$nuser}' />\n\t\t\t\t\t\t\t<TR VALIGN='top' >\n\t\t\t\t\t\t<TD WIDTH=100 CLASS='data' STYLE='text-align:right'><B>Designation</B></TD>\n\t \t\t\t<TD WIDTH=150 CLASS='data'>\n\t \t\t\t\t<SELECT NAME='newuserDesignation' CLASS='formSelect'>\n\t \t\t\t\t<OPTION VALUE='hod' SELECTED>Head Of Department</OPTION>\n\t \t\t\t\t<OPTION VALUE='assistantprofessor'>Assistant Professor</OPTION>\n\t \t\t\t <OPTION VALUE='associateprofessor'>Associate Professor</OPTION>\n\t \t\t\t \t \t\t\t\t\n\t\t\t\t\t\t\t</SELECT></TD></TR>\t\n\t\t\t\t\t\t\t<INPUT TYPE='submit' CLASS='formButton' NAME='addUser' VALUE='add_new_teacher'/>\n\t\t\t\t\t\t\t</FORM>"; } elseif ($_POST['newuserNature'] == "student") { echo "<h1>Please Provide This Additional Info :-</h1>"; echo "<FORM ACTION = 'users.php?action=addinfo' METHOD = 'post'>\n\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t<TR VALIGN='top'>\n\t\t\t\t\t\t\t\n\t\t\t\t\t\t<B>Batch</B>\n\t \t\t\t<TD WIDTH=150 CLASS='data'>\n\t \t\t\t\t<SELECT NAME='newuserBatch' CLASS='formSelect'>\n\t \t\t\t\t<OPTION VALUE='2007-2011' SELECTED>2007-2011</OPTION>\n\t \t\t\t\t<OPTION VALUE='2008-2012'>2008-2012</OPTION>\n\t \t\t\t\t<OPTION VALUE='2009-2013'>2009-2013</OPTION>\n\t \t\t\t\t<OPTION VALUE='2010-2014'>2010-2014</OPTION>\n\t \t\t\t\t<OPTION VALUE='2011-2015'>2011-2015</OPTION>\n\t \t\t\t\t<OPTION VALUE='2012-2016'>2012-2016</OPTION>\n\t \t\t\t\t<OPTION VALUE='2013-2017'>2013-2017</OPTION>\n\t \t\t\t\t<OPTION VALUE='2014-2018'>2014-2018</OPTION>\n\t \t\t\t\t<OPTION VALUE='2015-2019'>2015-2019</OPTION>\n\t\t\t\t\t\t\t</SELECT></TD></TR>\n\t\t\t\t\t\t\t<B>Department</B>\n\t \t\t\t<TD WIDTH=150 CLASS='data'>\n\t \t\t\t\n\t \t\t\t\t<SELECT NAME='newuserDepartment' CLASS='formSelect'>\n\t \t\t\t\t<OPTION VALUE='it' SELECTED>Information Technology</OPTION>\n\t \t\t\t\t<OPTION VALUE='cse'>Computer Science</OPTION>\n\t \t\t\t\t<OPTION VALUE='ece'>Electronics And Commumication</OPTION>\n\t \t\t\t\t<OPTION VALUE='ee'>Electrical</OPTION>\n\t \t\t\t\t<OPTION VALUE='pe'>Production</OPTION>\n\t \t\t\t\t<OPTION VALUE='me'>Mechanical</OPTION>\n\t \t\t\t\t<OPTION VALUE='ce'>Civil</OPTION>\n\t \t\t\t\t<OPTION VALUE='mca'>MCA</OPTION>\n\t \t\t\t\t<OPTION VALUE='mba'>MBA</OPTION>\n\t\t\t\t\t\t\t</SELECT></TD></TR>\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t<INPUT TYPE='hidden' name ='nnnuser' value='{$nuser}' />\n\n\t\t\t\t\t\t\t<INPUT TYPE='submit' CLASS='formButton' NAME='addUser' VALUE='add_new_student'/>"; } } break; // DELETE A USER (admin only) // DELETE A USER (admin only) case "deleteuser": checkForLogin("admin"); // Check to see if a user was given if (empty($_GET['id'])) { ReportScriptError($lang['ERR_USERNAME_NONE']); break; } // Check to see if user exists in the database $sql = "SELECT username, usertype FROM " . TABLE_USERS . " WHERE id=" . $_GET['id'] . " LIMIT 1"; $deluser = mysql_query($sql, $db_link) or die(ReportSQLError($sql)); if (mysql_num_rows($deluser) < 1) { ReportScriptError($lang['ERR_USERNAME_NON_EXIST']); break; } // Get the username and type $deluser = mysql_fetch_array($deluser); $deluserType = $deluser['usertype'];
* mailto.php * Sends e-mail to one or more addresses * Originally written by Joe Chen * *************************************************************/ // BUG: Mailing List displays entries without email addresses. // ** GET CONFIGURATION DATA ** require_once 'constants.inc'; require_once FILE_FUNCTIONS; require_once FILE_CLASS_OPTIONS; require_once FILE_CLASS_CONTACTLIST; // ** OPEN CONNECTION TO THE DATABASE ** $db_link = openDatabase($db_hostname, $db_username, $db_password, $db_name); // ** CHECK FOR LOGIN ** // list($userGroup, $userHomeName, $userHomePage, $userCapabilities) = checkForLogin($address_session_name, CAP_MAIL); checkForLogin('admin', 'user'); // ** RETRIEVE OPTIONS THAT PERTAIN TO THIS PAGE ** $options = new Options($db_link); /* // JOE_DEBUG: check for viewing restrictions if ($userGroup) { if (($list->group_id <= 2) || (!$list->group_id)) { $r_check_GroupList = mysql_query("SELECT * FROM " . TABLE_GROUPLIST . " AS GroupList WHERE GroupName LIKE '%$userGroup%'", $db_link); $check_GroupList = mysql_fetch_array($r_check_GroupList); $list->group_id = $check_GroupList["GroupID"]; $list->group_name = $check_GroupList["GroupName"]; } else { $r_check_GroupList = mysql_query("SELECT * FROM " . TABLE_GROUPLIST . " AS GroupList WHERE GroupID=$list->group_id", $db_link); $check_GroupList = mysql_fetch_array($r_check_GroupList); $check_GroupName = $check_GroupList["GroupName"];