function add_contrat($nextid, $titre, $fournisseur, $date, $montant_global, $article, $paragraphe, $chapitre, $pj)
{
global $db;
$usrid = $_SESSION['userid'];
$date = date('Y-m-d-', strtotime($date));
$values["titre"] = MySQL::SQLValue($titre);
$values["date"] = MySQL::SQLValue($date);
$values["id_fournisseur"] = MySQL::SQLValue($fournisseur);
$values["id_chapitre"] = MySQL::SQLValue($chapitre);
$values["id_article"] = MySQL::SQLValue($article);
$values["id_paragraphe"] = MySQL::SQLValue($paragraphe);
$values["montant_global"] = MySQL::SQLValue($montant_global);
$values["montant_paye"] = MySQL::SQLValue(0);
$values["pourcentage"] = MySQL::SQLValue(0);
$values["montant_rest"] = MySQL::SQLValue($montant_global);
$values["addby"] = MySQL::SQLValue($usrid);
if (!$db->InsertRow("contrat", $values)) {
$db->Kill($db->Error());
return false;
} else {
logg('Enregistrement Contrat Fournisseur ', 254, $nextid, $_SESSION['userid']);
// Save PJ to archive
if ($pj != "") {
$basedir = "upload/contrat";
if (!file_exists($basedir)) {
mkdir($basedir, 0, true);
}
$newdir = $basedir . "/";
copyfile($pj, $nextid, $newdir, "Attachement_contrat_");
autoarchive($newdir . changnom($pj, $nextid, 'Attachement_contrat_'), "Fichier joint contrat fournisseur {$nextid}", 254, $nextid, "contrat", "pj", $_SESSION['userid'], cryptage(session::get('service'), 0));
}
}
return true;
}
function editreform($nextid, $titre, $desc, $montant, $pj, $date)
{
global $db;
$usrid = $_SESSION['userid'];
$date_operation = date('Y-m-d-', strtotime($date));
$values["titre"] = MySQL::SQLValue($titre);
$values["description"] = MySQL::SQLValue($desc);
$values["montant"] = MySQL::SQLValue($montant);
$values["date_operation"] = MySQL::SQLValue($date_operation);
$where["id"] = MySQL::SQLValue($nextid);
if (!$db->UpdateRows("produit_reform", $values, $where)) {
$db->Kill($db->Error());
return false;
} else {
$sql = $db->BuildSQLInsert("produit_reform", $values);
logg('Enregistrement Produit Reform ', 167, $nextid, $_SESSION['userid']);
if ($pj != "") {
$basedir = "upload/produit";
if (!file_exists($basedir)) {
mkdir($basedir, 0, true);
}
$newdir = $basedir . "/";
copyfile($pj, $nextid, $newdir, "Attachement_produit_reform");
autoarchive($newdir . changnom($pj, $nextid, 'Attachement_produit_reform'), "Fichier joint produit Reform {$nextid}", 100, $nextid, "produit_reform", "pj", $_SESSION['userid'], cryptage(session::get('service'), 0));
}
return true;
}
}
function addaemploi($id_aemploi, $montant, $date_paiement, $mode_paiement, $ref_pj, $pj)
{
global $db;
$nextid = getnextidtable('autorisation_emploi');
$usrid = $_SESSION['userid'];
$date = date('Y-m-d-', strtotime($date_paiement));
$values["pj"] = MySQL::SQLValue($pj);
$values["ref_pj"] = MySQL::SQLValue($ref_pj);
$values["id_aemploi"] = MySQL::SQLValue($id_aemploi);
$values["mode_paiement"] = MySQL::SQLValue($mode_paiement);
$values["date_paiement"] = MySQL::SQLValue($date);
$values["montant"] = MySQL::SQLValue($montant);
$values["addby"] = MySQL::SQLValue($usrid);
if (!$db->InsertRow("autorisation_emploi", $values)) {
$db->Kill($db->Error());
return false;
} else {
$sql = $db->BuildSQLInsert("autorisation_emploi", $values);
logg('Enregistrement Autorisation Emploi ', 246, $nextid, $_SESSION['userid']);
if ($pj != "") {
$basedir = "upload/Autorisation";
if (!file_exists($basedir)) {
mkdir($basedir, 0, true);
}
$newdir = $basedir . "/";
copyfile($pj, $nextid, $newdir, "Attachement_autorisation_");
autoarchive($newdir . changnom($pj, $nextid, 'Attachement_autorisation_'), "Fichier joint autorisation emploi {$nextid}", 246, $nextid, "autorisation_emploi", "pj", $_SESSION['userid'], cryptage(session::get('service'), 0));
}
}
return true;
}
function addnews($titrfr, $titren, $titrar, $img, $id, $art, $typ)
{
global $db;
$values["titrfr"] = MySQL::SQLValue($titrfr);
$values["titren"] = MySQL::SQLValue($titren);
$values["titrar"] = MySQL::SQLValue($titrar);
$values["article"] = MySQL::SQLValue($art);
$values["typ"] = MySQL::SQLValue($typ);
// Execute the insert
$result = $db->InsertRow("document", $values);
// If we have an error
if (!$result) {
// Show the error and kill the script
$db->Kill($result);
return false;
} else {
if ($img != "") {
$basedir = "upload/doc";
if (!file_exists($basedir)) {
mkdir($basedir, 0, true);
}
$newdir = "../upload/doc/";
if (!file_exists($newdir)) {
mkdir($newdir, 0, true);
}
$file = "./upload/doc/" . changnom($img, $id, 'doc_');
copyfile($img, $id, $newdir, "doc_");
autoarchive($file, "Document page {$id} ", 12, $id, "document", "img", $_SESSION['userid'], cryptage(session::get('service'), 0));
}
return true;
}
}
function editdoc($titrfr, $titren, $titrar, $img, $id, $art, $typ)
{
global $db;
$values["titrfr"] = MySQL::SQLValue($titrfr);
$values["titren"] = MySQL::SQLValue($titren);
$values["titrar"] = MySQL::SQLValue($titrar);
$values["article"] = MySQL::SQLValue($art);
$values["typ"] = MySQL::SQLValue($typ);
if ($img != "") {
$values["img"] = MySQL::SQLValue(changnom($img, $id, 'doc_'));
}
$where["id"] = MySQL::SQLValue($id);
// Execute the insert
$result = $db->UpdateRows("document", $values, $where);
// If we have an error
if (!$result) {
// Show the error and kill the script
$db->Kill('Error Update');
return false;
} else {
if ($img != "") {
$olddir = "upload/doc/";
$newdir = "../upload/doc/";
copyfile($img, $id, $newdir, "doc_");
autoarchive($newdir . changnom($img, $id, 'doc_'), "Document page {$id} ", 12, $id, "document", "img", $_SESSION['userid'], cryptage(session::get('service'), 0));
}
return true;
}
}
function editlocation($nextid, $nom, $adresse, $pj, $tel, $mail, $villa, $date_debut, $date_fin, $type_paiement, $montant_location, $agarantie_location)
{
global $db;
$usrid = $_SESSION['userid'];
$datedebut = date('Y-m-d-', strtotime($date_debut));
$datefin = date('Y-m-d-', strtotime($date_fin));
$values["nomlocataire"] = MySQL::SQLValue($nom);
$values["adresse"] = MySQL::SQLValue($adresse);
$values["tel"] = MySQL::SQLValue($tel);
$values["mail"] = MySQL::SQLValue($mail);
$values["idvilla"] = MySQL::SQLValue($villa);
$values["date_debut"] = MySQL::SQLValue($datedebut);
$values["date_fin"] = MySQL::SQLValue($datefin);
$values["montant"] = MySQL::SQLValue($montant_location);
$values["depot_garantie"] = MySQL::SQLValue($agarantie_location);
$values["type_paiement"] = MySQL::SQLValue($type_paiement);
$where["id"] = MySQL::SQLValue($nextid);
if (!$db->UpdateRows("contrat_location_villa", $values, $where)) {
$db->Kill($db->Error());
return false;
} else {
$sql = $db->BuildSQLInsert("contrat_location_villa", $values);
logg('Enregistrement Location Villa ', 100, $nextid, $_SESSION['userid']);
if ($pj != "") {
$basedir = "upload/location";
if (!file_exists($basedir)) {
mkdir($basedir, 0, true);
}
$newdir = $basedir . "/";
copyfile($pj, $nextid, $newdir, "Attachement_location_");
autoarchive($newdir . changnom($pj, $nextid, 'Attachement_location_'), "Fichier joint location ville {$nextid}", 100, $nextid, "location_villa", "pj", $_SESSION['userid'], cryptage(session::get('service'), 0));
}
return true;
}
}
function editcollecte($idcontrat, $paiement, $date, $pj)
{
global $db;
$usrid = $_SESSION['userid'];
$nextid = getnextidtable('collecte');
//$date1=date_create($date);
//$datep=date_format($date1,"Y-m-d");
$date_paiement = date('Y-m-d-', strtotime($date));
$values["mode_paiement"] = MySQL::SQLValue($paiement);
$values["date_paiement"] = MySQL::SQLValue($date_paiement);
$where["id"] = MySQL::SQLValue($idcontrat);
if (!$db->UpdateRows("collecte", $values, $where)) {
$db->Kill($db->Error());
return false;
} else {
$sql = $db->BuildSQLInsert("collecte", $values);
logg('Enregistrement collecte ', 201, $nextid, $_SESSION['userid']);
if ($pj != "") {
$basedir = "upload/collecte";
if (!file_exists($basedir)) {
mkdir($basedir, 0, true);
}
$newdir = $basedir . "/";
copyfile($pj, $nextid, $newdir, "collecte");
autoarchive($newdir . changnom($pj, $nextid, 'collecte'), "Fichier joint collecte {$nextid}", 201, $nextid, "collecte", "piece_jointe", $_SESSION['userid'], cryptage(session::get('service'), 0));
}
return true;
}
}
function setcollecte($id, $mode_paiement, $pj, $date_paiement)
{
global $db;
//$nextid=getnextidtable('collecte');
$date = date('Y-m-d-', strtotime($date_paiement));
$values["mode_paiement"] = MySQL::SQLValue($mode_paiement);
$values["date_paiement"] = MySQL::SQLValue($date);
$values["etat_paiement"] = MySQL::SQLValue("Payé");
$where["id"] = MySQL::SQLValue($id);
if (!$db->UpdateRows("collecte", $values, $where)) {
$db->Kill($db->Error());
return false;
} else {
$sql = $db->BuildSQLInsert("collecte", $values);
logg('Enregistrement collecte ', 195, $id, $_SESSION['userid']);
if ($pj != "") {
$basedir = "upload/collecte";
if (!file_exists($basedir)) {
mkdir($basedir, 0, true);
}
$newdir = $basedir . "/";
copyfile($pj, $id, $newdir, "Attachement_collecte_");
autoarchive($newdir . changnom($pj, $id, 'Attachement_collecte_'), "Fichier joint collecte {$id}", 195, $id, "collecte", "piece_jointe", $_SESSION['userid'], cryptage(session::get('service'), 0));
}
return true;
}
}
function setcontrat($id, $date, $pj)
{
global $db;
$etat = "Résilié";
$nextid = getnextidtable('contrat_location_villa');
$date = date('Y-m-d-', strtotime($date));
$values["date_resiliation"] = MySQL::SQLValue($date);
$values["etat"] = MySQL::SQLValue($etat);
$where["id"] = MySQL::SQLValue($id);
if (!$db->UpdateRows("contrat_location_villa", $values, $where)) {
$db->Kill($db->Error());
return false;
} else {
$sql = $db->BuildSQLInsert("contrat_location_villa", $values);
logg('Enregistrement Location Villa ', 233, $id, $_SESSION['userid']);
if ($pj != "") {
$basedir = "upload/location";
if (!file_exists($basedir)) {
mkdir($basedir, 0, true);
}
$newdir = $basedir . "/";
copyfile($pj, $id, $newdir, "Attachement_location_");
autoarchive($newdir . changnom($pj, $id, 'Attachement_location_'), "Fichier joint location ville {$id}", 233, $id, "contrat_location_villa", "pj_resiliation", $_SESSION['userid'], cryptage(session::get('service'), 0));
}
return true;
}
}
function edit_quote($id, $date, $montant, $pj)
{
global $db;
$date = date('Y-m-d-', strtotime($date));
$values["datinsert"] = MySQL::SQLValue($date);
$values["montant"] = MySQL::SQLValue($montant);
$where["id"] = MySQL::SQLValue($id);
if (!$db->UpdateRows("quotpatronal", $values, $where)) {
$db->Kill($db->Error());
return false;
} else {
$sql = $db->BuildSQLInsert("quotpatronal", $values);
logg('Enregistrement Quote Part Patronal ', 175, $id, $_SESSION['userid']);
if ($pj != "") {
$basedir = "upload/quotpatronal";
if (!file_exists($basedir)) {
mkdir($basedir, 0, true);
}
$newdir = $basedir . "/";
copyfile($pj, $id, $newdir, "Attachement_quotpatronal_");
autoarchive($newdir . changnom($pj, $id, 'Attachement_quotpatronal_'), "Fichier joint Quote Part Patronal {$id}", 175, $id, "quotpatronal", "piece_jointe", $_SESSION['userid'], cryptage(session::get('service'), 0));
}
return true;
}
}
function addevent($titrfr, $titren, $titrar, $contfr, $conten, $contar, $img, $id, $autfr, $auten, $autar, $dat)
{
global $db;
$date = date('Y-m-d-', strtotime($dat));
$values["titrfr"] = MySQL::SQLValue($titrfr);
$values["titren"] = MySQL::SQLValue($titren);
$values["titrar"] = MySQL::SQLValue($titrar);
$values["contfr"] = MySQL::SQLValue($contfr);
$values["conten"] = MySQL::SQLValue($conten);
$values["contar"] = MySQL::SQLValue($contar);
$values["autfr"] = MySQL::SQLValue($autfr);
$values["auten"] = MySQL::SQLValue($auten);
$values["autar"] = MySQL::SQLValue($autar);
$values["app"] = MySQL::SQLValue('?_tsk=event&id=' . $id);
$values["dat"] = MySQL::SQLValue($date);
// Execute the insert
$result = $db->InsertRow("event", $values);
// If we have an error
if (!$result) {
// Show the error and kill the script
$db->Kill('Error Insert');
return false;
} else {
if ($img != "") {
$basedir = "upload/event";
if (!file_exists($basedir)) {
mkdir($basedir, 0, true);
}
$newdir = "../upload/event/";
copyfile($img, $id, $newdir, "event_");
autoarchive($newdir . changnom($img, $id, 'event_'), "Image Evénement {$id} ", 12, $id, "event", "img", $_SESSION['userid'], cryptage(session::get('service'), 0));
}
return true;
}
}
function notif($modul)
{
global $db;
$service = cryptage($_SESSION['service'], 0);
$querynotif = "SELECT count({$modul}.id) as nbr FROM {$modul}, rules WHERE {$modul}.etat = rules.etat and rules.notif = 1 AND rules.service = {$service} and rules.app='{$modul}' and rules.active = 1";
$nbr = $db->QuerySingleValue0($querynotif);
//return $nbr;
exit($nbr);
}
function addcontenu($titrfr, $titren, $titrar, $contfr, $conten, $contar, $module, $img, $id, $vod, $fileuploadid, $dat)
{
$next_id_vod = getnextidtable('vod');
global $db;
$newdir = "../upload/contenu/image/";
$date = date('Y-m-d-', strtotime($dat));
$values["titrfr"] = MySQL::SQLValue($titrfr);
$values["titren"] = MySQL::SQLValue($titren);
$values["titrar"] = MySQL::SQLValue($titrar);
$values["contfr"] = MySQL::SQLValue($contfr);
$values["conten"] = MySQL::SQLValue($conten);
$values["contar"] = MySQL::SQLValue($contar);
$values["modul"] = MySQL::SQLValue($module);
$values["app"] = MySQL::SQLValue('?_tsk=page&id=' . $id);
if ($vod != "") {
$values["video"] = MySQL::SQLValue($next_id_vod);
}
$values["dat"] = MySQL::SQLValue($date);
$values["img"] = MySQL::SQLValue(changnom($newdir . $img, $id, 'contenu_'));
// Execute the insert
$result = $db->InsertRow("contenu", $values);
// If we have an error
if (!$result) {
// Show the error and kill the script
$db->Kill('error');
return false;
} else {
if ($img != "") {
$basedir = "upload/contenu/image";
if (!file_exists($basedir)) {
mkdir($basedir, 0, true);
}
if (!file_exists($newdir)) {
mkdir($newdir, 0, true);
}
copyfile($img, $id, $newdir, "contenu_");
}
if ($fileuploadid != "") {
$basedir = "upload/contenu/doc";
if (!file_exists($basedir)) {
mkdir($basedir, 0, true);
}
$newdir = "../upload/contenu/doc/";
if (!file_exists($newdir)) {
mkdir($newdir, 0, true);
}
copyfile($fileuploadid, $id, $newdir, "document_");
$file = "./upload/contenu/doc/" . changnom($fileuploadid, $id, 'document_');
autoarchive($file, "Document Contenu {$id} ", 12, $id, "contenu", "document", $_SESSION['userid'], cryptage(session::get('service'), 0));
}
if ($vod != "") {
addvod($titrfr, $titren, $titrar, $vod);
}
return true;
}
}
function validate_login($username, $password, $token_form)
{
//vèrifier si le nom d'utilisateur exist
global $db;
if (!$db->Query("SELECT * FROM users_sys where nom='{$username}' and pass='******'")) {
$db->Kill('Error1');
}
if ($db->RowCount() > 0) {
// Si MDP correcte set Session
$array = $db->RowArray();
$user_name = $array['nom'];
$user_id = $array['id'];
$token = $token_form;
$ssid = $token;
$service = $array['servic'];
$imda = $array['signature'];
$defalutapp = $array['defapp'];
$session = new session();
$session->set('username', $array['nom']);
$session->set('userid', $array['id']);
$session->set('time', time());
$session->set('ssid', $ssid);
$session->set('agence', $array['agence']);
$session->set('service', cryptage($service, 1));
$session->set('imda', cryptage($imda, 1));
$session->set('defapp', cryptage($defalutapp, 1));
//RAZ CTC
if (!$db->Query("update users_sys set ctc=0,lastactive=CURRENT_TIMESTAMP where id=" . $user_id)) {
$db->Kill('RAZ CTC');
}
//Save session
$savessid_sql = "insert into session (id,user,dat) value('" . $ssid . "','" . $user_name . "',CURRENT_TIMESTAMP)";
if (!$db->Query($savessid_sql)) {
$db->Kill($db->Error());
}
//set_session($user_name,$user_id,$token,$service,$imda,$defalutapp,$time);
return true;
}
//else utilisateur
}
function addnote($objet, $note, $id, $dat)
{
global $db;
$date = date('Y-m-d', strtotime($dat));
$getan = date('Y', strtotime($dat));
$usrid = $_SESSION['userid'];
$values["objet"] = MySQL::SQLValue($objet);
$values["file"] = MySQL::SQLValue(changnom($note, $id, 'note_'));
$values["dat"] = MySQL::SQLValue($date);
$values["addby"] = MySQL::SQLValue($usrid);
// Execute the insert
$result = $db->InsertRow("noteservice", $values);
$sql = $db->BuildSQLInsert("noteservice", $values);
$valuesf["req"] = MySQL::SQLValue($sql);
$r = $db->InsertRow("temprequet", $valuesf);
// If we have an error
if (!$result) {
// Show the error and kill the script
$db->Kill('Error insert');
return false;
} else {
logg('Enregistrement Note de service', 12, $id, $_SESSION['userid']);
$basedir = "upload/noteservice/{$getan}";
// save file
if (!file_exists($basedir)) {
mkdir($basedir, 0, true);
}
$newdir = $basedir . "/";
if ($note != "") {
copyfile($note, $id, $newdir, "note_");
autoarchive($newdir . changnom($note, $id, 'note_'), "Note de service N° {$id} ", 12, $id, "noteservice", "file", $_SESSION['userid'], cryptage(session::get('service'), 0));
}
return true;
}
/* if($lettre!=""){
copyfile($lettre,$id,$newdir,"lettre_");
autoarchive($newdir.changnom($lettre,$id,'lettre_'),"Lettre demande Autorisation d'Emploi $id ",44,$id,"aemploi", "lettre", $_SESSION['userid'],cryptage(session::get('service'),0));
} */
}
function addlocation($nextid, $nomlocataire, $nomresponsable, $adresse, $tel, $mail, $villa, $date_debut, $date_fin, $montant, $depot_garantie, $pj, $cycle)
{
global $db;
$usrid = $_SESSION['userid'];
$datedebut = date('Y-m-d-', strtotime($date_debut));
$datefin = date('Y-m-d-', strtotime($date_fin));
$values["nomlocataire"] = MySQL::SQLValue($nomlocataire);
$values["nomresponsable"] = MySQL::SQLValue($nomresponsable);
$values["adresse"] = MySQL::SQLValue($adresse);
$values["tel"] = MySQL::SQLValue($tel);
$values["mail"] = MySQL::SQLValue($mail);
$values["date_debut"] = MySQL::SQLValue($datedebut);
$values["date_fin"] = MySQL::SQLValue($datefin);
$values["montant"] = MySQL::SQLValue($montant);
$values["depot_garantie"] = MySQL::SQLValue($depot_garantie);
//$values["type_paiement"] = MySQL::SQLValue($type_paiement);
$values["addby"] = MySQL::SQLValue($usrid);
$values["etat"] = MySQL::SQLValue('Attente Validation');
$values["cycle_paiement"] = MySQL::SQLValue($cycle);
$values["idvilla"] = MySQL::SQLValue($villa);
//if(($db->QuerySingleValue0("SELECT id FROM contrat_location_villa where etat='en cours' and idvilla ='".tp('villa')."'")==0)
if (!$db->InsertRow("contrat_location_villa", $values)) {
$db->Kill($db->Error());
return false;
} else {
$sql = $db->BuildSQLInsert("contrat_location_villa", $values);
logg('Enregistrement Location Villa ', 196, $nextid, $_SESSION['userid']);
if ($pj != "") {
$basedir = "upload/location";
if (!file_exists($basedir)) {
mkdir($basedir, 0, true);
}
$newdir = $basedir . "/";
copyfile($pj, $nextid, $newdir, "Attachement_location_");
autoarchive($newdir . changnom($pj, $nextid, 'Attachement_location_'), "Fichier joint location villa {$nextid}", 196, $nextid, "contrat_location_villa", "pj", $_SESSION['userid'], cryptage(session::get('service'), 0));
}
}
return true;
}
public static function load()
{
if (isset($_SESSION['userid'])) {
if (tg('ajax') == 1) {
$template = (include_once AFFICH_REP . 'layout/ajax.php');
} else {
//Il faut voir si le service est outside of ONAPE utiliser mainoutside.php
if (isset($_SESSION['service']) && cryptage(session::get('service'), 0) == 19) {
$template = (include_once AFFICH_REP . 'layout/main_outside.php');
} else {
$template = (include_once AFFICH_REP . 'layout/main.php');
}
}
// $this->template = include_once(AFFICH_REP.'layout/main.php');
} else {
if (tg('ajax') == 1) {
$template = (include_once AFFICH_REP . 'layout/ajax.php');
} else {
$template = (include_once AFFICH_REP . 'layout/mainns.php');
}
}
//end else
}
function addcollecte($nextid, $id, $prix, $paiement, $pj)
{
global $db;
$values["id_location"] = MySQL::SQLValue($id);
$values["prix_mensuel"] = MySQL::SQLValue($prix);
$values["mode_paiement"] = MySQL::SQLValue($paiement);
if (!$db->InsertRow("collecte", $values)) {
$db->Kill($db->Error());
return false;
} else {
$sql = $db->BuildSQLInsert("collecte", $values);
logg('Enregistrement collecte ', 100, $nextid, $_SESSION['userid']);
if ($pj != "") {
$basedir = "upload/collecte";
if (!file_exists($basedir)) {
mkdir($basedir, 0, true);
}
$newdir = $basedir . "/";
copyfile($pj, $nextid, $newdir, "Attachement_collecte_");
autoarchive($newdir . changnom($pj, $nextid, 'Attachement_collecte_'), "Fichier joint collecte {$nextid}", 100, $nextid, "collecte", "piece_jointe", $_SESSION['userid'], cryptage(session::get('service'), 0));
}
return true;
}
}
function add_depense($id, $titre, $fourn, $date_demande, $nbr_depense, $chapitre, $article, $paragraphe, $montant, $pj)
{
global $db;
$usrid = $_SESSION['userid'];
$date = date('Y-m-d-', strtotime($date_demande));
$values["nature_dep"] = MySQL::SQLValue($titre);
$values["dat_val"] = MySQL::SQLValue($date);
$values["fournisseur"] = MySQL::SQLValue($fourn);
$values["nbr_lignes"] = MySQL::SQLValue($nbr_depense);
$values["chapitre"] = MySQL::SQLValue($chapitre);
$values["article"] = MySQL::SQLValue($article);
$values["paragraphe"] = MySQL::SQLValue($paragraphe);
$values["montant"] = MySQL::SQLValue($montant);
$values["etat"] = MySQL::SQLValue(0);
$values["addby"] = MySQL::SQLValue($usrid);
if (!$db->InsertRow("depense", $values)) {
$db->Kill($db->Error());
return false;
} else {
//Update Budget
//model::load('budget','budget');
//update_paragraphe($paragraphe,$montant);
//update_budget($paragraphe,$chapitre,$article);
logg('Enregistrement Fiche depense ', 100, $id, $_SESSION['userid']);
// Save PJ to archive
if ($pj != "") {
$basedir = $db->QuerySingleValue0("select CONCAT('upload/depense/',YEAR(dat_val),'/',id,'/') from depense where id = {$id}");
if (!file_exists($basedir)) {
mkdir($basedir, 0, true);
}
$newdir = $basedir . "/";
copyfile($pj, $id, $newdir, "Attachement_depense_");
autoarchive($newdir . changnom($pj, $id, 'Attachement_depense_'), "Fichier joint dépense {$id} ", 100, $id, "depense", "pj", $_SESSION['userid'], cryptage(session::get('service'), 0));
}
return true;
}
}
<?php
$service = cryptage($_SESSION['service'], 0);
$usrid = $_SESSION['userid'];
global $db;
global $db;
if (!$db->Query("SELECT * FROM users_sys where id= " . tg('iduser'))) {
$db->Kill("error");
}
if ($db->RowCount() > 0) {
$array = $db->RowArray();
}
?>
<script>
$(function () {
// validate signup form on keyup and submit
var validator1 = $("#edit_compteuser").validate({
rules: {
firstname: "required",
lastname: "required",
username: {
required: true,
minlength: 2,
remote: "./?_tsk=check&ajax=1&id=<?php
echo tg('iduser');
?>
&tb=1&f=pseudo"
},
/**
* Regenère un mot de passe pour $_POST["uti_email"] puis lui envoie par email
* Succès : redirige vers la page de connexion avec un message
* Echec : redirige vers la page "mot de passe oublié" avec un message
*/
function resetmdp()
{
extract($_POST);
$query = "select * from utilisateur where uti_email='{$uti_email}'";
$result = Table::$con->query(Table::$con->real_escape_string($query));
if ($row = $result->fetch_assoc()) {
$newMdp = substr(uniqid(), 0, 10);
$uti_mdp = cryptage($newMdp);
$query = "update utilisateur set uti_mdp='{$uti_mdp}' where uti_id=" . $row["uti_id"];
Table::$con->query($query);
$chaine = file_get_contents(BASE_REP . "_mail/tpl_mdpoublie.txt");
$chaine = str_ireplace("[prenom]", $row["uti_prenom"], $chaine);
$chaine = str_ireplace("[login]", $row["uti_email_perso"] . "/" . $row["uti_email_pro"], $chaine);
$chaine = str_ireplace("[mdp]", $newMdp, $chaine);
$chaine = str_ireplace("[lien]", BASE_URL . "authentification/connexion", $chaine);
$chaine = str_ireplace("[titreSite]", TITRE_SITE, $chaine);
require BASE_REP . '_mail/mail_function.php';
if (!is_null($row["uti_email"]) or !empty($row["uti_email"])) {
envoyerUnMail(array($row["uti_email_perso"]), "Mot de passe oublié", $chaine, "*****@*****.**");
}
self::flashMessage()->success('Un email contenant votre nouveau mot de passe vous a été envoyé');
header("location:" . BASE_URL . "authentification/connexion/");
} else {
self::flashMessage()->error('Identifiant incorrect');
header("location:" . BASE_URL . "authentification/mdpoublie/message/nouser");
}
}
/**
* Regenère un mot de passe pour $_POST["uti_email"] puis lui envoie par email
* Succès : redirige vers la page de connexion avec un message
* Echec : redirige vers la page "mot de passe oublié" avec un message
*/
function resetmdp()
{
extract($_POST);
$query = "select * from utilisateur where uti_email='{$uti_email}'";
$result = Table::$con->query($query);
if ($row = $result->fetch_assoc()) {
$newMdp = substr(uniqid(), 0, 10);
$uti_mdp = cryptage($newMdp);
$query = "update utilisateur set uti_mdp='{$uti_mdp}' where uti_id=" . $row["uti_id"];
Table::$con->query($query);
$chaine = file_get_contents(BASE_REP . "_mail/tpl_mdpoublie.txt");
$chaine = str_ireplace("[prenom]", $row["uti_prenom"], $chaine);
$chaine = str_ireplace("[login]", $row["uti_login"], $chaine);
$chaine = str_ireplace("[mdp]", $newMdp, $chaine);
$chaine = str_ireplace("[lien]", BASE_URL . "authentification/connexion", $chaine);
$chaine = str_ireplace("[titreSite]", TITRE_SITE, $chaine);
envoyerUnMail($row["uti_email"], "Mot de passe oublié", $chaine);
header("location:" . BASE_URL . "authentification/connexion/message/emailsend");
} else {
header("location:" . BASE_URL . "authentification/mdpoublie/message/nouser");
}
}
/**
* Affiche la version crypée de la chaine de caractère contenu dans $_GET["chaine"]
*/
public function crypte()
{
echo cryptage($_GET["chaine"]);
}
