//tussenvoegsel mag spatie bevatten
$docent_afkorting = filter_var(trim($_POST['afkorting']), FILTER_SANITIZE_STRING);
$emailadres = filter_var(trim($_POST['emailadres']), FILTER_VALIDATE_EMAIL);
if (!$emailadres) {
$_SESSION['message'] = 'Voer een geldig e-mailadres in.';
} else {
$role = 2;
// is leraar
$account_activated = 0;
//account is nog niet geactiveerd, dit wordt pas gedaan als gebruiker eerste keer inlogt.
$generated_password = generate_random_password();
$wachtwoord = password_hash($generated_password, PASSWORD_BCRYPT);
$email_code = md5($voornaam + microtime());
$gegevens = ["voornaam" => $voornaam, "tussenvoegsel" => $tussenvoegsel, "achternaam" => $achternaam, "emailadres" => $emailadres, "email_code" => $email_code, "wachtwoord" => $wachtwoord, "account_activated" => $account_activated, "role" => $role, "docent_afkorting" => $docent_afkorting];
//checken of email en afkorting uniek zijn
if (checkIfUserExists($gegevens["emailadres"]) === FALSE) {
//leraar toevoegen
addTeacher($gegevens);
//wachtwoord mailen naar gebruiker
$mail_gegevens = ["emailadres" => $gegevens["emailadres"], "voornaam" => $gegevens["voornaam"], "tussenvoegsel" => $gegevens["tussenvoegsel"], "achternaam" => $gegevens["achternaam"], "wachtwoord" => $generated_password];
$mail_content = createTempPasswordMail($mail_gegevens);
sendMail($mail_content);
} else {
//email adres is al in gebruik.
$_SESSION['message'] = "Email adres is al in gebruik";
}
}
}
}
} else {
// voor als een docent bewerkt wordt
foreach ($gegevens as $values => $keys) {
$gegevens[$values]["klas"] = $klas;
$gegevens[$values]["role"] = 1;
// is leerling
$gegevens[$values]["account_activated"] = 0;
//account is nog niet geactiveerd, dit wordt pas gedaan als gebruiker eerste keer inlogt.
$gegevens[$values]["generated_password"] = generate_random_password();
$gegevens[$values]["wachtwoord"] = password_hash($gegevens[$values]["generated_password"], PASSWORD_BCRYPT);
$gegevens[$values]["email_code"] = md5($gegevens[$values]["voornaam"] + microtime());
}
//checken of email en student_id uniek zijn
foreach ($gegevens as $leerling_gegevens) {
if ($leerling_gegevens['emailadres'] === FALSE) {
$false_email = [$leerling_gegevens['emailadres']];
} else {
if (checkIfUserExists($leerling_gegevens['emailadres'], $leerling_gegevens['leerling_id']) === FALSE) {
//email adres niet in gebruik, dus gebruiker kan worden toegevoegd.
// gegevens inserten
addStudent($leerling_gegevens, $leerling_gegevens["emailadres"], $leerling_gegevens["leerling_id"], $leerling_gegevens["klas"]);
} else {
//email adres in gebruik gebruiker wordt op de hoogte gesteld dat dit email adres bezet is.
$_SESSION['message'] = "Email adres " . $leerling_gegevens['emailadres'] . " is al in gebruik";
}
}
}
}
}
if (isset($_POST["submit_bewerk_leerling"])) {
if ($_POST['voornaam'] == "" or $_POST['achternaam'] == "" or $_POST['leerling_id'] == "" or $_POST['emailadres'] == "") {
$_SESSION['message'] = "Je moet alle gegevens invullen!";
} else {
function checkLogin($username, $password)
{
//Clean strings for security
username == secureStrings($username);
password == secureStrings($password);
//Salt password
$password = saltPassword($password);
//Check if user exists
if (checkIfUserExists($username, $password) == 'true') {
//Check if approved
if (checkIfApproved($username, $password) == 'true') {
//Create Session
createSession($username, $password);
} else {
print 'napproved';
}
} else {
print 'Incorrect';
}
}
$upload = importLeerlingenExcelFile($_FILES["excel_leerlingen"]);
$exceldata = importLeerlingenWithExcel($upload);
$excelheaders = array_shift($exceldata);
$leerlingendata = rebuildExcelClassDataArray($exceldata, $excelheaders);
}
//****** VIA EXCEL BESTAND KLAS(SEN) MET LEERLINGEN TOEVOEGEN ******//
if (isset($_POST['submit_excel_data'])) {
unset($_POST['submit_excel_data']);
$leerlingendata = rebuildArray($_POST);
//controleren of klas al bestaat, zo niet: aanmaken
foreach ($leerlingendata as $leerling) {
$getKlas = getKlas($leerling["klas"]);
if ($getKlas == 0) {
addKlas($leerling);
}
if (checkIfUserExists($leerling['emailadres']) === FALSE) {
$leerling = addStudentCredentials($leerling);
addStudent($leerling, $leerling["emailadres"], $leerling["leerling_id"], $leerling["klas"]);
}
}
}
//**************** KLAS TOEVOEGEN ******************//
if (isset($_POST['submit_add_klas'])) {
if (isset($_POST['klas'], $_POST['examenjaar'], $_POST['docent_afk'])) {
//binnenkomende array ombouwen
unset($_POST['submit_add_klas']);
$gegevens = rebuildArray($_POST);
if (!checkArrayForEmptyValues($gegevens)) {
$_SESSION['message'] = "Je moet alle gegevens invullen!";
} else {
//Ingevoerde gegevens door filter halen en trimmen
/**
* Add a new user in the database.
* @return true if the user was added, otherwise false.
*/
function addNewUserInDB($username, $email, $invite_url)
{
if ($connection = connectDB()) {
if (!checkIfUserExists($connection, $username)) {
$userStats = fetchUserStatsFromKid($invite_url);
if (!strContains($userStats, 'error')) {
$query = "INSERT INTO users(displayname, rank, referrals, email, invite_url) VALUES (?, ?, ?, ?, ?)";
$stmt = $connection->stmt_init();
$stmt->prepare($query);
$stmt->bind_param("siiss", $username, explode(';', $userStats)[0], explode(';', $userStats)[1], $email, $invite_url);
$stmt->execute();
$connection->close();
return true;
}
}
$connection->close();
}
return false;
}
if ($code != E_STRICT && $code != E_DEPRECATED) {
throw new ErrorToException($code, $message, $file, $line, $context);
}
}
set_error_handler("error_to_exception");
try {
echo "<html>\n\t\t\t<head>\n\t\t\t\t<title>Video Factory</title>\n\t\t\t\t<link rel='shortcut icon' href='favicon.png' type='img/x-icon'/>\n\t\t\t\t<link rel='stylesheet' type='text/css' href='masterPage/main.css'/>\n\t\t\t</head>\n\t\t\t<body>\n\t\t\t\t<div id='activatePage' class='container'>\n\t\t\t\t\t<div class='col-xs-12 activateContainer'>\n\t\t\t\t\t<p id='activateTitle' class='col-xs-'12>Video Factory</p>\n\t\t\t\t";
$key = $_GET['key'];
$sqlconn = new SQLMediator();
$sqlconn->connect();
$values = getValuesFromTempTable($key, $sqlconn);
if (count($values) == 0) {
echo 'Key not found<br/>';
echo "<a class='activateLink' href='/'>Return to site</a>";
} else {
$userExists = checkIfUserExists($values['Email'], $sqlconn);
if ($userExists) {
echo 'User already has an active account<br/>';
echo "<a class='activateLink' href='/'>Return to site</a>";
} else {
addToUserInfoTable($values, $sqlconn);
deleteValuesFromTempTable($values['Email'], $sqlconn);
echo 'Account is now active!<br/>';
echo "<a class='activateLink' href='/'>Return to site</a>";
}
}
$sqlconn->disconnect();
echo "\t\t</div>\n\t\t\t\t</div>\n\t\t\t</body>\n\t\t</html>";
} catch (Exception $ex) {
echo GlobalExceptionHandler::writeException($ex);
}
if (isset($_SESSION['gebruiker_id'])) {
header('Location: ' . BASE_URL . 'dashboard/');
exit;
}
if ($_SERVER['REQUEST_METHOD'] == 'POST') {
//checken als er gegevens ingevoerd zijn
if (isset($_POST['user'])) {
$email = trim($_POST['user']);
$email = filter_var($email, FILTER_VALIDATE_EMAIL);
if (!$email) {
$_SESSION['message'] = 'Voer een geldig e-mailadres in.';
} else {
if (!checkIfUserExists($email)) {
$_SESSION['message'] = 'Email adres niet gevonden.';
} else {
$user_data = checkIfUserExists($email);
$user_id = $user_data['gebruiker_id'];
$email_code = $user_data['email_code'];
$url_code = "index.php?id=" . $user_id . "&email_code=" . $email_code;
$mail_content = passwordResetMail($user_data, $url_code);
sendMail($mail_content);
$_SESSION['message-success'] = 'Er is een e-mail verstuurd om uw wachtwoord opnieuw in te stellen.';
}
}
}
}
?>
<!DOCTYPE html>
<html>
<head>
<title>Examen Analyse</title>
function createTables()
{
//blog title name
$inputHost = $_POST[form_host];
//blog is the name of the text field
$inputUser = $_POST[form_user];
//blog title name
$inputPassword = $_POST[form_password];
//blog is the name of the text field
$inputDataBase = $_POST[form_database];
if (!empty($inputHost) && !empty($inputUser) && !empty($inputPassword) && !empty($inputDataBase)) {
createUsersTable();
checkIfUserExists('1', 'bfusterg', '904deeaf9fdc44dd75e17954d10f21889ce8669a', 'Beatriz', 'Fuster', '*****@*****.**', 'student');
checkIfUserExists('2', 'jrtundidor', '1d1f7b626bbd3efa49c7b5ac68a88fdd3d60a7a0', 'Jaime', 'Ruiz', '*****@*****.**', 'student');
checkIfUserExists('3', 'andreagm', '90fd7547a62150eed1b1354f7814366775784440', 'Andrea', 'Gomez', '*****@*****.**', 'student');
checkIfUserExists('4', 'jlamber4', '0efa0f43d9f28d92c0ab6b8611c039f29270dfc7', 'Jason', 'Lambert', '*****@*****.**', 'professor');
checkIfUserExists('5', 'phuang9', '375eeeeccd8f6f249f182b5284710e6338b669a4', 'Peisong', 'Huang', '*****@*****.**', 'professor');
checkIfUserExists('6', 'carlson', '9753456e0298e686b5eb1d5ef1019a7f31fc44dd', 'Carl', 'Carlson', '*****@*****.**', 'professor');
checkIfUserExists('7', 'mschray', '9b612414e1804c937d5305eecdfc3a942604db9d', 'Martin', 'Schray', '*****@*****.**', 'professor');
createSubjectsTable();
checkIfSubjectExists('1', 'ITMD-555-02', 'Intelligent Device Application', 'E1', '241', 'Peisong Huang', 'Fall');
checkIfSubjectExists('2', 'ITMD-562-01', 'Web Site Development', 'E1', '104', 'Jason Lambert', 'Fall');
checkIfSubjectExists('3', 'ITMD-555-01', 'Intelligent Device Application', 'Tech Business Center', 'Idea Shop', 'Martin Schray', 'Fall');
checkIfSubjectExists('4', 'ITMM-581', 'IT Entrepreneurship', 'E1', '121', 'Carl Carlson', 'Fall');
createEnrollmentTable();
}
}
function checkLogin($username, $password)
{
//Clean strings for security
$username = secureStrings($username);
$password = secureStrings($password);
//echo $username ;
//echo $password;
//Salt password
$password = saltPassword($password);
//Check if user exists
//echo " checkLogin".(boolean)checkIfUserExists($username,$password)."<br>";
if (checkIfUserExists($username, $password) == 'true') {
//Check if approved
if (checkIfApproved($username, $password) == 'true') {
//Create Session
createSession($username, $password);
} else {
print 'napproved';
}
} else {
print 'Incorrect';
}
}
require_once dirname(__FILE__) . '/../PHPMailer/class.phpmailer.php';
require_once dirname(__FILE__) . '/../../masterPage/config.php';
function error_to_exception($code, $message, $file, $line, $context)
{
if ($code != E_STRICT && $code != E_DEPRECATED) {
throw new ErrorToException($code, $message, $file, $line, $context);
}
}
set_error_handler("error_to_exception");
$email = $_POST['email'];
$password = $_POST['password'];
$password2 = $_POST['password2'];
try {
$sql = new SQLMediator();
$sql->connect();
$userExists = checkIfUserExists($email, $sql);
if ($userExists) {
echo 'An account with that email already exits.';
} else {
$activationKey = uniqid();
$table = 'TempUser';
$queryType = 'Insert';
$condition = null;
$types = array('text', 'text', 'text');
$columns = array('Email', 'Password', 'ActivateKey');
$values = array($email, $password, $activationKey);
$args = array('column' => $columns, 'value' => $values, 'type' => $types);
$xml = createXML($table, $args);
$res = $sql->query($xml, $queryType, $condition);
$mail = new PHPMailer(true);
//New instance, with exceptions enabled
function GetAllUsersList($mailAdd)
{
global $connection;
$response = "<div class='row'>";
$id = "";
$email = "";
$interests = "";
try {
if (checkIfUserExists($mailAdd) == "1") {
$query = "select * from Users";
$rs = mysql_query($query);
if (!$rs) {
$response = "-1";
} else {
while ($res = mysql_fetch_array($rs)) {
$id = $res["UserID"];
$email = $res["UserEmail"];
$interests = getInterests($email, $id);
$in = explode(" @I ", $interests);
$interests = "";
foreach ($in as $i) {
if ($i == "-" || $i == " " || $i == "" || $i == "-3") {
} else {
$interests .= $i . ", ";
}
}
$interests = substr($interests, 0, strlen($interests) - 2);
if ($interests == "") {
$interests = "-1";
}
if ($res["UserPic"] == "") {
$res["UserPic"] = "img/dp.jpg";
}
// <p class='userLocation'><span>Expertise in: </span> <u>" . $interests . "</u> </p>
if ($interests == "-1") {
//$response .= "<div class='list-group-item item'><div class='media-left media-top'><img src='" . $res["UserPic"] . "' class='media-object userImage' width='120' height='120' /></div><div class='userItem'><p class='userName'>" . $res["UserName"] . "</p><p class='userReadMore'><a class='readMoreLink' data-id='" . $id . "' data-email='" . $email . "' href='#'>Read More...</a></p></div><button class='btn btn-lg btn-primary btn-block btnConnRequest' data-id='" . $id . "' data-email='" . $email . "' data-profile='" . $res["UserProfile"] . "'>Connect on LinkedIn</button></div>" . " (BR) ";
$response .= "<div class='col-lg-6 col-md-6'><div class='thumbnail'><img class='media-object userImage' width='130' height='130' src='" . $res["UserPic"] . "' /><div class='caption'><p class='userName'>" . $res["UserName"] . "</p><p class='userLocation'><span>Expertise in: </span> <u>" . "None" . "</u> </p><p class='userReadMore'><a class='readMoreLink' data-id='" . $id . "' data-email='" . $email . "' href='#'>Read More...</a></p></div><button class='btn btn-lg btn-primary btn-block btnConnRequest' data-id='" . $id . "' data-email='" . $email . "' data-profile='" . $res["UserProfile"] . "'>Connect on LinkedIn</button></div></div>" . " (BR) ";
} else {
//$response .= "<div class='list-group-item item'><div class='media-left media-top'><img src='" . $res["UserPic"] . "' class='media-object userImage' width='120' height='120' /></div><div class='userItem'><p class='userName'>" . $res["UserName"] . "</p><p class='userLocation'><span>Expertise in: </span> <u>" . $interests . "</u> </p><p class='userReadMore'><a class='readMoreLink' data-id='" . $id . "' data-email='" . $email . "' href='#'>Read More...</a></p></div><button class='btn btn-lg btn-primary btn-block btnConnRequest' data-id='" . $id . "' data-email='" . $email . "' data-profile='" . $res["UserProfile"] . "'>Connect on LinkedIn</button></div>" . " (BR) ";
if (strlen($interests) >= 15) {
$interests = substr($interests, 0, 15);
$interests .= "...";
}
$response .= "<div class='col-lg-6 col-md-6'><div class='thumbnail'><img class='media-object userImage' width='130' height='130' src='" . $res["UserPic"] . "' /><div class='caption'><p class='userName'>" . $res["UserName"] . "</p><p class='userLocation'><span>Expertise in: </span> <u>" . $interests . "</u> </p><p class='userReadMore'><a class='readMoreLink' data-id='" . $id . "' data-email='" . $email . "' href='#'>Read More...</a></p></div><button class='btn btn-lg btn-primary btn-block btnConnRequest' data-id='" . $id . "' data-email='" . $email . "' data-profile='" . $res["UserProfile"] . "'>Connect on LinkedIn</button></div></div>" . " (BR) ";
}
}
}
$response .= "</div>";
} else {
if (checkIfUserExists($mailAdd) == "-1") {
// user does not exists.
$response = "-1";
} else {
$response = "-2";
}
}
return $response;
} catch (Exception $e) {
$response = "-2";
return $response;
}
}
function SaveUser($basic, $edu, $exp, $phoneNo, $pic)
{
$res2 = "";
$contactJson = json_decode($phoneNo, true);
$eduJson = json_decode($edu, true);
$expJson = json_decode($exp, true);
$picJson = json_decode($pic, true);
$res = "";
$res2 = "";
$email = $basic["emailAddress"];
$name = $basic["firstName"] . " " . $basic["lastName"];
$contact = $contactJson["phoneNumber"];
$date = date("Y-m-d H:i:s");
$userID = "";
global $connection;
try {
if (checkIfUserExists($email) == "-1") {
// firstly, check if all the data, that comes from linkedIn exists or not.
if (!isset($email)) {
$email = "";
}
if (!isset($name)) {
$name = "";
}
if (!isset($picJson)) {
$picJson = "";
}
if (!isset($contact)) {
$contact = "";
}
if (!isset($basic["publicProfileUrl"])) {
$basic["publicProfileUrl"] = "";
}
if (!isset($basic["location"]["name"]) || !isset($basic["location"])) {
$basic["location"]["name"] = "";
}
if (!isset($basic["primaryTwitterAccount"]["providerAccountName"]) || !isset($basic["primaryTwitterAccount"])) {
$basic["primaryTwitterAccount"]["providerAccountName"] = "";
}
//go ahead and insert the user with all the data here.
if (savePersonalDetails($email, $name, $picJson, $contact, $basic["publicProfileUrl"], $basic["location"]["name"], $basic["primaryTwitterAccount"]["providerAccountName"], "", "", $date) == "1") {
$res = "1";
//for saving into the database correctly!
$userID = getUserID($email);
if ($userID == "-1") {
$res = "-2";
echo $res;
return;
}
//now,save all the education details here.
if (isset($eduJson)) {
foreach ($eduJson as $eduItem) {
if (!isset($eduItem["degree"])) {
$eduItem["degree"] = "";
}
if (!isset($eduItem["startDate"]["year"])) {
$eduItem["startDate"]["year"] = "";
}
if (!isset($eduItem["endDate"]["year"])) {
$eduItem["endDate"]["year"] = "";
}
if (!isset($eduItem["fieldOfStudy"])) {
$eduItem["fieldOfStudy"] = "";
}
if (!isset($eduItem["schoolName"])) {
$eduItem["schoolName"] = "";
}
$eduDate = $eduItem["startDate"]["year"] . "-" . $eduItem["endDate"]["year"];
if (saveEducation($userID, $eduItem["schoolName"], $eduDate, $eduItem["degree"], $eduItem["fieldOfStudy"], $date) == "1") {
$res = "1";
} else {
$res = "-1";
}
}
//end of foreach loop for education.
}
//now, save the Experience listings to the database.
foreach ($expJson as $expItem) {
if (!isset($expItem["company"]["name"])) {
$expItem["company"]["name"] = "";
}
if (!isset($expItem["startDate"]["year"])) {
$expItem["startDate"]["year"] = "";
}
if (!isset($expItem["endDate"]["year"])) {
$expItem["endDate"]["year"] = "";
}
if (!isset($expItem["title"])) {
$expItem["title"] = "";
}
if (!isset($expItem["summary"])) {
$expItem["summary"] = "";
}
if (!isset($expItem["isCurrent"]) && $expItem["isCurrent"] == true) {
$expItem["endDate"]["year"] = "current";
}
$expDate = $expItem["startDate"]["year"] . "-" . $expItem["endDate"]["year"];
if (saveExperience($userID, $expItem["company"]["name"], $expDate, $expItem["title"], $expItem["summary"], $date) == "1") {
$res2 = "1";
// echo $res;
// return;
} else {
$res2 = "-1";
// echo $res;
// return;
}
}
//end of foreach loop for experience.
} else {
$res = "-1";
//not saved into the database
}
} else {
if (checkIfUserExists($email) == "1") {
$res = "2";
} else {
//Error in checking if the user already exists or not.
$res = "Error in checking if the user already exists or not.";
}
}
} catch (Exception $e) {
$res = "-1";
}
echo $res . ", " . $email . ", " . $userID;
}
