public function all()
{
$db = new Database();
$db->connect();
$obj = $db->fetch_all_array("select * from " . $this->table_name_full);
$db->close();
return new response(array('body' => $obj));
}
public function getAllTransferForEvent($eventId, $mode)
{
$sql = "select * from transfer where event_id=" . $eventId . " and mode='" . $mode . "'";
$db = new Database();
$db->connect();
$allTransfer = $db->fetch_all_array($sql);
$db->close();
return $allTransfer;
}
public function getAllCentres()
{
$sql = "select * from centre";
$db = new Database();
$db->connect();
$allCentres = $db->fetch_all_array($sql);
$db->close();
return $allCentres;
}
public function getEventsByCentreIdent($centreIdent)
{
$sql = "select * from event where centre_fk='{$centreIdent}'order by ev_date asc";
$db = new Database();
$db->connect();
$events = $db->fetch_all_array($sql);
$db->close();
return $events;
}
function numBadReviews()
{
$db = new Database(DB_HOST, DB_USER, DB_PASSWORD, DB_NAME);
$numReviews = 0;
for ($i = 1; $i <= 100; $i++) {
// First we select a random film from the first 1000
$db->connect();
$result = $db->query("SELECT * FROM films WHERE position = " . $i);
$film = $db->fetch_array_assoc($result);
if (!$film) {
continue;
}
echo $film['name'] . PHP_EOL;
// Let's get film's bad reviews
$db->connect();
$reviews = $db->fetch_all_array("SELECT * FROM reviews WHERE id = '" . $film['id'] . "' AND rating <= 2");
foreach ($reviews as $review) {
echo $review['title'] . PHP_EOL;
}
$numReviews += count($reviews);
echo "Num reviews: " . $numReviews . PHP_EOL;
}
echo "Total reviews: " . $numReviews;
}
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
*/
session_start();
if (!isset($_SESSION['CPM']) || $_SESSION['CPM'] != 1) {
die('Hacking attempt...');
}
global $k, $settings;
include '../includes/settings.php';
header("Content-type: text/x-json; charset=" . $k['charset']);
require_once "class.database.php";
$db = new Database($server, $user, $pass, $database, $pre);
$db->connect();
$sql = "SELECT id, category FROM " . $pre . "kb_categories";
//manage filtering
if (!empty($_GET['term'])) {
$sql .= " WHERE category LIKE '%" . $_GET['term'] . "%'";
}
$sql .= " ORDER BY category ASC";
$sOutput = '';
$rows = $db->fetch_all_array($sql);
if ($rows[0] > 0) {
foreach ($rows as $reccord) {
if (empty($sOutput)) {
$sOutput = '"' . $reccord['category'] . '"';
} else {
$sOutput .= ', "' . $reccord['category'] . '"';
}
}
//Finish the line
echo '[ ' . $sOutput . ' ]';
}
//Add font for utf-8
$pdf->AddFont('DejaVu', '', 'DejaVuSansCondensed.ttf', true);
$pdf->AliasNbPages();
$pdf->AddPage();
$pdf->SetFont('DejaVu', '', 16);
$pdf->Cell(0, 10, $txt['pdf_del_title'], 0, 1, 'C', false);
$pdf->SetFont('DejaVu', '', 12);
$pdf->Cell(0, 10, $txt['pdf_del_date'] . date($_SESSION['settings']['date_format'] . " " . $_SESSION['settings']['time_format'], mktime(date("H"), date("i"), date("s"), date("m"), date("d"), date("Y"))), 0, 1, 'C', false);
$pdf->SetFont('DejaVu', '', 10);
$pdf->SetFillColor(15, 86, 145);
$pdf->cell(80, 6, $txt['label'], 1, 0, "C", 1);
$pdf->cell(75, 6, $txt['group'], 1, 0, "C", 1);
$pdf->cell(21, 6, $txt['date'], 1, 0, "C", 1);
$pdf->cell(15, 6, $txt['author'], 1, 1, "C", 1);
$pdf->SetFont('DejaVu', '', 10);
$rows = $db->fetch_all_array("\r\n SELECT u.login AS login, i.label AS label, i.id_tree AS id_tree\r\n FROM " . $pre . "log_items AS l\r\n INNER JOIN " . $pre . "users AS u ON (u.id=l.id_user)\r\n INNER JOIN " . $pre . "items AS i ON (i.id=l.id_item)\r\n WHERE l.action = 'Modification'\r\n AND l.raison = 'Mot de passe chang?'\r\n ");
foreach ($rows as $reccord) {
if (date($_SESSION['settings']['date_format'], $reccord['date']) == $_POST['date']) {
//information about the pw creator
$res_user = mysql_query("SELECT login FROM " . $pre . "users WHERE id = '" . $reccord['id_user'] . "'");
$data_user = mysql_fetch_row($res_user);
//information about the pw itself
$res_item = mysql_query("SELECT label, id_tree FROM " . $pre . "items WHERE id = '" . $reccord['id_item'] . "'");
$data_item = mysql_fetch_row($res_item);
//get the tree grid
$arbo = $tree->getPath($reccord['id_tree'], true);
$arboTxt = "";
foreach ($arbo as $elem) {
if (empty($arboTxt)) {
$arboTxt = $elem->title;
} else {
if (isset($_POST['type'])) {
switch ($_POST['type']) {
// CASE where DELETING a group
case "delete_folder":
$folders_deleted = "";
// this will delete all sub folders and items associated
$tree = new NestedTree($pre . 'nested_tree', 'id', 'parent_id', 'title');
// Get through each subfolder
$folders = $tree->getDescendants($_POST['id'], true);
foreach ($folders as $folder) {
//Store the deleted folder (recycled bin)
$db->query_insert('misc', array('type' => 'folder_deleted', 'intitule' => "f" . $_POST['id'], 'valeur' => $folder->id . ',' . $folder->parent_id . ',' . $folder->title . ',' . $folder->nleft . ',' . $folder->nright . ',' . $folder->nlevel . ',0,0,0,0'));
//delete folder
$db->query("DELETE FROM " . $pre . "nested_tree WHERE id = " . $folder->id);
//delete items & logs
$items = $db->fetch_all_array("SELECT id FROM " . $pre . "items WHERE id_tree='" . $folder->id . "'");
foreach ($items as $item) {
//Delete item
//$db->query("DELETE FROM ".$pre."items WHERE id = ".$item['id']);
//$db->query("DELETE FROM ".$pre."log_items WHERE id_item = ".$item['id']);
$db->query_update("items", array('inactif' => '1'), "id = " . $item['id']);
//log
$db->query_insert("log_items", array('id_item' => $item['id'], 'date' => mktime(date('H'), date('i'), date('s'), date('m'), date('d'), date('y')), 'id_user' => $_SESSION['user_id'], 'action' => 'at_delete'));
}
//Actualize the variable
$_SESSION['nb_folders']--;
}
//rebuild tree
$tree = new NestedTree($pre . 'nested_tree', 'id', 'parent_id', 'title');
$tree->rebuild();
//Update CACHE table
<?php
require '../common/database.php';
require '../config/config.php';
$db = new Database($db_host, $db_username, $db_password, $db_name);
$db->connect();
$sql = "SELECT * from " . $TABLE_EYO_MAP . " where status=1";
$map_result = $db->fetch_all_array($sql);
?>
<!DOCTYPE html>
<html>
<head>
<meta name="viewport" content="initial-scale=1.0, user-scalable=no">
<meta charset="utf-8">
<title>Eyo Map Plugin</title>
<meta name="description" content="A demo of maps with multiple markers and infowindow" />
<script src="https://maps.googleapis.com/maps/api/js?v=3.exp&sensor=false"></script>
<style>
html, body, #map-canvas {
height: 100%;
margin: 0px;
padding: 0px
}
</style>
<script type="text/javascript">
var LocationData = [
<?php
foreach ($map_result as $map) {
?>
[<?php
#-------------------------------------------
#CASE refresh the matrix
#-------------------------------------------
#CASE refresh the matrix
case "rafraichir_matrice":
echo 'document.getElementById(\'matrice_droits\').innerHTML = "";';
require_once "NestedTree.class.php";
$tree = new NestedTree($pre . 'nested_tree', 'id', 'parent_id', 'title');
$tree = $tree->getDescendants();
$texte = '<table><thead><tr><th>' . $txt['group'] . 's</th>';
$gpes_ok = array();
$gpes_nok = array();
$tab_fonctions = array();
$arrRoles = array();
//Display table header
$rows = $db->fetch_all_array("SELECT title,id FROM " . $pre . "roles_title ORDER BY title ASC");
foreach ($rows as $reccord) {
$texte .= '<th style="font-size:10px;" class="edit_role">' . $reccord['title'] . '<br><img src=\'includes/images/ui-tab--pencil.png\' onclick=\'edit_this_role(' . $reccord['id'] . ',"' . $reccord['title'] . '")\' style=\'cursor:pointer;\' \\> <img src=\'includes/images/ui-tab--minus.png\' onclick=\'delete_this_role(' . $reccord['id'] . ',"' . $reccord['title'] . '")\' style=\'cursor:pointer;\' \\></th>';
array_push($arrRoles, $reccord['id']);
}
$texte .= '</tr></thead><tbody>';
//Display each folder with associated rights by role
$i = 0;
foreach ($tree as $node) {
if (in_array($node->id, $_SESSION['groupes_visibles']) && !in_array($node->id, $_SESSION['personal_visible_groups'])) {
$ident = "";
for ($a = 1; $a < $node->nlevel; $a++) {
$ident .= " ";
}
//display 1st cell of the line
$texte .= '<tr><td style="font-size:10px; font-family:arial;">' . $ident . $node->title . '</td>';
case "admin":
$db->query_update("users", array('admin' => $_POST['value']), "id = " . $_POST['id']);
break;
## UPDATE PERSONNAL FOLDER FOR USER ##
## UPDATE PERSONNAL FOLDER FOR USER ##
case "personal_folder":
$db->query_update("users", array('personal_folder' => $_POST['value']), "id = " . $_POST['id']);
break;
//CHANGE USER FUNCTIONS
//CHANGE USER FUNCTIONS
case "open_div_functions":
$text = "";
//Refresh list of existing functions
$data_user = $db->fetch_row("SELECT fonction_id FROM " . $pre . "users WHERE id = " . $_POST['id']);
$users_functions = explode(';', $data_user[0]);
$rows = $db->fetch_all_array("SELECT id,title FROM " . $pre . "roles_title");
foreach ($rows as $reccord) {
$text .= '<input type=\\"checkbox\\" id=\\"cb_change_function-' . $reccord['id'] . '\\"';
if (in_array($reccord['id'], $users_functions)) {
$text .= ' checked';
}
$text .= '> ' . $reccord['title'] . '<br />';
}
//update page
echo 'document.getElementById("change_user_functions_list").innerHTML = "' . $text . '";';
echo 'document.getElementById("selected_user").value = "' . $_POST['id'] . '";';
//display dialogbox
echo '$("#change_user_functions").dialog("open");';
echo '$("#div_loading").hide()';
//hide loading div
break;
/**
* The plugin control panel, you can manage the plugins activity in this page.
*/
include_once 'phphooks.class.php';
include_once 'includes/database.class.php';
require_once 'config.php';
$db = new Database($mysql_db_host, $mysql_db_user, $mysql_db_passwd, $mysql_db_name, $table_prefix);
$db->connect();
switch ($_GET['action']) {
case "deactivate":
$data['action'] = 0;
$db->query_update("plugins", $data, "filename='" . $_GET['filename'] . "'");
break;
case "activate":
$sql = "SELECT * FROM " . $table_prefix . "plugins WHERE filename = '" . $db->escape($_GET['filename']) . "'";
$count = count($db->fetch_all_array($sql));
if ($count < 1) {
$data['filename'] = $_GET['filename'];
$data['action'] = 1;
$db->query_insert("plugins", $data);
} else {
$data['action'] = 1;
$db->query_update("plugins", $data, "filename='" . $_GET['filename'] . "'");
}
break;
}
$sql = "SELECT filename, action FROM " . $table_prefix . "plugins WHERE action = '" . $db->escape(1) . "'";
$result_rows = $db->fetch_all_array($sql);
$plugin_list = new phphooks();
$plugin_headers = $plugin_list->get_plugins_header();
?>
include '../includes/libraries/fpdf/pdf.fonctions.php';
$pdf = new FPDF();
$pdf->AliasNbPages();
$pdf->AddPage();
$pdf->SetFont('Arial', 'B', 16);
$pdf->Cell(0, 10, $txt['pdf_del_title'], 0, 1, 'C', false);
$pdf->SetFont('Arial', 'I', 12);
$pdf->Cell(0, 10, $txt['pdf_del_date'] . date($_SESSION['settings']['date_format'] . " " . $_SESSION['settings']['time_format'], mktime(date("H"), date("i"), date("s"), date("m"), date("d"), date("Y"))), 0, 1, 'C', false);
$pdf->SetFont('Arial', 'B', 10);
$pdf->SetFillColor(15, 86, 145);
$pdf->cell(80, 6, $txt['label'], 1, 0, "C", 1);
$pdf->cell(75, 6, $txt['group'], 1, 0, "C", 1);
$pdf->cell(21, 6, $txt['date'], 1, 0, "C", 1);
$pdf->cell(15, 6, $txt['author'], 1, 1, "C", 1);
$pdf->SetFont('Arial', '', 10);
$rows = $db->fetch_all_array("\r\n SELECT u.login AS login, i.label AS label, i.id_tree AS id_tree \r\n FROM " . $pre . "log_items AS l \r\n INNER JOIN " . $pre . "users AS u ON (u.id=l.id_user) \r\n INNER JOIN " . $pre . "items AS i ON (i.id=l.id_item) \r\n WHERE l.action = 'Modification' \r\n AND l.raison = 'Mot de passe changé'\r\n ");
foreach ($rows as $reccord) {
if (date($_SESSION['settings']['date_format'], $reccord['date']) == $_POST['date']) {
//information about the pw creator
$res_user = mysql_query("SELECT login FROM " . $pre . "users WHERE id = '" . $reccord['id_user'] . "'");
$data_user = mysql_fetch_row($res_user);
//information about the pw itself
$res_item = mysql_query("SELECT label, id_tree FROM " . $pre . "items WHERE id = '" . $reccord['id_item'] . "'");
$data_item = mysql_fetch_row($res_item);
//get the tree grid
$arbo = $tree->getPath($reccord['id_tree'], true);
$arboTxt = "";
foreach ($arbo as $elem) {
if (empty($arboTxt)) {
$arboTxt = $elem->title;
} else {
$db = new Database(DB_SERVER, DB_USER, DB_PASS, DB_DATABASE);
if (strlen($app_token) <= 0) {
echo '<html>';
echo '<body>';
echo 'App token is required.';
echo '</body>';
echo '</html>';
exit(0);
}
$app = null;
$app_files = null;
$db->connect();
$tokens = $db->query_first("SELECT appid FROM app_tokens WHERE token = '{$app_token}'");
if ($tokens && isset($tokens["appid"])) {
$app_id = $tokens["appid"];
$user_app = $db->fetch_all_array("SELECT * FROM user_app WHERE privacy = 'private' AND appid = {$app_id}");
if ($user_app && count($user_app)) {
if (!$user_token) {
// not authorized error
$error = array("senchafiddle" => array("error" => "Unauthorized access. User token is required."));
echo json_encode($error);
$db->close();
exit(0);
}
//take uid from token
$user = $db->query_first("SELECT uid FROM user_tokens WHERE token = '{$user_token}'");
if (!$user || !isset($user["uid"])) {
// not authorized error
$error = array("senchafiddle" => array("error" => "Unauthorized access. User token is invalid."));
echo json_encode($error);
$db->close();
}
//ADD item
$new_id = $db->query_insert('items', array('label' => stripslashes($_POST['label']), 'description' => addslashes($_POST['desc']), 'pw' => $pw, 'url' => mysql_real_escape_string(stripslashes($_POST['url'])), 'id_tree' => $_POST['categorie'], 'login' => stripslashes($_POST['login']), 'inactif' => '0', 'restricted_to' => $resticted_to, 'perso' => $_POST['salt_key_set'] == 1 && isset($_POST['salt_key_set']) && $_POST['if_pf'] == 1 && isset($_POST['if_pf']) ? '1' : '0', 'anyone_can_modify' => $_POST['anyone_can_modify'] == "on" ? '1' : '0'));
//log
$db->query_insert('log_items', array('id_item' => $new_id, 'date' => mktime(date('H'), date('i'), date('s'), date('m'), date('d'), date('y')), 'id_user' => $_SESSION['user_id'], 'action' => 'at_creation'));
//Add tags
$tags = explode(' ', $_POST['tags']);
foreach ($tags as $tag) {
if (!empty($tag)) {
$db->query_insert('tags', array('item_id' => $new_id, 'tag' => strtolower($tag)));
}
}
// Check if any files have been added
if (!empty($_POST['random_id_from_files'])) {
$sql = "SELECT id\r\n FROM " . $pre . "files\r\n WHERE id_item=" . $_POST['random_id_from_files'];
$rows = $db->fetch_all_array($sql);
foreach ($rows as $reccord) {
//update item_id in files table
$db->query_update('files', array('id_item' => $new_id), "id='" . $reccord['id'] . "'");
}
}
//Update CACHE table
UpdateCacheTable("add_value", $new_id);
//Announce by email?
if ($_POST['annonce'] == 1) {
require_once "class.phpmailer.php";
//envoyer email
$destinataire = explode(';', $_POST['diffusion']);
foreach ($destinataire as $mail_destinataire) {
//envoyer ay destinataire
$mail = new PHPMailer();
}
//delete all associated items to this KB
$db->query_delete("kb_items", array('kb_id' => $new_id));
//add all items associated to this KB
foreach (explode(',', $kb_associated_to) as $item_id) {
$db->query_insert("kb_items", array('kb_id' => $new_id, 'item_id' => $item_id));
}
echo '[ { "status" : "done" } ]';
} else {
echo '[ { "status" : "none" } ]';
}
break;
case "open_kb":
$row = $db->query("SELECT k.id AS id, k.label AS label, k.description AS description, k.category_id AS category_id, k.author_id AS author_id, k.anyone_can_modify AS anyone_can_modify,\r\n\t\t\t\t\t\t\tu.login AS login, c.category AS category\r\n\t\t\t\t\t\t\tFROM " . $pre . "kb AS k\r\n\t\t\t\t\t\t\tINNER JOIN " . $pre . "kb_categories AS c ON (c.id = k.category_id)\r\n\t\t\t\t\t\t\tINNER JOIN " . $pre . "users AS u ON (u.id = k.author_id)\r\n\t\t\t\t\t\t\tWHERE k.id = '" . $_POST['id'] . "'\r\n\t\t\t");
$ret = $db->fetch_array($row);
//select associated items
$rows = $db->fetch_all_array("SELECT item_id\r\n FROM " . $pre . "kb_items\r\n WHERE kb_id = '" . $_POST['id'] . "'\r\n ");
$arrOptions = array();
foreach ($rows as $reccord) {
//echo '$("#kb_associated_to option[value='.$reccord['item_id'].']").attr("selected","selected");';
array_push($arrOptions, $reccord['item_id']);
}
$arrOutput = array("label" => $ret['label'], "category" => $ret['category'], "description" => $ret['description'], "anyone_can_modify" => $ret['anyone_can_modify'], "options" => $arrOptions);
echo json_encode($arrOutput, JSON_HEX_TAG | JSON_HEX_APOS | JSON_HEX_QUOT | JSON_HEX_AMP);
break;
case "delete_kb":
$db->query_delete("kb", array('id' => $_POST['id']));
//echo 'oTable = $("#t_kb").dataTable();LoadingPage();oTable.fnDraw();';
break;
}
}
public function allXtype($idT)
{
$db = new Database();
$q = "select * from marker where tipo = {$idT}";
return $db->fetch_all_array($q);
$db->close();
}
$error = "connection";
}
// Fermeture de la connexion et du pointeur de fichier
ftp_close($conn_id);
fclose($handle);
//DELETE FILE
unlink($local_file);
echo '[{"error":"' . $error . '" , "output":"' . $text . '"}]';
break;
###########################################################
#CASE for refreshing all Personal Folders
###########################################################
#CASE for refreshing all Personal Folders
case "admin_action_check_pf":
//get through all users
$rows = $db->fetch_all_array("SELECT id,login,email FROM " . $pre . "users ORDER BY login ASC");
foreach ($rows as $record) {
//update PF field for user
$db->query_update('users', array('personal_folder' => '1'), "id='" . $record['id'] . "'");
//if folder doesn't exist then create it
$data = $db->fetch_row("SELECT COUNT(*) FROM " . $pre . "nested_tree WHERE title = '" . $record['id'] . "' AND parent_id = 0");
if ($data[0] == 0) {
//If not exist then add it
$db->query_insert("nested_tree", array('parent_id' => '0', 'title' => $record['id'], 'personal_folder' => '1'));
} else {
//If exists then update it
$db->query_update('nested_tree', array('personal_folder' => '1'), array("title" => $record['id'], 'parent_id' => '0'));
}
}
//Delete PF for deleted users
$db->query("\r\n\t\t\tDELETE " . $pre . "nested_tree\r\n \t\tFROM " . $pre . "nested_tree\r\n \t\tLEFT JOIN " . $pre . "users\r\n \t\tON " . $pre . "nested_tree.title = " . $pre . "users.id\r\n \t\tWHERE " . $pre . "users.id IS NULL AND " . $pre . "nested_tree.parent_id=0 AND " . $pre . "nested_tree.title REGEXP ('[0-9]')\r\n \t");
function CPMStats()
{
global $server, $user, $pass, $database, $pre;
require_once 'includes/settings.php';
// connect to the server
require_once "class.database.php";
$db = new Database($server, $user, $pass, $database, $pre);
$db->connect();
// Prepare stats to be sent
// Count no FOLDERS
$data_folders = $db->fetch_row("SELECT COUNT(*) FROM " . $pre . "nested_tree");
// Count no USERS
$data_users = $db->fetch_row("SELECT COUNT(*) FROM " . $pre . "users");
// Count no ITEMS
$data_items = $db->fetch_row("SELECT COUNT(*) FROM " . $pre . "items");
// Get info about installation
$data_system = array();
$rows = $db->fetch_all_array("SELECT valeur,intitule FROM " . $pre . "misc WHERE type = 'admin' AND intitule IN ('enable_pf_feature','log_connections','cpassman_version')");
foreach ($rows as $reccord) {
if ($reccord['intitule'] == 'enable_pf_feature') {
$data_system['enable_pf_feature'] = $reccord['valeur'];
} else {
if ($reccord['intitule'] == 'cpassman_version') {
$data_system['cpassman_version'] = $reccord['valeur'];
} else {
if ($reccord['intitule'] == 'log_connections') {
$data_system['log_connections'] = $reccord['valeur'];
}
}
}
}
// Get the actual stats.
$stats_to_send = array('uid' => md5(SALT), 'time_added' => time(), 'users' => $data_users[0], 'folders' => $data_folders[0], 'items' => $data_items[0], 'cpm_version' => $data_system['cpassman_version'], 'enable_pf_feature' => $data_system['enable_pf_feature'], 'log_connections' => $data_system['log_connections']);
// Encode all the data, for security.
foreach ($stats_to_send as $k => $v) {
$stats_to_send[$k] = urlencode($k) . '=' . urlencode($v);
}
// Turn this into the query string!
$stats_to_send = implode('&', $stats_to_send);
fopen("http://www.vag-technique.fr/divers/cpm_stats/collect_stats.php?" . $stats_to_send, 'r');
// update the actual time
$db->query_update("misc", array('valeur' => time()), "type='admin' AND intitule = 'send_stats_time'");
}
$_SESSION['groupes_interdits'] = @implode(';', $data['groupes_interdits']);
} else {
$_SESSION['groupes_interdits'] = array();
}
//User's roles
$_SESSION['fonction_id'] = $data['fonction_id'];
$_SESSION['user_roles'] = explode(";", $data['fonction_id']);
//build array of roles
$_SESSION['arr_roles'] = array();
foreach (array_filter(explode(';', $_SESSION['fonction_id'])) as $role) {
$res_roles = $db->query_first("SELECT title FROM " . $pre . "roles_title WHERE id = " . $role);
$_SESSION['arr_roles'][$role] = array('id' => $role, 'title' => $res_roles['title']);
}
//build complete array of roles
$_SESSION['arr_roles_full'] = array();
$rows = $db->fetch_all_array("\r\n\t\t\t\t\t\t\t\tSELECT id, title\r\n\t\t\t\t\t\t\t\tFROM " . $pre . "roles_title A\r\n\t\t\t\t\t\t\t\tORDER BY title ASC");
foreach ($rows as $reccord) {
$_SESSION['arr_roles_full'][$reccord['id']] = array('id' => $reccord['id'], 'title' => $reccord['title']);
}
//Set some settings
$_SESSION['user']['find_cookie'] = false;
$_SESSION['settings']['update_needed'] = "";
// Update table
$db->query_update("users", array('key_tempo' => $_SESSION['key'], 'last_connexion' => mktime(date("h"), date("i"), date("s"), date("m"), date("d"), date("Y")), 'timestamp' => mktime(date("h"), date("i"), date("s"), date("m"), date("d"), date("Y")), 'disabled' => 0, 'no_bad_attempts' => 0), "id=" . $data['id']);
//Get user's rights
IdentifyUserRights($data['groupes_visibles'], $_SESSION['groupes_interdits'], $data['admin'], $data['fonction_id'], false);
//Get some more elements
$_SESSION['hauteur_ecran'] = $data_received['hauteur_ecran'];
//Get last seen items
$_SESSION['latest_items_tab'][] = "";
foreach ($_SESSION['latest_items'] as $item) {
* This library is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
*/
include '../includes/settings.php';
header("Content-type: text/html; charset=utf-8");
require_once '../includes/libraries/crypt/aes.class.php';
// AES PHP implementation
require_once '../includes/libraries/crypt/aesctr.class.php';
// AES Counter Mode implementation
// connect to the server
require_once "../sources/class.database.php";
$db = new Database($server, $user, $pass, $database, $pre);
$db->connect();
//get backups infos
$rows = $db->fetch_all_array("SELECT * FROM " . $pre . "misc WHERE type = 'settings'");
foreach ($rows as $reccord) {
$settings[$reccord['intitule']] = $reccord['valeur'];
}
if (!empty($settings['bck_script_filename']) && !empty($settings['bck_script_path'])) {
//get all of the tables
$tables = array();
$result = mysql_query('SHOW TABLES');
while ($row = mysql_fetch_row($result)) {
$tables[] = $row[0];
}
$return = "";
//cycle through each table and format the data
foreach ($tables as $table) {
$result = mysql_query('SELECT * FROM ' . $table);
$num_fields = mysql_num_fields($result);
public function allEventTypes()
{
$db = new Database();
$q = "select id,nombre from tipoE";
return $db->fetch_all_array($q);
$db->close();
}
if ($_POST['action'] == "delete") {
//delete user in database
$db->query_delete('users', array('id' => $_POST['id']));
//delete personal folder and subfolders
require_once "NestedTree.class.php";
$tree = new NestedTree($pre . 'nested_tree', 'id', 'parent_id', 'title');
//Get personal folder ID
$data = $db->fetch_row("SELECT id FROM " . $pre . "nested_tree WHERE title = '" . $_POST['id'] . "' AND personal_folder = 1");
// Get through each subfolder
if (!empty($data[0])) {
$folders = $tree->getDescendants($data[0], true);
foreach ($folders as $folder) {
//delete folder
$db->query("DELETE FROM " . $pre . "nested_tree WHERE id = '" . $folder->id . "' AND personal_folder = 1");
//delete items & logs
$items = $db->fetch_all_array("SELECT id FROM " . $pre . "items WHERE id_tree='" . $folder->id . "' AND perso = 1");
foreach ($items as $item) {
//Delete item
$db->query("DELETE FROM " . $pre . "items WHERE id = " . $item['id']);
//log
$db->query("DELETE FROM " . $pre . "log_items WHERE id_item = " . $item['id']);
}
}
//rebuild tree
$tree = new NestedTree($pre . 'nested_tree', 'id', 'parent_id', 'title');
$tree->rebuild();
}
} else {
//lock user in database
$db->query_update('users', array('disabled' => 1, 'key_tempo' => ""), "id=" . $_POST['id']);
}
$db->query_insert('restriction_to_roles', array('role_id' => $role, 'item_id' => $new_id));
}
}
//log
$db->query_insert('log_items', array('id_item' => $new_id, 'date' => mktime(date('H'), date('i'), date('s'), date('m'), date('d'), date('y')), 'id_user' => $_SESSION['user_id'], 'action' => 'at_creation'));
//Add tags
$tags = explode(' ', $tags);
foreach ($tags as $tag) {
if (!empty($tag)) {
$db->query_insert('tags', array('item_id' => $new_id, 'tag' => strtolower($tag)));
}
}
// Check if any files have been added
if (!empty($data_received['random_id_from_files'])) {
$sql = "SELECT id\r\n\t\t FROM " . $pre . "files\r\n\t\t WHERE id_item=" . $data_received['random_id_from_files'];
$rows = $db->fetch_all_array($sql);
foreach ($rows as $reccord) {
//update item_id in files table
$db->query_update('files', array('id_item' => $new_id), "id='" . $reccord['id'] . "'");
}
}
//Update CACHE table
UpdateCacheTable("add_value", $new_id);
//Announce by email?
if ($data_received['annonce'] == 1) {
require_once "class.phpmailer.php";
//envoyer email
$destinataire = explode(';', $data_received['diffusion']);
foreach ($destinataire as $mail_destinataire) {
//envoyer ay destinataire
$mail = new PHPMailer();
$tree = new NestedTree($pre . 'nested_tree', 'id', 'parent_id', 'title');
$tree->rebuild();
} else {
if (isset($_POST['type'])) {
switch ($_POST['type']) {
// CASE where DELETING a group
case "supprimer_groupe":
// this will delete all sub folders and items associated
$tree = new NestedTree($pre . 'nested_tree', 'id', 'parent_id', 'title');
// Get through each subfolder
$folders = $tree->getDescendants($_POST['id'], true);
foreach ($folders as $folder) {
//delete folder
$db->query("DELETE FROM " . $pre . "nested_tree WHERE id = " . $folder->id);
//delete items & logs
$items = $db->fetch_all_array("SELECT id FROM " . $pre . "items WHERE id_tree='" . $folder->id . "'");
foreach ($items as $item) {
//Delete item
$db->query("DELETE FROM " . $pre . "items WHERE id = " . $item['id']);
//log
$db->query("DELETE FROM " . $pre . "log_items WHERE id_item = " . $item['id']);
}
}
//rebuild tree
$tree = new NestedTree($pre . 'nested_tree', 'id', 'parent_id', 'title');
$tree->rebuild();
//Actualize the variable
$_SESSION['nb_folders']--;
//Refresh the page
echo 'RefreshPage("form_groupes");';
break;
$display_nb = 8;
//count nb of roles
$roles_count = $db->fetch_row("SELECT COUNT(*) FROM " . $pre . "roles_title");
if ($roles_count > $display_nb) {
if (!isset($_POST['start']) || $_POST['start'] == 0) {
$start = 0;
$previous = 0;
} else {
$start = intval($_POST['start']);
$previous = $start - $display_nb;
}
$sql_limit = " LIMIT {$start}, {$display_nb}";
$next = $start + $display_nb;
}
//Display table header
$rows = $db->fetch_all_array("\r\n\t\t\t\tSELECT id, title, allow_pw_change\r\n\t\t\t\tFROM " . $pre . "roles_title\r\n\t\t\t\tORDER BY title ASC" . $sql_limit);
foreach ($rows as $reccord) {
if ($reccord['allow_pw_change'] == 1) {
$allow_pw_change = ' <img id=\'img_apcfr_' . $reccord['id'] . '\' src=\'includes/images/ui-text-field-password-green.png\' onclick=\'allow_pw_change_for_role(' . $reccord['id'] . ', 0)\' style=\'cursor:pointer;\' title=\'' . $txt['role_cannot_modify_all_seen_items'] . '\'>';
} else {
$allow_pw_change = ' <img id=\'img_apcfr_' . $reccord['id'] . '\' src=\'includes/images/ui-text-field-password-red.png\' onclick=\'allow_pw_change_for_role(' . $reccord['id'] . ', 1)\' style=\'cursor:pointer;\' title=\'' . $txt['role_can_modify_all_seen_items'] . '\'>';
}
$texte .= '<th style=\'font-size:10px;min-width:60px;\' class=\'edit_role\'>' . $reccord['title'] . '<br><img src=\'includes/images/ui-tab--pencil.png\' onclick=\'edit_this_role(' . $reccord['id'] . ',"' . htmlentities($reccord['title'], ENT_QUOTES) . '")\' style=\'cursor:pointer;\'> <img src=\'includes/images/ui-tab--minus.png\' style=\'cursor:pointer;\' onclick=\'delete_this_role(' . $reccord['id'] . ',"' . htmlentities($reccord['title'], ENT_QUOTES) . '")\'>' . $allow_pw_change . '</th>';
array_push($arrRoles, $reccord['id']);
}
$texte .= '</tr></thead><tbody>';
//Display each folder with associated rights by role
$i = 0;
foreach ($tree as $node) {
if (in_array($node->id, $_SESSION['groupes_visibles']) && !in_array($node->id, $_SESSION['personal_visible_groups'])) {
$ident = "";
global $k, $settings;
include '../includes/settings.php';
header("Content-type: text/html; charset==utf-8");
require_once "class.database.php";
$db = new Database($server, $user, $pass, $database, $pre);
$db->connect();
//Columns name
$aColumns = array('id', 'label', 'description', 'tags', 'id_tree', 'folder', 'login');
//init SQL variables
$sOrder = $sLimit = "";
$sWhere = "id_tree IN(" . implode(',', $_SESSION['groupes_visibles']) . ")";
//limit search to the visible folders
//get list of personal folders
$array_pf = array();
$list_pf = "";
$rows = $db->fetch_all_array("SELECT id FROM " . $pre . "nested_tree WHERE personal_folder=1 AND NOT title = " . $_SESSION['user_id']);
foreach ($rows as $reccord) {
if (!in_array($reccord['id'], $array_pf)) {
//build an array of personal folders ids
array_push($array_pf, $reccord['id']);
//build also a string with those ids
if (empty($list_pf)) {
$list_pf = $reccord['id'];
} else {
$list_pf .= ',' . $reccord['id'];
}
}
}
/* BUILD QUERY */
//Paging
$sLimit = "";
<?php
if (isset($_POST['username']) && isset($_POST['password'])) {
$username = $_POST['username'];
$password = $_POST['password'];
include_once '../Database.php';
//$host, $user, $pass, $name
$db = new Database("pdb10.runhosting.com", "998905_mx", "mxmichigan1234", "998905_mx");
$q = "SELECT * FROM users WHERE username = '******' AND password = '******'";
$r = $db->query($q);
$results = $db->fetch_all_array($q);
if (count($results) == 1) {
if (isset($_SESSION['mxmichigan'])) {
session_unset();
session_destroy();
}
include_once 'session.php';
$_SESSION['mxmichigan']['username'] = $results[0]['username'];
$_SESSION['mxmichigan']['type'] = $results[0]['type'];
$_SESSION['mxmichigan']['AUTH'] = "true";
if ($_SESSION['mxmichigan']['type'] == 1) {
header("Location: ../../admin/dashboard.php");
} else {
if ($_SESSION['mxmichigan']['type'] == 1) {
header("Location: ../../my/account");
}
}
print_r($results);
print_r($_SESSION['mxmichigan']);
//header("Location: dashboard.php");
} else {
{
return $this->mymenu;
}
}
$menu = new menu();
include "../config.php";
//include PHP HOOKS Class
include_once "engine/phphooks.class.php";
//create instance of class
$hook = new Phphooks();
//fetch the active plugins name form db. store in array $plugins.
include_once 'engine/database.class.php';
$db = new Database($hostname, $usename, $password, $database, '');
$db->connect();
$sql = "SELECT filename FROM Plugins WHERE action = '" . $db->escape(1) . "'";
$result_rows = $db->fetch_all_array($sql);
foreach ($result_rows as $result_rows) {
$plugins[] = $result_rows['filename'];
}
//unset means load all plugins in the plugin fold. set it, just load the plugins in this array.
$hook->active_plugins = $plugins;
//set hook to which plugin developers can assign functions
$hook->set_hook('test');
//load plugins from folder, if no argument is supplied, a 'plugins/' constant will be used
//trailing slash at the end is REQUIRED!
//this method will load all *.plugin.php files from given directory, INCLUDING subdirectories
$hook->load_plugins();
//now, this is a workaround because plugins, when included, can't access $hook variable, so we
//as developers have to basically redefine functions which can be called from plugin files
function add_hook($tag, $function, $priority = 10)
{
public function allFriendNotifications()
{
$db = new Database();
//Trae las notificaciones de idJ2 que sean de amistad
$q = "select n.id as id, n.idJ as j1, jn.idJ as j2, j.nombre as jugador, j.foto as Imagen, n.idTN as tipo from notificacion n \n\t\t\t\tinner join jugadorNotificacion jn on (n.id = jn.idN)\n\t\t\t\tinner join jugador j on (n.idJ = j.id)\n\t\t\t\twhere jn.idJ = {$this->idJ2} \n\t\t\t\tand n.idTN in (1,2)\n\t\t\t\torder by jn.visto, n.fecha limit 10";
$r = $db->query($q);
if ($db->num_rows($r) > 0) {
return $db->fetch_all_array($q);
} else {
return 0;
}
$db->close();
}