$system = new setting();
if (array_key_exists("proccess", $_POST)) {
if ($_POST['proccess'] == 'logout') {
session_start();
echo $dbClass->logout();
}
}
if (array_key_exists("logSystem", $_POST)) {
//3 = no user exist,2 = no username password,1 = sucesss and redirec
if (isset($_POST['userName']) && !empty($_POST['userName']) && isset($_POST['password']) && !empty($_POST['password'])) {
$user = $dbClass->filterData($_POST['userName']);
$pass = $dbClass->filterData($_POST['password']);
$userQuery = "SELECT\nat_system_users.id,\nat_system_users.user_name,\nat_system_users.pwd,\nat_system_users.approved,\nat_system_users.user_level\nFROM\nat_system_users\nWHERE\nat_system_users.approved = '1' AND\nat_system_users.user_name = '{$user}' LIMIT 1";
$userAvailability = $system->getCountByQuery($userQuery);
if ($userAvailability > 0) {
$userDetails = $system->prepareSelectQuery($userQuery);
foreach ($userDetails as $ud) {
if ($ud['pwd'] == $dbClass->PasswordHash($pass, substr($ud['pwd'], 0, 9))) {
//Set Cookie if select remember btn
session_start();
$_SESSION['user_id'] = $ud['id'];
$_SESSION['user_name'] = $ud['user_name'];
$_SESSION['user_level'] = $ud['user_level'];
$_SESSION['HTTP_USER_AGENT'] = md5($_SERVER['HTTP_USER_AGENT']);
if (isset($_POST['remember']) && $_POST['remember'] == 'r') {
setcookie("user_id", $_SESSION['user_id'], time() + 60 * 60 * 24 * COOKIE_TIME_OUT, "/");
setcookie("user_name", $_SESSION['user_name'], time() + 60 * 60 * 24 * COOKIE_TIME_OUT, "/");
}
echo json_encode(array(array("msgType" => 0, "msg" => "Successfully Logged to the System")));
} else {
echo json_encode(array(array("msgType" => 1, "msg" => "Password was incorrect.Please Check your Password")));
require_once '../config/dbc.php';
require_once '../class/database.php';
require_once '../class/systemSetting.php';
$system = new setting();
$database = new database();
MainConfig::connectDB();
if (array_key_exists("action", $_POST)) {
if ($_POST['action'] == 'update_emp_data') {
$emp_name = mysql_real_escape_string($_POST['emp_name']);
$system->prepareCommandQueryForAlertify("UPDATE `r_employee` SET `emp_id`='{$_POST['emp_id']}', `name`='{$_POST['emp_name']}", "Successfully Updated Employee Data", "Sorry ! Could not be Update");
} else {
if ($_POST['action'] == 'del_emp') {
$system->prepareCommandQueryForAlertify("DELETE FROM `r_employee` WHERE (`emp_id`='{$_POST['emp_id']}')", "Successfully Deleted Employee", "Sorry ! Could not be Delete");
} else {
if ($_POST['action'] == 'check_emp_no') {
$data = $system->prepareSelectQuery("SELECT\r\n COUNT(r_employee.emp_id) AS tot\r\n FROM `employee`\r\n WHERE\r\n lms_emp_data.lms_emp_NO = '{$_POST['id']}'");
if (!empty($data)) {
echo $current_tot = $data[0]['tot'];
}
} else {
if ($_POST['action'] == 'select_emp') {
$system->prepareSelectQueryForJSON("SELECT\r\n r_employee.emp_id,\r\n r_employee.name,\r\n r_employee.gender\r\n r_employee.nic,\r\n FROM r_employee\r\n WHERE\r\n r_employee.emp_id = {$_POST['emp_id']}");
} else {
if ($_POST['action'] == 'save_paysheet') {
// $query = "INSERT INTO `paysheet` (`paysheet_id`,`emp_id`,`emp_name`,`nicno`,`nopay`,`late`,`meal`,`hours`,`hourlyrate`,`advance`,`basic`,`epfno`,`sallary`,`date`) VALUES ('{$_POST['paysheet_id']}','{$_POST['emp_id']}','{$_POST['name']}','{$_POST['nic']}','{$_POST['nopay']}','{$_POST['late']}','{$_POST['meal']}','{$_POST['othours']}','{$_POST['otrate']}','{$_POST['advance']}','{$_POST['basic']}','{$_POST['epfno']}',{$_POST['sallary']}','{$_POST['date']}')" ;
$query = "INSERT INTO `r_paysheet` (`paysheet_id`,`emp_id`,`emp_name`,`nicno`,`nopay`,`late`,`meal`,`hours`,`hourlyrate`,`advance`,`basic`,`epfno`,`sallary`,`epfval`,`date`) VALUES ('{$_POST['paysheet_id']}','{$_POST['emp_id']}','{$_POST['name']}','{$_POST['nic']}','{$_POST['nopay']}','{$_POST['late']}','{$_POST['meal']}','{$_POST['othours']}','{$_POST['otrate']}','{$_POST['advance']}','{$_POST['basic']}','{$_POST['epfno']}','{$_POST['salary']}','{$_POST['epfval']}','{$_POST['date']}')";
$errMsg = "paysheet not added to the database";
$succMsg = "employee paysheet was sucessfully added to the database";
$system->prepareCommandQueryForAlertify($query, $succMsg, $errMsg);
} else {
if ($_POST['action'] == 'max_id') {
<?php
require_once '../config/dbc.php';
require_once '../class/systemSetting.php';
$system = new setting();
if (array_key_exists("logSystem", $_POST)) {
if (isset($_POST['userName']) && !empty($_POST['userName']) && isset($_POST['password']) && !empty($_POST['password'])) {
$user = $_POST['userName'];
$pass = $_POST['password'];
$userQuery = "SELECT\nin_usr.usrID,\nin_usr.usrName,\nin_usr.usrPwd,\nin_usr.usrStatus,\nin_usr.usrLevel,\nin_usr.userBranchID\nFROM\nin_usr\nWHERE\n(in_usr.usrStatus = '1') AND\nin_usr.usrName = '{$user}' LIMIT 1";
$userAvailability = $system->getCountByQuery($userQuery);
if ($userAvailability > 0) {
$userDetails = $system->prepareSelectQuery($userQuery);
$encriptedPass = sha1('MDCC' . $pass . 'badboyes');
foreach ($userDetails as $ud) {
if ($ud['usrPwd'] == $encriptedPass) {
//Set Cookie if select remember btn
session_start();
$_SESSION['user_id'] = $ud['usrID'];
$_SESSION['user_name'] = $ud['usrName'];
$_SESSION['user_level'] = $ud['usrLevel'];
$_SESSION['usrStatus'] = $ud['usrStatus'];
$_SESSION['branch'] = $ud['userBranchID'];
$_SESSION['HTTP_USER_AGENT'] = md5($_SERVER['HTTP_USER_AGENT']);
if (isset($_POST['remember']) && $_POST['remember'] == 'r') {
setcookie("user_id", $_SESSION['user_id'], time() + 60 * 60 * 24 * COOKIE_TIME_OUT, "/");
setcookie("user_name", $_SESSION['user_name'], time() + 60 * 60 * 24 * COOKIE_TIME_OUT, "/");
}
echo json_encode(array(array("msgType" => 0, "msg" => "Successfully Logged to the System")));
} else {
echo json_encode(array(array("msgType" => 1, "msg" => "Password was incorrect.Please Check your Password")));
