private function submitNewUserThirdPartyRegistrationForm()
{
if (isset($_POST['txtUserEmail']) && isset($_POST['txtUserPhone']) && isset($_POST['txtUserInstitution']) && isset($_POST['txtUserPassword']) && isset($_POST['txtUserConfirmPassword'])) {
if (getUserIdFromEmail(escape($_POST['txtUserEmail']))) {
displayerror('The given E-mail Id is already registered on the website. Please use the respective forms\' Edit Registrants view to register the user to events.');
return;
}
if ($_POST['txtUserEmail'] == '' || $_POST['txtUserPassword'] == '') {
displayerror("Blank e-mail/password NOT allowed");
return;
} elseif (!eregi("^[_a-z0-9-]+(\\.[_a-z0-9-]+)*@[a-z0-9-]+(\\.[a-z0-9-]+)*(\\.[a-z]{2,3})\$", $_POST['txtUserEmail'])) {
displayerror("Invalid Email Id");
return;
} elseif ($_POST['txtUserPassword'] != $_POST['txtUserConfirmPassword']) {
displayerror("Passwords are not same");
return;
}
$userIdQuery = 'SELECT MAX(`user_id`) FROM `' . MYSQL_DATABASE_PREFIX . 'users`';
$userIdResult = mysql_query($userIdQuery);
$userIdRow = mysql_fetch_row($userIdResult);
$newUserId = 1;
if (!is_null($userIdRow[0])) {
$newUserId = $userIdRow[0] + 1;
}
$userEmail = escape(trim($_POST['txtUserEmail']));
$userPassword = $_POST['txtUserPassword'];
$userContactNumber = escape($_POST['txtUserPhone']);
$userInstitute = escape($_POST['txtUserInstitution']);
$userFullName = escape($_POST['txtUserFullName']);
$insertQuery = 'INSERT INTO `' . MYSQL_DATABASE_PREFIX . 'users`(`user_id`, `user_name`, `user_email`, `user_fullname`, `user_password`, `user_regdate`, `user_lastlogin`, `user_activated`) ' . "VALUES({$newUserId}, '{$userFullName}', '{$userEmail}', '{$userFullName}', MD5('{$userPassword}'), NOW(), NOW(), 1)";
$insertResult = mysql_query($insertQuery);
if (!$insertResult) {
displayerror('Error. Could not add user to database.');
return;
}
$contactElementId = 3;
$instituteElementId = 4;
$contactInsertQuery = "INSERT INTO `form_elementdata` (`user_id`, `page_modulecomponentid`, `form_elementid`, `form_elementdata`) " . "VALUES " . "({$newUserId}, 0, {$contactElementId}, '{$userContactNumber}'), " . "({$newUserId}, 0, {$instituteElementId}, '{$userInstitute}')";
$contactInsertResult = mysql_query($contactInsertQuery);
if (!$contactInsertResult) {
displayerror('Could not save the contact number of the user.');
} else {
displayinfo("User {$userEmail} has been registered to the pragyan website.");
}
} else {
displayerror('Invalid form submit data.');
}
}
/**
* function actionCorrect:
* handles all actions in Correct
* Corrects user submission and displays userList with their Marks
*/
public function actionCorrect()
{
if (isset($_POST['btnSetMark'])) {
$quizid = escape($_POST['quizid']);
$sectionid = escape($_POST['sectionid']);
$questionid = escape($_POST['questionid']);
$userid = escape($_POST['userid']);
$mark = escape($_POST['mark']);
$condition = "`page_modulecomponentid` = '{$quizid}' AND `quiz_sectionid` = '{$sectionid}' AND `quiz_questionid` = '{$questionid}' AND `user_id` = '{$userid}'";
$result = mysql_query("SELECT `quiz_submittedanswer` FROM `quiz_answersubmissions` WHERE {$condition}");
if ($row = mysql_fetch_array($result)) {
$result = mysql_fetch_array(mysql_query("SELECT `question_positivemarks`, `question_negativemarks` FROM `quiz_weightmarks` WHERE `page_modulecomponentid` = '{$quizid}' AND `question_weight` = (SELECT `quiz_questionweight` FROM `quiz_questions` WHERE `page_modulecomponentid` = '{$quizid}' AND `quiz_sectionid` = '{$sectionid}' AND `quiz_questionid` = '{$questionid}')"));
if ($_POST['mark'] > $result['question_positivemarks'] || $_POST['mark'] < -1 * $result['question_negativemarks']) {
displaywarning('Mark out of range for this question, so mark not set');
} else {
mysql_query("UPDATE `quiz_answersubmissions` SET `quiz_marksallotted` = {$mark} WHERE {$condition}");
updateSectionMarks($quizid);
displayinfo('Mark set');
}
} else {
displayerror('Unable to set value');
}
}
if (isset($_GET['useremail'])) {
$userId = getUserIdFromEmail($_GET['useremail']);
if ($userId) {
return getQuizCorrectForm($this->moduleComponentId, $userId);
} else {
displayerror('Error. Could not find user.');
}
} elseif (isset($_POST['btnDeleteUser']) && isset($_POST['hdnUserId']) && is_numeric($_POST['hdnUserId'])) {
$quizObject = $this->getNewQuizObject();
if ($quizObject !== false) {
$quizObject->deleteEntries(intval($_POST['hdnUserId']));
}
}
return getQuizUserListHtml($this->moduleComponentId);
}
function getProfileViewRegistrantsForm()
{
if (isset($_GET['subsubaction'])) {
if ($_GET['subsubaction'] == 'editregistrant' && (isset($_GET['useremail']) || isset($_POST['useremail']))) {
$email = isset($_GET['useremail']) ? escape($_GET['useremail']) : escape($_POST['useremail']);
return profile(getUserIdFromEmail($email), true);
} elseif ($_GET['subsubaction'] == 'deleteregistrant' && isset($_GET['useremail'])) {
deleteUserAccount(getUserIdFromEmail(escape($_GET['useremail'])));
}
}
return getProfileRegistrantsList($_GET['subaction'] == 'editsiteregistrants');
}
public function actionScore($moduleComponentId)
{
$moduleComponentId = $this->moduleComponentId;
$userId = $this->userId;
$userEmail = getUserEmail($userId);
$designationId = $this->getDesignationId($userId);
$designationName = $this->getDesignationNameFromDesignationId($designationId);
$teamId = $this->getTeamId($userId);
$htmlOut = '';
if (isset($_GET['subaction'])) {
if ($_GET['subaction'] == 'scoringUserDone') {
if (isset($_POST['btnSubmitScore'])) {
$targetUserEmail = $_GET['targetUserEmail'];
$userEmail = $_GET['userEmail'];
$targetUserId = getUserIdFromEmail($targetUserEmail);
$userId = getUserIdFromEmail($userEmail);
$query = "INSERT INTO `qaos_scoring`(`page_modulecomponentid`,`user_id`,`targetuser_id`,`qaos_score1`,`qaos_score2`,`qaos_score3`,`qaos_score4`,`qaos_score5`,`qaos_reason1`,`qaos_reason2`,`qaos_reason3`,`qaos_reason4`,`qaos_reason5`) VALUES({$moduleComponentId},{$userId},{$targetUserId},'" . escape($_POST['qaos_score1']) . "','" . escape($_POST['qaos_score2']) . "','" . escape($_POST['qaos_score3']) . "','" . escape($_POST['qaos_score4']) . "','" . escape($_POST['qaos_score5']) . "','" . escape($_POST['qaos_reason1']) . "','" . escape($_POST['qaos_reason2']) . "','" . escape($_POST['qaos_reason3']) . "','" . escape($_POST['qaos_reason4']) . "','" . escape($_POST['qaos_reason5']) . "')";
if (mysql_query($query)) {
displayinfo("Your scores have been stored.");
} else {
displayerror("There was some error in storing your scores");
}
}
}
if ($_GET['subaction'] == 'scoreUser') {
if (isset($_GET['userEmail'])) {
$targetUserEmail = $_GET['userEmail'];
$targetUserId = getUserIdFromEmail($_GET['userEmail']);
$targetUserFullName = getUserFullName($targetUserId);
if ($targetUserId == $userId) {
displayerror("You can not score yourself");
return $htmlOut;
}
$query = "SELECT * FROM `qaos_scoring` WHERE user_id='{$userId}' AND targetuser_id='{$targetUserId}'";
$result = mysql_query($query);
if (mysql_affected_rows() > 0) {
displayerror("You have already scored this person.");
return $htmlOut;
}
$htmlOut = "";
$htmlOut .= <<<SCOREUSER
\t\t\t\t\t<div class="scoreuser">
\t\t\t\t\t\t<form id="scoreuser" method="POST" onsubmit="return checkProfileForm(this)" action="./+score&userEmail={$userEmail}&targetUserEmail={$targetUserEmail}&subaction=scoringUserDone">
\t\t\t\t\t\t\t<fieldset style="width:80%">
\t\t\t\t\t\t\t\t<legend><b>Score, {$targetUserFullName}</b></legend>
\t\t\t\t\t\t\t\t<table>
\t\t\t\t\t\t\t\t\t<tr>
\t\t\t\t\t\t\t\t\t\t<td>
\t\t\t\t\t\t\t\t\t\t\t<b>Question No. 1:</b><br />
\t\t\t\t\t\t\t\t\t\t\tIs the person regular and punctual in his/her work/meetings?<br />
\t\t\t\t\t\t\t\t\t\t</td>
\t\t\t\t\t\t\t\t\t\t
\t\t\t\t\t\t\t\t\t</tr>
\t\t\t\t\t\t\t\t\t<tr>
\t\t\t\t\t\t\t\t\t\t<td>
\t\t\t\t\t\t\t\t\t\t\t<br />
\t\t\t\t\t\t\t\t\t\t</td>
\t\t\t\t\t\t\t\t\t</tr>
\t\t\t\t\t\t\t\t\t<tr>
\t\t\t\t\t\t\t\t\t\t<td> Your Score:
\t\t\t\t\t\t\t\t\t\t</td>\t
\t\t\t\t\t\t\t\t\t\t<td>
\t\t\t\t\t\t\t\t\t\t\t<select name="qaos_score1" id="qaos_score1">
\t\t\t\t\t\t\t\t\t\t\t\t<option value="1">1</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="2">2</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="3">3</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="4">4</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="5">5</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="6">6</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="7">7</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="8">8</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="9">9</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="10">10</option>
\t\t\t\t\t\t\t\t\t\t\t</select>
\t\t\t\t\t\t\t\t\t\t</td>
\t\t\t\t\t\t\t\t\t</tr>
\t\t\t\t\t\t\t\t\t<tr>
\t\t\t\t\t\t\t\t\t\t<td> Your Reason/Comments:
\t\t\t\t\t\t\t\t\t\t</td>
\t\t\t\t\t\t\t\t\t\t<td>
\t\t\t\t\t\t\t\t\t\t\t<textarea rows="3" columns="20" name="qaos_reason1" id="qaos_reason1" title="Enter your comments/reason here"></textarea>
\t\t\t\t\t\t\t\t\t\t</td>\t
\t\t\t\t\t\t\t\t\t</tr>
\t\t\t\t\t\t\t\t\t<tr>
\t\t\t\t\t\t\t\t\t\t<td>
\t\t\t\t\t\t\t\t\t\t\t<b>Question No. 2:</b><br />
\t\t\t\t\t\t\t\t\t\t\tIs this person a team worker and co ordinates with others well?<br />
\t\t\t\t\t\t\t\t\t\t</td>
\t\t\t\t\t\t\t\t\t\t
\t\t\t\t\t\t\t\t\t</tr>
\t\t\t\t\t\t\t\t\t<tr>
\t\t\t\t\t\t\t\t\t\t<td>
\t\t\t\t\t\t\t\t\t\t\t<br />
\t\t\t\t\t\t\t\t\t\t</td>
\t\t\t\t\t\t\t\t\t</tr>
\t\t\t\t\t\t\t\t\t<tr>
\t\t\t\t\t\t\t\t\t\t<td> Your Score:
\t\t\t\t\t\t\t\t\t\t</td>\t
\t\t\t\t\t\t\t\t\t\t<td>
\t\t\t\t\t\t\t\t\t\t\t<select name="qaos_score2" id="qaos_score2">
\t\t\t\t\t\t\t\t\t\t\t\t<option value="1">1</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="2">2</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="3">3</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="4">4</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="5">5</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="6">6</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="7">7</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="8">8</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="9">9</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="10">10</option>
\t\t\t\t\t\t\t\t\t\t\t</select>
\t\t\t\t\t\t\t\t\t\t</td>
\t\t\t\t\t\t\t\t\t</tr>
\t\t\t\t\t\t\t\t\t<tr>
\t\t\t\t\t\t\t\t\t\t<td> Your Reason/Comments:
\t\t\t\t\t\t\t\t\t\t</td>
\t\t\t\t\t\t\t\t\t\t<td>
\t\t\t\t\t\t\t\t\t\t\t<textarea rows="3" columns="20" name="qaos_reason2" id="qaos_reason2" title="Enter your comments/reason here"></textarea>
\t\t\t\t\t\t\t\t\t\t</td>\t
\t\t\t\t\t\t\t\t\t</tr>
\t\t\t\t\t\t\t\t\t<tr>
\t\t\t\t\t\t\t\t\t\t<td>
\t\t\t\t\t\t\t\t\t\t\t<b>Question No. 3:</b><br />
\t\t\t\t\t\t\t\t\t\t\tHow is his/her promptness in completing work?<br />
\t\t\t\t\t\t\t\t\t\t</td>
\t\t\t\t\t\t\t\t\t\t
\t\t\t\t\t\t\t\t\t</tr>
\t\t\t\t\t\t\t\t\t<tr>
\t\t\t\t\t\t\t\t\t\t<td>
\t\t\t\t\t\t\t\t\t\t\t<br />
\t\t\t\t\t\t\t\t\t\t</td>
\t\t\t\t\t\t\t\t\t</tr>
\t\t\t\t\t\t\t\t\t<tr>
\t\t\t\t\t\t\t\t\t\t<td> Your Score:
\t\t\t\t\t\t\t\t\t\t</td>\t
\t\t\t\t\t\t\t\t\t\t<td>
\t\t\t\t\t\t\t\t\t\t\t<select name="qaos_score3" id="qaos_score3">
\t\t\t\t\t\t\t\t\t\t\t\t<option value="1">1</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="2">2</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="3">3</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="4">4</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="5">5</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="6">6</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="7">7</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="8">8</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="9">9</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="10">10</option>
\t\t\t\t\t\t\t\t\t\t\t</select>
\t\t\t\t\t\t\t\t\t\t</td>
\t\t\t\t\t\t\t\t\t</tr>
\t\t\t\t\t\t\t\t\t<tr>
\t\t\t\t\t\t\t\t\t\t<td> Your Reason/Comments:
\t\t\t\t\t\t\t\t\t\t</td>
\t\t\t\t\t\t\t\t\t\t<td>
\t\t\t\t\t\t\t\t\t\t\t<textarea rows="3" columns="20" name="qaos_reason3" id="qaos_reason3" title="Enter your comments/reason here"></textarea>
\t\t\t\t\t\t\t\t\t\t</td>\t
\t\t\t\t\t\t\t\t\t</tr>
\t\t\t\t\t\t\t\t\t<tr>
\t\t\t\t\t\t\t\t\t\t<td>
\t\t\t\t\t\t\t\t\t\t\t<b>Question No. 4:</b><br />
\t\t\t\t\t\t\t\t\t\t\tHow is his/her interest/enthusiasm/initiative in his/her work?<br />
\t\t\t\t\t\t\t\t\t\t</td>
\t\t\t\t\t\t\t\t\t\t
\t\t\t\t\t\t\t\t\t</tr>
\t\t\t\t\t\t\t\t\t<tr>
\t\t\t\t\t\t\t\t\t\t<td>
\t\t\t\t\t\t\t\t\t\t\t<br />
\t\t\t\t\t\t\t\t\t\t</td>
\t\t\t\t\t\t\t\t\t</tr>
\t\t\t\t\t\t\t\t\t<tr>
\t\t\t\t\t\t\t\t\t\t<td> Your Score:
\t\t\t\t\t\t\t\t\t\t</td>\t
\t\t\t\t\t\t\t\t\t\t<td>
\t\t\t\t\t\t\t\t\t\t\t<select name="qaos_score4" id="qaos_score4">
\t\t\t\t\t\t\t\t\t\t\t\t<option value="1">1</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="2">2</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="3">3</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="4">4</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="5">5</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="6">6</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="7">7</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="8">8</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="9">9</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="10">10</option>
\t\t\t\t\t\t\t\t\t\t\t</select>
\t\t\t\t\t\t\t\t\t\t</td>
\t\t\t\t\t\t\t\t\t</tr>
\t\t\t\t\t\t\t\t\t<tr>
\t\t\t\t\t\t\t\t\t\t<td> Your Reason/Comments:
\t\t\t\t\t\t\t\t\t\t</td>
\t\t\t\t\t\t\t\t\t\t<td>
\t\t\t\t\t\t\t\t\t\t\t<textarea rows="3" columns="20" name="qaos_reason4" id="qaos_reason4" title="Enter your comments/reason here"></textarea>
\t\t\t\t\t\t\t\t\t\t</td>\t
\t\t\t\t\t\t\t\t\t</tr>
\t\t\t\t\t\t\t\t\t<tr>
\t\t\t\t\t\t\t\t\t\t<td>
\t\t\t\t\t\t\t\t\t\t\t<b>Question No. 5:</b><br />
\t\t\t\t\t\t\t\t\t\t\tHow is his/her potential managerial abilities?<br />
\t\t\t\t\t\t\t\t\t\t</td>
\t\t\t\t\t\t\t\t\t\t
\t\t\t\t\t\t\t\t\t</tr>
\t\t\t\t\t\t\t\t\t<tr>
\t\t\t\t\t\t\t\t\t\t<td>
\t\t\t\t\t\t\t\t\t\t\t<br />
\t\t\t\t\t\t\t\t\t\t</td>
\t\t\t\t\t\t\t\t\t</tr>
\t\t\t\t\t\t\t\t\t<tr>
\t\t\t\t\t\t\t\t\t\t<td> Your Score:
\t\t\t\t\t\t\t\t\t\t</td>\t
\t\t\t\t\t\t\t\t\t\t<td>
\t\t\t\t\t\t\t\t\t\t\t<select name="qaos_score5" id="qaos_score5">
\t\t\t\t\t\t\t\t\t\t\t\t<option value="1">1</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="2">2</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="3">3</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="4">4</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="5">5</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="6">6</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="7">7</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="8">8</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="9">9</option>
\t\t\t\t\t\t\t\t\t\t\t\t<option value="10">10</option>
\t\t\t\t\t\t\t\t\t\t\t</select>
\t\t\t\t\t\t\t\t\t\t</td>
\t\t\t\t\t\t\t\t\t</tr>
\t\t\t\t\t\t\t\t\t<tr>
\t\t\t\t\t\t\t\t\t\t<td> Your Reason/Comments:
\t\t\t\t\t\t\t\t\t\t</td>
\t\t\t\t\t\t\t\t\t\t<td>
\t\t\t\t\t\t\t\t\t\t\t<textarea rows="3" columns="20" name="qaos_reason5" id="qaos_reason5" title="Enter your comments/reason here"></textarea>
\t\t\t\t\t\t\t\t\t\t</td>\t
\t\t\t\t\t\t\t\t\t</tr>
\t\t\t\t\t\t\t\t\t<tr>
\t\t\t\t\t\t\t\t\t\t<td>
\t\t\t\t\t\t\t\t\t\t\t<input type="submit" name="btnSubmitScore" id="submitbutton" value="Save Scores">
\t\t\t\t\t\t\t\t\t\t</td>
\t\t\t\t\t\t\t\t\t</tr>
\t\t\t\t\t\t\t\t\t
\t\t\t\t\t\t\t\t</table>
\t\t\t\t\t\t\t</fieldset>
\t\t\t\t\t\t</form>
\t\t\t\t\t</div>
SCOREUSER;
return $htmlOut;
}
}
}
$query = "SELECT `user_id`,un.`qaos_unit_id`,d.`qaos_designation_name`,t.`qaos_team_name` FROM `qaos_users` u,`qaos_designations` d,`qaos_teams` t,`qaos_units` un WHERE un.`qaos_unit_id` = u.`qaos_unit_id` AND un.`qaos_team_id`='{$teamId}' AND d.`qaos_designation_id` = un.`qaos_designation_id` AND t.`qaos_team_id`=un.`qaos_team_id`";
$queryResult = mysql_query($query);
$arrayUsers = array();
$arrayUnits = array();
$arr = array();
$designation = array();
$team = array();
while ($queryArray = mysql_fetch_assoc($queryResult)) {
$designation[$queryArray['qaos_unit_id']] = $queryArray['qaos_designation_name'];
$team[$queryArray['qaos_unit_id']] = $queryArray['qaos_team_name'];
$arr[$queryArray['qaos_unit_id']][] = $queryArray['user_id'];
}
foreach ($arr as $unitId => $userId) {
$htmlOut .= "<li><i>" . $team[$unitId] . " -</i> <b>" . $designation[$unitId] . "</b> : <br />";
$userFullNameArray = array();
foreach ($userId as $i) {
$htmlOut .= "<a href=\"./+score&subaction=scoreUser&userEmail=" . getUserEmail($i) . "\">";
$htmlOut .= getUserFullName($i);
$htmlOut .= "</a>";
$htmlOut .= "<br />";
//$userFullNameArray[] .= getUserFullName($i);
}
//$htmlOut .= join($userFullNameArray,", ");
$htmlOut .= "</li>";
}
$htmlOut .= "<br /><br />";
$teamName = $this->getTeamNameFromTeamId($teamId);
if ($teamName == "Core") {
$unitId = $this->getUnitIdFromUserId($this->userId);
$query = "SELECT us.user_id,tr.qaos_unit_id,d.qaos_designation_name, tm.qaos_team_name FROM `qaos_tree` tr JOIN qaos_units un ON (tr.qaos_unit_id = un.qaos_unit_id) JOIN qaos_teams tm ON (un.qaos_team_id = tm.qaos_team_id) JOIN qaos_designations d ON (un.qaos_designation_id = d.qaos_designation_id) JOIN qaos_users us ON (un.qaos_unit_id = us.qaos_unit_id) WHERE tr.qaos_parentunit_id='{$unitId}'";
$queryResult = mysql_query($query);
$arrayUsers = array();
$arrayUnits = array();
$arr = array();
$designation = array();
$team = array();
while ($queryArray = mysql_fetch_assoc($queryResult)) {
$designation[$queryArray['qaos_unit_id']] = $queryArray['qaos_designation_name'];
$team[$queryArray['qaos_unit_id']] = $queryArray['qaos_team_name'];
$arr[$queryArray['qaos_unit_id']][] = $queryArray['user_id'];
}
foreach ($arr as $unitId => $userId) {
$htmlOut .= "<li><i>" . $team[$unitId] . " -</i> <b>" . $designation[$unitId] . "</b> : <br />";
$userFullNameArray = array();
foreach ($userId as $i) {
$htmlOut .= "<a href=\"./+score&subaction=scoreUser&userEmail=" . getUserEmail($i) . "\">";
$htmlOut .= getUserFullName($i);
$htmlOut .= "</a>";
$htmlOut .= "<br />";
//$userFullNameArray[] .= getUserFullName($i);
}
//$htmlOut .= join($userFullNameArray,", ");
$htmlOut .= "</li>";
}
}
if ($teamName == "Qaos") {
$unitId = $this->getUnitIdFromUserId($this->userId);
$query = "SELECT us.`user_id`,u.`qaos_unit_id`,d.`qaos_designation_name`,t.`qaos_team_name` FROM `qaos_units` u,`qaos_designations` d,`qaos_users` us,`qaos_teams` t WHERE u.`qaos_unit_id`= us.`qaos_unit_id` AND u.`qaos_designation_id`= d.`qaos_designation_id` AND u.`qaos_team_id` = t.`qaos_team_id` AND u.`qaos_team_id` IN (SELECT t.`qaos_team_id` FROM `qaos_teams` t WHERE t.`qaos_representative_user_id1` = '{$this->userId}' OR t.`qaos_representative_user_id2` = '{$this->userId}')";
$result = mysql_query($query);
$arrayUsers = array();
$arrayUnits = array();
$arr = array();
$designation = array();
$team = array();
while ($queryArray = mysql_fetch_assoc($result)) {
$designation[$queryArray['qaos_unit_id']] = $queryArray['qaos_designation_name'];
$team[$queryArray['qaos_unit_id']] = $queryArray['qaos_team_name'];
$arr[$queryArray['qaos_unit_id']][] = $queryArray['user_id'];
}
foreach ($arr as $unitId => $userId) {
$htmlOut .= "<li><i>" . $team[$unitId] . " -</i> <b>" . $designation[$unitId] . "</b> : <br />";
$userFullNameArray = array();
foreach ($userId as $i) {
$htmlOut .= "<a href=\"./+score&subaction=scoreUser&userEmail=" . getUserEmail($i) . "\">";
$htmlOut .= getUserFullName($i);
$htmlOut .= "</a>";
$htmlOut .= "<br />";
//$userFullNameArray[] .= getUserFullName($i);
}
//$htmlOut .= join($userFullNameArray,", ");
$htmlOut .= "</li>";
}
}
return $htmlOut;
}
/**
* The actual registration form!!! For which we made all this preparation...
* @param $action is the form action
*
* In case it is blank, it means this function was called by actionView
* in that case, action is "."
*
* In case it is ./+editregistrants&subaction=editregistrant&useremail=<useremail>, it means
* this function was called by edit registrants
*
* @uses getFormElementInputField to get the input fields
*
* TODO : If the form is associated with a group, the form HAS to give the user the option to unregister from it.
*/
function generateRegistrationForm($moduleCompId, $userId, $action = "", $disableCaptcha = false)
{
if ($action != '') {
$userId = getUserIdFromEmail(escape($_GET['useremail']));
} else {
$action = './+view';
}
if (!isset($userId)) {
displayerror('Could not load information for user with e-mail address ' . safe_html(escape($_GET['useremail'])));
return '';
}
/// Initialize the form body
global $cmsFolder;
global $moduleFolder;
global $urlRequestRoot;
$jsPath2 = "{$urlRequestRoot}/{$cmsFolder}/{$moduleFolder}/form/validation.js";
//validation.js
$jsPath = "{$urlRequestRoot}/{$cmsFolder}/templates/common/scripts/formValidator.js";
//validation.js
$calpath = "{$urlRequestRoot}/{$cmsFolder}/{$moduleFolder}";
$jsPathMooTools = "{$urlRequestRoot}/{$cmsFolder}/templates/common/scripts/mootools-1.11-allCompressed.js";
$body = '<script language="javascript" type="text/javascript" src="' . $jsPath2 . '"></script>';
/// Get HTML for all the fields for the form
$jsValidationFunctions = array();
$containsFileUploadFields = false;
$formElements = getFormElementsHtmlAsArray($moduleCompId, $userId, $jsValidationFunctions, $containsFileUploadFields);
$jsValidationFunctions = join($jsValidationFunctions, ' && ');
$body .= '<link rel="stylesheet" type="text/css" media="all" href="' . $calpath . '/form/calendar/calendar.css" title="Aqua" />' . '<script type="text/javascript" src="' . $calpath . '/form/calendar/calendar.js"></script>';
$body .= '<br /><br /><div class="registrationform"><form class="fValidator-form cms-registrationform" action="' . $action . '" method="post"';
if ($containsFileUploadFields) {
$body .= ' enctype="multipart/form-data"';
}
$body .= '>';
/// SELECT form details
$formQuery = 'SELECT `form_heading`, `form_headertext`, `form_footertext`, `form_usecaptcha` FROM `form_desc` WHERE ' . "`page_modulecomponentid` = '{$moduleCompId}'";
$formResult = mysql_query($formQuery);
if (!$formResult) {
displayerror('E52 : Invalid query: ' . mysql_error());
return false;
}
if ($formRow = mysql_fetch_assoc($formResult)) {
$body .= '<fieldset><legend><h2>' . $formRow['form_heading'] . '</h2></legend><br /><div style="text-align:center;font-size:20px;">' . $formRow['form_headertext'] . '</div><br />';
} else {
displayerror('Could not load form data.');
return '';
}
$body .= "\n<table cellspacing=\"8px\"><tr>";
$body .= join($formElements, "</tr>\n<tr>") . '</tr>';
if (!$disableCaptcha && $formRow['form_usecaptcha'] == 1) {
$body .= getCaptchaHtml();
}
$req_query = "SELECT count(*) FROM `form_elementdesc` WHERE `form_elementisrequired`=1 AND `page_modulecomponentid`='{$moduleCompId}'";
$res_req = mysql_fetch_array(mysql_query($req_query)) or displayerror("Error at registrationformgenerate.lib.php Line 85 " . mysql_error());
if ($res_req[0] > 0) {
$body .= '<tr>' . '<td colspan="2">* - Required Fields </td></tr>';
}
$body .= '</table></fieldset>' . '<br /><div style="text-align:center"><input type="submit" name="submitreg_form_' . $moduleCompId . '" value="Submit" />' . '<br /><br />' . $formRow['form_footertext'] . '</div></form></div>';
$body .= <<<SCRIPT
\t\t\t<script language="javascript" type="text/javascript">
\t\t\t<!--
\t\t\t\tfunction validate_form(thisform) {
\t\t\t\t\treturn ({$jsValidationFunctions});
\t\t\t\t}
\t\t\t-->
\t\t\t</script>
SCRIPT;
return $body;
}
function groupManagementForm($currentUserId, $modifiableGroups, &$pagePath)
{
require_once "group.lib.php";
global $ICONS;
global $urlRequestRoot, $cmsFolder, $templateFolder, $moduleFolder, $sourceFolder;
$scriptsFolder = "{$urlRequestRoot}/{$cmsFolder}/{$templateFolder}/common/scripts";
$imagesFolder = "{$urlRequestRoot}/{$cmsFolder}/{$templateFolder}/common/images";
/// Parse any get variables, do necessary validation and stuff, so that we needn't check inside every if
$groupRow = $groupId = $userId = null;
$subAction = '';
//isset($_GET['subaction']) ? $_GET['subaction'] : '';
if (isset($_GET['subsubaction']) && $_GET['subsubaction'] == 'editgroup' && isset($_GET['groupname']) || isset($_POST['btnEditGroup']) && isset($_POST['selEditGroups'])) {
$subAction = 'showeditform';
} elseif (isset($_GET['subsubaction']) && $_GET['subsubaction'] == 'associateform') {
$subAction = 'associateform';
} elseif (isset($_GET['subsubaction']) && $_GET['subsubaction'] == 'deleteuser' && isset($_GET['groupname']) && isset($_GET['useremail'])) {
$subAction = 'deleteuser';
} elseif (isset($_POST['btnAddUserToGroup'])) {
$subAction = 'addusertogroup';
} elseif (isset($_POST['btnSaveGroupProperties'])) {
$subAction = 'savegroupproperties';
} elseif (isset($_POST['btnEditGroupPriorities']) || isset($_GET['subsubaction']) && $_GET['subsubaction'] == 'editgrouppriorities') {
$subAction = 'editgrouppriorities';
}
if (isset($_POST['selEditGroups']) || isset($_GET['groupname'])) {
$groupRow = getGroupRow(isset($_POST['selEditGroups']) ? escape($_POST['selEditGroups']) : escape($_GET['groupname']));
$groupId = $groupRow['group_id'];
if ($subAction != 'editgrouppriorities' && (!$groupRow || !$groupId || $groupId < 2)) {
displayerror('Error! Invalid group requested.');
return;
}
if (!is_null($groupId)) {
if ($modifiableGroups[count($modifiableGroups) - 1]['group_priority'] < $groupRow['group_priority']) {
displayerror('You do not have the permission to modify the selected group.');
return '';
}
}
}
if (isset($_GET['useremail'])) {
$userId = getUserIdFromEmail($_GET['useremail']);
}
if ($subAction != 'editgrouppriorities' && (isset($_GET['subaction']) && $_GET['subaction'] == 'editgroups' && !is_null($groupId))) {
if ($subAction == 'deleteuser') {
if ($groupRow['form_id'] != 0) {
displayerror('The group is associated with a form. To remove a user, use the edit registrants in the assoicated form.');
} elseif (!$userId) {
displayerror('Unknown E-mail. Could not find a registered user with the given E-mail Id');
} else {
$deleteQuery = 'DELETE FROM `' . MYSQL_DATABASE_PREFIX . 'usergroup` WHERE `user_id` = \'' . $userId . '\' AND `group_id` = ' . $groupId;
$deleteResult = mysql_query($deleteQuery);
if (!$deleteResult || mysql_affected_rows() != 1) {
displayerror('Could not delete user with the given E-mail from the given group.');
} else {
displayinfo('Successfully removed user from the current group');
if ($userId == $currentUserId) {
$virtue = '';
$maxPriorityGroup = getMaxPriorityGroup($pagePath, $currentUserId, array_reverse(getGroupIds($currentUserId)), $virtue);
$modifiableGroups = getModifiableGroups($currentUserId, $maxPriorityGroup, $ordering = 'asc');
}
}
}
} elseif ($subAction == 'savegroupproperties' && isset($_POST['txtGroupDescription'])) {
$updateQuery = "UPDATE `" . MYSQL_DATABASE_PREFIX . "groups` SET `group_description` = '" . escape($_POST['txtGroupDescription']) . "' WHERE `group_id` = '{$groupId}'";
$updateResult = mysql_query($updateQuery);
if (!$updateResult) {
displayerror('Could not update database.');
} else {
displayinfo('Changes to the group have been successfully saved.');
}
$groupRow = getGroupRow($groupRow['group_name']);
} elseif ($subAction == 'addusertogroup' && isset($_POST['txtUserEmail']) && trim($_POST['txtUserEmail']) != '') {
if ($groupRow['form_id'] != 0) {
displayerror('The selected group is associated with a form. To add a user, register the user to the form.');
} else {
$passedEmails = explode(',', escape($_POST['txtUserEmail']));
for ($i = 0; $i < count($passedEmails); $i++) {
$hyphenPos = strpos($passedEmails[$i], '-');
if ($hyphenPos >= 0) {
$userEmail = trim(substr($passedEmails[$i], 0, $hyphenPos - 1));
} else {
$userEmail = escape($_POST['txtUserEmail']);
}
$userId = getUserIdFromEmail($userEmail);
if (!$userId || $userId < 1) {
displayerror('Unknown E-mail. Could not find a registered user with the given E-mail Id');
}
if (!addUserToGroupName($groupRow['group_name'], $userId)) {
displayerror('Could not add the given user to the current group.');
} else {
displayinfo('User has been successfully inserted into the given group.');
}
}
}
} elseif ($subAction == 'associateform') {
if (isset($_POST['btnAssociateGroup'])) {
$pageIdArray = array();
$formPageId = parseUrlReal(escape($_POST['selFormPath']), $pageIdArray);
if ($formPageId <= 0 || getPageModule($formPageId) != 'form') {
displayerror('Invalid page selected! The page you selected is not a form.');
} elseif (!getPermissions($currentUserId, $formPageId, 'editregistrants', 'form')) {
displayerror('You do not have the permissions to associate the selected form with a group.');
} else {
$formModuleId = getModuleComponentIdFromPageId($formPageId, 'form');
require_once "{$sourceFolder}/{$moduleFolder}/form.lib.php";
if (isGroupEmpty($groupId) || form::getRegisteredUserCount($formModuleId) == 0) {
associateGroupWithForm($groupId, $formModuleId);
$groupRow = getGroupRow($groupRow['group_name']);
} else {
displayerror('Both the group and the form already contain registered users, and the group cannot be associated with the selected form.');
}
}
} elseif (isset($_POST['btnUnassociateGroup'])) {
if ($groupRow['form_id'] <= 0) {
displayerror('The selected group is currently not associated with any form.');
} elseif (!getPermissions($currentUserId, getPageIdFromModuleComponentId('form', $groupRow['form_id']), 'editregistrants', 'form')) {
displayerror('You do not have the permissions to unassociate the form from this group.');
} else {
unassociateFormFromGroup($groupId);
$virtue = '';
$maxPriorityGroup = getMaxPriorityGroup($pagePath, $currentUserId, array_reverse(getGroupIds($currentUserId)), $virtue);
$modifiableGroups = getModifiableGroups($currentUserId, $maxPriorityGroup, $ordering = 'asc');
$groupRow = getGroupRow($groupRow['group_name']);
}
}
}
if ($modifiableGroups[count($modifiableGroups) - 1]['group_priority'] < $groupRow['group_priority']) {
displayerror('You do not have the permission to modify the selected group.');
return '';
}
$usersTable = '`' . MYSQL_DATABASE_PREFIX . 'users`';
$usergroupTable = '`' . MYSQL_DATABASE_PREFIX . 'usergroup`';
$userQuery = "SELECT `user_email`, `user_fullname` FROM {$usergroupTable}, {$usersTable} WHERE `group_id` = '{$groupId}' AND {$usersTable}.`user_id` = {$usergroupTable}.`user_id` ORDER BY `user_email`";
$userResult = mysql_query($userQuery);
if (!$userResult) {
displayerror('Error! Could not fetch group information.');
return '';
}
$userEmails = array();
$userFullnames = array();
while ($userRow = mysql_fetch_row($userResult)) {
$userEmails[] = $userRow[0];
$userFullnames[] = $userRow[1];
}
$groupEditForm = <<<GROUPEDITFORM
\t\t\t<h2>Group '{$groupRow['group_name']}' - '{$groupRow['group_description']}'</h2><br />
\t\t\t<fieldset style="padding: 8px">
\t\t\t\t<legend>{$ICONS['User Groups']['small']}Group Properties</legend>
\t\t\t\t<form name="groupeditform" method="POST" action="./+admin&subaction=editgroups&groupname={$groupRow['group_name']}">
\t\t\t\t\tGroup Description: <input type="text" name="txtGroupDescription" value="{$groupRow['group_description']}" />
\t\t\t\t\t<input type="submit" name="btnSaveGroupProperties" value="Save Group Properties" />
\t\t\t\t</form>
\t\t\t</fieldset>
\t\t\t<br />
\t\t\t<fieldset style="padding: 8px">
\t\t\t\t<legend>{$ICONS['User Groups']['small']}Existing Users in Group:</legend>
GROUPEDITFORM;
$userCount = mysql_num_rows($userResult);
global $urlRequestRoot, $cmsFolder, $templateFolder, $sourceFolder;
$deleteImage = "<img src=\"{$urlRequestRoot}/{$cmsFolder}/{$templateFolder}/common/icons/16x16/actions/edit-delete.png\" alt=\"Remove user from the group\" title=\"Remove user from the group\" />";
for ($i = 0; $i < $userCount; $i++) {
$isntAssociatedWithForm = $groupRow['form_id'] == 0;
if ($isntAssociatedWithForm) {
$groupEditForm .= '<a onclick="return confirm(\'Are you sure you wish to remove this user from this group?\')" href="./+admin&subaction=editgroups&subsubaction=deleteuser&groupname=' . $groupRow['group_name'] . '&useremail=' . $userEmails[$i] . '">' . $deleteImage . "</a>";
}
$groupEditForm .= " {$userEmails[$i]} - {$userFullnames[$i]}<br />\n";
}
$associateForm = '';
if ($groupRow['form_id'] == 0) {
$associableForms = getAssociableFormsList($currentUserId, !isGroupEmpty($groupId));
$associableFormCount = count($associableForms);
$associableFormsBox = '<select name="selFormPath">';
for ($i = 0; $i < $associableFormCount; ++$i) {
$associableFormsBox .= '<option value="' . $associableForms[$i][2] . '">' . $associableForms[$i][1] . ' - ' . $associableForms[$i][2] . '</option>';
}
$associableFormsBox .= '</select>';
$associateForm = <<<GROUPASSOCIATEFORM
\t\t\tSelect a form to associate the group with: {$associableFormsBox}
\t\t\t<input type="submit" name="btnAssociateGroup" value="Associate Group with Form" />
GROUPASSOCIATEFORM;
} else {
$associatedFormPageId = getPageIdFromModuleComponentId('form', $groupRow['form_id']);
$associateForm = 'This group is currently associated with the form: ' . getPageTitle($associatedFormPageId) . ' (' . getPagePath($associatedFormPageId) . ')<br />' . '<input type="submit" name="btnUnassociateGroup" value="Unassociate" />';
}
$groupEditForm .= '</fieldset>';
if ($groupRow['form_id'] == 0) {
$groupEditForm .= <<<GROUPEDITFORM
\t\t\t\t<br />
\t\t\t\t<fieldset style="padding: 8px">
\t\t\t\t\t<legend>{$ICONS['Add']['small']}Add Users to Group</legend>
\t\t\t\t\t<form name="addusertogroup" method="POST" action="./+admin&subaction=editgroups&groupname={$groupRow['group_name']}">
\t\t\t\t\t\tEmail ID: <input type="text" name="txtUserEmail" id="txtUserEmail" value="" style="width: 256px" autocomplete="off" />
\t\t\t\t\t\t<div id="suggestionDiv" class="suggestionbox"></div>
\t\t\t\t\t\t<script language="javascript" type="text/javascript" src="{$scriptsFolder}/ajaxsuggestionbox.js"></script>
\t\t\t\t\t\t<script language="javascript" type="text/javascript">
\t\t\t\t\t\t<!--
\t\t\t\t\t\t\tvar addUserBox = new SuggestionBox(document.getElementById('txtUserEmail'), document.getElementById('suggestionDiv'), "./+admin&doaction=getsuggestions&forwhat=%pattern%");
\t\t\t\t\t\t\taddUserBox.loadingImageUrl = '{$imagesFolder}/ajaxloading.gif';
\t\t\t\t\t\t-->
\t\t\t\t\t\t</script>
\t\t\t\t\t\t<input type="submit" name="btnAddUserToGroup" value="Add User to Group" />
\t\t\t\t\t</form>
\t\t\t\t</fieldset>
GROUPEDITFORM;
}
$groupEditForm .= <<<GROUPEDITFORM
\t\t\t<br />
\t\t\t<fieldset style="padding: 8px">
\t\t\t\t<legend>{$ICONS['Group Associate Form']['small']}Associate With Form</legend>
\t\t\t\t<form name="groupassociationform" action="./+admin&subaction=editgroups&subsubaction=associateform&groupname={$groupRow['group_name']}" method="POST">
\t\t\t\t\t{$associateForm}
\t\t\t\t</form>
\t\t\t</fieldset>
GROUPEDITFORM;
return $groupEditForm;
}
if ($subAction == 'editgrouppriorities') {
$modifiableCount = count($modifiableGroups);
$userMaxPriority = $maxPriorityGroup = 1;
if ($modifiableCount != 0) {
$userMaxPriority = max($modifiableGroups[0]['group_priority'], $modifiableGroups[$modifiableCount - 1]['group_priority']);
$maxPriorityGroup = $modifiableGroups[0]['group_priority'] > $modifiableGroups[$modifiableCount - 1]['group_priority'] ? $modifiableGroups[0]['group_id'] : $modifiableGroups[$modifiableCount - 1]['group_id'];
}
if (isset($_GET['dowhat']) && !is_null($groupId)) {
if ($_GET['dowhat'] == 'incrementpriority' || $_GET['dowhat'] == 'decrementpriority') {
shiftGroupPriority($currentUserId, $groupRow['group_name'], $_GET['dowhat'] == 'incrementpriority' ? 'up' : 'down', $userMaxPriority, true);
} elseif ($_GET['dowhat'] == 'movegroupup' || $_GET['dowhat'] == 'movegroupdown') {
shiftGroupPriority($currentUserId, $groupRow['group_name'], $_GET['dowhat'] == 'movegroupup' ? 'up' : 'down', $userMaxPriority, false);
} elseif ($_GET['dowhat'] == 'emptygroup') {
emptyGroup($groupRow['group_name']);
} elseif ($_GET['dowhat'] == 'deletegroup') {
if (deleteGroup($groupRow['group_name'])) {
$virtue = '';
$maxPriorityGroup = getMaxPriorityGroup($pagePath, $currentUserId, array_reverse(getGroupIds($currentUserId)), $virtue);
$modifiableGroups = getModifiableGroups($currentUserId, $maxPriorityGroup, $ordering = 'asc');
}
}
$modifiableGroups = reevaluateGroupPriorities($modifiableGroups);
} elseif (isset($_GET['dowhat']) && $_GET['dowhat'] == 'addgroup') {
if (isset($_POST['txtGroupName']) && isset($_POST['txtGroupDescription']) && isset($_POST['selGroupPriority'])) {
$existsQuery = 'SELECT `group_id` FROM `' . MYSQL_DATABASE_PREFIX . "groups` WHERE `group_name` = '" . escape($_POST['txtGroupName']) . "'";
$existsResult = mysql_query($existsQuery);
if (trim($_POST['txtGroupName']) == '') {
displayerror('Cannot create a group with an empty name. Please type in a name for the new group.');
} elseif (mysql_num_rows($existsResult) >= 1) {
displayerror('A group with the name you specified already exists.');
} else {
$idQuery = 'SELECT MAX(`group_id`) FROM `' . MYSQL_DATABASE_PREFIX . 'groups`';
$idResult = mysql_query($idQuery);
$idRow = mysql_fetch_row($idResult);
$newGroupId = 2;
if (!is_null($idRow[0])) {
$newGroupId = $idRow[0] + 1;
}
$newGroupPriority = 1;
if ($_POST['selGroupPriority'] <= $userMaxPriority && $_POST['selGroupPriority'] > 0) {
$newGroupPriority = escape($_POST['selGroupPriority']);
}
$addGroupQuery = 'INSERT INTO `' . MYSQL_DATABASE_PREFIX . 'groups` (`group_id`, `group_name`, `group_description`, `group_priority`) ' . "VALUES({$newGroupId}, '" . escape($_POST['txtGroupName']) . "', '" . escape($_POST['txtGroupDescription']) . "', '{$newGroupPriority}')";
$addGroupResult = mysql_query($addGroupQuery);
if ($addGroupResult) {
displayinfo('New group added successfully.');
if (isset($_POST['chkAddMe'])) {
$insertQuery = 'INSERT INTO `' . MYSQL_DATABASE_PREFIX . "usergroup`(`user_id`, `group_id`) VALUES ('{$currentUserId}', '{$newGroupId}')";
if (!mysql_query($insertQuery)) {
displayerror('Error adding user to newly created group: ' . $insertQuery . '<br />' . mysql_query());
}
}
$virtue = '';
$maxPriorityGroup = getMaxPriorityGroup($pagePath, $currentUserId, array_reverse(getGroupIds($currentUserId)), $virtue);
$modifiableGroups = getModifiableGroups($currentUserId, $maxPriorityGroup, $ordering = 'asc');
} else {
displayerror('Could not run MySQL query. New group could not be added.');
}
}
}
$modifiableGroups = reevaluateGroupPriorities($modifiableGroups);
}
$modifiableCount = count($modifiableGroups);
if ($modifiableGroups[0]['group_priority'] < $modifiableGroups[$modifiableCount - 1]['group_priority']) {
$modifiableGroups = array_reverse($modifiableGroups);
}
$previousPriority = $modifiableGroups[0]['group_priority'];
global $cmsFolder, $urlRequestRoot, $moduleFolder, $templateFolder, $sourceFolder;
$iconsFolderUrl = "{$urlRequestRoot}/{$cmsFolder}/{$templateFolder}/common/icons/16x16";
$moveUpImage = '<img src="' . $iconsFolderUrl . '/actions/go-up.png" title="Increment Group Priority" alt="Increment Group Priority" />';
$moveDownImage = '<img src="' . $iconsFolderUrl . '/actions/go-down.png" alt="Decrement Group Priority" title="Decrement Group Priority" />';
$moveTopImage = '<img src="' . $iconsFolderUrl . '/actions/go-top.png" alt="Move to next higher priority level" title="Move to next higher priority level" />';
$moveBottomImage = '<img src="' . $iconsFolderUrl . '/actions/go-bottom.png" alt="Move to next lower priority level" title="Move to next lower priority level" />';
$emptyImage = '<img src="' . $iconsFolderUrl . '/actions/edit-clear.png" alt="Empty Group" title="Empty Group" />';
$deleteImage = '<img src="' . $iconsFolderUrl . '/actions/edit-delete.png" alt="Delete Group" title="Delete Group" />';
$groupsForm = '<h3>Edit Group Priorities</h3><br />';
for ($i = 0; $i < $modifiableCount; $i++) {
if ($modifiableGroups[$i]['group_priority'] != $previousPriority) {
$groupsForm .= '<br /><br /><hr /><br />';
}
$groupsForm .= '<span style="margin: 4px;" title="' . $modifiableGroups[$i]['group_description'] . '">' . '<a href="./+admin&subaction=editgroups&subsubaction=editgrouppriorities&dowhat=incrementpriority&groupname=' . $modifiableGroups[$i]['group_name'] . '">' . $moveUpImage . '</a>' . '<a href="./+admin&subaction=editgroups&subsubaction=editgrouppriorities&dowhat=decrementpriority&groupname=' . $modifiableGroups[$i]['group_name'] . '">' . $moveDownImage . '</a>' . '<a href="./+admin&subaction=editgroups&subsubaction=editgrouppriorities&dowhat=movegroupup&groupname=' . $modifiableGroups[$i]['group_name'] . '">' . $moveTopImage . '</a>' . '<a href="./+admin&subaction=editgroups&subsubaction=editgrouppriorities&dowhat=movegroupdown&groupname=' . $modifiableGroups[$i]['group_name'] . '">' . $moveBottomImage . '</a>' . '<a onclick="return confirm(\'Are you sure you want to empty this group?\')" href="./+admin&subaction=editgroups&subsubaction=editgrouppriorities&dowhat=emptygroup&groupname=' . $modifiableGroups[$i]['group_name'] . '">' . $emptyImage . '</a>' . '<a onclick="return confirm(\'Are you sure you want to delete this group?\')" href="./+admin&subaction=editgroups&subsubaction=editgrouppriorities&dowhat=deletegroup&groupname=' . $modifiableGroups[$i]['group_name'] . '">' . $deleteImage . '</a>' . '<a href="./+admin&subaction=editgroups&groupname=' . $modifiableGroups[$i]['group_name'] . '">' . $modifiableGroups[$i]['group_name'] . "</a></span>\n";
$previousPriority = $modifiableGroups[$i]['group_priority'];
}
$priorityBox = '<option value="1">1</option>';
for ($i = 2; $i <= $userMaxPriority; ++$i) {
$priorityBox .= '<option value="' . $i . '">' . $i . '</option>';
}
$groupsForm .= <<<GROUPSFORM
\t\t<br /><br />
\t\t<fieldset style="padding: 8px">
\t\t\t<legend>Create New Group:</legend>
\t\t\t<form name="groupaddform" method="POST" action="./+admin&subaction=editgroups&subsubaction=editgrouppriorities&dowhat=addgroup">
\t\t\t\t<label>Group Name: <input type="text" name="txtGroupName" value="" /></label><br />
\t\t\t\t<label>Group Description: <input type="text" name="txtGroupDescription" value="" /></label><br />
\t\t\t\t<label>Group Priority: <select name="selGroupPriority">{$priorityBox}</select><br />
\t\t\t\t<label><input type="checkbox" name="chkAddMe" value="addme" /> Add me to group</label><br />
\t\t\t\t<input type="submit" name="btnAddNewGroup" value="Add Group" />
\t\t\t</form>
\t\t</fieldset>
GROUPSFORM;
return $groupsForm;
}
$modifiableCount = count($modifiableGroups);
$groupsBox = '<select name="selEditGroups">';
for ($i = 0; $i < $modifiableCount; ++$i) {
$groupsBox .= '<option value="' . $modifiableGroups[$i]['group_name'] . '">' . $modifiableGroups[$i]['group_name'] . ' - ' . $modifiableGroups[$i]['group_description'] . "</option>\n";
}
$groupsBox .= '</select>';
$groupsForm = <<<GROUPSFORM
\t\t<form name="groupeditform" method="POST" action="./+admin&subaction=editgroups">
\t\t\t{$groupsBox}
\t\t\t<input type="submit" name="btnEditGroup" value="Edit Selected Group" /><br /><br />
\t\t\t<input type="submit" name="btnEditGroupPriorities" value="Add/Shuffle/Remove Groups" />
\t\t</form>
GROUPSFORM;
return $groupsForm;
}
public function displayUser()
{
$search = escape($_POST['txtUserEmail']);
$userid = getUserIdFromEmail($search);
//if(is_numeric($userid))
//$query="SELECT * FROM `hospi_accomodation_status` WHERE `user_id`=$userid";
//else
$query = "SELECT * FROM `hospi_accomodation_status` WHERE `hospi_guest_name` LIKE '%{$search}%' OR `hospi_guest_email` LIKE '%{$search}%' OR `hospi_guest_college` LIKE '%{$search}%'";
$result = mysql_query($query);
if (!$result) {
displayerror(mysql_error());
return $this->viewall();
}
if (!mysql_num_rows($result)) {
displayinfo('The user has not checked into any room');
return $this->viewall();
} else {
$details = <<<USER
\t\t\t\t\t<b>User Email:{$_POST['txtUserEmail']}</b><br>\t\t
USER;
while ($row = mysql_fetch_array($result)) {
$query = "SELECT * FROM `hospi_hostel` WHERE `hospi_room_id`='{$row['hospi_room_id']}'";
$result1 = mysql_query($query);
$row1 = mysql_fetch_array($result1);
$details .= <<<USER1
\t\t\t\t\t<br>
\t\t\t\t\t<table border="1">
\t\t\t\t\t<tr>
\t\t\t\t\t<td nowrap="nowrap">Name</td>
\t\t\t\t\t<td nowrap="nowrap">{$row['hospi_guest_name']}</td>
\t\t\t\t\t</tr>
\t\t\t\t\t<tr>
\t\t\t\t\t<td nowrap="nowrap">Email</td>
\t\t\t\t\t<td nowrap="nowrap">{$row['hospi_guest_email']}</td>
\t\t\t\t\t</tr>
\t\t\t\t\t<tr>
\t\t\t\t\t<td nowrap="nowrap">College</td>
\t\t\t\t\t<td nowrap="nowrap">{$row['hospi_guest_college']}</td>
\t\t\t\t\t</tr>
\t\t\t\t\t<tr>
\t\t\t\t\t<td nowrap="nowrap">Phone</td>
\t\t\t\t\t<td nowrap="nowrap">{$row['hospi_guest_phone']}</td>
\t\t\t\t\t</tr>
\t\t\t\t\t<tr>
\t\t\t\t\t<td nowrap="nowrap">Hostel</td>
\t\t\t\t\t<td nowrap="nowrap">{$row1['hospi_hostel_name']}</td>
\t\t\t\t\t</tr>
\t\t\t\t\t<tr>
\t\t\t\t\t<td nowrap="nowrap">Room no.</td>
\t\t\t\t\t<td nowrap="nowrap">{$row1['hospi_room_no']}</td>
\t\t\t\t\t</tr>
\t\t\t\t\t<tr>
\t\t\t\t\t<td nowrap="nowrap">Checked in on</td>
\t\t\t\t\t<td nowrap="nowrap">{$row['hospi_actual_checkin']}</td>
\t\t\t\t\t</tr>
USER1;
if ($row['hospi_actual_checkout']) {
$details .= "<tr><th nowrap=\"nowrap\">Checked out on</th><th nowrap=\"nowrap\">{$row['hospi_actual_checkout']}</th></tr>";
}
if ($row['hospi_actual_checkout'] == 0) {
if ($row['user_id'] != 0) {
$details .= "<tr><td><input type=\"submit\" value=\"Check Out\" onclick=\"window.location='./+accomodate&hostel={$row1['hospi_hostel_name']}&room_id={$row['hospi_room_id']}&checkOut={$row['user_id']}'\"></td></tr>";
} else {
$details .= "<tr><td><input type=\"submit\" value=\"Check Out\" onclick=\"window.location='./+accomodate&hostel={$row1['hospi_hostel_name']}&room_id={$row['hospi_room_id']}&checkOut={$row['hospi_guest_name']}&checkinTime={$row['hospi_actual_checkin']}&by={$row['hospi_checkedin_by']}'\"></td></tr>";
}
}
$details .= '</table>';
}
return $details . $this->viewall();
}
}
public function actionEditregistrants()
{
/**
* After view registrants completes, generateFormDataRow() will be used here also
* then manually prepend the "delete" button and "edit" button columns
*
* After generateFormDataTable() completes, move the code to generate the top header row (with the sort
* by this column images) to a new function and call it here also and manually prepened two <th>s of
* delete and edit
*
* The delete button should point to a subaction through get vars
*
* Clicking edit button, should do something like edit in 2nd form in "editform" does with a twist :
* to generate the edit form simply call generateRegistrationForm($moduleCompId,$userId,$action=)
* with action ./+editregistrants&subaction=editregistrant&useremail=<useremail>
*
* and when submitted call submitRegistrationForm()
*/
global $sourceFolder, $moduleFolder;
if (isset($_GET['subaction']) && isset($_GET['useremail'])) {
if ($_GET['subaction'] == 'edit') {
if (isset($_POST['submitreg_form_' . $this->moduleComponentId])) {
submitRegistrationForm($this->moduleComponentId, getUserIdFromEmail(escape($_GET['useremail'])), true, true);
}
return '<a href="./+editregistrants">« Back</a><br />' . generateRegistrationForm($this->moduleComponentId, $this->userId, './+editregistrants&subaction=edit&useremail=' . escape($_GET['useremail']), true) . '<br /><a href="./+editregistrants">« Back</a><br />';
} elseif ($_GET['subaction'] == 'delete') {
if ($_GET['useremail'] == "Anonymous") {
$userIdTemp = escape($_GET['registrantid']);
} else {
$userIdTemp = getUserIdFromEmail(escape($_GET['useremail']));
}
if (!unregisterUser($this->moduleComponentId, $userIdTemp)) {
displayerror('Error! User with the given e-mail ' . escape($_GET['useremail']) . ' was not found.');
}
}
} elseif (isset($_GET['subaction']) && $_GET['subaction'] == 'getsuggestions' && isset($_GET['forwhat'])) {
echo $this->getUnregisteredUsersFromPattern(escape($_GET['forwhat']));
disconnect();
exit;
} elseif (isset($_POST['btnAddUserToForm']) && isset($_POST['useremail'])) {
$hyphenPos = strpos($_POST['useremail'], '-');
if ($hyphenPos >= 0) {
$userEmail = escape(trim(substr($_POST['useremail'], 0, $hyphenPos - 1)));
} else {
$userEmail = escape($_POST['useremail']);
}
$targetUserId = getUserIdFromEmail($userEmail);
if ($targetUserId > 0) {
if (verifyUserRegistered($this->moduleComponentId, $targetUserId)) {
displayerror('The given user is already registered to this form.');
} else {
registerUser($this->moduleComponentId, $targetUserId);
}
} else {
displayerror('A user registered with the e-mail ID you entered was not found.');
}
} elseif (isset($_POST['btnEmptyRegistrants'])) {
$registeredUsers = form::getRegisteredUserArray($this->moduleComponentId);
$registeredUserCount = count($registeredUsers);
for ($i = 0; $i < $registeredUserCount; $i++) {
unregisterUser($this->moduleComponentId, $registeredUsers[$i], true);
}
displayinfo('All registrations to this form have been deleted.');
}
$sortField = 'registrationdate';
/// Default Values
$sortOrder = 'asc';
if (isset($_GET['sortfield'])) {
$sortField = escape($_GET['sortfield']);
}
if (isset($_GET['sortorder']) && ($_GET['sortorder'] == 'asc' || $_GET['sortorder'] == 'desc')) {
$sortOrder = escape($_GET['sortorder']);
}
global $ICONS;
$html = generateFormDataTable($this->moduleComponentId, $sortField, $sortOrder, 'editregistrants');
return "<fieldset><legend>{$ICONS['Form Registrants']['small']}Edit Form Registrants</legend>{$html}</fieldset>";
}
function checkExisting($mcId, $barCode_roll, $submit = 0, $registeredBy)
{
global $urlRequestRoot, $sourceFolder, $templateFolder, $cmsFolder, $moduleFolder;
$checkPNG = "{$urlRequestRoot}/{$cmsFolder}/{$moduleFolder}/oc/images/check.png";
$wrongPNG = "{$urlRequestRoot}/{$cmsFolder}/{$moduleFolder}/oc/images/dialog-error.png";
$checkIMG = "<img src=\"{$checkPNG}\" />";
$wrongIMG = "<img src=\"{$wrongPNG}\" />";
$processPNG = "{$urlRequestRoot}/{$cmsFolder}/{$moduleFolder}/oc/images/dialog-information.png";
$processIMG = "<img src=\"{$processPNG}\" />";
global $authmethods;
$email = $barCode_roll . '@' . $authmethods['imap']['user_domain'];
$userId = $barCode_roll;
if (!checkIfUserWhiteListed($mcId, $email)) {
echo "User's not White Listed. {$wrongIMG}<br/><hr/>";
return;
}
$userId = getUserIdFromEmail($email);
$fetchUserDetailQuery = "SELECT * FROM `oc_form_reg` WHERE `page_moduleComponentId`={$mcId} AND \n `oc_roll_no`='{$barCode_roll}'";
$fetchUserDetailResult = mysql_query($fetchUserDetailQuery);
if (!$fetchUserDetailResult) {
echo "There is an error is handling details.Contact CSG for more details. {$wrongIMG}<br/><hr/>";
return;
}
$userDetails = mysql_fetch_assoc($fetchUserDetailResult);
if (mysql_num_rows($fetchUserDetailResult) != 1) {
echo "User " . $barCode_roll . " has not registered for Coupons or T-Shirt. {$wrongIMG}<br/><hr/>";
return;
}
$amount = $userDetails['amount'];
if ($amount == '700') {
$bool = isset($_SESSION['availability_S']) || isset($_SESSION['availability_M']) || isset($_SESSION['availability_L']) || isset($_SESSION['availability_XL']) || isset($_SESSION['availability_XXL']);
if ($userDetails['oc_tshirt_distributed'] == 'No' && $bool) {
if (handleTShirtDistribution($mcId, $barCode_roll, $userDetails['Tshirt_size'], $submit, $registeredBy) == "invalid") {
return;
}
} else {
if ($userDetails['oc_tshirt_distributed'] == 'Yes' && $bool) {
echo "T-Shirt Distributed already. {$checkIMG}<br/><hr/>";
}
}
if ($userDetails['oc_food_coupon_distributed'] == 'No' && isset($_SESSION['availability_food_coupon'])) {
handleFoodCouponDistribution($mcId, $barCode_roll, $submit, $registeredBy);
} else {
if ($userDetails['oc_food_coupon_distributed'] == 'Yes' && isset($_SESSION['availability_food_coupon'])) {
echo "Food Coupon Distributed already. {$checkIMG}<br/><hr/>";
}
}
if ($userDetails['oc_extra_distributed'] == 'No' && isset($_SESSION['availability_extra'])) {
handleExtras($mcId, $barCode_roll, $submit);
} else {
if ($userDetails['oc_extra_distributed'] == 'Yes' && isset($_SESSION['availability_extra'])) {
echo "Extras Distributed already. {$checkIMG}<br/><hr/>";
}
}
return;
} else {
if ($amount == '500') {
if ($userDetails['oc_food_coupon_distributed'] == 'No' && isset($_SESSION['availability_food_coupon'])) {
handleFoodCouponDistribution($mcId, $barCode_roll, $submit, $registeredBy);
} else {
if ($userDetails['oc_food_coupon_distributed'] == 'Yes' && isset($_SESSION['availability_food_coupon'])) {
echo "Food Coupon already Distributed. {$checkIMG}<br/><hr/>";
}
}
return;
}
}
echo "Invalid Amount.Contact System Administrator. {$wrongIMG}<br/><hr/>";
return;
}
