function testdbPersonsModule() { // add two people to the database $myPerson = new Person("Susan", "L", "portland", "928 SU", "Portland", "ME", 04011, 2074415902, "home", 2072654046, "cell", "*****@*****.**", "volunteer", "", "", "active", "USM", "student", 3, "semester", "I like helping out", "cooking", "", "Mon:9-12:portland,Sun:evening:portland", "", "", "89-02-19", "08-03-14", "internet", "this is a note", ""); $m = new Person("Gabrielle", "Booth", "bangor", "14 Way St", "Harpswell", "ME", 0407, 1112345679, "cell", 7778889999.0, "work", "*****@*****.**", "volunteer", "", "", "active", "National Semiconductor", "VP", "", "year", "a motivation", "a specialty", "", "Mon:9-12:bangor,Sun:morning:bangor", "", "15-01-05:0930-1300:bangor:3.5", "89-02-19", "08-03-14", "friend", "Some notes", ""); $this->assertTrue(add_person($m)); $m2 = new Person("Fred", "Wilson", "portland", "14 Boyer Ave", "Portland", "ME", 04503, 5093456789.0, "home", 5098889999.0, "cell", "*****@*****.**", "volunteer", "", "", "active", "McDonalds", "manager", "", "year", "a motivation2", "First Aid", "", "Wed:9-12:portland,Sun:afternoon:portland", "", "15-02-27:1730-2100:portland:3.5", "91-09-25", "07-04-14", "other", "Some notes", ""); $this->assertTrue(add_person($m2)); // retrieve the person and test the fields $p = retrieve_person("Gabrielle1112345679"); $this->assertTrue($p !== false); $this->assertTrue($p->get_status() == "active"); $this->assertTrue($p->get_email() == "*****@*****.**"); $this->assertEqual($p->get_type(), array("volunteer")); $this->assertEqual($p->get_hours(), array("15-01-05:0930-1300:bangor:3.5")); $this->assertTrue($p->get_birthday() == "89-02-19"); $p2 = retrieve_person("Fred5093456789"); $this->assertTrue($p2 !== false); $this->assertTrue($p2->get_status() == "active"); $this->assertTrue($p2->get_email() == "*****@*****.**"); $this->assertEqual($p2->get_type(), array("volunteer")); $this->assertEqual($p2->get_hours(), array("15-02-27:1730-2100:portland:3.5")); $this->assertTrue($p2->get_birthday() == "91-09-25"); // remove the person $this->assertTrue(remove_person("Gabrielle1112345679")); $this->assertTrue(remove_person("Fred5093456789")); echo "testdbPersons complete"; }
function testRetrieve_persons_by_name() { // $m = new Person("John", "Smith", "Male", "555 Main Street", "Flushing", "NY", "11111", "Queens", PHONE, "2072654046", "*****@*****.**", "volunteer", "applicant","Schedule", "I like helping out", "55555", "03-14-14"); $newProject = new Project(PROJID, "03-12-14", "Main Building", "UnloadDelivery", 10, 13, 15, "", "notes"); echo 'will test retrieve_persons_by_name </br>'; $result = add_person($m); if ($result) { echo "add_person - person was inserted </br>"; } else { echo "add_person - person not inserted </br>"; } echo "test retrieve_persons_by_name</br>"; $personList = retrieve_persons_by_name("John Smith"); if ($personList == null) { echo 'Retrieve failed</br>'; } else { checkEquals($personList[0]->get_id(), ID); checkEquals($personList[0]->get_phone1(), PHONE); checkEquals($personList[0]->get_email(), "*****@*****.**"); } $res = remove_person(ID); if ($res == null) { echo 'Retrieve failed</br>'; } }
function deletePerson() { $res = remove_person(personID); if ($res == null) { echo 'Remove failed</br>'; } else { echo "</br>" . personID . " has been removed sucessfully.</br>"; } }
function testdbPersonsModule() { //add a manager //setup_dbPersons(); $m = new Person("Taylor", "Talmage", "928 SU", "Brunswick", "ME", 04011, 2074415902, 2072654046, "*****@*****.**", "volunteer", "soupkitchen", "C", "active", "Mon:1,Tue:3,Wed:1", "09-19-13,09-16-13", "02-19-89", "03-14-08", "this is a note", "Taylor2074415902"); $this->assertTrue(add_person($m)); //get a person $p = retrieve_person("Taylor2074415902"); $this->assertTrue($p !== false); $this->assertEqual($p->get_status(), "active"); $this->assertTrue(remove_person("Taylor2074415902")); echo "testdbPersons complete"; }
/** * process_form sanitizes data, concatenates needed data, and enters it all into a database */ function process_form($id) { //echo($_POST['first_name']); //step one: sanitize data by replacing HTML entities and escaping the ' character $first_name = trim(str_replace('\\\'', '', htmlentities(str_replace('&', 'and', $_POST['first_name'])))); // $first_name = str_replace(' ', '_', $first_name); $last_name = trim(str_replace('\\\'', '\'', htmlentities($_POST['last_name']))); if ($_POST['DateOfBirth_Year'] == "") { $birthday = $_POST['DateOfBirth_Month'] . '-' . $_POST['DateOfBirth_Day'] . '-XX'; } else { $birthday = $_POST['DateOfBirth_Month'] . '-' . $_POST['DateOfBirth_Day'] . '-' . $_POST['DateOfBirth_Year']; } $gender = trim(htmlentities($_POST['gender'])); $address = trim(str_replace('\\\'', '\'', htmlentities($_POST['address']))); $city = trim(str_replace('\\\'', '\'', htmlentities($_POST['city']))); $state = trim(htmlentities($_POST['state'])); $zip = trim(htmlentities($_POST['zip'])); $county = trim(htmlentities($_POST['county'])); $phone1 = trim(str_replace(' ', '', htmlentities($_POST['phone1']))); $clean_phone1 = ereg_replace("[^0-9]", "", $phone1); $phone2 = trim(str_replace(' ', '', htmlentities($_POST['phone2']))); $clean_phone2 = ereg_replace("[^0-9]", "", $phone2); $email = $_POST['email']; $contact_preference = $_POST['contact_preference']; $dateAdded = $_POST['dateadded']; //Edited out by James Loeffler because these are not included in the new person.php /* $contact_preference = $_POST['contact_preference']; $emergency_contact = $_POST['emergency_contact']; $emergency_phone = trim(str_replace(' ', '', htmlentities($_POST['emergency_phone']))); $clean_emergency_phone = ereg_replace("[^0-9]", "", $emergency_phone); $screening_type = $_POST['screening_type']; if ($screening_type!="") { $screening = retrieve_dbApplicantScreenings($screening_type); $step_array = $screening->get_steps(); $step_count = count($step_array); $date_array = array(); for ($i = 0; $i < $step_count; $i++) { $date_array[$i] = $_POST['ss_month'][$i] . '-' . $_POST['ss_day'][$i] . '-' . $_POST['ss_year'][$i]; if ($date_array[$i]!="--" && strlen($date_array[$i]) != 8) { if (strlen($date_array[$i] != 2)) echo('<p>Date of completion for step: "' . $step_array[$i] . '" is in error, please select month, day <i>and</i> year.<br>'); $date_array[$i] = null; } } } $status = $_POST['status']; $occupation = $_POST['occupation']; $refs = $_POST['refs']; $motivation = trim(str_replace('\\\'', '\'', htmlentities($_POST['motivation']))); $specialties = trim(str_replace('\\\'', '\'', htmlentities($_POST['specialties']))); */ $type = $_POST['type']; // added by James Loeffler $status = $_POST['status']; $schedule = $_POST['schedule']; //concatenate birthday and start_date strings /* if ($_POST['DateOfBirth_Year'] == "") $birthday = $_POST['DateOfBirth_Month'] . '-' . $_POST['DateOfBirth_Day'] . '-XX'; else $birthday = $_POST['DateOfBirth_Month'] . '-' . $_POST['DateOfBirth_Day'] . '-' . $_POST['DateOfBirth_Year']; if (strlen($birthday) < 8) $birthday = ''; $start_date = $_POST['DateOfStart_Month'] . '-' . $_POST['DateOfStart_Day'] . '-' . $_POST['DateOfStart_Year']; if (strlen($start_date) < 8) $start_date = ''; */ $notes = trim(str_replace('\\\'', '\'', htmlentities($_POST['notes']))); $skills = trim(str_replace('\\\'', '\'', htmlentities($_POST['skills']))); $reason_interested = trim(str_replace('\\\'', '\'', htmlentities($_POST['reason_interested']))); //password here? if ($_POST['availability'] != null) { $availability = implode(',', $_POST['availability']); } else { $availability = ""; } // these two are not visible for editing, so they go in and out unchanged //used for url path in linking user back to edit form $path = strrev(substr(strrev($_SERVER['SCRIPT_NAME']), strpos(strrev($_SERVER['SCRIPT_NAME']), '/'))); //step two: try to make the deletion, password change, addition, or change if ($_POST['deleteMe'] == "DELETE") { $result = retrieve_person($id); if (!$result) { echo '<p>Unable to delete. ' . $first_name . ' ' . $last_name . ' is not in the database. <br>Please report this error to the House Manager.'; } else { //What if they're the last remaining manager account? if (strpos($type, 'manager') !== false) { //They're a manager, we need to check that they can be deleted $managers = getall_type('manager'); if (!$managers || mysql_num_rows($managers) <= 1) { echo '<p class="error">You cannot remove the last remaining manager from the database.</p>'; } else { $result = remove_person($id); echo "<p>You have successfully removed " . $first_name . " " . $last_name . " from the database.</p>"; if ($id == $_SESSION['_id']) { session_unset(); session_destroy(); } } } else { $result = remove_person($id); echo "<p>You have successfully removed " . $first_name . " " . $last_name . " from the database.</p>"; if ($id == $_SESSION['_id']) { session_unset(); session_destroy(); } } } } else { if ($_POST['reset_pass'] == "RESET") { $id = $_POST['old_id']; $result = remove_person($id); $pass = $first_name . $clean_phone1; //edited by James Loeffler $newperson = new Person($first_name, $last_name, $birthday, $gender, $address, $city, $state, $zip, $clean_phone1, $clean_phone2, $email, $type, $status, $schedule, $notes, $skills, $reason_interested, $dateAdded, md5($pass), $availability, $contact_preference); $result = add_person($newperson); if (!$result) { echo '<p class="error">Unable to reset ' . $first_name . ' ' . $last_name . "'s password.. <br>Please report this error to the House Manager."; } else { echo "<p>You have successfully reset " . $first_name . " " . $last_name . "'s password.</p>"; } } else { if ($_POST['old_id'] == 'new') { $id = $first_name . $clean_phone1; //check if there's already an entry $dup = retrieve_person($id); if ($dup) { echo '<p class="error">Unable to add ' . $first_name . ' ' . $last_name . ' to the database. <br>Another person with the same name and phone is already there.'; } else { //edited by James Loeffler $newperson = new Person($first_name, $last_name, $birthday, $gender, $address, $city, $state, $zip, $clean_phone1, $clean_phone2, $email, $type, $status, $schedule, $notes, $skills, $reason_interested, $dateAdded, md5($pass), $availability, $contact_preference); $result = add_person($newperson); if (!$result) { echo '<p class="error">Unable to add " .$first_name." ".$last_name. " in the database. <br>Please report this error to the House Manager.'; } else { if ($_SESSION['access_level'] == 0) { /* $to = '*****@*****.**'; $subject = 'Your Login!'; $message = 'Your Login ID id: XXXXXXXXXXXXX' . "\r\n" 'Your Login Password is: XXXXXXXXXXXXX'; $headers = 'From: webmaster@example.com' . "\r\n" . 'Reply-To: webmaster@example.com' . "\r\n" . 'X-Mailer: PHP/' . phpversion(); mail($to, $subject, $message, $headers); */ //this is a possible email function template that we can use echo "<p>Your application has been successfully submitted.<br> You will be recieving an email shortly with your ID and Password soon!"; error_log('The Email has been sent!'); } else { echo "<p>You have successfully added " . $first_name . " " . $last_name . " to the database.</p>"; } } } } else { $id = $_POST['old_id']; $pass = $_POST['old_pass']; $result = remove_person($id); if (!$result) { echo '<p class="error">Unable to update ' . $first_name . ' ' . $last_name . '. <br>Please report this error to the House Manager.'; } else { //Edited by James Loeffler $newperson = new Person($first_name, $last_name, $birthday, $gender, $address, $city, $state, $zip, $clean_phone1, $clean_phone2, $email, $type, $status, $schedule, $notes, $skills, $reason_interested, $dateAdded, md5($pass), $availability, $contact_preference); $result = add_person($newperson); if (!$result) { echo '<p class="error">Unable to update ' . $first_name . ' ' . $last_name . '. <br>Please report this error to the House Manager.'; } else { echo '<p>You have successfully edited <a href="' . $path . 'personEdit.php?id=' . $id . '"><b>' . $first_name . ' ' . $last_name . ' </b></a> in the database.</p>'; } add_log_entry('<a href=\\"personEdit.php?id=' . $id . '\\">' . $first_name . ' ' . $last_name . '</a>\'s Personnel Edit Form has been changed.'); } } } } }
/** * process_form sanitizes data, concatenates needed data, and enters it all into a database */ function process_form($id, $person) { //echo($_POST['first_name']); //step one: sanitize data by replacing HTML entities and escaping the ' character if ($person->get_first_name() == "new") { $first_name = trim(str_replace('\\\'', '', htmlentities(str_replace('&', 'and', $_POST['first_name'])))); } else { $first_name = $person->get_first_name(); } $last_name = trim(str_replace('\\\'', '\'', htmlentities($_POST['last_name']))); $location = $_POST['location']; $address = trim(str_replace('\\\'', '\'', htmlentities($_POST['address']))); $city = trim(str_replace('\\\'', '\'', htmlentities($_POST['city']))); $state = trim(htmlentities($_POST['state'])); $zip = trim(htmlentities($_POST['zip'])); if ($person->get_first_name() == "new") { $phone1 = trim(str_replace(' ', '', htmlentities($_POST['phone1']))); $clean_phone1 = preg_replace("/[^0-9]/", "", $phone1); $phone1type = $_POST['phone1type']; } else { $clean_phone1 = $person->get_phone1(); $phone1type = $person->get_phone1type(); } $phone2 = trim(str_replace(' ', '', htmlentities($_POST['phone2']))); $clean_phone2 = preg_replace("/[^0-9]/", "", $phone2); $phone2type = $_POST['phone2type']; $email = $_POST['email']; $type = implode(',', $_POST['type']); $screening_type = $_POST['screening_type']; if ($screening_type != "") { $screening = retrieve_dbApplicantScreenings($screening_type); $step_array = $screening->get_steps(); $step_count = count($step_array); $date_array = array(); for ($i = 0; $i < $step_count; $i++) { $date_array[$i] = $_POST['screening_status'][$i]; if ($date_array[$i] != "" && $date_array[$i] != "--" && strlen($date_array[$i]) != 8) { echo '<p>Completion Date for step: "' . $step_array[$i] . '" is in error, please enter mm-dd-yy.<br>'; } } $screening_status = implode(',', $date_array); } $status = $_POST['status']; if ($_POST['isstudent'] == "yes") { $position = "student"; $employer = $_POST['nameofschool']; } else { $position = $_POST['position']; $employer = $_POST['employer']; } $credithours = $_POST['credithours']; $motivation = trim(str_replace('\\\'', '\'', htmlentities($_POST['motivation']))); $specialties = trim(str_replace('\\\'', '\'', htmlentities($_POST['specialties']))); $convictions = $_POST['convictions']; if (!$_POST['availability']) { $availability = null; } else { $availability = implode(',', $_POST['availability']); } // these two are not visible for editing, so they go in and out unchanged $schedule = $_POST['schedule']; $hours = $_POST['hours']; $birthday = $_POST['birthday']; $start_date = $_POST['start_date']; $howdidyouhear = $_POST['howdidyouhear']; $notes = trim(str_replace('\\\'', '\'', htmlentities($_POST['notes']))); //used for url path in linking user back to edit form $path = strrev(substr(strrev($_SERVER['SCRIPT_NAME']), strpos(strrev($_SERVER['SCRIPT_NAME']), '/'))); //step two: try to make the deletion, password change, addition, or change if ($_POST['deleteMe'] == "DELETE") { $result = retrieve_person($id); if (!$result) { echo '<p>Unable to delete. ' . $first_name . ' ' . $last_name . ' is not in the database. <br>Please report this error to the House Manager.'; } else { //What if they're the last remaining manager account? if (strpos($type, 'manager') !== false) { //They're a manager, we need to check that they can be deleted $managers = getall_type('manager'); if (!$managers || mysql_num_rows($managers) <= 1) { echo '<p class="error">You cannot remove the last remaining manager from the database.</p>'; } else { $result = remove_person($id); echo "<p>You have successfully removed " . $first_name . " " . $last_name . " from the database.</p>"; if ($id == $_SESSION['_id']) { session_unset(); session_destroy(); } } } else { $result = remove_person($id); echo "<p>You have successfully removed " . $first_name . " " . $last_name . " from the database.</p>"; if ($id == $_SESSION['_id']) { session_unset(); session_destroy(); } } } } else { if ($_POST['reset_pass'] == "RESET") { $id = $_POST['old_id']; $result = remove_person($id); $pass = $first_name . $clean_phone1; $newperson = new Person($first_name, $last_name, $location, $address, $city, $state, $zip, $clean_phone1, $phone1type, $clean_phone2, $phone2type, $email, $type, $screening_type, $screening_status, $status, $employer, $position, $credithours, $commitment, $motivation, $specialties, $convictions, $availability, $schedule, $hours, $birthday, $start_date, $howdidyouhear, $notes, ""); $result = add_person($newperson); if (!$result) { echo '<p class="error">Unable to reset ' . $first_name . ' ' . $last_name . "'s password.. <br>Please report this error to the House Manager."; } else { echo "<p>You have successfully reset " . $first_name . " " . $last_name . "'s password.</p>"; } } else { if ($_POST['old_id'] == 'new') { $id = $first_name . $clean_phone1; //check if there's already an entry $dup = retrieve_person($id); if ($dup) { echo '<p class="error">Unable to add ' . $first_name . ' ' . $last_name . ' to the database. <br>Another person with the same name and phone is already there.'; } else { $newperson = new Person($first_name, $last_name, $location, $address, $city, $state, $zip, $clean_phone1, $phone1type, $clean_phone2, $phone2type, $email, $type, $screening_type, $screening_status, $status, $employer, $position, $credithours, $commitment, $motivation, $specialties, $convictions, $availability, $schedule, $hours, $birthday, $start_date, $howdidyouhear, $notes, ""); $result = add_person($newperson); if (!$result) { echo '<p class="error">Unable to add " .$first_name." ".$last_name. " in the database. <br>Please report this error to the House Manager.'; } else { if ($_SESSION['access_level'] == 0) { echo "<p>Your application has been successfully submitted.<br> The House Manager will contact you soon. Thank you!"; } else { echo '<p>You have successfully added <a href="' . $path . 'personEdit.php?id=' . $id . '"><b>' . $first_name . ' ' . $last_name . ' </b></a> to the database.</p>'; } } } } else { $id = $_POST['old_id']; $pass = $_POST['old_pass']; $result = remove_person($id); if (!$result) { echo '<p class="error">Unable to update ' . $first_name . ' ' . $last_name . '. <br>Please report this error to the House Manager.'; } else { $newperson = new Person($first_name, $last_name, $location, $address, $city, $state, $zip, $clean_phone1, $phone1type, $clean_phone2, $phone2type, $email, $type, $screening_type, $screening_status, $status, $employer, $position, $credithours, $commitment, $motivation, $specialties, $convictions, $availability, $schedule, $hours, $birthday, $start_date, $howdidyouhear, $notes, $pass); $result = add_person($newperson); if (!$result) { echo '<p class="error">Unable to update ' . $first_name . ' ' . $last_name . '. <br>Please report this error to the House Manager.'; } else { echo '<p>You have successfully edited <a href="' . $path . 'personEdit.php?id=' . $id . '"><b>' . $first_name . ' ' . $last_name . ' </b></a> in the database.</p>'; } add_log_entry('<a href=\\"personEdit.php?id=' . $id . '\\">' . $first_name . ' ' . $last_name . '</a>\'s Personnel Edit Form has been changed.'); } } } } }
/** * process_form sanitizes data, concatenates needed data, and enters it all into a database */ function process_form($id, $person) { //echo($_POST['first_name']); //step one: sanitize data by replacing HTML entities and escaping the ' character if ($id == "new") { $first_name = trim(str_replace('\\\'', '', htmlentities(str_replace('&', 'and', $_POST['first_name'])))); } else { $first_name = $person->get_first_name(); } // $first_name = str_replace(' ', '_', $first_name); $last_name = trim(str_replace('\\\'', '\'', htmlentities($_POST['last_name']))); $address = trim(str_replace('\\\'', '\'', htmlentities($_POST['address']))); $city = trim(str_replace('\\\'', '\'', htmlentities($_POST['city']))); $state = trim(htmlentities($_POST['state'])); $zip = trim(htmlentities($_POST['zip'])); if ($id == "new") { $phone1 = trim(str_replace(' ', '', htmlentities($_POST['phone1']))); } else { $phone1 = $person->get_phone1(); } $clean_phone1 = mb_ereg_replace("[^0-9]", "", $phone1); $phone2 = trim(str_replace(' ', '', htmlentities($_POST['phone2']))); $clean_phone2 = mb_ereg_replace("[^0-9]", "", $phone2); $email = $_POST['email']; $type = implode(',', $_POST['type']); if ($_POST['group']) { $group = implode(',', $_POST['group']); } else { $group = ""; } if ($_POST['role']) { $role = implode(' ', $_POST['role']); } else { $role = ""; } $status = $_POST['status']; if ($_POST['availability'] != null) { $availability = implode(',', $_POST['availability']); } else { $availability = ""; } // these two are not visible for editing, so they go in and out unchanged $schedule = $_POST['schedule']; //concatenate birthday and start_date strings if ($_POST['DateOfBirth_Year'] == "") { $birthday = $_POST['DateOfBirth_Month'] . '-' . $_POST['DateOfBirth_Day'] . '-XX'; } else { $birthday = $_POST['DateOfBirth_Month'] . '-' . $_POST['DateOfBirth_Day'] . '-' . $_POST['DateOfBirth_Year']; } if (strlen($birthday) < 8) { $birthday = ''; } $start_date = $_POST['DateOfStart_Month'] . '-' . $_POST['DateOfStart_Day'] . '-' . $_POST['DateOfStart_Year']; if (strlen($start_date) < 8) { $start_date = ''; } $notes = trim(str_replace('\\\'', '\'', htmlentities($_POST['notes']))); //used for url path in linking user back to edit form $path = strrev(substr(strrev($_SERVER['SCRIPT_NAME']), strpos(strrev($_SERVER['SCRIPT_NAME']), '/'))); //step two: try to make the deletion, password change, addition, or change if (@$_POST['deleteMe'] == "DELETE") { $result = retrieve_person($id); if (!$result) { echo '<p>Unable to delete. ' . $first_name . ' ' . $last_name . ' is not in the database. <br>Please report this error to the admin.'; } else { //What if they're the last remaining manager account? if (strpos($type, 'manager') !== false) { //They're a manager, we need to check that they can be deleted $managers = getall_type('manager'); if (!$managers || mysql_num_rows($managers) <= 1) { echo '<p class="error">You cannot remove the last remaining manager from the database.</p>'; } else { $result = remove_person($id); echo "<p>You have successfully removed " . $first_name . " " . $last_name . " from the database.</p>"; if ($id == $_SESSION['_id']) { session_unset(); session_destroy(); } } } else { $result = remove_person($id); echo "<p>You have successfully removed " . $first_name . " " . $last_name . " from the database.</p>"; if ($id == $_SESSION['_id']) { session_unset(); session_destroy(); } } } } else { if (@$_POST['reset_pass'] == "RESET") { $id = $_POST['old_id']; $result = remove_person($id); $pass = $first_name . $clean_phone1; $newperson = new Person($first_name, $last_name, $address, $city, $state, $zip, $clean_phone1, $clean_phone2, $email, $type, $group, $role, $status, $availability, $schedule, $birthday, $start_date, $notes, md5($pass)); $result = add_person($newperson); if (!$result) { echo '<p class="error">Unable to reset ' . $first_name . ' ' . $last_name . "'s password.. <br>Please report this error to the Operations Manager."; } else { echo "<p>You have successfully reset " . $first_name . " " . $last_name . "'s password.</p>"; } } else { if (@$_POST['old_id'] == 'new') { $id = $first_name . $clean_phone1; //check if there's already an entry $dup = retrieve_person($id); if ($dup) { echo '<p class="error">Unable to add ' . $first_name . ' ' . $last_name . ' to the database. <br>Another person with the same name and phone is already there.'; } else { $pass = $_POST['old_pass']; $newperson = new Person($first_name, $last_name, $address, $city, $state, $zip, $clean_phone1, $clean_phone2, $email, $type, $group, $role, $status, $availability, $schedule, $birthday, $start_date, $notes, md5($pass)); $result = add_person($newperson); if (!$result) { echo '<p class="error">Unable to add " .$first_name." ".$last_name. " in the database. <br>Please report this error to the Operations Manager.'; } else { if ($_SESSION['access_level'] == 0) { echo "<p>Your application has been successfully submitted.<br> An MCHPP staff member will contact you soon. Thank you!"; } else { echo "<p>You have successfully added " . $first_name . " " . $last_name . " to the database.</p>"; } } } } else { $id = $_POST['old_id']; $pass = $_POST['old_pass']; $result = remove_person($id); if (!$result) { echo '<p class="error">Unable to update ' . $first_name . ' ' . $last_name . '. <br>Please report this error to the Operations Manager.'; } else { $newperson = new Person($first_name, $last_name, $address, $city, $state, $zip, $clean_phone1, $clean_phone2, $email, $type, $group, $role, $status, $availability, $schedule, $birthday, $start_date, $notes, md5($pass)); $result = add_person($newperson); if (!$result) { echo '<p class="error">Unable to update ' . $first_name . ' ' . $last_name . '. <br>Please report this error to the Operations Manager.'; } else { echo '<p>You have successfully edited <a href="' . $path . 'personEdit.php?id=' . $id . '"><b>' . $first_name . ' ' . $last_name . ' </b></a> in the database.</p>'; } add_log_entry('<a href=\\"personEdit.php?id=' . $id . '\\">' . $first_name . ' ' . $last_name . '</a>\'s Personnel Edit Form has been changed.'); } } } } }
function testChange_password() { $m = new Person("John", "Smith", "10-12-87", "Male", "555 Main Street", "Flushing", "NY", "11111", PHONE, "2072654046", "*****@*****.**", "volunteer", " ", "Schedule", "I like helping out", "55555", "03-14-14", "email"); echo 'will test change_password </br>'; $result = add_person($m); echo 'result is ' . $result; if ($result) { echo "add_person person was inserted </br>"; } else { echo "add_person - person was not inserted</br>"; } $result = change_password('John2072445902', 'newpassword'); if ($result) { echo "change_password succeeded </br>"; } else { echo "change_password failed</br>"; } $p = retrieve_person(ID); if ($p == null) { echo 'Retrieve failed</br>'; } else { checkEquals($p->get_password(), "newpassword"); } $res = remove_person(ID); if ($res == null) { echo 'Retrieve failed</br>'; } }
<?php require_once realpath($_SERVER['DOCUMENT_ROOT']) . '/includes/init_member.inc.php'; require_once realpath($_SERVER['DOCUMENT_ROOT']) . '/includes/init_trigger.inc.php'; if (isset($_POST['pid'])) { remove_person($_POST['pid']); }