/**
* Bootstrap any application services.
*
* @return void
*/
public function boot()
{
view()->composer(['main', 'main_wo_header_nav', 'category_items'], function ($view) {
$this->user_session = validate_session();
//fetch all the categories
$arrCategory = DB::table('category_master')->get();
//fetch all the item types
$arrType = DB::table('type_master')->get();
foreach ($arrCategory as $key => $category) {
foreach ($arrType as $key1 => $type) {
if ($type->category == $category->cat_id) {
$arrTypeCategoryWise[$category->cat_id][] = $type;
}
}
}
//get category id versus category name array
$arrCetegory_id_name = getKeyValueArray('cat_id', 'name', $arrCategory, 'object');
$arrType_id_name = getKeyValueArray('type_id', 'name', $arrType, 'object');
//get cart items count
if ($this->user_session->is_logged_in) {
$user_id = $this->user_session->user_id;
} else {
$user_id = null;
}
//get cart details
if ($this->user_session->is_logged_in) {
$count_cart = DB::connection('mongodb')->collection('cart')->where('user_id', $user_id)->orWhere('session_id', session_id())->count();
} else {
$count_cart = DB::connection('mongodb')->collection('cart')->where('session_id', session_id())->count();
}
$view->with(compact('count_cart', 'arrTypeCategoryWise', 'arrCategory', 'arrType', 'arrCetegory_id_name', 'arrType_id_name'));
});
}
function __construct()
{
session_start();
$this->user_session = validate_session();
$protocol = isset($_SERVER['HTTPS']) ? 'https://' : 'http://';
$web_root = $protocol . $_SERVER['HTTP_HOST'];
define('WEB_ROOT', $web_root);
define('DOCUMENT_ROOT', $_SERVER['DOCUMENT_ROOT']);
}
function &login()
{
// Check if there is still a valid session
validate_session(true);
// Create the HTML array and initialize values
$HTML = array();
$HTML['email'] = '';
$HTML['datepicker'] = '';
$HTML['login_error'] = '';
// Check if it was a page load or a submission
if (getRequest('submitted', true, 'post') !== 'yes') {
return $HTML;
}
// It was a page load so get the post values
foreach ($HTML as $key => &$value) {
$value = getRequest($key, true, 'post');
}
// Validate the email and password
$date = explode('-', $HTML['datepicker']);
if (empty($HTML['email'])) {
$HTML['login_error'] = 'Email Cannot be empty';
} elseif (empty($HTML['datepicker'])) {
$HTML['login_error'] = 'Date of birth cannot be empty';
} elseif (filter_var($HTML['email'], FILTER_VALIDATE_EMAIL) === false) {
$HTML['login_error'] = 'Invalid Email Address';
} else {
// The datepicker makes sure it is a valid date
// But should still check incase someone scripts a request
if (count($date) != 3 or !checkdate(intval($date[0]), intval($date[1]), intval($date[2]))) {
$HTML['login_error'] = "Invalid Date";
}
}
// If no errors, set session variable and go to account
if (empty($HTML['login_error'])) {
// Create a database record
if (empty($GLOBALS['DB'])) {
die('Database Link is not set');
}
$query = sprintf('INSERT INTO project (email, dob, ipaddr) VALUES (\'%s\',\'%s\',\'%s\')', mysql_real_escape_string($HTML['email']), mysql_real_escape_string($date[2] . '-' . $date[0] . '-' . $date[1]), mysql_real_escape_string(util_getenv('REMOTE_ADDR')));
$result = mysql_query($query);
// Make sure it executed properly
if (!$result) {
$HTML['login_error'] = 'Database Error. Please try again later';
return $HTML;
}
set_SESSION('dob', $HTML['datepicker']);
set_header('app');
exit;
}
// There were errors so load the login page again with errors
return $HTML;
}
function start_session($conn)
{
//DEBUG
//END DEBUG
$userAgent = $_SERVER['HTTP_USER_AGENT'];
$time = time();
if (!isset($_COOKIE['token'])) {
$workerId = $_GET['workerId'];
$assignmentId = $_GET['assignmentId'];
$timeExpire = $time + 3600;
$turkSubmitTo = $_GET['turkSubmitTo'];
$token = create_token($workerId, $userAgent, $time);
set_app_cookies($token, $workerId, $turkSubmitTo, $timeExpire);
store_session($conn, $assignmentId, $workerId, $timeExpire, $time, $userAgent, $token);
} else {
$truth = validate_session($conn, $_COOKIE['token'], $_COOKIE['workerId'], $userAgent);
if (!$truth) {
//GOTO FAIL
echo 'failed';
header('Location: /gotofail.html');
}
}
}
function login_sequence($link, $login_form = 0)
{
$_SESSION["prefs_cache"] = false;
if (SINGLE_USER_MODE) {
authenticate_user($link, "admin", null);
cache_prefs($link);
load_user_plugins($link, $_SESSION["uid"]);
} else {
if (!$_SESSION["uid"] || !validate_session($link)) {
if (AUTH_AUTO_LOGIN && authenticate_user($link, null, null)) {
$_SESSION["ref_schema_version"] = get_schema_version($link, true);
} else {
authenticate_user($link, null, null, true);
}
if (!$_SESSION["uid"]) {
render_login_form($link, $login_form);
}
} else {
/* bump login timestamp */
db_query($link, "UPDATE ttrss_users SET last_login = NOW() WHERE id = " . $_SESSION["uid"]);
}
if ($_SESSION["uid"] && $_SESSION["language"] && SESSION_COOKIE_LIFETIME > 0) {
setcookie("ttrss_lang", $_SESSION["language"], time() + SESSION_COOKIE_LIFETIME);
}
if ($_SESSION["uid"]) {
cache_prefs($link);
load_user_plugins($link, $_SESSION["uid"]);
}
}
}
name = name.replace(/[\[]/, "\\\[").replace(/[\]]/, "\\\]");
var regexS = "[\\?&]" + name + "=([^&#]*)";
var regex = new RegExp(regexS);
var results = regex.exec(window.location.search);
if(results == null)
return "";
else
return decodeURIComponent(results[1].replace(/\+/g, " "));
}
</script>
</head>
<body>
<?php
// Logged in?
if ($_SESSION["uid"] && validate_session()) {
?>
<!-- Show form -->
<form id="gritttt-form" method="post" action="">
<div id="gritttt-logo">
<a href="http://gritttt-rss.nicolashoening.de/" target="_blank">
<img src="./gritttt-logo.png" alt="Go to Home of Gritttt" title="Go to Home of Gritttt"/>
</a>
</div>
<div id="gritttt-heading">Share this page in your tt-rss:</div>
<br/>
<input id="gritttt-url" name="gritttt-url" type="hidden" size="40" name="url"></input>
<div id="gritttt-row-title">
<label for="gritttt-title">Title:</label>
<input id="gritttt-title" name="gritttt-title" type="text" size="60" name="title"></input>
</div>
function login_sequence($link, $mobile = false)
{
if (!SINGLE_USER_MODE) {
$login_action = $_POST["login_action"];
# try to authenticate user if called from login form
if ($login_action == "do_login") {
$login = $_POST["login"];
$password = $_POST["password"];
$remember_me = $_POST["remember_me"];
if (authenticate_user($link, $login, $password)) {
$_POST["password"] = "";
$_SESSION["language"] = $_POST["language"];
$_SESSION["ref_schema_version"] = get_schema_version($link, true);
$_SESSION["bw_limit"] = !!$_POST["bw_limit"];
if ($_POST["profile"]) {
$profile = db_escape_string($_POST["profile"]);
$result = db_query($link, "SELECT id FROM ttrss_settings_profiles\n\t\t\t\t\t\t\tWHERE id = '{$profile}' AND owner_uid = " . $_SESSION["uid"]);
if (db_num_rows($result) != 0) {
$_SESSION["profile"] = $profile;
$_SESSION["prefs_cache"] = array();
}
}
header("Location: " . $_SERVER["REQUEST_URI"]);
exit;
return;
} else {
$_SESSION["login_error_msg"] = __("Incorrect username or password");
}
}
if (!$_SESSION["uid"] || !validate_session($link)) {
render_login_form($link, $mobile);
//header("Location: login.php");
exit;
} else {
/* bump login timestamp */
db_query($link, "UPDATE ttrss_users SET last_login = NOW() WHERE id = " . $_SESSION["uid"]);
if ($_SESSION["language"] && SESSION_COOKIE_LIFETIME > 0) {
setcookie("ttrss_lang", $_SESSION["language"], time() + SESSION_COOKIE_LIFETIME);
}
/* bump counters stamp since we're getting reloaded anyway */
$_SESSION["get_all_counters_stamp"] = time();
}
} else {
return authenticate_user($link, "admin", null);
}
}
<?php
require_once 'globals.php';
validate_session('tutor_licom');
?>
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>Sistema de pasantías.</title>
<link href="css/estilo.css" rel="stylesheet" type="text/css" />
</head>
<body>
<div class="container">
<div class="header">
<?php
include "include/cabecera.php";
?>
</div>
<?php
require_once "include/menu_licom.php";
?>
<div class="content">
<?php
require_once "include/fecha.php";
?>
<div align="center">
<h2>Seleccione una opción en el menú de la izquierda.</h2>
</div>
}
init_connection($link);
$subop = $_REQUEST["subop"];
$mode = $_REQUEST["mode"];
if ((!$op || $op == "rss" || $op == "dlg") && !$_REQUEST["noxml"]) {
header("Content-Type: application/xml; charset=utf-8");
} else {
header("Content-Type: text/plain; charset=utf-8");
}
if (ENABLE_GZIP_OUTPUT) {
ob_start("ob_gzhandler");
}
if (SINGLE_USER_MODE) {
authenticate_user($link, "admin", null);
}
if (!($_SESSION["uid"] && validate_session($link)) && $op != "globalUpdateFeeds" && $op != "rss" && $op != "getUnread" && $op != "getProfiles" && $op != "share" && $op != "fbexport" && $op != "logout" && $op != "pubsub") {
if ($op == 'pref-feeds' && $_REQUEST['subop'] == 'add') {
header("Content-Type: text/html");
login_sequence($link);
render_login_form($link);
} else {
header("Content-Type: text/plain");
print json_encode(array("error" => array("code" => 6)));
}
return;
}
$purge_intervals = array(0 => __("Use default"), -1 => __("Never purge"), 5 => __("1 week old"), 14 => __("2 weeks old"), 31 => __("1 month old"), 60 => __("2 months old"), 90 => __("3 months old"));
$update_intervals = array(0 => __("Default interval"), -1 => __("Disable updates"), 15 => __("Each 15 minutes"), 30 => __("Each 30 minutes"), 60 => __("Hourly"), 240 => __("Each 4 hours"), 720 => __("Each 12 hours"), 1440 => __("Daily"), 10080 => __("Weekly"));
$update_intervals_nodefault = array(-1 => __("Disable updates"), 15 => __("Each 15 minutes"), 30 => __("Each 30 minutes"), 60 => __("Hourly"), 240 => __("Each 4 hours"), 720 => __("Each 12 hours"), 1440 => __("Daily"), 10080 => __("Weekly"));
$update_methods = array(0 => __("Default"), 1 => __("Magpie"), 2 => __("SimplePie"), 3 => __("Twitter OAuth"));
if (DEFAULT_UPDATE_METHOD == "1") {
<?php /* ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- Page: index.php - Site default document. Runs functions to validate session, validate requested page, and generate HTML to be displayed ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- */ #Load system framework include 'vitae/system_on_load.php'; #Validate session and requested page definition validate_session(); $display_page = load_page_definition(); #Generate page and print to console/browser echo '<pre>'; var_dump($_SESSION); echo '</pre>'; echo $display_page->print_title();
<?php
require '../fpdf/fpdf.php';
require_once '../globals.php';
require_once '../db.php';
validate_session('estudiante');
date_default_timezone_set('America/Caracas');
class PDF_MC_Table extends FPDF
{
var $widths;
var $aligns;
var $height;
function SetWidths($w)
{
//Set the array of column widths
$this->widths = $w;
}
function SetAligns($a)
{
//Set the array of column alignments
$this->aligns = $a;
}
function Row($data)
{
$height = 2;
//Calculate the height of the row
$nb = $height;
for ($i = 0; $i < count($data); $i++) {
$nb = max($nb, $this->NbLines($this->widths[$i], $data[$i]));
}
$h = 5 * $nb;
<?php
require '../fpdf/fpdf.php';
require_once '../globals.php';
require_once '../db.php';
validate_session("estudiante");
date_default_timezone_set('America/Caracas');
$db = new PgDB();
$id = session_var('usuario_id');
$qry = "SELECT nombre, apellido, cedula, dirigido_a, numero_carta FROM usuario INNER JOIN pasantia ON pasantia.usuario_id = usuario.id AND usuario.id = {$id}";
$reco = $db->query($qry);
$row = pg_fetch_array($reco);
$pdf = new FPDF('P', 'mm', 'Letter');
$pdf->AddPage();
$fecha = date('d-m-Y', time());
$nroCP = "{$row['numero_carta']}";
$ciudadano = "{$row['dirigido_a']}";
$nombre = "{$row['nombre']} {$row['apellido']}";
$cedula = "{$row['cedula']}";
//linea superior
$pdf->Line(28, 20, 187, 20);
$pdf->Line(28, 20.7, 187, 20.7);
//linea inferior
$pdf->Line(28, 53, 187, 53);
$pdf->Line(28, 53.7, 187, 53.7);
//linea izquierda
$pdf->Line(186, 54, 186, 20);
$pdf->Line(186.7, 54, 186.7, 20);
//linea derecha
$pdf->Line(28, 54, 28, 20);
$pdf->Line(28.7, 54, 28.7, 20);
<?php
require_once 'globals.php';
validate_session('dpe');
?>
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>Sistema de pasantías.</title>
<link href="css/estilo.css" rel="stylesheet" type="text/css" />
</head>
<body>
<div class="container">
<div class="header">
<?php
include "include/cabecera.php";
?>
</div>
<?php
require_once "include/menu_dpe.php";
?>
<div class="content">
<?php
require_once "include/fecha.php";
?>
<div align="center">
<h2>Seleccione una opción en el menú de la izquierda.</h2>
</div>
/**
* Logs a user out of SiT
*
* @author Paul Heaney
* @param string $sessionid - The session ID to log out of
* @return Array - Status
*/
function logout($sessionid)
{
$status = new SoapStatus();
if (validate_session($sessionid)) {
session_id($sessionid);
session_start();
// End the session, remove the cookie and destroy all data registered with the session
$_SESSION['auth'] = FALSE;
$_SESSION['portalauth'] = FALSE;
$_SESSION = array();
session_unset();
session_destroy();
if (isset($_COOKIE[session_name()])) {
setcookie(session_name(), '', time() - 42000, '/');
}
} else {
$status->set_error('session_not_valid');
}
return array('status' => $status->getSOAPArray());
}
function &signup($edit = false)
{
// Check if there is still a valid session
validate_session(!$edit);
$valid_input = true;
// Create the HTML array with empty values
$HTML = array();
$HTML['password'] = '';
$HTML['confirm_password'] = '';
$HTML['email'] = '';
$HTML['city'] = '';
$HTML['countryID'] = '';
$HTML['password_encrypted'] = '';
// Check the submitted field
if (getRequest('submitted', true, 'post') !== 'yes') {
// Fill in the fields if it is an edit
if ($edit) {
$fields = getUserInfo(get_SESSION('userID'));
$HTML['email'] = $fields['email'];
$HTML['city'] = $fields['city'];
$HTML['countryID'] = $fields['countryID'];
$HTML['password_encrypted'] = $fields['password_encrypted'];
}
// Populate the select drop down box
getCountries($HTML['country_options_escape'], $HTML['countryID']);
return $HTML;
}
// Fill the array with the form data
foreach ($HTML as $key => &$value) {
$value = getRequest($key, true, 'post');
}
// Validate the email
if (empty($HTML['email'])) {
$HTML['email_error'] = 'Email cannot be empty';
$valid_input = false;
} else {
if (filter_var($HTML['email'], FILTER_VALIDATE_EMAIL) === false) {
$HTML['email_error'] = 'Invalid Email Address';
$valid_input = false;
} else {
$newID = validate_record($HTML['email']);
if ($newID > 0 and (!$edit or $newID !== trim(get_SESSION('userID')))) {
$HTML['email_error'] = 'An account already exists with that email';
$valid_input = false;
}
}
}
// Validate the password
$saved_pass = false;
if ($edit and empty($HTML['password']) or $HTML['password'] === PASS_HOLDER and !empty($HTML['password_encrypted'])) {
// use the password that was saved before
$saved_pass = true;
} else {
if (empty($HTML['password'])) {
$HTML['confirm_password_error'] = 'Password cannot be empty';
$valid_input = false;
} else {
if ($HTML['password'] !== $HTML['confirm_password']) {
$HTML['confirm_password_error'] = 'Passwords do not match';
$valid_input = false;
} else {
if (!preg_match('/(?=.*\\d)(?=.*[a‐z])(?=.*[A-Z])(?=.*[\\.\\+\\\\*\\?\\[\\^\\]\\$\\(\\)\\{\\}\\=\\!\\<\\>\\|\\:\',"~`&@_;\\/#%-]).{6,20}/', $HTML['password'])) {
$HTML['confirm_password_error'] = 'Password must be 6-20 chars and more secure!';
$valid_input = false;
}
}
}
}
// Validate the city
if (empty($HTML['city'])) {
$HTML['city_error'] = 'City cannot be empty';
$valid_input = false;
} else {
if (preg_match('/(?=.*[\\d\\.\\+\\\\*\\?\\[\\^\\]\\$\\(\\)\\{\\}\\=\\!\\<\\>\\|\\:\'"~`&@_;\\/#%])/', $HTML['city'])) {
$HTML['city_error'] = 'Special characters are not allowed';
$valid_input = false;
}
}
// Validate the country
if (empty($HTML['countryID'])) {
$HTML['countryID_error'] = 'Please select your country';
$valid_input = false;
} else {
if (!validate_countryID($HTML['countryID'])) {
$HTML['countryID_error'] = 'Invalid country submitted';
$valid_input = false;
}
}
if ($valid_input) {
// If it is the edit page update the user and return to account page
if ($edit) {
updateUser($HTML, $saved_pass);
set_header('account');
exit;
}
if (empty($GLOBALS['DB'])) {
die('Database Link is not set');
}
// Create a user
$query = sprintf('INSERT INTO users (email, password, city, countryID) VALUES (\'%s\',\'%s\',\'%s\',\'%s\')', mysql_real_escape_string($HTML['email']), mysql_real_escape_string($saved_pass ? $HTML['password_encrypted'] : md5($HTML['password'])), mysql_real_escape_string($HTML['city']), mysql_real_escape_string($HTML['countryID']));
$result = mysql_query($query);
// Make sure it executed properly
if (!$result) {
$HTML['signup_error'] = 'Error adding user';
return $HTML;
}
set_SESSION('userID', validate_record($HTML['email']));
set_header('account');
exit;
}
// Populate the select drop down box since we have to go back to the page
getCountries($HTML['country_options_escape'], $HTML['countryID']);
// Store the password if it was valid and changed
if (empty($HTML['confirm_password_error'])) {
if (!empty($HTML['password']) and $HTML['password'] !== PASS_HOLDER) {
$HTML['password_encrypted'] = md5($HTML['password']);
$HTML['password'] = PASS_HOLDER;
$HTML['confirm_password'] = PASS_HOLDER;
}
// Clear the password if it was invalid or set it back to do not change if it is an edit page
} else {
if (!$edit) {
$HTML['password_encrypted'] = '';
}
$HTML['password'] = '';
$HTML['confirm_password'] = '';
}
return $HTML;
}
function login_sequence($link, $mobile = false)
{
$_SESSION["prefs_cache"] = array();
if (!SINGLE_USER_MODE) {
$login_action = $_POST["login_action"];
# try to authenticate user if called from login form
if ($login_action == "do_login") {
$login = $_POST["login"];
$password = $_POST["password"];
$remember_me = $_POST["remember_me"];
if (authenticate_user($link, $login, $password)) {
$_POST["password"] = "";
$_SESSION["language"] = $_POST["language"];
$_SESSION["ref_schema_version"] = get_schema_version($link, true);
$_SESSION["bw_limit"] = !!$_POST["bw_limit"];
header("Location: " . $_SERVER["REQUEST_URI"]);
exit;
return;
} else {
$_SESSION["login_error_msg"] = __("Incorrect username or password");
}
}
if (!$_SESSION["uid"] || !validate_session($link)) {
render_login_form($link, $mobile);
//header("Location: login.php");
exit;
} else {
/* bump login timestamp */
db_query($link, "UPDATE ttirc_users SET last_login = NOW(), \n\t\t\t \t\ttwitter_last_id = NULL WHERE id = " . $_SESSION["uid"]);
if ($_SESSION["language"] && SESSION_COOKIE_LIFETIME > 0) {
setcookie("ttirc_lang", $_SESSION["language"], time() + SESSION_COOKIE_LIFETIME);
}
/* Enable automatic connections */
db_query($link, "UPDATE ttirc_connections SET enabled = true \n\t\t\t\t\tWHERE auto_connect = true AND owner_uid = " . $_SESSION["uid"]);
initialize_user_prefs($link, $_SESSION["uid"]);
/* $tmp_result = db_query($link, "SELECT id FROM ttirc_connections
WHERE status != ".CS_DISCONNECTED." AND owner_uid = " .
$_SESSION["uid"]);
while ($conn = db_fetch_assoc($tmp_result)) {
push_message($link, $conn['id'], "---",
"Accepted connection from " . $_SERVER["REMOTE_ADDR"],
true);
} */
}
} else {
return authenticate_user($link, "admin", null);
}
}
no_cache_incantation();
startup_gettext();
$script_started = getmicrotime();
$link = db_connect(DB_HOST, DB_USER, DB_PASS, DB_NAME);
if (!init_connection($link)) {
return;
}
header("Content-Type: text/plain; charset=utf-8");
if (ENABLE_GZIP_OUTPUT && function_exists("ob_gzhandler")) {
ob_start("ob_gzhandler");
}
if (SINGLE_USER_MODE) {
authenticate_user($link, "admin", null);
}
// TODO remove and handle within Handlers
if (!($_SESSION["uid"] && validate_session($link))) {
if ($op == 'pref-feeds' && $method == 'add') {
header("Content-Type: text/html");
login_sequence($link);
render_login_form($link);
} else {
header("Content-Type: text/plain");
print json_encode(array("error" => array("code" => 6)));
}
return;
}
$purge_intervals = array(0 => __("Use default"), -1 => __("Never purge"), 5 => __("1 week old"), 14 => __("2 weeks old"), 31 => __("1 month old"), 60 => __("2 months old"), 90 => __("3 months old"));
$update_intervals = array(0 => __("Default interval"), -1 => __("Disable updates"), 15 => __("Each 15 minutes"), 30 => __("Each 30 minutes"), 60 => __("Hourly"), 240 => __("Each 4 hours"), 720 => __("Each 12 hours"), 1440 => __("Daily"), 10080 => __("Weekly"));
$update_intervals_nodefault = array(-1 => __("Disable updates"), 15 => __("Each 15 minutes"), 30 => __("Each 30 minutes"), 60 => __("Hourly"), 240 => __("Each 4 hours"), 720 => __("Each 12 hours"), 1440 => __("Daily"), 10080 => __("Weekly"));
$update_methods = array(0 => __("Default"), 1 => __("Magpie"), 2 => __("SimplePie"), 3 => __("Twitter OAuth"));
if (DEFAULT_UPDATE_METHOD == "1") {
/**
* Lists a set of incidents
* @author Paul Heaney
* @param string $sessionid - the sessionid
* @param int $owner - List incidents of this owner (0 for all)
* @param int $status - 0 for ALL, 1 for all Active, 2 for all open
* @return Array - array of incidents[] Status
*/
function list_incidents($sessionid, $owner = 0, $status = 1)
{
global $sit;
$status = new SoapStatus();
$incidents = array();
if (!empty($sessionid) and validate_session($sessionid)) {
if (user_permission($sit[2], 6)) {
/*
* SELECT i.*, uTOwner.realname AS townerName FROM `users` AS uo, `incidents` AS i LEFT JOIN `users` AS uTOwner ON uTOwner.id = i.towner WHERE i.owner = uo.id
*/
$sql = "SELECT i.*, uOwner.realname AS ownerName, uTOwner.realname AS townerName, p.name AS priorityName, ";
$sql .= "s.name AS skill, ist.name AS statusNameInternal, ist.ext_name AS statusNameExternal ";
$sql .= "FROM `{$GLOBALS['dbIncidentStatus']}` AS ist, `{$GLOBALS['dbUsers']}` AS uOwner, `{$GLOBALS['dbPriority']}` AS p, ";
$sql .= "`{$GLOBALS['dbIncidents']}` AS i LEFT JOIN `{$GLOBALS['dbUsers']}` AS uTOwner ON uTOwner.id = i.towner ";
$sql .= "LEFT JOIN `{$GLOBALS['dbSoftware']}` AS s ON s.id = i.softwareid ";
$sql .= " WHERE i.owner = uOwner.id AND i.priority = p.id AND i.status = ist.id ";
if ($owner > 0) {
$sql .= "AND (i.owner = {$owner} OR i.towner = {$owner}) ";
}
switch ($status) {
case 1:
$sql .= "AND i.status = " . STATUS_ACTIVE . " ";
break;
case 2:
$sql .= "AND (i.status != " . STATUS_CLOSED . " AND i.status != " . STATUS_UNASSIGNED . ") ";
break;
}
debug_log("SQL: {$sql}");
$result = mysql_query($sql);
if (mysql_error()) {
trigger_error(mysql_error(), E_USER_WARNING);
}
if (mysql_num_rows($result) > 0) {
while ($obj = mysql_fetch_object($result)) {
$incident = new Incident();
$incident->incidentid = $obj->id;
$incident->title = $obj->title;
$incident->owner = $obj->ownerName;
$incident->ownerid = $obj->owner;
$incident->towner = $obj->townerName;
$incident->townerid = $obj->towner;
$incident->priority = $obj->priorityName;
$incident->priorityid = $obj->priority;
$incident->currentstatusid = $obj->status;
$incident->currentstatusinternal = $GLOBALS[$obj->statusNameInternal];
$incident->currentstatusexternal = $GLOBALS[$obj->statusNameExternal];
$incident->skill = $obj->skill;
$incident->skillid = $obj->softwareid;
$incident->maintenanceid = $obj->maintenanceid;
$incident->servicelevel = $obj->servicelevel;
$incidents[] = $incident;
}
}
} else {
$status->set_error('no_access');
}
} else {
$status->set_error('session_not_valid');
}
return array('incidents' => $incidents, 'status' => $status->getSOAPArray());
}
function login_sequence()
{
if (SINGLE_USER_MODE) {
@session_start();
authenticate_user("admin", null);
startup_gettext();
load_user_plugins($_SESSION["uid"]);
} else {
if (!validate_session()) {
$_SESSION["uid"] = false;
}
if (!$_SESSION["uid"]) {
if (AUTH_AUTO_LOGIN && authenticate_user(null, null)) {
$_SESSION["ref_schema_version"] = get_schema_version(true);
} else {
authenticate_user(null, null, true);
}
if (!$_SESSION["uid"]) {
@session_destroy();
setcookie(session_name(), '', time() - 42000, '/');
render_login_form();
exit;
}
} else {
/* bump login timestamp */
db_query("UPDATE ttrss_users SET last_login = NOW() WHERE id = " . $_SESSION["uid"]);
$_SESSION["last_login_update"] = time();
}
if ($_SESSION["uid"]) {
startup_gettext();
load_user_plugins($_SESSION["uid"]);
/* cleanup ccache */
db_query("DELETE FROM ttrss_counters_cache WHERE owner_uid = " . $_SESSION["uid"] . " AND\n\t\t\t\t\t\t(SELECT COUNT(id) FROM ttrss_feeds WHERE\n\t\t\t\t\t\t\tttrss_feeds.id = feed_id) = 0");
db_query("DELETE FROM ttrss_cat_counters_cache WHERE owner_uid = " . $_SESSION["uid"] . " AND\n\t\t\t\t\t\t(SELECT COUNT(id) FROM ttrss_feed_categories WHERE\n\t\t\t\t\t\t\tttrss_feed_categories.id = feed_id) = 0");
}
}
}
} else {
if (!$_REQUEST["noxml"]) {
header("Content-Type: text/html; charset=utf-8");
} else {
header("Content-Type: text/plain; charset=utf-8");
}
}
if (!$op) {
header("Content-Type: application/xml");
print_error_xml(7);
exit;
}
if (SINGLE_USER_MODE) {
authenticate_user($link, "admin", null);
}
if (!($_SESSION["uid"] && validate_session($link)) && $op != "globalUpdateFeeds" && $op != "rss" && $op != "getUnread" && $op != "publish" && $op != "getProfiles") {
if ($op == "rpc" || $op == "viewfeed" || $op == "view") {
print_error_xml(6);
die;
} else {
print "\n\t\t\t<html><body>\n\t\t\t\t<p>Error: Not logged in.</p>\n\t\t\t\t<script type=\"text/javascript\">\n\t\t\t\t\tif (parent.window != 'undefined') {\n\t\t\t\t\t\tparent.window.location = \"tt-rss.php\";\t\t\n\t\t\t\t\t} else {\n\t\t\t\t\t\twindow.location = \"tt-rss.php\";\n\t\t\t\t\t}\n\t\t\t\t</script>\n\t\t\t</body></html>\n\t\t\t";
}
exit;
}
$purge_intervals = array(0 => __("Use default"), -1 => __("Never purge"), 5 => __("1 week old"), 14 => __("2 weeks old"), 31 => __("1 month old"), 60 => __("2 months old"), 90 => __("3 months old"));
$update_intervals = array(0 => __("Default interval"), -1 => __("Disable updates"), 15 => __("Each 15 minutes"), 30 => __("Each 30 minutes"), 60 => __("Hourly"), 240 => __("Each 4 hours"), 720 => __("Each 12 hours"), 1440 => __("Daily"), 10080 => __("Weekly"));
$update_intervals_nodefault = array(-1 => __("Disable updates"), 15 => __("Each 15 minutes"), 30 => __("Each 30 minutes"), 60 => __("Hourly"), 240 => __("Each 4 hours"), 720 => __("Each 12 hours"), 1440 => __("Daily"), 10080 => __("Weekly"));
$update_methods = array(0 => __("Default"), 1 => __("Magpie"), 2 => __("SimplePie"));
if (ENABLE_SIMPLEPIE) {
$update_methods[0] .= ' (SimplePie)';
} else {
<?php
if (strtoupper(substr(PHP_OS, 0, 3)) === 'WIN') {
require_once "..\\admin_common.php";
} else {
require_once "../admin_common.php";
}
validate_session($identity);
$thisoperator = new CSLH_operator();
$chatarray = $thisoperator->arrayofchats();
// get the info of this user..
$query = "SELECT * FROM livehelp_users WHERE sessionid='" . $identity['SESSIONID'] . "'";
$people = $mydatabase->query($query);
if ($people->numrows() != 0) {
$people = $people->fetchRow(DB_FETCHMODE_ASSOC);
$UNTRUSTED['myid'] = $people['user_id'];
$operator_id = $UNTRUSTED['myid'];
$channel = $people['onchannel'];
}
$jsrn = get_jsrn($identity);
if (!isset($UNTRUSTED['cleartonow'])) {
$UNTRUSTED['cleartonow'] = "";
}
if (!isset($UNTRUSTED['offset'])) {
$UNTRUSTED['offset'] = "";
}
if (!isset($UNTRUSTED['clear'])) {
$UNTRUSTED['clear'] = "";
}
if (!isset($UNTRUSTED['channel'])) {
$UNTRUSTED['channel'] = 0;
require_once "db.php";
require_once "db-prefs.php";
startup_gettext();
$script_started = microtime(true);
if (!init_plugins()) {
return;
}
header("Content-Type: text/json; charset=utf-8");
if (ENABLE_GZIP_OUTPUT && function_exists("ob_gzhandler")) {
ob_start("ob_gzhandler");
}
if (SINGLE_USER_MODE) {
authenticate_user("admin", null);
}
if ($_SESSION["uid"]) {
if (!validate_session()) {
header("Content-Type: text/json");
print error_json(6);
return;
}
load_user_plugins($_SESSION["uid"]);
}
$purge_intervals = array(0 => __("Use default"), -1 => __("Never purge"), 5 => __("1 week old"), 14 => __("2 weeks old"), 31 => __("1 month old"), 60 => __("2 months old"), 90 => __("3 months old"));
$update_intervals = array(0 => __("Default interval"), -1 => __("Disable updates"), 15 => __("Each 15 minutes"), 30 => __("Each 30 minutes"), 60 => __("Hourly"), 240 => __("Each 4 hours"), 720 => __("Each 12 hours"), 1440 => __("Daily"), 10080 => __("Weekly"));
$update_intervals_nodefault = array(-1 => __("Disable updates"), 15 => __("Each 15 minutes"), 30 => __("Each 30 minutes"), 60 => __("Hourly"), 240 => __("Each 4 hours"), 720 => __("Each 12 hours"), 1440 => __("Daily"), 10080 => __("Weekly"));
$access_level_names = array(0 => __("User"), 5 => __("Power User"), 10 => __("Administrator"));
$op = str_replace("-", "_", $op);
$override = PluginHost::getInstance()->lookup_handler($op, $method);
if (class_exists($op) || $override) {
if ($override) {
$handler = $override;
