* * You should have received a copy of the GNU General Public License * along with Pusthaka. If not, see <http://www.gnu.org/licenses/>. */ $allow = "ADMIN;LIBSTAFF"; //$allow = "ADMIN"; $PageTitle = "Edit Member"; require('../inc/init.php'); $mem = new Members; // DELETE Member if(isset($_REQUEST['BtnDeleteMember'])){ $mid = $_REQUEST['mid']; $member = $mem->getByID($mid); $mem->delete($member); } // Update member ///////////////////////////////////////////////////// if(isset($_REQUEST['BtnUpdateMember'])){ //[Fill a member data object] ------------------------------ $member['mid'] = $_REQUEST['mid']; $member['mem_no'] = $_REQUEST['mem_no']; $member['type'] = $_REQUEST['type']; $member['surname'] = $_REQUEST['surname']; $member['firstnames'] = $_REQUEST['firstnames']; $member['title'] = $_REQUEST['title']; $member['address'] = $_REQUEST['address']; $member['nic'] = $_REQUEST['nic'];
$sql = sprintf("update member set password='******' WHERE mid=%d", md5($password), $mid); $a = executeSqlNonQuery($sql); $rowcount = $a['rows']; if ($rowcount <> 1) { $_SESSION['BackLink'] = $_SERVER['PHP_SELF']; trigger_error("An error occured while changing password: ID=" . $mid, E_USER_ERROR); exit(); } else { $_SESSION['msg'] = "Your password was changed."; header("Location: my_info.php"); exit(); } } //END: Change Password $row = $mem->getByID($_SESSION['CurrentUser']['mid']); ?> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> <html> <head> <title>Pusthaka: <?php echo $PageTitle; ?></title> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <link href="css/styles.css" rel="stylesheet" type="text/css"> <script language="JavaScript"> <!-- function checkPwd(){ obj = document.resetpwd; if(obj.pwd.value != obj.pwd2.value){ alert('The passwords do not match'); obj.pwd.value='';
*/ $allow = "ADMIN;LIBSTAFF"; $PageTitle = "Member Info"; require('../inc/init.php'); //[Is this a proper request?] ------------------------------ if(!isset($_REQUEST['ID'])){ header("Location: member_browse.php"); exit(); } //[Get member] ------------------------------ $id = $_REQUEST['ID']; $mem = new Members; $row = $mem->getByID($id); //[Get loan info] ------------------------------ require('../classes/Loans.php'); $loans = new Loans; $rsL = $loans->getCurrentLoansByMember($row); $rowcountL = mysql_num_rows($rsL); $rsLH = $loans->getPastLoansByMember($row); $rowcountLH = mysql_num_rows($rsLH); ?> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> <html> <head> <title>ULMS Members : Search Results </title>
function CancelReservation($rid){ // returns a status message $sql = sprintf("UPDATE reservation SET status='Cancelled' WHERE rid=%d",$rid); $a = executeSqlNonQuery($sql); $rows_updated = $a['rows']; if($rows_updated != 1){ return "ERROR: couldn't cancel reservation"; } else{ // Cancelled, update other reservations $reservation = $this->GetByID($rid); require_once('Members.php'); $clsM = new Members; $rowMember = $clsM->getByID($reservation['mid']); require_once('Books.php'); $clsB = new Books; $rowBook = $clsB->getBookByID($reservation['bid']); $des = '[' . $rowBook['title'] . ' by ' . $rowBook['authors'] . ']' . ' <== [' . $rowMember['mid'] . '] ' . $rowMember['title'] . ' ' . $rowMember['firstnames'] . ' ' . $rowMember['surname']; logEvent('RESERVATION_CANCELLED', $_SESSION['CurrentUser']['mid'], $rowMember['mid'], addslashes($des)); $sql = "SELECT * FROM reservation WHERE rid=" . $rid; $rs = executeSqlQuery($sql); $r = mysql_fetch_assoc($rs); $cid = $r['cid']; if($cid>0){ $sql = sprintf("select c.*, b.* FROM (copy c LEFT JOIN book b ON c.bid = b.bid) WHERE c.cid=%d", $cid); $rs = executeSqlQuery($sql); $rowCopy = mysql_fetch_assoc($rs); return $this->updateReservations($rowCopy); } return "Reservation cancelled"; } }