$staff->setLastName($_POST["last_name"]); $_POST["last_name"] = $staff->getLastName(); $staff->setFirstName($_POST["first_name"]); $_POST["first_name"] = $staff->getFirstName(); $staff->setUsername($_POST["username"]); $_POST["username"] = $staff->getUsername(); $staff->setPwd($_POST["pwd"]); $_POST["pwd"] = $staff->getPwd(); $staff->setPwd2($_POST["pwd2"]); $_POST["pwd2"] = $staff->getPwd2(); $staff->setCircAuth(isset($_POST["circ_flg"])); $staff->setCircMbrAuth(isset($_POST["circ_mbr_flg"])); $staff->setCatalogAuth(isset($_POST["catalog_flg"])); $staff->setAdminAuth(isset($_POST["admin_flg"])); $staff->setReportsAuth(isset($_POST["reports_flg"])); $validData = $staff->validateData(); $validPwd = $staff->validatePwd(); if (!($validData && $validPwd)) { $pageErrors["last_name"] = $staff->getLastNameError(); $pageErrors["username"] = $staff->getUsernameError(); $pageErrors["pwd"] = $staff->getPwdError(); $_SESSION["postVars"] = $_POST; $_SESSION["pageErrors"] = $pageErrors; header("Location: ../admin/staff_new_form.php"); exit; } #************************************************************************** #* Insert new staff member #************************************************************************** $staffQ = new StaffQuery(); $staffQ->connect();
$staff = new Staff(); $staff->setLastChangeUserid($_SESSION["userid"]); $staff->setUserid($_POST["userid"]); $staff->setLastName($_POST["last_name"]); $_POST["last_name"] = $staff->getLastName(); $staff->setFirstName($_POST["first_name"]); $_POST["first_name"] = $staff->getFirstName(); $staff->setUsername($_POST["username"]); $_POST["username"] = $staff->getUsername(); $staff->setCircAuth(isset($_POST["circ_flg"])); $staff->setCircMbrAuth(isset($_POST["circ_mbr_flg"])); $staff->setCatalogAuth(isset($_POST["catalog_flg"])); $staff->setAdminAuth(isset($_POST["admin_flg"])); $staff->setReportsAuth(isset($_POST["reports_flg"])); $staff->setSuspended(isset($_POST["suspended_flg"])); if (!$staff->validateData()) { $pageErrors["last_name"] = $staff->getLastNameError(); $pageErrors["username"] = $staff->getUsernameError(); $_SESSION["postVars"] = $_POST; $_SESSION["pageErrors"] = $pageErrors; header("Location: ../admin/staff_edit_form.php"); exit; } #************************************************************************** #* Update staff member #************************************************************************** $staffQ = new StaffQuery(); $staffQ->connect(); if ($staffQ->errorOccurred()) { $staffQ->close(); displayErrorPage($staffQ);