/**
* Sends a database query to MSSQL server.
*
* @param string $query a database query
* @param integer $limit
* @param integer $offset
* @return integer id of the query result
*/
public function sendQuery($query, $limit = 0, $offset = 0)
{
$query = $this->handleLimitParameter($query, $limit, $offset);
$this->queryCount++;
$result = @mssql_query($query, $this->linkID);
if ($result === false) {
throw new DatabaseException("Invalid SQL: " . $query, $this);
}
// get insert id and affected rows
if (preg_match('/^INSERT /i', $query)) {
$row = $this->getFirstRow("SELECT @@IDENTITY AS id, @@ROWCOUNT as affected");
$this->insertID = $row['id'];
$this->affectedRows = $row['affected'];
} else {
if (preg_match('/^(UPDATE|DELETE) /i', $query)) {
$row = $this->getFirstRow("SELECT @@ROWCOUNT as affected");
$this->affectedRows = $row['affected'];
}
}
$this->queryID = $result;
if ($offset != 0) {
$this->seekResult($this->queryID, $offset);
}
return $this->queryID;
}
function sql_query($sqltype, $query, $con)
{
if ($sqltype == 'mysql') {
if (class_exists('mysqli')) {
return $con->query($query);
} elseif (function_exists('mysql_query')) {
return mysql_query($query);
}
} elseif ($sqltype == 'mssql') {
if (function_exists('sqlsrv_query')) {
return sqlsrv_query($con, $query);
} elseif (function_exists('mssql_query')) {
return mssql_query($query);
}
} elseif ($sqltype == 'pgsql') {
return pg_query($query);
} elseif ($sqltype == 'oracle') {
return oci_execute(oci_parse($con, $query));
} elseif ($sqltype == 'sqlite3') {
return $con->query($query);
} elseif ($sqltype == 'sqlite') {
return sqlite_query($con, $query);
} elseif ($sqltype == 'odbc') {
return odbc_exec($con, $query);
} elseif ($sqltype == 'pdo') {
return $con->query($query);
}
}
function checksuspended()
{
testremote();
$db_a = tDataConnect();
$m_conn = mDataConnect();
$query_local = "select * from suspendedtoday";
$query_remote = "select * from suspendedtoday";
$query = "select * from suspendedlist";
if ($_SESSION["standalone"] == 1) {
if ($_SESSION["remoteDBMS"] == "mssql") {
$result = mssql_query($query_local, $db_a);
} else {
$result = mysql_query($query, $db_a);
}
} else {
if ($_SESSION["remoteDBMS"] == "mssql") {
$result = sql_query($query_remote, $db_a);
} else {
$result = mysql_query($query_remote, $m_conn);
}
}
# That's just not right, fix it later?
# $num_rows = sql_fetch_array($result);
$num_rows = mysql_num_rows($result);
if ($num_rows == 0) {
return 0;
} else {
return 1;
}
sql_close($db_a);
}
function checksuspended()
{
testremote();
$db_a = tDataConnect();
$m_conn = mDataConnect();
$query_local = "select * from suspendedtoday";
$query_remote = "select * from " . trim($_SESSION["mServer"]) . "." . trim($_SESSION["mDatabase"]) . ".dbo.suspendedtoday";
$query = "select * from suspendedlist";
if ($_SESSION["standalone"] == 1) {
if ($_SESSION["remoteDBMS"] == "mssql") {
$result = mssql_query($query_local, $db_a);
} else {
$result = mysql_query($query, $db_a);
}
} else {
if ($_SESSION["remoteDBMS"] == "mssql") {
$result = sql_query($query_remote, $db_a);
} else {
$result = mysql_query($query, $m_conn);
}
}
$num_rows = sql_fetch_array($result);
if ($num_rows == 0) {
return 0;
} else {
return 1;
}
sql_close($db_a);
}
function findFlights($flight)
{
//Connects to database
require 'connect_db.php';
$query = mssql_query('SELECT * FROM FLIGHT');
if (!mssql_num_rows($query)) {
echo 'No records found';
} else {
//Creates tables and fills it with flight numbers and their delays
echo '<br><br><br><br><table border = 1>';
echo '<th>Flight Number</th><th>Delayed</th><th>Depature Time</th>';
while ($row = mssql_fetch_assoc($query)) {
$i = 0;
//Check if flight is what is looking for
if (strcmp($row['Flight_number'], $flight) == 0) {
$i = $i + 1;
echo '<tr><td>' . $row['Flight_number'] . '</td>';
if (strcmp($row['Delayed'], '1') != 0) {
echo '<td>' . 'On Time' . '</td>';
} else {
echo '<td>' . 'Delayed' . '</td>';
}
echo '<td>' . $row['Depature_time'] . '</td></tr>';
//^End else
}
}
//^ends while
echo '</table>';
}
}
function DriverMssqlExec($conn, $sql)
{
$result = mssql_query($sql, $conn);
if (!$result) {
throw new lmbDbException('MSSQL execute error happened: ' . mssql_get_last_message() . ". SQL: " . $sql);
}
}
function conn($DB)
{
$serverName = "intelisis";
//serverName\instanceName
$connectionInfo = array("Database" => $DB, "UID" => "intelisis", "PWD" => "");
$conn = mssql_connect($serverName, "intelisis", "");
mssql_select_db($DB, $conn);
$user = $_SESSION["user"];
if (!$conn) {
die('Something went wrong while connecting to MSSQL');
}
$con1 = "set dateformat dmy";
$con1 = mssql_query($con1);
$con2 = "SET DATEFIRST 7";
$con2 = mssql_query($con2);
$con3 = "SET ANSI_NULLS OFF";
$con3 = mssql_query($con3);
$con4 = "SET TRANSACTION ISOLATION LEVEL READ UNCOMMITTED";
$con4 = mssql_query($con4);
$con5 = "SET LOCK_TIMEOUT -1";
$con5 = mssql_query($con5);
$con6 = "SET QUOTED_IDENTIFIER OFF";
$con6 = mssql_query($con6);
$con7 = "set language spanish";
$con7 = mssql_query($con7);
}
/**
* @desc Generates a XLS File from an SQL Query (and outputs it to the browser)
* @access public
* @param String $query Query String
* @param String $db Name of the Database
* @param String $user User to Access the Database
* @param String $pass Password to Access the Database
* @param String $host Name of the Host holding the DB
*/
function WriteSQLDump($query, $db, $user = '******', $pass = '', $host = 'localhost')
{
$xls_line = 0;
$col = 0;
$link = $this->_db_connect($db, $user, $pass, $host);
if ($link) {
$result = @mssql_query($query, $link);
if (!$result) {
$this->WriteValue(1, 0, "An error occured while excuting the query " . $query);
$this->OutputFile();
exit;
}
$lines = @mssql_num_rows($result);
$colums = mssql_num_fields($result);
for ($e = 0; $e < $colums; $e++) {
$this->WriteValue(0, $e, trim(ucwords(str_replace("_", " ", mssql_field_name($result, $e)))));
}
for ($col = 0; $col < $colums; $col++) {
$col_name = mssql_field_name($result, $col);
for ($i = 0; $i < $lines; $i++) {
$CellValue = mssql_result($result, $i, $col_name);
$xls_line = $i + 1;
$this->WriteValue($xls_line, $col, $CellValue);
}
}
} else {
$this->WriteValue(1, 0, "Could not connect to the database:");
}
$this->OutputFile();
}
public function getAll()
{
$obj_ids = $this->getObjIds();
$retsult = array();
$sql = <<<SQL
\t\t\tSELECT
\t\t\t\ttemp.OBJID as id,
\t\t\t\tCONVERT(VARCHAR, (DB1.GMT+'02:00'), 21) as dt,
\t\t\t\tDB1.LAT as lat,
\t\t\t\tDB1.LON as lon,
\t\t\t\tDB1.AVTO_NO as avto_no,
\t\t\t\tDB1.SPEED as speed
\t\t\tFROM [monitoring_new].[dbo].[OD_LTE_OBJLASTPOS] DB1
\t\t\tINNER JOIN (
\t\t\t\tSELECT
\t\t\t\t\tOBJID,
\t\t\t\t\tMAX(GMT) AS DAT
\t\t\t\tFROM [monitoring_new].[dbo].[OD_LTE_OBJLASTPOS]
\t\t\t\tWHERE GMT>=cast(getutcdate() as date) and OBJID in ({$obj_ids})
\t\t\t\tGROUP BY OBJID) as temp
\t\t\tON (temp.OBJID=DB1.OBJID and temp.DAT=DB1.GMT)
\t\t\tORDER BY temp.OBJID
SQL;
$cur = mssql_query($sql, $this->conm);
while ($data = mssql_fetch_assoc($cur)) {
$result[$data['id']] = array('obj_id' => $data['id'], 'dt' => $data['dt'], 'lat' => $data['lat'], 'lon' => $data['lon'], 'name' => $data['avto_no']);
}
return $result;
}
/**
* @param $sql
*
* @return array
*/
public function query($sql)
{
//
$this->connection = $this->getConnection();
// Run query
$query = mssql_query($sql, $this->connection);
// On error
if ($query === false) {
Response::error(500, $_SERVER["SERVER_PROTOCOL"] . ' DB query failed (SQL): ' . mssql_get_last_message());
}
// E.g. boolean is returned if no rows (e.g. no resource found or on UPDATE)
if ($query === true) {
$response = $query;
} else {
// Response
$response = array();
//
// Loop rows and add to response array
if (mssql_num_rows($query) > 0) {
while ($row = mssql_fetch_assoc($query)) {
$response[] = $row;
}
}
// Free the query result
mssql_free_result($query);
}
// Close link
$this->closeConnection();
//
return $response;
}
/**
* Get the current enrolments and course identifiers from the SIS
*
* @author Andrew Zoltay
* date 2012-09-12
* @global object $DB - Moodle database object
* @param link_identifier $sourceconn - connection to enrolment source db
* @param integer $monthsahead - number of months into the future to get enrolments
* @return array of db records or false if error occurs
*/
private function fetch_student_enrolments($sourceconn, $monthsahead)
{
global $DB;
if ($sourceconn) {
$query = "EXEC Learn.usp_GetStudentEnrolments @intMonthsBeforeStart = {$monthsahead};";
$result = mssql_query($query, $sourceconn);
if (!$result) {
$this->write_log("Error calling Learn.usp_GetStudentEnrolments: " . mssql_get_last_message(), true);
return false;
}
// Get student role id.
$studentroleid = $DB->get_field('role', 'id', array('archetype' => 'student'), MUST_EXIST);
// Get the data in the correct format for enrol_rru plugin to deal with it.
$enrolments = array();
while ($row = mssql_fetch_assoc($result)) {
// Format enrolments.
$enrolment = array();
$enrolment['chrCourseCode'] = $row['chrCourse_Code'];
$enrolment['intUserCode'] = $row['intStudent_PK'];
$enrolment['intRoleID'] = $studentroleid;
$enrolments[] = $enrolment;
}
return $enrolments;
} else {
$this->write_log("Connection not established", true);
return false;
}
}
public function FindItem()
{
$resultQ = mssql_query("select [Name] from [Character] where (charindex (0x" . $this->ProductSerial . ", Inventory) %" . DIVISOR / 2 . "=4)");
while ($result = mssql_fetch_object($resultQ)) {
echo Print_error("<ul><li>Item foi encontrado no inventário do char: " . $result->Name . ".</li></ul>");
$exitFunction = true;
}
unset($result, $resultQ);
$findColumnsQ = mssql_query("sp_MShelpcolumns N'dbo.warehouse', null, 'id', 1");
while ($findColumns = mssql_fetch_object($findColumnsQ)) {
if ($findColumns->col_typename == "varbinary") {
$resultQ = mssql_query("select [AccountId] from [warehouse] where (charindex (0x" . $this->ProductSerial . ", " . $findColumns->col_name . ") %" . DIVISOR / 2 . "=4)");
while ($result = mssql_fetch_object($resultQ)) {
echo Print_error("<ul><li>Encontrado no bau do login: "******". Tabela: warehouse, coluna: {$findColumns->name}</li></ul>");
$exitFunction = true;
}
}
}
unset($result, $resultQ);
$resultQ = mssql_query("select [AccountId],[Number] from [ExtWarehouse] where (charindex (0x" . $this->ProductSerial . ", Items) %" . DIVISOR / 2 . "=4)");
while ($result = mssql_fetch_object($resultQ)) {
echo Print_error("<ul><li>Item foi encontrado no bau extra " . $result->Number . " do login: "******".</li></ul>");
$exitFunction = true;
}
unset($result, $resultQ);
$resultQ = @mssql_query("select [AccountId] from [ExtWarehouseVirtual] where (charindex (0x" . $this->ProductSerial . ", Item) %" . DIVISOR / 2 . "=4)");
while ($result = @mssql_fetch_object($resultQ)) {
echo Print_error("<ul><li>Item foi encontrado no bau virtual do login: "******".</li></ul>");
$exitFunction = true;
}
unset($result, $resultQ);
if ($exitFunction == false) {
echo "<ul><li>Esse item não foi encontrado no servidor.</li></ul>";
}
}
function Login()
{
$link = Conectarse();
$consulta = "SELECT * FROM [022BDCOMUN].DBO.USUARIOS\r\nWHERE usuario='{$this->user}' AND contrasena='{$this->pass}' AND idtipousuario=2 ";
$resultado = mssql_query($consulta, $link) or die(mssql_error());
$fila = mssql_fetch_array($resultado);
if (!$fila[0]) {
echo '<script>
alert("Usuario o Password errados, por favor verifique.")
self.location = "/adm-reserva/"
</script>';
} else {
if (!isset($_SESSION)) {
@session_start();
}
$_SESSION['id_usuario'] = $fila['id_usuario'];
$_SESSION['nombres'] = $fila['nombres'];
$_SESSION['apellidos'] = $fila['apellidos'];
$_SESSION['starsoft'] = $fila['starsoft'];
$_SESSION['idempresa'] = $fila['idempresa'];
$_SESSION['idarea'] = $fila['idarea'];
$_SESSION['aud_jefe'] = $fila['aud_jefe'];
header("Location: /adm-reserva/home");
}
}
function getProductos()
{
$myServer = "172.30.5.49";
$myUser = "******";
$myPass = "******";
$myDB = "LAUMAYER";
$dbhandle = mssql_connect($myServer, $myUser, $myPass) or die("Couldn't connect to SQL Server on {$myServer}");
$selected = mssql_select_db($myDB, $dbhandle) or die("Couldn't open database {$myDB}");
//Realiza el query en la base de datos
$mysqli = makeSqlConnection();
//$sql = "SELECT * FROM psg_productos a LEFT JOIN psg_productos_cstm ac ON a.id = ac.id_c";
$sql = "SELECT id,name FROM psg_productos where deleted ='0'";
$res = $mysqli->query($sql);
$rows = array();
while ($r = mysqli_fetch_assoc($res)) {
$obj = (object) $r;
$querySaldo = "Select dbo.F_Saldo_Bodega_Informe(Year(GETDATE()),MONTH(GETDATE()),'" . $r['id'] . "','BODPRDCTO','T','C') as Saldo";
$result = mssql_query($querySaldo);
if ($row = mssql_fetch_array($result)) {
$obj->saldo = $row['Saldo'];
}
$a = (array) $obj;
$rows[] = $a;
}
mssql_close($dbhandle);
if (empty($rows)) {
return '{"results" :[]}';
} else {
//Convierte el arreglo en json y lo retorna
$temp = json_encode(utf8ize($rows));
return '{"results" :' . $temp . '}';
}
}
private function executeQuery()
{
$return = false;
if ($this->queryType == 'other') {
if (mssql_query($this->query, $this->link) === true) {
$return = true;
$this->error = mssql_get_last_message();
}
} else {
if ($result = mssql_query($this->query, $this->link)) {
// Conteo de registros
if ($this->queryType == 'insert' || $this->queryType == 'update' || $this->queryType == 'delete') {
$this->numRows = mssql_rows_affected($this->link);
$return = true;
} else {
$this->numRows = mssql_num_rows($result);
$fetchType = MSSQL_NUM;
if ($this->queryReturn == 'assoc') {
$fetchType = MSSQL_ASSOC;
} elseif ($this->queryReturn == 'both') {
$fetchType = MSSQL_BOTH;
}
$return = array();
while ($row = mssql_fetch_array($result, $fetchType)) {
array_push($return, $row);
}
}
$this->error = mssql_get_last_message();
mssql_free_result($result);
} else {
$this->error = mssql_get_last_message();
}
}
return $return;
}
/**
* Returns the user_id => username array
*
* @param object databaseobject The database object to run the query against
* @param string mixed Table database type
* @param string mixed The prefix to the table name i.e. 'vb3_'
* @param int mixed Start point
* @param int mixed End point
*
* @return array
*/
function get_ASPPlayground_members_list(&$Db_object, &$databasetype, &$tableprefix, &$start, &$per_page)
{
$return_array = array();
// Check that there is not a empty value
if (empty($per_page)) {
return $return_array;
}
if ($databasetype == 'mssql') {
$count = mssql_fetch_array(mssql_query("SELECT count(*) FROM {$tableprefix}Members"));
$internal = $start_at + $per_page;
if ($internal > intval($count[0])) {
$per_page = abs($start_at - intval($count[0]));
$internal = intval($count[0]);
}
$sql = "SELECT \tMem,\n\t\t\t\t\t\t\tLogin\n\t\t\t\t\tFROM {$tableprefix}Members WHERE Mem\n\t\t\t\t\t\tIN(SELECT TOP {$per_page} Mem\n\t\t\t\t\t\t\tFROM (SELECT TOP {$internal} Mem FROM {$tableprefix}Members ORDER BY Mem)\n\t\t\t\t\t\tA ORDER BY Mem DESC)\n\t\t\t\t\tORDER BY Mem";
$user_list = $Db_object->query($sql);
while ($user = $Db_object->fetch_array($user_list)) {
if ($user['Mem'] != -1) {
$return_array["{$user['Mem']}"] = $user['Login'];
}
}
return $return_array;
} else {
return false;
}
}
public function SQLOutput()
{
$result = mssql_query($this->SQL);
while ($row = mssql_fetch_array($result)) {
echo "<tr><td>" . $row["id"] . "</td><td>" . $row["name"] . "</td><tr>";
}
}
function xcopy($mssql, $mysql, $db, $table, $sql)
{
$start = microtime(true);
mysqli_select_db($mysql, $db);
mssql_select_db($db, $mssql);
$result = mssql_query($sql, $mssql, 20000);
if ($result === false) {
die("Error creating sync data\n");
}
$s = 0;
$r = mssql_num_rows($result);
$name_count = mssql_num_fields($result);
$name_list = "";
$update_list = "";
$value_list = "";
$sql = "";
$radix = 0;
for ($i = 0; $i < $name_count; $i++) {
$x = strtolower(mssql_field_name($result, $i));
$name_list .= "{$x},";
if ($x != "dex_row_id") {
$update_list .= "{$x} = values({$x}),";
}
}
$name_list = rtrim($name_list, ",");
$update_list = rtrim($update_list, ",");
do {
while ($row = mssql_fetch_row($result)) {
for ($i = 0; $i < $name_count; $i++) {
$value_list .= "'" . str_replace("'", "''", trim($row[$i])) . "',";
}
$value_list = rtrim($value_list, ",");
$radix++;
$sql .= "\n({$value_list}),";
$value_list = "";
if ($radix > 2000) {
$sql = trim($sql, ",");
$sql = "insert into {$table} ({$name_list}) values {$sql} on duplicate key update {$update_list};";
$rset = mysqli_query($mysql, $sql);
if ($rset === false) {
die("Error inserting mysql data. \n" . mysqli_error($mysql) . "\n\n{$sql}\n\n");
}
$radix = 0;
$sql = "";
}
$s++;
}
} while (mssql_fetch_batch($result));
if ($sql != "") {
$sql = trim($sql, ",");
$sql = "insert into {$table} ({$name_list}) values {$sql} on duplicate key update {$update_list};";
$rset = mysqli_query($mysql, $sql);
if ($rset === false) {
die("Error inserting mysql data. \n" . mysqli_error($mysql) . "\n\n{$sql}\n\n");
}
}
$end = microtime(true);
$total = $end - $start;
echo "imported {$db}.{$table} [ {$s} ] records in {$total} sec.\n";
}
public function execute($sql)
{
$sql = $this->prepQuery($sql);
$parts = split(" ", trim($sql));
$type = strtolower($parts[0]);
$hash = md5($sql);
$this->lasthash = $hash;
if ("select" == $type) {
if (isset($this->results[$hash])) {
if (is_resource($this->results[$hash])) {
return $this->results[$hash];
}
}
} else {
if ("update" == $type || "delete" == $type) {
$this->results = array();
//clear the result cache
}
}
$this->results[$hash] = mssql_query($sql, $this->connection);
if ("insert" == $type) {
return $this->insertId();
}
return true;
}
function funEjecutaQueryEditMS($parEQuery)
{
// Ejecuta el Query
$resultadoMS = mssql_query($parEQuery) or die("<br>Error de Ejecucion: " . $parEQuery . "<br>");
// Retorna el resultadoMS (TRUE - exito / FALSE - error)
return $resultadoMS;
}
function select_to_table($query)
{
$results = mssql_query($query) or die("<li>errorno=" . mysql_errno() . "<li>error=" . mysql_error() . "<li>query=" . $query);
$number_cols = mssql_num_fields($results);
//display query
echo "<b>query: {$query}</b>";
//layout table header
echo "<table border = 1>\n";
echo "<tr align left>\n";
for ($i = 0; $i < $number_cols; $i++) {
echo "<th>" . mssql_field_name($results, $i) . "</th>\n";
}
echo "</tr>\n";
//end table header
//layout table body
while ($row = mssql_fetch_row($results)) {
echo "<tr align left>\n";
for ($i = 0; $i < $number_cols; $i++) {
echo "<td>";
if (!isset($row[$i])) {
echo "NULL";
} else {
echo $row[$i];
}
echo "</td>\n";
}
echo "</tr>\n";
}
echo "</table>\n";
}
public function query($SQL)
{
if ($SQL !== "") {
$this->query = mssql_query(self::$connection, $SQL);
}
return $this->query ? $this->query : false;
}
public function get_web_log()
{
//select the database
mssql_select_db($this->dbname, $this->dbcon);
//SQL Select statement
$xml = new XMLHandler(XML_DIR . "web_request_spk.xml");
$sql_from_xml = $xml->getNode("web_log");
$sqlselect = str_replace("FILTER_BY_PROGRAM", "", $sql_from_xml);
//Run the SQL query
$result = mssql_query($sqlselect);
$numfields = mssql_num_fields($result);
$string_result = "";
while ($row = mssql_fetch_row($result)) {
$string_result .= "<tr>";
for ($i = 0; $i < $numfields; $i++) {
if (mssql_field_name($result, $i) == "IP_ADDRESS") {
$ip = explode(":", $row[$i]);
$string_result .= "<td>" . $ip[0] . "</td>";
$string_result .= "<td>" . $ip[1] . "</td>";
} else {
$string_result .= "<td>" . $row[$i] . "</td>";
}
}
$string_result .= "</tr>";
}
return $string_result;
}
function my_query($str_query, $conex)
{
global $conf_db_type, $conf_is_prod;
$queries2log = array('UPD', 'DEL', 'DRO', 'ALT', 'TRU');
if (in_array(strtoupper(substr($str_query, 0, 3)), $queries2log) && !$conf_is_prod) {
@write_log('db_trans', $str_query);
}
switch ($conf_db_type) {
case 'mysql':
$res = @mysql_query($str_query, $conex);
if ($res) {
return $res;
} else {
write_log('db_error', mysql_error() . " ----> " . $str_query);
}
break;
case 'mssql':
$res = @mssql_query($str_query, $conex);
if ($res) {
return $res;
} else {
write_log('db_error', mssql_get_last_message() . " ----> " . $str_query);
}
break;
}
}
public function get_userinfo($userid, $password)
{
//select the database
mssql_select_db($this->dbname, $this->dbcon);
//SQL Select statement
$sqlselect = "SELECT userid,password,userright,ws,ws_name,location,fullname,gender,position,member_since,avatar FROM pospass WITH (NOLOCK) WHERE userid ='" . $userid . "';";
//Run the SQL query
$sqlquery = mssql_query($sqlselect);
$string_result = '{"uservalidation":"false"}';
//$login = new Blowfish();
//$encpassword = $login->genpwd($password);
$encpassword = $this->encryptIt($password);
while ($result = mssql_fetch_array($sqlquery)) {
//$verify = $login->verify_hash($password, $result["password"]);
if ($encpassword == $result["password"]) {
$xml = new XMLHandler(LOCAL_DIR . "/etc/greenSys.config.xml");
$_SESSION["activedb"] = (string) $xml->Child("locationmapping", $result["location"]);
$_SESSION["user-id"] = (string) $userid;
$_SESSION["user-ws"] = (string) $result["ws"];
$_SESSION["ws-name"] = (string) $result["ws_name"];
$_SESSION["user-fullname"] = (string) $result["fullname"];
$_SESSION["user-gender"] = (string) $result["gender"];
$_SESSION["user-position"] = (string) $result["position"];
$_SESSION["user-member_since"] = (string) $result["member_since"];
$_SESSION["user-avatar"] = (string) $result["avatar"];
//session_write_close();
//setcookie("user-id",(string)$userid, time()+3600*24);
$string_result = '{"uservalidation":"true","fullname":"' . $result["fullname"] . '","gender":"' . $result["gender"] . '","position":"' . $result["position"] . '","member_since":"' . $result["member_since"] . '","avatar":"' . $result["avatar"] . '"}';
}
}
return $string_result;
}
public function db_query($pQuery)
{
if (count(SqlCommand::$theInstances) > 1) {
mssql_select_db($this->mDatabaseName, $this->mLink);
}
return mssql_query($pQuery, $this->mLink);
}
function dbquery_func_old($connection_info, $query, $debug = "off")
{
if ($connection_info['db_type'] == "mysql") {
mysql_connect($connection_info['db_host'] . ":" . $connection_info['db_port'], $connection_info['username'], $connection_info['password']) or die("Unable to connect to " . $connection_info['db_host']);
mysql_select_db($connection_info['db_name']) or die("Unable to select database " . $connection_info['db_name']);
$return = mysql_query($query);
if ($debug == "on") {
$merror = mysql_error();
if (!empty($merror)) {
print "MySQL Error:<br />" . $merror . "<p />Query<br />: " . $query . "<br />";
}
print "Number of rows returned: " . mysql_num_rows($return) . "<br />";
}
} else {
if ($connection_info['db_type'] == "mssql") {
mssql_connect($connection_info['db_host'] . "," . $connection_info['db_port'], $connection_info['username'], $connection_info['password']) or die("Unable to connect to " . $connection_info['db_host'] . "<br />" . $query);
mssql_select_db($connection_info['db_name']) or die("Unable to select database " . $connection_info['db_name']);
$return = mssql_query($query);
if ($debug == "on") {
$merror = mssql_get_last_message();
if (!empty($merror)) {
print "MySQL Error: " . $merror . "<br />Query" . $query . "<br />";
}
print "Number of rows returned: " . mssql_num_rows($result) . "<br />";
}
}
}
return $return;
}
function memChargeAdj()
{
$pInsert = "insert memChargeAdj select " . $_SESSION["memberID"] . " as CardNo, " . $_SESSION["memChargeTotal"] . " as Balance";
$pUpdate = "update custdata set Balance = Balance + " . $_SESSION["memChargeTotal"] . " where CardNo = '" . $_SESSION["memberID"] . "'";
mssql_query($pUpdate, $conn);
mssql_query($pInsert, $conn);
}
function query($sql)
{
$sql = $this->iconv($sql, false);
$query = mssql_query($sql) or die($this->halt('MsSQL Query Error', $sql));
$this->querynum++;
return $query;
}
function checkToken($token)
{
global $url_login, $url_authenn, $sys_code;
if (isset($token)) {
$data = getAuthen($token);
if (isset($data->BappGetSessionResult->Username)) {
$_SESSION["user_name"] = sprintf("%08s", $data->BappGetSessionResult->Username);
$_SESSION["name"] = $data->BappGetSessionResult->FullNameTH;
$_SESSION['token'] = $token;
$_SESSION['image_url'] = $data->BappGetSessionResult->ImageUrl;
// Role
$conn = ConnectDB();
$sql = "select ROLE_CODE from DB_DS.DBO.GET_ROLE_BY_PER_SYSID ('" . sprintf("%08s", $_SESSION["user_name"]) . "', '" . $sys_code . "')";
$query = mssql_query($sql);
$row = mssql_fetch_array($query, MSSQL_ASSOC);
$_SESSION["role"] = $row['ROLE_CODE'];
mssql_free_result($query);
mssql_close($conn);
header('Location: /meeting/index.php');
} else {
header('Location: ' . $url_login);
}
} else {
header('Location: ' . $url_login);
}
}
