<div id="header"> <div id="header"> <?php include 'inc/header.php'; ?> </div> </div> <div id="content"> <?php if (isset($_SESSION['user'])) { //Alles echo "<h2>Welkom " . $_SESSION['user']['voornaam'] . " " . $_SESSION['user']['achternaam'] . "</h2>"; $targetUser = filter_input(INPUT_GET, 'user', FILTER_VALIDATE_INT); if ($targetUser) { $subjects = portfolio_get_user_subjects($targetUser); $userData = portfolio_get_user_details($targetUser); if ($userData) { echo '<h2>Vakken van ' . $userData['voornaam'] . ' ' . $userData['achternaam'] . '</h2>'; //echo '<p><a href="students.php">Terug naar studentenoverzicht</a></p>'; if ($userData['rol'] != 'student') { echo '<p>Geeft de volgende vakken</p>'; } echo '<hr>'; } if (count($subjects) > 0) { echo '<table class="tableLeft">'; foreach ($subjects as $sub) { if ($userData['rol'] != 'student') { //Geen link echo '<tr><td>' . $sub['vaknaam'] . '</td></tr>'; } else {
$o = portfolio_get_user_details($m['zenderId']); if (count($o) < 1) { $o['voornaam'] = 'Onbekend'; $o['achternaam'] = ''; } echo "<tr><td>{$o['voornaam']} {$o['achternaam']}</td>"; echo "<td><a href='mailview.php?mail=" . $m['berichtId'] . "'>" . htmlentities($m['onderwerp']) . "</a></td></tr>"; } echo "</table>"; echo "<p><hr></p>"; $messages = portfolio_get_send_messages($_SESSION['user']['gebruikersId']); echo "<h3>Verzonden berichten:</h3>"; echo "<table class='tableLeft' width='100%' border='1'>"; echo "<tr><th>Ontvanger</th><th>Onderwerp</th></tr>"; foreach ($messages as $m) { $o = portfolio_get_user_details($m['ontvangerId']); if (count($o) < 1) { $o['voornaam'] = 'Onbekend'; $o['achternaam'] = ''; } echo "<tr><td>{$o['voornaam']} {$o['achternaam']}</td>"; echo "<td><a href='mailview.php?mail=" . $m['berichtId'] . "'>" . htmlentities($m['onderwerp']) . "</a></td></tr>"; } echo "</table>"; } ?> </div> <div id="footer"> INF1G - 2016 </div> </div>
<body> <div id="container"> <div id="header"> <?php include 'inc/header.php'; ?> </div> <div id="content"> <?php if (isset($_SESSION['user'])) { $targetId = filter_input(INPUT_GET, 'user', FILTER_VALIDATE_INT); if ($targetId) { //Alles echo "<h2>Welkom " . $_SESSION['user']['voornaam'] . " " . $_SESSION['user']['achternaam'] . "</h2>"; $targetData = portfolio_get_user_details($targetId); if ($targetData) { if ($targetData['rol'] === 'student' && portfolio_user_is_of_type(array('slb', 'docent')) || portfolio_user_is_of_type(array('admin'))) { echo '<h2>' . $targetData['voornaam'] . ' ' . $targetData['achternaam'] . '</h2>'; echo '<h3>Gegevens</h3>'; echo '<table class="tableLeft">'; echo '<tr><th rel="row">' . 'Gebruikers ID' . '</th><td>' . $targetData['gebruikersId'] . '</td></tr>'; echo '<tr><th rel="row">' . 'Voornaam' . '</th><td>' . $targetData['voornaam'] . '</td></tr>'; echo '<tr><th rel="row">' . 'Achternaam' . '</th><td>' . $targetData['achternaam'] . '</td></tr>'; echo '<tr><th rel="row">' . 'E-Mail adres' . '</th><td>' . $targetData['eMail'] . '</td></tr>'; echo '<tr><th rel="row">' . 'Rol' . '</th><td>' . $targetData['rol'] . '</td></tr>'; echo '</table>'; if ($targetData['rol'] === 'student' || $targetData['rol'] === 'docent' || $targetData['rol'] === 'slb') { echo '<h3>Opties</h3>'; echo '<p><a href="usersubjects.php?user='******'">Overzicht vakken</a></p>'; }
echo ', '; } } echo '</td></tr>'; } echo '</table>'; /* * Cijfer */ echo '<h3>Beoordeling</h3>'; $cijferData = portfolio_get_note($matId); if ($cijferData) { echo '<table class="tableLeft">'; echo '<tr><th rel="row">' . 'Cijfer' . '</th><td>' . $cijferData['cijfer'] . '</td></tr>'; echo '<tr><th rel="row">' . 'Gegeven door' . '</th><td>'; $bo = portfolio_get_user_details($cijferData['beoordelaarId']); if ($bo) { echo $bo['voornaam'] . ' ' . $bo['achternaam']; } else { echo 'Onbekend'; } echo '</td></tr>'; echo '</table>'; //if($_SESSION['user']['rol'] == 'slb') if (portfolio_user_is_of_type(array('slb')) && $_SESSION['user']['gebruikersId'] === $cijferData['beoordelaarId'] || portfolio_user_is_of_type(array('admin'))) { echo '<p><a href="cijfer.php?material=' . $matId . '">Wijzig cijfer</p>'; echo '<p><a href="removenote.php?material=' . $matId . '" target="_blank">Verwijder cijfer</p>'; } } else { echo '<p>Dit materiaal is nog niet beoordeeld</p>'; if (portfolio_user_is_of_type(array('slb', 'admin'))) {
<div id="container"> <div id="header"> <?php include 'inc/header.php'; ?> </div> <div id="content"> <?php if (isset($_SESSION['user'])) { //$usrId = filter_input(INPUT_GET, 'material', FILTER_VALIDATE_INT); $usrId = filter_input(INPUT_GET, 'user', FILTER_VALIDATE_INT); if ($usrId) { //Alles echo "<h2>Welkom " . $_SESSION['user']['voornaam'] . " " . $_SESSION['user']['achternaam'] . "</h2>"; $usrData = portfolio_get_user_details($usrId); if ($usrData) { echo '<h2>' . $usrData['voornaam'] . ' ' . $usrData['achternaam'] . '</h2>'; /* * Checks + verwijderen van gebruiker. */ if (portfolio_user_is_of_type(array('admin'))) { $pwCorrect = false; $deleted = false; if (isset($_POST['submit']) && isset($_SESSION['user']) && $usrId) { $userId = $_SESSION['user']['gebruikersId']; $userPass = filter_input(INPUT_POST, 'userPass'); $link = portfolio_connect(); if ($link) { $sql = "SELECT * FROM " . TABLE_USER . " WHERE gebruikersId='" . mysqli_real_escape_string($link, $userId) . "'"; $result = mysqli_query($link, $sql);
function portfolio_reset_pass($userId) { $link = portfolio_connect(); if ($link) { $userData = portfolio_get_user_details($userId); if (count($userData) > 0) { $newPass = dechex(rand(268435456, 4294967295)) . dechex(rand(268435456, 4294967295)); //Will result in 16 hexadecimal 'digits' $hashed = password_hash($newPass, PASSWORD_DEFAULT); $sql = "UPDATE " . TABLE_USER . " \n\t\t\t\t\tSET wachtwoord='" . mysqli_real_escape_string($link, $hashed) . "' \n\t\t\t\t\tWHERE gebruikersId=" . mysqli_real_escape_string($link, $userId); if (mysqli_query($link, $sql)) { mail($userData['eMail'], 'Password reset for portfolio', "Hello " . $userData['voornaam'] . "\r\n\r\nA password reset was requested for your portfolio account.\r\nYour new password is " . $newPass . "\r\n\r\nThe admin team"); return true; } } } return null; }