function update_password() { global $SERVER_PATH, $SiteName; $R = DIN_ALL($_REQUEST); $currentTime = time(); if (get_row_con_info("vcc_resetpassword", "WHERE UniqueKey='{$R['fp_key']}' AND CAST(ValidUpto AS UNSIGNED INT) > {$currentTime}", "", $data)) { $pass_mail = $R[password]; $pass = md5($R[password]); $SQL = "UPDATE vcc_users_login SET Password='******' WHERE LoginID='{$data['LoginID']}'"; eqi($SQL, $rs); $subject = $SiteName . " Password Assistance"; $message = "<br>Your new password for login at " . $SERVER_PATH . " is listed below:<br>\n <br>Password: {$pass_mail} <br>\n <br>To login go to: <a href=" . $SERVER_PATH . "Login>{$SERVER_PATH}</a><br>"; $SQL = "UPDATE vcc_resetpassword SET ValidUpto=0 WHERE LoginID =" . $data[LoginID] . ";"; eqi($SQL, $rs); get_row_con_info("vcc_users_login", "where LoginID='{$data['LoginID']}'", "", $login); send_mail_new("{$login['Name']}", $login[EmailAddress], "", "", $subject, $message, "", "", "", "*****@*****.**"); header("Location:" . $SERVER_PATH . "Login"); } else { header("Location:" . $SERVER_PATH . "Link-Expired"); } }
function error_page($error_msg = '', $title = 'Page Not Found') { global $SERVER_PATH, $MAIN_PATH; $R = DIN_ALL($_REQUEST); if ($_REQUEST[fatal]) { $title = "Fatal Error"; $error_msg = $_REQUEST[fatal]; } $smarty = new Smarty(); $smarty->assign(array("msg" => $msg, "LoginID" => $_SESSION['UserID'], "error_msg" => $error_msg, "title" => $title, "SERVER_ACTUAL_PATH" => $SERVER_PATH)); /*if($title!='Page Not Found') { global $SiteName; send_mail_new("Bhavneet","*****@*****.**",$SiteName,"","Error in Cron: $title ",$error_msg); }*/ $smarty->display($MAIN_PATH . 'templates/error-404.tpl'); }
function export_report($msg = "", $error_msg = '') { global $SERVER_PATH, $SignIN; $R = DIN_ALL($_REQUEST); if (intval($R['preference']) == 1) { $filename = "AssignmentReport_" . date('Ymd') . ".xls"; } else { $filename = "PlacementReport_" . date('Ymd') . ".xls"; } header("Content-Disposition: attachment; filename=\"{$filename}\""); header("Content-Type: application/vnd.ms-excel"); if (($_SESSION['UserID'] <= 0 || $_SESSION['UserID'] == "") && $_SESSION['http_agent'] != $_SERVER['HTTP_USER_AGENT']) { header("Location:" . $SignIN); die; } else { if (intval($R['preference']) == 1) { $SQL = "SELECT VCCCaseNumber,CONCAT(IFirstName,' ',ILastName) AS EmployeeName,DATE_FORMAT(InjuryDate,'%m/%d/%Y') AS InjuryDate,\n\t\t\t\tDATE_FORMAT(NPEarliestStartDate,'%m/%d/%Y') AS NPStartDate,GIEmployer AS EmployerName,\n\t\t\t\tDATE_FORMAT(PreCallDate,'%m/%d/%Y') AS PreCallDate,DATE_FORMAT(FollowUpDate,'%m/%d/%Y') AS FollowUpDate\n\t\t\t\tFROM vcc_iemployee VCE LEFT JOIN vcc_employer VCEP ON VCE.IEmployeeID = VCEP.EmployeeID\n\t\t\t\tLEFT JOIN vcc_initials VCI ON VCI.InitialID = VCE.PersonAssignedID\n\t\t\t\tWHERE CloseDate IS NOT NULL AND CloseDate <> STR_TO_DATE(now(),'%Y-%m-%d') \n\t\t\t\tAND CloseDate <> STR_TO_DATE('1970-01-01','%Y-%m-%d') AND VCI.LoginID = " . $R['userID'] . ";"; } else { $SQL = "SELECT VCCCaseNumber,CONCAT(IFirstName,' ',ILastName) AS EmployeeName,GIEmployer AS EmployerName,\n\t\t\t\tICity AS EmployeeCity,IZip AS EmployeeZipCode,VS.State AS EmployeeState\n FROM vcc_iemployee VCE LEFT JOIN vcc_employer VCEP ON VCE.IEmployeeID = VCEP.EmployeeID\n\t\t\t\tLEFT JOIN vcc_initials VCI ON VCI.InitialID = VCE.PersonAssignedID \n\t\t\t\tLEFT JOIN vcc_states VS ON VS.StateID = VCE.IStateID \n\t\t\t\tWHERE CloseDate IS NOT NULL AND CloseDate <> STR_TO_DATE(now(),'%Y-%m-%d') \n\t\t\t\tAND CloseDate <> STR_TO_DATE('1970-01-01','%Y-%m-%d') AND VCI.LoginID = " . $R['userID'] . ";"; } eqi($SQL, $rs); while ($data = mfai($rs)) { if (!$flag) { // display field/column names as first row echo implode("\t", array_keys($data)) . "\r\n"; $flag = true; } // escape tab characters $str = preg_replace("/\t/", "\\t", $str); // escape new lines $str = preg_replace("/\r?\n/", "\\n", $str); array_walk($data, 'cleanData'); echo implode("\t", array_values($data)) . "\r\n"; } } exit; }
function search_condition($SearchID) { global $SERVER_PATH, $SignIN; $R = DIN_ALL($_REQUEST); $Condition = ""; if (($_SESSION['UserID'] <= 0 || $_SESSION['UserID'] == "") && $_SESSION['http_agent'] != $_SERVER['HTTP_USER_AGENT']) { header("Location:" . $SignIN); die; } else { if ($SearchID != NULL || $SearchID != "" || intval($SearchID) > 0) { switch ($SearchID) { case 1: $Condition = "AND (INSTR(EMP.IFirstName,'{$R['search']}') > 0) OR (INSTR(EMP.ILastName, '{$R['search']}') > 0)"; break; case 2: $Condition = "AND (INSTR(NP.JobCode,'{$R['search']}') > 0)"; break; case 3: $Condition = "AND (INSTR(EMPR.GIEmployer,'{$R['search']}') > 0)"; break; case 4: $Condition = "AND (INSTR(EMP.VCCCaseNumber,'{$R['search']}') > 0)"; break; case 5: $Condition = "AND (INSTR(EMP.VCCEmployeeCode,'{$R['search']}') > 0)"; break; case 6: $Condition = "AND (INSTR(EMP.ClaimNumber,'{$R['search']}') > 0)"; break; case 7: $Condition = "AND (INSTR(NP.NonProfit,'{$R['search']}') > 0)"; break; default: $Condition = "AND (INSTR(EMP.IFirstName,'{$R['search']}') > 0) OR (INSTR(EMP.ILastName, '{$R['search']}') > 0)"; break; } } } return $Condition; }