<?php // ** GET CONFIGURATION DATA ** require_once 'constants.inc'; require_once FILE_FUNCTIONS; require_once FILE_CLASS_OPTIONS; require_once FILE_CLASS_CONTACTLIST; require_once FILE_CLASSES; session_start(); // ** OPEN CONNECTION TO THE DATABASE ** $db_link = openDatabase($db_hostname, $db_username, $db_password, $db_name); // ** CHECK FOR LOGIN ** checkForLogin(); include_once $student_index;
*
*************************************************************
* edit.php
* Edit address book entries.
*
*************************************************************/
error_reporting(E_ALL);
// ** GET CONFIGURATION DATA **
require_once 'constants.inc';
require_once FILE_FUNCTIONS;
require_once FILE_CLASS_OPTIONS;
session_start();
// ** OPEN CONNECTION TO THE DATABASE **
$db_link = openDatabase($db_hostname, $db_username, $db_password, $db_name);
// ** CHECK FOR LOGIN **
checkForLogin("admin", "user");
// ** RETRIEVE OPTIONS THAT PERTAIN TO THIS PAGE **
$options = new Options();
// ** CHECK FOR ID **
$mode = $_GET['mode'];
if ($mode == 'new') {
$id = '0';
// this is to create empty variables from the database
} else {
$mode = 'edit';
$id = check_id();
}
// ** END INITIALIZATION *******************************************************
// RETRIEVE ENTRY INFORMATION GIVEN AN ID
if (isset($id)) {
$r_contact = mysql_query("SELECT * FROM " . TABLE_CONTACT . " AS contact WHERE contact.id={$id}", $db_link) or die(reportSQLError());
$actionMsg = $lang['ERR_USERNAME_ILLEGAL_CHARS'];
}
if (isset($_POST['newuserNature'])) {
if ($_POST['newuserNature'] == "teacher") {
echo "<h1>Please Provide This Additional Info :-</h1>";
echo "<FORM ACTION = 'users.php?action=addinfo' METHOD = 'post'>\n\t\t\t\t<B>Department</B>\n\t \t\t\t<TD WIDTH=150 CLASS='data'>\n\t \t\t\t\n\t \t\t\t\t<SELECT NAME='newuserDepartment' CLASS='formSelect'>\n\t \t\t\t\t<OPTION VALUE='it' SELECTED>Information Technology</OPTION>\n\t \t\t\t\t<OPTION VALUE='cse'>Computer Science</OPTION>\n\t \t\t\t\t<OPTION VALUE='ece'>Electronics And Commumication</OPTION>\n\t \t\t\t\t<OPTION VALUE='ee'>Electrical</OPTION>\n\t \t\t\t\t<OPTION VALUE='pe'>Production</OPTION>\n\t \t\t\t\t<OPTION VALUE='me'>Mechanical</OPTION>\n\t \t\t\t\t<OPTION VALUE='ce'>Civil</OPTION>\n\t \t\t\t\t<OPTION VALUE='mca'>MCA</OPTION>\n\t \t\t\t\t<OPTION VALUE='mba'>MBA</OPTION>\n\t\t\t\t\t\t\t</SELECT></TD></TR>\n\t\t\t\t\t\t\n\t\t\t\t\t\t\t<INPUT TYPE='hidden' name ='nnnuser' value='{$nuser}' />\n\t\t\t\t\t\t\t<TR VALIGN='top' >\n\t\t\t\t\t\t<TD WIDTH=100 CLASS='data' STYLE='text-align:right'><B>Designation</B></TD>\n\t \t\t\t<TD WIDTH=150 CLASS='data'>\n\t \t\t\t\t<SELECT NAME='newuserDesignation' CLASS='formSelect'>\n\t \t\t\t\t<OPTION VALUE='hod' SELECTED>Head Of Department</OPTION>\n\t \t\t\t\t<OPTION VALUE='assistantprofessor'>Assistant Professor</OPTION>\n\t \t\t\t <OPTION VALUE='associateprofessor'>Associate Professor</OPTION>\n\t \t\t\t \t \t\t\t\t\n\t\t\t\t\t\t\t</SELECT></TD></TR>\t\n\t\t\t\t\t\t\t<INPUT TYPE='submit' CLASS='formButton' NAME='addUser' VALUE='add_new_teacher'/>\n\t\t\t\t\t\t\t</FORM>";
} elseif ($_POST['newuserNature'] == "student") {
echo "<h1>Please Provide This Additional Info :-</h1>";
echo "<FORM ACTION = 'users.php?action=addinfo' METHOD = 'post'>\n\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t<TR VALIGN='top'>\n\t\t\t\t\t\t\t\n\t\t\t\t\t\t<B>Batch</B>\n\t \t\t\t<TD WIDTH=150 CLASS='data'>\n\t \t\t\t\t<SELECT NAME='newuserBatch' CLASS='formSelect'>\n\t \t\t\t\t<OPTION VALUE='2007-2011' SELECTED>2007-2011</OPTION>\n\t \t\t\t\t<OPTION VALUE='2008-2012'>2008-2012</OPTION>\n\t \t\t\t\t<OPTION VALUE='2009-2013'>2009-2013</OPTION>\n\t \t\t\t\t<OPTION VALUE='2010-2014'>2010-2014</OPTION>\n\t \t\t\t\t<OPTION VALUE='2011-2015'>2011-2015</OPTION>\n\t \t\t\t\t<OPTION VALUE='2012-2016'>2012-2016</OPTION>\n\t \t\t\t\t<OPTION VALUE='2013-2017'>2013-2017</OPTION>\n\t \t\t\t\t<OPTION VALUE='2014-2018'>2014-2018</OPTION>\n\t \t\t\t\t<OPTION VALUE='2015-2019'>2015-2019</OPTION>\n\t\t\t\t\t\t\t</SELECT></TD></TR>\n\t\t\t\t\t\t\t<B>Department</B>\n\t \t\t\t<TD WIDTH=150 CLASS='data'>\n\t \t\t\t\n\t \t\t\t\t<SELECT NAME='newuserDepartment' CLASS='formSelect'>\n\t \t\t\t\t<OPTION VALUE='it' SELECTED>Information Technology</OPTION>\n\t \t\t\t\t<OPTION VALUE='cse'>Computer Science</OPTION>\n\t \t\t\t\t<OPTION VALUE='ece'>Electronics And Commumication</OPTION>\n\t \t\t\t\t<OPTION VALUE='ee'>Electrical</OPTION>\n\t \t\t\t\t<OPTION VALUE='pe'>Production</OPTION>\n\t \t\t\t\t<OPTION VALUE='me'>Mechanical</OPTION>\n\t \t\t\t\t<OPTION VALUE='ce'>Civil</OPTION>\n\t \t\t\t\t<OPTION VALUE='mca'>MCA</OPTION>\n\t \t\t\t\t<OPTION VALUE='mba'>MBA</OPTION>\n\t\t\t\t\t\t\t</SELECT></TD></TR>\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t<INPUT TYPE='hidden' name ='nnnuser' value='{$nuser}' />\n\n\t\t\t\t\t\t\t<INPUT TYPE='submit' CLASS='formButton' NAME='addUser' VALUE='add_new_student'/>";
}
}
break;
// DELETE A USER (admin only)
// DELETE A USER (admin only)
case "deleteuser":
checkForLogin("admin");
// Check to see if a user was given
if (empty($_GET['id'])) {
ReportScriptError($lang['ERR_USERNAME_NONE']);
break;
}
// Check to see if user exists in the database
$sql = "SELECT username, usertype FROM " . TABLE_USERS . " WHERE id=" . $_GET['id'] . " LIMIT 1";
$deluser = mysql_query($sql, $db_link) or die(ReportSQLError($sql));
if (mysql_num_rows($deluser) < 1) {
ReportScriptError($lang['ERR_USERNAME_NON_EXIST']);
break;
}
// Get the username and type
$deluser = mysql_fetch_array($deluser);
$deluserType = $deluser['usertype'];
* mailto.php
* Sends e-mail to one or more addresses
* Originally written by Joe Chen
*
*************************************************************/
// BUG: Mailing List displays entries without email addresses.
// ** GET CONFIGURATION DATA **
require_once 'constants.inc';
require_once FILE_FUNCTIONS;
require_once FILE_CLASS_OPTIONS;
require_once FILE_CLASS_CONTACTLIST;
// ** OPEN CONNECTION TO THE DATABASE **
$db_link = openDatabase($db_hostname, $db_username, $db_password, $db_name);
// ** CHECK FOR LOGIN **
// list($userGroup, $userHomeName, $userHomePage, $userCapabilities) = checkForLogin($address_session_name, CAP_MAIL);
checkForLogin('admin', 'user');
// ** RETRIEVE OPTIONS THAT PERTAIN TO THIS PAGE **
$options = new Options($db_link);
/*
// JOE_DEBUG: check for viewing restrictions
if ($userGroup) {
if (($list->group_id <= 2) || (!$list->group_id)) {
$r_check_GroupList = mysql_query("SELECT * FROM " . TABLE_GROUPLIST . " AS GroupList WHERE GroupName LIKE '%$userGroup%'", $db_link);
$check_GroupList = mysql_fetch_array($r_check_GroupList);
$list->group_id = $check_GroupList["GroupID"];
$list->group_name = $check_GroupList["GroupName"];
} else {
$r_check_GroupList = mysql_query("SELECT * FROM " . TABLE_GROUPLIST . " AS GroupList WHERE GroupID=$list->group_id", $db_link);
$check_GroupList = mysql_fetch_array($r_check_GroupList);
$check_GroupName = $check_GroupList["GroupName"];
