function isRepeated($course, $username) { list($dbc, $error) = connect_to_database(); $repeated = false; $course_safe = mysqli_real_escape_string($dbc, $course); //protect ourselves $username_safe = mysqli_real_escape_string($dbc, $username); //protect ourselves //$now = new date(); //echo $course_safe; //echo $username_safe; //echo $course; //echo $username; $results = mysqli_query($dbc, "select course_id from Enrollment where username= '******'"); $allEnr = array(); if ($results) { while ($enrollments = mysqli_fetch_array($results, MYSQLI_ASSOC)) { $allEnr[] = $enrollments; //echo $enrollments; } foreach ($allEnr as $enr) { //echo $enr; //echo $enr['course_id']; //echo $course_safe; if ($enr['course_id'] == $course_safe) { $repeated = true; } } //echo $repeated; //if($repeated) // p("You are already enrolled in this course"); } return $repeated; }
function users_checkAdmin($username) { list($dbc, $error) = connect_to_database(); $admin = false; if ($dbc) { $username_safe = mysqli_real_escape_string($dbc, $username); $query = "SELECT * from users where username='******' AND Type='professor'"; $result = mysqli_query($dbc, $query); if ($result) { //aha we found you! while ($user = mysqli_fetch_array($result, MYSQLI_BOTH)) { $admin = true; /* $_SESSION['user'] = $user; if ($user["Type"]=="professor"){ $admin = true; } else{ //not admin } */ } } else { //noooo } } return $admin; }
function query_registered_users() { // Initialize the return code. $b_rc = false; // Initialize array to store query results in. $registered_users = array(); // Open connection to the database. list($b_rc, $db_handle) = connect_to_database(); // If return code is true proceed with data query. if ($b_rc) { // Set MySQL table to use. $sql_table = "data_submission"; // Create MySQL query to request all registered user entries in descending // order by timestamp. $sql_query = "SELECT * FROM {$sql_table} ORDER BY timestamp DESC"; // Perform database query. $result = mysql_query($sql_query, $db_handle); // Validate return code from query. check_result($result); // Fetch each registered user's information from the query results // and add it to an array that can be returned to the caller. while ($row = mysql_fetch_row($result)) { //echo "timestamp = $row[8]<br>"; // Add user's information to array. $registered_users[] = $row; } // Free the query results. mysql_free_result($result); } // Return array consisting of status boolean and query data. return array($b_rc, $registered_users); }
/** * @param $login * @param string $field * @return bool|mysqli_result|string */ function user_s($login, $field = "*") { $result = ''; list($dbc, $error) = connect_to_database(); $sql = 'CALL `stu_user_s`("' . $login . '");'; if ($dbc) { $queryResult = mysqli_query($dbc, $sql); while ($record = mysqli_fetch_array($queryResult, MYSQLI_ASSOC)) { switch (strtoupper($field)) { case "USERID": $result = $record['UserId']; break; case "NAME": $result = $record['Name']; break; case "LOGIN": $result = $record['Login']; break; case "EMAIL": $result = $record['Email']; break; case "LOCKED": $result = $record['Locked']; break; default: $result = $record['UserId'] . ", " . $record['Name'] . ", " . $record['Login'] . ", " . $record['Email'] . ", " . $record['Locked']; } } } return $result; }
/** * Wrapper function for the * stu_site_s stored procedure. * * @param string $field * @return string */ function site_select($field = "*") { $site = array(); $result = ''; $i = 0; list($dbc, $error) = connect_to_database(); $sql = 'CALL `stu_site_s`();'; if ($dbc) { $resultSet = mysqli_query($dbc, $sql); while ($record = mysqli_fetch_array($resultSet, MYSQLI_ASSOC)) { switch (strtoupper($field)) { case "TITLE": $result = $record['Title']; break; case "SUBTITLE": $result = $record['SubTitle']; break; case "SALT": $result = $record['Salt']; break; default: $result = $record['Title'] . ", " . $record['SubTitle'] . ", " . $record['Salt']; break; } } } return $result; }
function getDescription($course) { $details = array(); list($dbc, $error) = connect_to_database(); if ($dbc) { $query = "SELECT * FROM Tbl_Courses WHERE Course_id = {$course};"; $details = mysqli_query($dbc, $query); } //ya tengo los detalles. y ahora return $details; }
function subject_getDetail($id) { list($dbc, $error) = connect_to_database(); if ($dbc) { $query = "SELECT subjects.Id, Code, Name, Building, Class, Professor, Semester FROM SUBJECTS "; $subject = NULL; $result = mysqli_query($dbc, $query); if ($result) { $subject = mysqli_fetch_array($result); } return $subject; } }
function enrollments_getAll($username) { list($dbc, $error) = connect_to_database(); $username_safe = mysqli_real_escape_string($dbc, $username); //protect ourselves $results = mysqli_query($dbc, "select * from enrollments join subjects on enrollments.subject = subjects.id where username='******'"); $allEnrollments = array(); if ($results) { while ($enrollment = mysqli_fetch_array($results, MYSQLI_ASSOC)) { $allEnrollments[] = $enrollment; } } return $allEnrollments; }
function users_getAll() { $users = array(); list($dbc, $error) = connect_to_database(); if ($dbc) { $query = "SELECT * FROM Tbl_Users;"; $result = mysqli_query($dbc, $query); if ($result) { while ($user = mysqli_fetch_array($result)) { $users[] = $user; } } } return $users; }
function students_getAll() { $students = array(); list($dbc, $error) = connect_to_database(); if ($dbc) { $query = "SELECT users.Id, username, password, FirstName, LastName, Email, Type FROM USERS "; $result = mysqli_query($dbc, $query); if ($result) { while ($student = mysqli_fetch_array($result)) { $students[] = $student; } } } return $students; }
/** * Test whether a given database * exists. * * @param $databaseName * @return bool */ function databaseExists($databaseName) { $sql = $result = false; list($dbc, $error) = connect_to_database(); $sql = 'SELECT CASE WHEN COUNT(*) LIKE \'1\' THEN TRUE ELSE FALSE END AS \'EXISTS\'' . 'FROM INFORMATION_SCHEMA.SCHEMATA WHERE SCHEMA_NAME = \'' . $databaseName . '\';'; if ($dbc) { $queryResult = mysqli_query($dbc, $sql); while ($record = mysqli_fetch_array($queryResult, MYSQLI_ASSOC)) { if ($record['EXISTS']) { $result = true; } } } return $result; }
function subjects_getAll() { $subjects = array(); list($dbc, $error) = connect_to_database(); if ($dbc) { $query = "SELECT subjects.Id, Code, Name, Building, Class, Professor, Semester FROM SUBJECTS "; $result = mysqli_query($dbc, $query); if ($result) { while ($subject = mysqli_fetch_array($result)) { $subjects[] = $subject; } } } return $subjects; }
function users_checkAdmin($username) { list($dbc, $error) = connect_to_database(); $admin = false; if ($dbc) { $username_safe = mysqli_real_escape_string($dbc, $username); //$password_safe = mysqli_real_escape_string($dbc,sha1($password + SALT)); echo $username_safe; //echo $password_safe; $query = "SELECT * from Tbl_Users where username='******' AND role='Professor';"; $result = mysqli_query($dbc, $query); ///$allrols = array(); if ($result) { while ($rols = mysqli_fetch_array($result, MYSQLI_ASSOC)) { $admin = true; } } } return $admin; }
function getCourseDetails($courseId) { $result = array(); list($dbc, $error) = connect_to_database(); $sql = 'CALL `stu_course_detail_s`("' . $courseId . '");'; if ($dbc) { array_push($result, '<table border="1">'); array_push($result, '<tr><th>CourseNumber</th><th>Description</th><th>Credits</th><th>Cost</th><th>Specialization</th><th></th></tr>'); $resultSet = mysqli_query($dbc, $sql); while ($record = mysqli_fetch_array($resultSet, MYSQLI_ASSOC)) { array_push($result, '<tr><td>' . $record['CourseNumber'] . '</td>'); array_push($result, '<td>' . $record['CourseDescription'] . '</td>'); array_push($result, '<td>' . $record['Credits'] . '</td>'); array_push($result, '<td>' . $record['Cost'] . '</td>'); array_push($result, '<td>' . $record['Specialization'] . '</td>'); array_push($result, '<td><a href="index.php?enroll=' . $record['CourseId'] . '">Enroll</a></td></tr>'); } array_push($result, '</table>'); } return $result; }
/** * Check if a user exists in the database, adds user to session if exists */ function users_checkExists($username, $password) { list($dbc, $error) = connect_to_database(); $success = false; if ($dbc) { $username_safe = mysqli_real_escape_string($dbc, $username); $password_safe = mysqli_real_escape_string($dbc, sha1($password . SALT)); //$password_safe = mysqli_real_escape_string($dbc,sha1($password)); $query = "SELECT * from users where username='******' AND password='******'"; $result = mysqli_query($dbc, $query); if ($result) { //aha we found you! while ($user = mysqli_fetch_array($result, MYSQLI_BOTH)) { $_SESSION['user'] = $user; $success = true; } } else { //bad, wrong username or password } } return $success; }
function submit_news_to_database($news_id, $title_text, $body_text, $user_id) { require_once $_SERVER['DOCUMENT_ROOT'] . '/../connect_mysql.php'; $db = connect_to_database(); if ($news_id == -1) { if ($statement = $db->prepare("INSERT INTO `news` (`title_text`, `body_text`, `visible`, `post_user_id`,\t`edit_user_id`) VALUES (?, ?, '1', ?, ?)")) { $statement->bind_param('ssii', $title_text, $body_text, $user_id, $user_id); $statement->execute(); $statement->close(); } else { die('prepare() failed: ' . htmlspecialchars($db->error)); } } else { if ($statement = $db->prepare("UPDATE `news` SET `title_text` = ?, `body_text` = ?, `edit_user_id` = ? WHERE `news_id` = ?")) { $statement->bind_param('ssii', $title_text, $body_text, $news_id); $statement->execute(); $statement->close(); } else { die('prepare() failed: ' . htmlspecialchars($db->error)); } } }
function attempt_login($name, $pass) { require_once $_SERVER['DOCUMENT_ROOT'] . '/../connect_mysql.php'; $db = connect_to_database(); if ($statement = $db->prepare("SELECT `password` FROM `users` WHERE `user_name` = ?")) { $statement->bind_param('s', $name); $statement->execute(); $statement->store_result(); $statement->bind_result($returned_value); while ($statement->fetch()) { $pass_hash = $returned_value; } $statement->free_result(); $statement->close(); } $validLoginCredentials = password_verify($pass, $pass_hash); if ($validLoginCredentials) { if ($statement = $db->prepare("SELECT `user_id`, `user_full_name`, `can_blog`,`can_event`,`can_photos`,`can_user` FROM `users` WHERE `user_name` = ?")) { $statement->bind_param('s', $name); $statement->execute(); $statement->store_result(); $statement->bind_result($returned_id, $returned_name, $returned_blog, $returned_event, $returned_photos, $returned_user); while ($statement->fetch()) { $user_id = $returned_id; $user_full_name = $returned_name; $can_blog = $returned_blog; $can_event = $returned_event; $can_photos = $returned_photos; $can_user = $returned_user; } $statement->free_result(); $statement->close(); } $validLoginCredentials = password_verify($pass, $pass_hash); $_SESSION['user'] = array('username' => $name, 'user_id' => $user_id, 'user_full_name' => $user_full_name, 'can_blog' => $can_blog, 'can_event' => $can_event, 'can_photos' => $can_photos, 'can_user' => $can_user); } $db->close(); return $validLoginCredentials; }
function print_news_item_edit($news_id) { if ($news_id >= 0) { require_once $_SERVER['DOCUMENT_ROOT'] . '/../connect_mysql.php'; $db = connect_to_database(); if ($statement = $db->prepare("SELECT `title_text`, `body_text` FROM `news` WHERE `news_id` = ?")) { $statement->bind_param('s', $news_id); $statement->execute(); $statement->store_result(); $statement->bind_result($title_text, $body_text); echo "<h1>Edit Post</h1>"; while ($statement->fetch()) { print_news_item_page($news_id, $title_text, $body_text); } $statement->free_result(); $statement->close(); } else { die('prepare() failed: ' . htmlspecialchars($db->error)); } } else { print_news_item_page(-1, "", ""); } }
* @author Rob Griggs * * Initialization script that builds dependencies and populates registry with * globally requried classes */ /* * Regardless of what directory we initialize from * we need to be able to load the config and our core dependencies, so we switch * working directories momentarily */ $callingDir = getcwd(); chdir(dirname(__FILE__)); require_once '../../config.php'; require_once 'db_connect_function.php'; //setup Database connection $db = connect_to_database($db_server_data, $transactionID); //fire up logger / error handler require_once 'Logger.php'; $logger = Logger::get_instance($db, $transactionID); //create Registry require_once 'Registry.php'; $registry = Registry::get_instance(); //register logger $registry->set('Logger', $logger); //create new data handler require_once 'DataHandler.php'; $dataHandler = DataHandler::get_instance($db); //register data handler $registry->set('DataHandler', $dataHandler); /* * The autoloader makes decisions based on the directory that
echo '<tr><td align="center" colspan="2">Failed to connect to datbase, database user name can not be blank</td></tr>'; exit; } if (strpos(strtolower($dbpass), "fail") !== false) { echo '<tr><td align="center" colspan="2">Failed to connect to datbase, database password can not be blank</td></tr>'; exit; } if (strpos(strtolower($dbname), "fail") !== false) { echo '<tr><td align="center" colspan="2">Failed to connect to datbase, database name can not be blank</td></tr>'; exit; } if (strpos(strtolower($dbtable), "fail") !== false) { echo '<tr><td align="center" colspan="2">Failed to connect to datbase, database table name can not be blank</td></tr>'; exit; } $dbconnection = connect_to_database($dbserv, $dbuser, $dbpass, $dbname); if (strpos(strtolower($dbconnection), "fail") !== false) { $results = strtolower($dbconnection); return $results; exit; } $query = mysql_query("SELECT * FROM " . $dbtable . " WHERE dateresolved like '" . $nonresolved . "'"); if (!query) { $results = "failed, " . mysql_error(); return $results; exit; } while ($row = mysql_fetch_array($query)) { $complaintcount = $complaintcount + 1; echo '<tr>'; echo '<td>' . $row['id'] . '</td>';
function print_news_item($id) { require_once $_SERVER['DOCUMENT_ROOT'] . '/../connect_mysql.php'; $db = connect_to_database(); if ($statement = $db->prepare("SELECT `title_text`, `body_text`, `posted_time`, `edit_time`, `pu`.`user_full_name` AS `pu_name` , `eu`.`user_full_name` AS `eu_name` FROM `news` `n` INNER JOIN (SELECT `user_id` , `user_full_name` FROM `users`) `pu` ON `n`.`post_user_id` = `pu`.`user_id` INNER JOIN (SELECT `user_id` , `user_full_name` FROM `users`) `eu` ON `n`.`edit_user_id` = `eu`.`user_id` WHERE `news_id` = ? AND `visible` = 1")) { $statement->bind_param("i", $id); $statement->execute(); $statement->store_result(); $statement->bind_result($title_text, $body_text, $posted_time, $edit_time, $pu_full_name, $eu_full_name); while ($statement->fetch()) { print_news_item_full($id, $title_text, $body_text, $posted_time, $edit_time, $pu_full_name, $eu_full_name); } $statement->free_result(); $statement->close(); } else { die('prepare() failed: ' . htmlspecialchars($db->error)); } }
function doDbCollection($terms, $domains, $resultstype) { // This can actually be used to search the database for title, album, artist, anything, rating, and tag // But it isn't because we let Mopidy/MPD search for anything they support because otherwise we // have to duplicate their entire database, which is daft. // This function was written before I realised that... :) // It's still used for searches where we're only looking for tags and/or ratings in conjunction with // any of the above terms, because mopidy often returns incomplete search results. global $mysqlc, $tree; if ($mysqlc === null) { connect_to_database(); } $parameters = array(); $qstring = "SELECT t.*, al.*, a1.*, a2.Artistname AS AlbumArtistName "; if (array_key_exists('rating', $terms)) { $qstring .= ",rat.Rating "; } $qstring .= "FROM Tracktable AS t "; if (array_key_exists('tag', $terms)) { $qstring .= "JOIN (SELECT DISTINCT TTindex FROM TagListtable JOIN Tagtable AS tag USING (Tagindex) WHERE"; $tagterms = array(); foreach ($terms['tag'] as $tag) { $parameters[] = trim($tag); array_push($tagterms, " tag.Name LIKE ?"); } $qstring .= implode(" OR", $tagterms); $qstring .= ") AS j ON j.TTindex = t.TTindex "; } if (array_key_exists('rating', $terms)) { $qstring .= "JOIN (SELECT * FROM Ratingtable WHERE Rating >= " . $terms['rating'] . ") AS rat ON rat.TTindex = t.TTindex "; } $qstring .= "JOIN Artisttable AS a1 ON a1.Artistindex = t.Artistindex "; $qstring .= "JOIN Albumtable AS al ON al.Albumindex = t.Albumindex "; $qstring .= "JOIN Artisttable AS a2 ON al.AlbumArtistindex = a2.Artistindex "; if (array_key_exists('wishlist', $terms)) { $qstring .= "WHERE t.Uri IS NULL"; } else { $qstring .= "WHERE t.Uri IS NOT NULL "; } $qstring .= "AND t.Hidden = 0 AND t.isSearchResult < 2 "; if (array_key_exists('artist', $terms)) { $qstring .= "AND "; if (array_key_exists('any', $terms)) { $qstring .= "("; } $parameters[] = "%" . trim($terms['artist'][0]) . "%"; $qstring .= "a1.Artistname LIKE ? "; if (array_key_exists('any', $terms)) { $parameters[] = "%" . trim($terms['any'][0]) . "%"; $qstring .= "OR a1.Artistname LIKE ?) "; } } else { if (array_key_exists('any', $terms)) { $parameters[] = "%" . trim($terms['any'][0]) . "%"; $qstring .= "OR a1.Artistname LIKE ? "; } } if (array_key_exists('album', $terms)) { $qstring .= "AND "; if (array_key_exists('any', $terms)) { $qstring .= "("; } $parameters[] = "%" . trim($terms['album'][0]) . "%"; $qstring .= "al.Albumname LIKE ? "; if (array_key_exists('any', $terms)) { $parameters[] = "%" . trim($terms['any'][0]) . "%"; $qstring .= "OR al.Albumname LIKE ?) "; } } else { if (array_key_exists('any', $terms)) { $parameters[] = "%" . trim($terms['any'][0]) . "%"; $qstring .= "OR al.Albumname LIKE ? "; } } if (array_key_exists('track_name', $terms)) { $qstring .= "AND "; if (array_key_exists('any', $terms)) { $qstring .= "("; } $parameters[] = "%" . trim($terms['track_name'][0]) . "%"; $qstring .= "t.Title LIKE ? "; if (array_key_exists('any', $terms)) { $parameters[] = "%" . trim($terms['any'][0]) . "%"; $qstring .= "OR t.Title LIKE ?) "; } } else { if (array_key_exists('any', $terms)) { $parameters[] = "%" . trim($terms['any'][0]) . "%"; $qstring .= "OR t.Title LIKE ? "; } } if (array_key_exists('file', $terms)) { $qstring .= "AND "; if (array_key_exists('any', $terms)) { $qstring .= "("; } $parameters[] = "%" . trim($terms['file'][0]) . "%"; $qstring .= "t.Uri LIKE ? "; if (array_key_exists('any', $terms)) { $parameters[] = "%" . trim($terms['any'][0]) . "%"; $qstring .= "OR t.Uri LIKE ?) "; } } else { if (array_key_exists('any', $terms)) { $parameters[] = "%" . trim($terms['any'][0]) . "%"; $qstring .= "OR t.Uri LIKE ? "; } } if (array_key_exists('albumartist', $terms)) { $qstring .= "AND "; if (array_key_exists('any', $terms)) { $qstring .= "("; } $parameters[] = "%" . trim($terms['albumartist'][0]) . "%"; $qstring .= "AlbumArtistName LIKE ? "; if (array_key_exists('any', $terms)) { $parameters[] = "%" . trim($terms['any'][0]) . "%"; $qstring .= "OR AlbumArtistName LIKE ?) "; } } else { if (array_key_exists('any', $terms)) { $parameters[] = "%" . trim($terms['any'][0]) . "%"; $qstring .= "OR AlbumArtistName LIKE ? "; } } if (array_key_exists('date', $terms)) { $qstring .= "AND "; $parameters[] = trim($terms['date'][0]); $qstring .= "al.Year = ? "; } if ($domains !== null) { $qstring .= "AND ("; $domainterms = array(); foreach ($domains as $dom) { $parameters[] = trim($dom) . "%"; array_push($domainterms, "t.Uri LIKE ?"); } $qstring .= implode(" OR ", $domainterms); $qstring .= ")"; } debuglog("SQL Search String is " . $qstring, "SEARCH"); $fcount = 0; if ($result = sql_prepare_query_later($qstring)) { if ($result->execute($parameters)) { while ($obj = $result->fetch(PDO::FETCH_OBJ)) { if ($resultstype == "tree") { $filedata = array('Artist' => array($obj->Artistname), 'Album' => $obj->Albumname, 'AlbumArtist' => array($obj->AlbumArtistName), 'file' => $obj->Uri, 'Title' => $obj->Title, 'Track' => $obj->TrackNo, 'Image' => $obj->Image, 'Time' => $obj->Duration, 'AlbumUri' => $obj->AlbumUri, 'Date' => $obj->Year, 'Last-Modified' => $obj->LastModified); $tree->newItem($filedata); $fcount++; } else { debuglog('Updating isSearchResult for TTindex ' . $obj->TTindex, "DBSEARCH", 8); generic_sql_query("UPDATE Tracktable SET isSearchResult = 1 WHERE TTindex = " . $obj->TTindex); } } } else { show_sql_error(); } } else { show_sql_error(); } return $fcount; }
<?php connect_to_database('127.0.0.1', 'root', '', 'mydb'); //Get all addresses from your database $result = mysql_query('SELECT Adress ,idHotels FROM Hotels'); if (!$result) { die('Invalid query: ' . mysql_error()); } else { //Iterate over each address for ($i = 0, $il = mysql_num_rows($result); $i < $il; $i++) { $row = mysql_fetch_row($result); // Create url for Google Api // http://maps.googleapis.com/maps/api/geocode - Google geocode url // xml - Response format // ?address= - !Do not remove! Adress parameter ( address string ) // &sensor=false - !Do not remove! Parameter for other devices, leave false $url = file_get_contents('http://maps.googleapis.com/maps/api/geocode/xml?address=' . urlencode($row[0] . ', Latvia') . '&sensor=false'); //XML response , <status> OK </status> == Found adress preg_match('#\\<status\\>(.+?)\\<\\/status\\>#s', $url, $matches); if ((string) $matches[1] == "OK") { //Read Location data preg_match('#\\<location\\>(.+?)\\<\\/location\\>#s', $url, $matches); //Latitude preg_match('#\\<lat\\>(.+?)\\<\\/lat\\>#s', $matches[0], $lat); //Longtitude preg_match('#\\<lng\\>(.+?)\\<\\/lng\\>#s', $matches[0], $lng); //Check if it is out of certain region, if so google found wrong adress if ($lat[1] > 59.008098 || $lat[1] < 55.627996) { continue; } elseif ($lng[1] > 28.520508 || $lng[1] < 20) { continue;
if (empty($currentdate)) { $currentdate = date('Y-m-d'); } if (empty($currenthour)) { $currenthour = date('H'); } echo '<html>'; echo ' <head>'; echo ' <script type="text/javascript" src="https://www.google.com/jsapi"></script>'; echo ' <script type="text/javascript">'; echo ' google.load("visualization", "1", {packages:["corechart"]});'; echo ' google.setOnLoadCallback(drawChart);'; echo ' function drawChart() {'; echo ' var data = google.visualization.arrayToDataTable(['; echo ' [\'Time\', \'Players\', \'Games\'],'; $dbconnection = connect_to_database($databaseserver, $databaseusername, $databasepassword, $databasetouse); $query = mysql_query("SELECT * FROM " . $uptimetable . " WHERE timest LIKE '" . $currentdate . "%' AND id_server = " . $serverid); while ($row = mysql_fetch_array($query)) { echo '[\'' . date_format(date_create($row['timest']), 'h:i:s A') . '\',' . $row['users_count'] . ',' . $row['games_count'] . '],'; } mysql_close($dbconnection); echo ' ]);'; echo ' '; echo ' var options = {'; echo ' title: \'User/Game Statistics for [' . $currentdate . '] \''; echo ' };'; echo ' '; echo ' var chart = new google.visualization.LineChart(document.getElementById(\'chart_div\'));'; echo ' chart.draw(data, options);'; echo ' }'; echo ' </script>';
echo "<center>failed to connect to database server, unknown database user name password</center>"; exit; } if (empty($dbname)) { echo "<center>failed to connect to database server, unknown database name</center>"; exit; } if (empty($dbtable)) { echo "<center>failed to connect to database server, unknown database table name</center>"; exit; } if (empty($dbusertable)) { echo "<center>failed to connect to database server, unknown user database table</center>"; exit; } $dbconnection = connect_to_database($dbserver, $dbusername, $dbpassword, $dbname); if (strpos(strtolower($dbconnection), "fail") !== false) { echo "failed, " . mysql_error(); exit; } $query = mysql_query("SELECT name FROM " . trim($dbusertable) . " WHERE admin != 0"); if ($query) { $results = "success"; } else { echo "failed, " . mysql_error(); } while ($row = mysql_fetch_array($query)) { $query2 = mysql_query("SELECT * FROM " . trim($dbtable) . " WHERE user_name = '" . $row['name'] . "' AND end_time is NULL and id_server = " . $serverid); while ($row2 = mysql_fetch_array($query2)) { echo "<tr><td>" . $row2['user_name'] . "</td></tr>"; }
<hr /> </div> <?php require_once "shared/admin_settings_nav.php"; ?> <div class="settings_content"> <div class="title"> List of Admins <hr /> </div> <table> <?php connect_to_database(); select_database(); $query = query_select("users"); $query .= query_select_where("acess_rank", "administrator"); $admins = get_array_from_db($query); $counter = 1; foreach ($admins as $admin) { if ($counter == 1) { echo "<tr>"; } echo "<td>"; if ($admin['image_name'] == null) { $picture = "default.jpg"; } else { $picture = $admin['image_name']; }
<?php // Include commonly-used functions include_once 'general_functions.php'; // Access parameters for the database and OFS configuration table $database_config = array('db_host' => 'localhost', 'db_user' => 'openfood_user', 'db_pass' => 'openfood_password', 'db_name' => 'openfoodsource', 'db_prefix' => 'ofs_', 'openfood_config' => 'configuration'); // Include override values, but only if the file exists @(include_once "config_override.php"); // Establish database connection connect_to_database($database_config); // Set all additional configurations from the database get_configuration($database_config, $override_config); // Set the time zone date_default_timezone_set(LOCAL_TIME_ZONE); // Set error reporting level ini_set('display_errors', DEBUG); // Set error reporting level // Convert the comma-separated ERROR_FLAGS into boolean constants and bitwise-or them together if (!is_int(ERROR_FLAGS)) { $error_flags = array_reduce(array_map('constant', explode(',', ERROR_FLAGS)), function ($a, $b) { return $a | $b; }, 0); } error_reporting($error_flags);
function cleanSearchTables() { // Clean up the database tables before performing a new search or updating the collection debuglog("Cleaning Search Results", "MYSQL", 6); // Any track that was previously hidden needs to be re-hidden generic_sql_query("UPDATE Tracktable SET Hidden = 1, isSearchResult = 0 WHERE isSearchResult = 3"); // Any track that was previously a '2' (added to database as search result) but now // has a playcount needs to become a zero and be hidden. hide_played_tracks(); // remove any remaining '2's generic_sql_query("DELETE FROM Tracktable WHERE isSearchResult = 2"); // Set '1's back to '0's generic_sql_query("UPDATE Tracktable SET isSearchResult = 0 WHERE isSearchResult = 1"); // This may leave some orphaned albums and artists remove_cruft(); // // remove_cruft creates some temporary tables and we need to remove them because // remove cruft will be called again later on if we're doing a collection update. // Sadly, DROP TABLE runs into locking problems, at least with SQLite, so instead // we close the DB connection and start again. // So this function must be called BEFORE prepareCollectionUpdate, as that creates // temporary tables of its own. // close_database(); sleep(1); connect_to_database(); }
function make_category_options() { $mysqliLink = connect_to_database(); $sql = "SELECT `category initials`, `category name` FROM `categories` WHERE 1"; $result = $mysqliLink->query($sql); if ($result->num_rows > 0) { // check if new sku is unique while ($row = $result->fetch_assoc()) { echo "<option value = '"; echo $row["category initials"]; echo "'>"; echo $row["category initials"]; echo " - "; echo $row["category name"]; echo "</option>"; } } else { echo "0 results"; } $mysqliLink->close(); }
function exe_sql($database, $sql) { # Connect to MySQL server and select database $mysql_connect = connect_to_database(); mysql_select_db($database, $mysql_connect); # Execute SQL command $result = mysql_query($sql, $mysql_connect); # Report SQL error, if one occured if(mysql_error ($mysql_connect)) { echo "MySQL ERROR: ".mysql_error($mysql_connect); $result_set = ""; } else { # Fetch every row in the result set for ($xx=0; $xx<mysql_numrows($result); $xx++) { $result_set[$xx] = mysql_fetch_array($result); } # If the result set has only one row, return a single dimension array if(sizeof($result_set)==1) $result_set=$result_set[0]; return $result_set; } }