public function makeLanguageBar($arr, $divider = " | ")
{
// make a new connection to the database
$database = new database($arr);
$result = $database->executeQuery("SELECT * FROM languages");
if ($result) {
$type = null;
switch ($this->languageType) {
case 0:
default:
$type = "short";
break;
case 1:
$type = "long";
break;
case 2:
$type = "flag";
break;
}
for ($i = 1; $i <= count($result); ++$i) {
$url = getNewUrl('l', $i);
if ($i == $this->language) {
echo "<strong><a href=\"" . $url . "\">" . $result[$i - 1][$type] . "</a></strong>";
} else {
echo "<a href=\"" . $url . "\">" . $result[$i - 1][$type] . "</a>";
}
if ($i < count($result)) {
echo $divider;
}
}
} else {
// make a new connection
echo "There is a problem with the connection with the database, try again later.<br />";
}
}
function GuardarPeriodosSeguimiento()
{
$fecha = date("Y-m-d H:i:s");
$usuario = $_SESSION['session']['user'];
$plano = $this->idplan;
$sql = "SELECT * FROM PL_POPERATIVOS_PERIODOS WHERE PK_POPERATIVO = '{$plano}'";
$numperiodosbase = database::getNumRows($sql);
$numperiodos = sizeof($this->seguimiento) - 1;
if ($numperiodosbase > $numperiodos) {
for ($i = $numperiodos; $i <= $numperiodosbase; $i++) {
$sql = "DELETE FROM PL_POPERATIVOS_PERIODOS WHERE PK_POPERATIVO = '{$plano}' AND ORDEN='{$i}'";
database::executeQuery($sql);
}
}
$cont = 1;
for ($i = 0; $i < sizeof($this->seguimiento) - 1; $i++) {
$periodo = explode("^", $this->seguimiento[$i]);
$titulo = $periodo[0];
$fechai = $periodo[1];
$fechat = $periodo[2];
$sql = "SELECT * FROM PL_POPERATIVOS_PERIODOS WHERE PK_POPERATIVO = '{$plano}' AND ORDEN = '{$cont}'";
$row = database::getRow($sql);
if ($row) {
$this->campos = array('PERIODO' => $titulo, 'FECHA_I' => $fechai, 'FECHA_T' => $fechat, 'FECHA_M' => $fecha, 'PK_USUARIO' => $_SESSION['session']['user']);
$condition = "PK_POPERATIVO = '{$plano}' AND ORDEN = '{$cont}'";
database::updateRecords("PL_POPERATIVOS_PERIODOS", $this->campos, $condition);
} else {
$idperiodo = strtoupper(substr(uniqid('SP'), 0, 15));
$this->campos = array('PK1' => $idperiodo, 'PERIODO' => $periodo[0], 'ORDEN' => $cont, 'FECHA_I' => $periodo[1], 'FECHA_T' => $periodo[2], 'PK_POPERATIVO' => $this->idplan, 'FECHA_R' => date("Y-m-d H:i:s"), 'FECHA_M' => NULL, 'PK_USUARIO' => $_SESSION['session']['user']);
database::insertRecords("PL_POPERATIVOS_PERIODOS", $this->campos);
}
$cont++;
}
}
function Eliminar()
{
foreach ($this->ids as $id) {
$sql = "DELETE FROM RESPONSABLES_CENTRO WHERE PK1 = '{$id}' ";
$result = database::executeQuery($sql);
}
}
function Eliminar()
{
foreach ($this->ids as $id) {
$sql = "DELETE FROM PL_POPERATIVOS_ASIGNACIONES WHERE PK1 = '{$id}' ";
$result = database::executeQuery($sql);
}
}
function ObtenerJerarquias($id)
{
$sql = "SELECT * FROM JERARQUIAS WHERE PADRE = '{$id}' ORDER BY ORDEN";
$result = database::executeQuery($sql);
while ($row = mssql_fetch_array($result, MSSQL_ASSOC)) {
$this->niveles[] = $row;
}
}
function obtenerRoles()
{
$sql = "SELECT * FROM ROLES WHERE TIPO IN('P') ";
$result = database::executeQuery($sql);
while ($row = mssql_fetch_array($result, MSSQL_ASSOC)) {
$this->roles[] = $row;
}
}
function getObjetivosPlan($idlinea)
{
$this->objetivos = array();
$sql = "SELECT * FROM PL_PESTRATEGICOS_OBJETIVOSE WHERE PK_LESTRATEGICA = '{$idlinea}' ORDER BY ORDEN";
$result = database::executeQuery($sql);
while ($row = mssql_fetch_array($result, MSSQL_ASSOC)) {
$this->objetivos[] = $row;
}
}
function getComentarios($id)
{
$this->comentarios = array();
$sql = "SELECT * FROM APOYOS_COMENTARIOS WHERE PK_APOYO = '{$id}' ORDER BY FECHA_R DESC";
$result = database::executeQuery($sql);
while ($row = mssql_fetch_array($result, MSSQL_ASSOC)) {
$this->comentarios[] = $row;
}
}
function getMensajes()
{
$usuario = $_SESSION['session']['user'];
$this->mensajes = array();
$sql = sprintf("SELECT * FROM NOTIFICACIONES WHERE TIPO = 'ALERT' AND PK_USUARIO = '{$usuario}' ORDER BY FECHA_R");
$result = database::executeQuery($sql);
while ($r = mssql_fetch_array($result, MSSQL_ASSOC)) {
}
}
function AgregarNiveles()
{
$usuario = $this->usuario;
$sql = "DELETE USUARIOS_JERARQUIA WHERE PK_USUARIO = '{$usuario}'";
database::executeQuery($sql);
foreach ($this->niveles as $row) {
$this->campos = array('PK_USUARIO' => $this->usuario, 'PK_JERARQUIA' => $row);
database::insertRecords("USUARIOS_JERARQUIA", $this->campos);
}
}
function eliminarMedios($id)
{
$sql = "DELETE FROM PL_POPERATIVOS_MEDIOS WHERE PK_OTACTICO = '{$id}' ";
$result = database::executeQuery($sql);
if ($result) {
//$this->EliminarEvidencias($PK_PLAN);
} else {
return FALSE;
}
}
function Eliminar($id)
{
$sql = "DELETE FROM FICHAS WHERE PK1 = '{$id}' ";
$result = database::executeQuery($sql);
if ($result) {
return TRUE;
} else {
return FALSE;
}
}
function Eliminar($id)
{
$sql = "DELETE FROM PROYECTOS WHERE PK1 = '{$id}'";
$result = database::executeQuery($sql, $params);
if ($result) {
//if($this->EliminarRolesUsuario($id)){return TRUE;}else{return FALSE;}
} else {
return FALSE;
}
}
function EliminarRolesPermisos($id)
{
$sql = "DELETE FROM ROLES_PERMISOS WHERE PK_ROL = '{$id}' ";
$result = database::executeQuery($sql);
if ($result) {
return TRUE;
} else {
return FALSE;
}
}
function getLinks()
{
$this->links = array();
$sql = "SELECT * FROM LINKS";
$objdb = new database();
$result = $objdb->executeQuery($sql);
while ($row = mysql_fetch_array($result)) {
$this->links[] = $row;
}
}
function getObjetivos($idlinea)
{
$html = "";
$sql = "SELECT * FROM PL_PESTRATEGICOS_OBJETIVOSE WHERE PK_LESTRATEGICA = '{$idlinea}' ORDER BY ORDEN";
$result = database::executeQuery($sql);
$i = 1;
while ($row = mssql_fetch_array($result, MSSQL_ASSOC)) {
$html .= ' <div class="controls">' . $i . '. ' . htmlentities($row['OBJETIVO'], ENT_QUOTES, "ISO-8859-1") . '</div>';
$i++;
}
return $html;
}
/**
* add http to siteURL by default
*/
function addHTTP()
{
global $db;
# get variables from config file
$database = new database($db['host'], $db['user'], $db['pass'], $db['name']);
$query = "UPDATE `settings` SET `siteURL` = IFNULL(CONCAT('http://',`siteURL`), 'http://');";
/* execute */
try {
$database->executeQuery($query);
} catch (Exception $e) {
}
}
function Eliminar($id)
{
try {
$sql = "DELETE FROM TIPOS_CONTRATO WHERE PK1 = {$id} ";
$result = database::executeQuery($sql);
if ($result) {
echo "<result>1</result>";
return TRUE;
} else {
return FALSE;
}
} catch (customException $e) {
throw new customException($sql);
}
}
function buscarUsuarios()
{
$this->usuarios = array();
// maximo por pagina
$limit = $_GET["s"];
$tamaño = $_GET["s"];
// pagina pedida
$pag = (int) $_GET["p"];
if ($pag < 1) {
$pag = 1;
}
$offset = ($pag - 1) * $limit;
$limit = $limit * $pag;
if (isset($_GET['sort'])) {
switch ($_GET['sort']) {
case 1:
$order = "NOMBRE ASC ";
break;
}
}
/*
$sql = "SELECT *
FROM (select PK1, NOMBRE, APELLIDOS, IMAGEN,DISPONIBLE,PK_JERARQUIA, row_number()
OVER (order by $order) AS
RowNumber FROM PL_USUARIOS)
Derived WHERE RowNumber BETWEEN '$offset' AND '$limit' ";
//*/
$sql = "SELECT * \n FROM (select PK1, NOMBRE, APELLIDOS, IMAGEN,DISPONIBLE,PK_JERARQUIA, row_number() \n OVER (order by {$order}) AS \n RowNumber FROM USUARIOS)\n Derived WHERE RowNumber BETWEEN '{$offset}' AND '{$limit}' ";
//echo $sql;
if (isset($_GET['q']) && $_GET['q'] != "") {
$sql .= "AND (NOMBRE LIKE '%" . $_GET['q'] . "%') ";
}
$result = database::executeQuery($sql);
$sqlcount = "SELECT PK1\n FROM USUARIOS ";
$total = database::getNumRows($sqlcount);
$this->totalnum = $total;
$this->usuarios = database::getRows($sql);
/*
while ($row = mssql_fetch_array($result, MSSQL_ASSOC)) {
$this->usuarios[] = $row;
}
*/
//CALCULAMOS EL TOTAL DE PAGINAS
$this->totalPag = ceil($total / $tamaño);
}
public function __construct($arr, $lang)
{
// make a new connection to the database
$database = new database($arr);
$result = $database->executeQuery("SELECT id, menuitem FROM menuitems WHERE languageid = " . $lang . " ORDER BY sortorder", 1);
if ($result != null) {
for ($i = 0; $i < count($result); $i++) {
array_push($this->menuitems, $result[$i]['menuitem']);
array_push($this->menuids, $result[$i]['id']);
}
$this->completeMenu[0] = $this->menuids;
$this->completeMenu[1] = $this->menuitems;
} else {
// make a new connection
$this->completeMenu = null;
$this->menuitems = null;
$this->menuids = null;
return null;
//echo "There is a problem with the connection with the database, try again later.<br />";
}
$database->closeConnection();
}
function EliminarObjetivos()
{
$idplao = $this->idPlanOpe;
$sql = "SELECT PK1 FROM PL_POPERATIVOS_OBJETIVOST WHERE PK_POPERATIVO = '{$idplao}' ";
$result = database::executeQuery($sql);
while ($row = mssql_fetch_array($result, MSSQL_ASSOC)) {
$id = $row['PK1'];
$sql = "DELETE FROM PL_POPERATIVOS_MEDIOS WHERE PK_OTACTICO = '{$id}' ";
database::executeQuery($sql);
$sql = "DELETE FROM PL_POPERATIVOS_EVIDENCIAS WHERE PK_OTACTICO = '{$id}' ";
database::executeQuery($sql);
}
$sql = "DELETE FROM PL_POPERATIVOS_OBJETIVOST WHERE PK_POPERATIVO = '{$idplao}' ";
database::executeQuery($sql);
}
&a=es">
<input type="text" name="editedarticletitle" id="menuitemMod" value="<?php
echo $menuitems[0]['title'];
?>
" />
<textarea name="txtDefaultHtmlArea" id="txtDefaultHtmlArea" rows="30" cols="150">
<?php
echo $menuitems[0]['article'];
?>
</textarea>
<p>
Add 1 or more photoalbums to this article
</p>
<?php
$database = new database($arr);
$photoalbums = $database->executeQuery("SELECT id, name FROM photoalbums", 1);
if ($photoalbums) {
for ($i = 0; $i < count($photoalbums); ++$i) {
$selected = $database->executeQuery("SELECT COUNT(*) AS count FROM photoalbumsforarticle WHERE photoalbumid = " . $photoalbums[$i]['id'] . " AND articleid = " . $_GET['s'], 1);
?>
<input type="checkbox" name="<?php
echo CleanString($photoalbums[$i]['name']);
?>
" id="<?php
echo CleanString($photoalbums[$i]['name']);
?>
" <?php
if ($selected[0]['count'] == 1) {
echo "checked=\"checked\"";
}
?>
/**
* Update log table
*/
function updateLogTable($command, $details = NULL, $severity = 0)
{
# for db upgrade!
if (strpos($_SERVER['SCRIPT_URI'], "databaseUpgrade.php") > 0) {
global $db;
$database = new database($db['host'], $db['user'], $db['pass'], $db['name']);
} else {
global $database;
# check if broken because of cron
if (isset($database->error)) {
global $db;
$database = new database($db['host'], $db['user'], $db['pass'], $db['name'], NULL, false);
}
}
/* set variable */
$date = date("Y-m-d H:i:s");
$user = getActiveUserDetails();
$user = $user['username'];
/* set query */
$query = 'insert into logs ' . "\n";
$query .= '(`severity`, `date`,`username`,`ipaddr`,`command`,`details`)' . "\n";
$query .= 'values' . "\n";
$query .= '("' . $severity . '", "' . $date . '", "' . $user . '", "' . $_SERVER['REMOTE_ADDR'] . '", "' . $command . '", "' . $details . '");';
/* execute */
try {
$database->executeQuery($query);
} catch (Exception $e) {
$error = $e->getMessage();
die('<div class="alert alert-danger">' . _('Error') . ': ' . $error . '</div>');
}
return true;
}
/**
* edit favourite
*/
function editFavourite($post)
{
global $db;
# get variables from config file
$database = new database($db['host'], $db['user'], $db['pass'], $db['name']);
# get user details and favourites
$user = getActiveUserDetails();
# empty
$old = explode(";", $user['favourite_subnets']);
# set query
if ($post['action'] == "remove") {
$new = implode(";", array_diff($old, array($post['subnetId'])));
$query = "update `users` set `favourite_subnets` = '{$new}' where `id` = '{$user['id']}' limit 1;";
} elseif ($post['action'] == "add") {
if (!is_array($old)) {
$old = array();
}
$new = implode(";", array_merge(array($post['subnetId']), $old));
$query = "update `users` set `favourite_subnets` = '{$new}' where `id` = '{$user['id']}' limit 1;";
} else {
return false;
}
# execute
try {
$database->executeQuery($query);
} catch (Exception $e) {
$error = $e->getMessage();
print "<div class='alert alert-danger'>" . _('Error') . ": {$error}</div>";
return false;
}
return true;
}
/**
* purge records
*/
function purge_blocked_entries()
{
global $db;
$database = new database($db['host'], $db['user'], $db['pass'], $db['name']);
# set date
$now = date("Y-m-d H:i:s", time() - 5 * 60);
# query
$query = "delete from `loginAttempts` where `datetime` < '{$now}'; ";
# execute
try {
$database->executeQuery($query);
} catch (Exception $e) {
}
# return
return true;
}
public static function insertRecords($table, $data)
{
// Configuración de variables para campo y valor
$fields = "";
$values = "";
// Rellena las variables con los campos y sus valores
foreach ($data as $f => $v) {
$v = mb_convert_encoding($v, "ISO-8859-1", "UTF-8");
$fields .= "{$f},";
//$values .= ( is_numeric( $v ) && ( intval( $v ) == $v ) ) ? $v."," : "'$v',";
$values .= "'{$v}',";
}
// Quitamos la coma del final
$fields = substr($fields, 0, -1);
// Quitamos la coma del final
$values = substr($values, 0, -1);
$insert = "INSERT INTO {$table} ({$fields}) VALUES({$values})";
//echo $insert;
database::executeQuery($insert);
return true;
}
function GuardarObjetivos($idlineae, $i)
{
$fecha = date("Y-m-d H:i:s");
$usuario = $_SESSION['session']['user'];
$objetivosestrategicos = explode("|", $this->objetivos[$i]);
$sql = "SELECT PK1 FROM PL_PESTRATEGICOS_OBJETIVOSE WHERE PK_LESTRATEGICA = '{$idlineae}'";
$numobjetivosbase = database::getNumRows($sql);
$numobjetivos = sizeof($objetivosestrategicos) - 1;
if ($numobjetivosbase > $numobjetivos) {
for ($i = $numobjetivos; $i <= $numobjetivosbase; $i++) {
$sql = "DELETE FROM PL_PESTRATEGICOS_OBJETIVOSE WHERE PK_LESTRATEGICA = '{$idlineae}' AND ORDEN='{$i}'";
database::executeQuery($sql);
}
}
for ($i = 0; $i < sizeof($objetivosestrategicos) - 1; $i++) {
$objetivo = $objetivosestrategicos[$i];
$sql = "SELECT * FROM PL_PESTRATEGICOS_OBJETIVOSE WHERE PK_LESTRATEGICA = '{$idlineae}' AND ORDEN = '{$i}'";
$row = database::getRow($sql);
if ($row) {
$this->campos = array('OBJETIVO' => $objetivo, 'FECHA_M' => date("Y-m-d H:i:s"), 'PK_USUARIO' => $_SESSION['session']['user']);
$condition = "PK_LESTRATEGICA = '{$idlineae}' AND ORDEN = '{$i}'";
database::updateRecords("PL_PESTRATEGICOS_OBJETIVOSE", $this->campos, $condition);
} else {
$idobjetivo = strtoupper(substr(uniqid('OE'), 0, 15));
$this->campos = array('PK1' => $idobjetivo, 'OBJETIVO' => $objetivo, 'ORDEN' => $i, 'PK_LESTRATEGICA' => $idlineae, 'FECHA_R' => date("Y-m-d H:i:s"), 'PK_USUARIO' => $_SESSION['session']['user']);
$result = database::insertRecords("PL_PESTRATEGICOS_OBJETIVOSE", $this->campos);
}
}
}
/**
* install databases
*/
function installDatabase($root)
{
global $db;
# get variables from config file
$databaseRoot = new database($db['host'], $root['user'], $root['pass']);
/* Check connection */
if ($databaseRoot->connect_error) {
die('<div class="alert alert-error">Connect Error (' . $databaseRoot->connect_errno . '): ' . $databaseRoot->connect_error) . "</div>";
}
/* first create database */
$query = "create database " . $db['name'] . ";";
/* execute */
try {
$databaseRoot->executeQuery($query);
} catch (Exception $e) {
$error = $e->getMessage();
die('<div class="alert alert-error">' . $error . '</div>');
}
/* select database */
$databaseRoot->selectDatabase($db['name']);
/* set permissions! */
$query = 'grant ALL on ' . $db['name'] . '.* to ' . $db['user'] . '@localhost identified by "' . $db['pass'] . '";';
/* execute */
try {
$databaseRoot->executeMultipleQuerries($query);
} catch (Exception $e) {
$error = $e->getMessage();
die('<div class="alert alert-error">Cannot set permissions for user ' . $db['user'] . ': ' . $error . '</div>');
}
/* try importing SCHEMA file */
$query = file_get_contents("../../db/SCHEMA.sql");
/* execute */
try {
$databaseRoot->executeMultipleQuerries($query);
} catch (Exception $e) {
$error = $e->getMessage();
die('<div class="alert alert-error">Cannot install sql SCHEMA file: ' . $error . '</div>');
}
/* return true, if some errors occured script already died! */
sleep(1);
updateLogTable('Database installed successfully!', "version " . VERSION . " installed", 1);
return true;
}
function EliminarAsignacionCategoria($id)
{
$sql = "DELETE FROM PROYECTO_ASIGNACION_CATEGORIA WHERE PK_CATEGORIA = '{$id}' ";
$result = database::executeQuery($sql);
if ($result) {
return TRUE;
} else {
return FALSE;
}
}
function getComentariosGenerales($idplan)
{
$this->comentariosg = array();
$sql = "SELECT * FROM PL_POPERATIVOS_COMENTARIOS WHERE PK_POPERATIVO = '{$idplan}' ORDER BY FECHA_R DESC";
$result = database::executeQuery($sql);
while ($row = mssql_fetch_array($result, MSSQL_ASSOC)) {
$this->comentariosg[] = $row;
}
}
