function printoutPreview () {
echo html_header($this->config);
echo $this->toStringPreview();
echo html_footer();
}
function view_result($status = '')
{
global $somethingstaged, $enable_stats;
if ($status == '') {
$status = get_status();
}
debug($status);
if ($status['disable_commit'] !== true) {
$something_to_commit = $somethingstaged;
}
echo html_form_end($something_to_commit, $status['hash']);
echo html_footer();
}
function printoutPreview ($args) {
if ($this->config->getValue("Main", "wholesite"))
echo html_header($this->config);
require_once($GLOBALS["RELATIVE_PATH_EXTERN"]
. "/modules/views/ExternSemLectureTree.class.php");
$tree = new ExternSemLectureTree($this->config, $args["start_item_id"]);
$tree->showSemTree();
if ($this->config->getValue("Main", "wholesite"))
echo html_footer();
}
function cookie_check()
{
global $cfg;
if (!isset($_SESSION['cookie_check'])) {
if (isset($_GET['cookie_check'])) {
html_header("Cookie Support Required");
echo "<p>Cookies are not supported by your browser. " . "Please enable cookies and <a href=\"" . selflink() . "\">try again</a>.</p>";
html_footer();
exit;
} else {
$_SESSION['cookie_check'] = 1;
redirect(selflink('cookie_check=1'));
}
}
}
function view($name = null, $set = array())
{
#- page title & view class set
global $title, $tbl;
$set->title = $title;
#- view file not exist error
if (empty($name)) {
return false;
}
#- View file
$view_file = VIEW_PATH . $name . '.phtml';
if (file_exists($view_file)) {
require_once $view_file;
#- html footer
echo "<br><br><br><br><br>\n";
html_footer();
return true;
}
error($view_file, 'ERS_Dev_Msg: File not found.');
return false;
}
function page_html_footer()
{
html_footer();
return 1;
}
function manage_display($task)
{
global $cfg, $db, $cache;
if ($task == '') {
$task = 'status';
}
// Verify that the user has management perms for the selected contest
$res =& db_query('contest_by_id', $_GET['id']);
$res->fetchInto($row);
$res->free();
if ($_SESSION['user_id'] != $row['manager'] && !auth_user_in_group('Administrators')) {
error("Access denied. You are not the contest-manager for this contest.");
}
switch ($task) {
case 'status':
$table = new HTML_Table();
// Re-use $row from above
if ($row['show_future'] == 1) {
$status = 'Hidden (not activated yet)';
} else {
if ($row['begin_future'] == 1) {
$status = 'Not started';
} else {
if ($row['end_future'] == 1) {
$status = 'Running';
} else {
$status = 'Ended';
}
}
}
$table->addRow(array('Contest status: ', $status), null, 'TH');
$table->addRow(array('Name: ', $row['name']));
$table->addRow(array('Description: ', $row['description']));
$table->addRow(array('Activation time: ', $row['show_time']));
$table->addRow(array('Begin time: ', $row['begin_time']));
$table->addRow(array('End time: ', $row['end_time']));
if ($row['team_size'] != 1) {
$table->addRow(array('Max size of team: ', $row['team_size']));
$prefix = 'Teams';
} else {
$table->addRow(array('Individual event: ', 'Yes'));
$prefix = 'Participants';
}
// No. of registered teams
$res =& db_query('count_teams_by_contest_id', $_GET['id']);
$res->fetchInto($row);
$res->free();
$table->addRow(array($prefix . ' registered: ', $row['count']));
// No. of teams logged in
$res =& db_query('count_last_teams_by_contest_id', $_GET['id']);
$res->fetchInto($row);
$res->free();
$table->addRow(array($prefix . ' seen in last 30 minutes: ', $row['count']));
$table->altRowAttributes(1, null, array("class" => "altrow"));
echo '<div class="overflow">' . $table->toHtml() . '</div>';
break;
case 'problems':
// display problem info as table
$table = new HTML_Table();
$res =& db_query('problems_by_contest_id', $_GET['id']);
if (!$res->fetchInto($row)) {
?>
<p>No problems added yet.</p>
<?php
} else {
// extra attributes
$row['content'] = null;
$row['actions'] = null;
$table->addRow(array_keys($row), null, 'TH');
while ($row) {
$row['content'] = "<a href=\"index.php?view=manage&task=show_problem&id={$_GET['id']}&prob_id={$row['prob_id']}\">show</a>";
$row['actions'] = "<a href=\"index.php?view=manage&task=edit_problem&id={$_GET['id']}&prob_id={$row['prob_id']}\">edit</a>, " . "<a href=\"index.php?view=manage&task=del_problem&id={$_GET['id']}&prob_id={$row['prob_id']}\">delete</a>";
$table->addRow(array_values($row));
$res->fetchInto($row);
}
$res->free();
// display tables
$table->altRowAttributes(1, null, array("class" => "altrow"));
echo '<div class="overflow">' . $table->toHtml() . '</div>';
}
echo "<hr />";
// form for adding a problem
$form = new HTML_QuickForm('problemAddForm', 'post', selflink());
$form->addElement('header', null, 'Add a problem');
$form->addElement('text', 'prob_id', 'Name (one word ID): ');
$form->addElement('text', 'summary', 'Summary: ');
$form->addElement('text', 'weight', 'Points weightage: ');
$form->addElement('text', 'time_limit', 'Time limit: ');
$form->addElement('text', 'mem_limit', 'Memory limit: ');
$elem =& $form->addElement('textarea', 'content', 'Problem content (XML): ');
$elem->setRows(10);
$elem->setCols(80);
$form->addElement('submit', null, 'Submit');
$form->applyFilter('prob_id', 'trim');
$form->applyFilter('summary', 'trim');
$form->applyFilter('weight', 'trim');
$form->applyFilter('time_limit', 'trim');
$form->applyFilter('mem_limit', 'trim');
$form->addRule('prob_id', 'Problem ID is required', 'required', null, 'client');
$form->addRule('summary', 'Problem summary is required', 'required', null, 'client');
$form->addRule('weight', 'Points weightage is required', 'required', null, 'client');
$form->addRule('time_limit', 'Time limit is required', 'required', null, 'client');
$form->addRule('mem_limit', 'Memory limit is required', 'required', null, 'client');
$form->addRule('content', 'Problem content in XML is required', 'required', null, 'client');
if ($form->validate()) {
$data = $form->getSubmitValues();
$errs = problem_check($data['content']);
if ($errs == null) {
$data['contest_id'] = $_GET['id'];
$res =& $db->autoExecute('problems', $data, DB_AUTOQUERY_INSERT);
if (PEAR::isError($res)) {
error($res->toString());
}
$cache->remove(problem_cache_id($_GET['id'], $data['prob_id']) . '.htm');
$cache->remove(problem_cache_id($_GET['id'], $data['prob_id']) . '.prob');
redirect('index.php?view=manage&task=problems&id=' . $_GET['id']);
} else {
?>
<p><b>Error:</b> The problem could not be added due to the following errors encountered while
parsing the problem XML file. Please fix them and try submitting again.</p>
<?php
echo "<ol class=\"errors\">\n";
foreach ($errs as $line) {
echo "<li>{$line}</li>\n";
}
echo "</ol>\n<hr />\n";
}
}
$form->display();
break;
case 'del_problem':
db_query('del_problem_by_id', array($_GET['prob_id'], $_GET['id']));
redirect('index.php?view=manage&task=problems&id=' . $_GET['id']);
break;
case 'edit_problem':
$res =& db_query('problem_by_id', array($_GET['prob_id'], $_GET['id']));
$res->fetchInto($row);
$res->free();
// Get XML content too
$res =& db_query('problem_content_by_id', array($_GET['prob_id'], $_GET['id']));
$res->fetchInto($row2);
$res->free();
$row['content'] =& $row2['content'];
// form for editing a problem
$form = new HTML_QuickForm('problemAddForm', 'post', selflink());
$form->addElement('header', null, 'Edit a problem');
$form->addElement('text', 'prob_id', 'Name (one word ID): ');
$form->addElement('text', 'summary', 'Summary: ');
$form->addElement('text', 'weight', 'Points weightage: ');
$form->addElement('text', 'time_limit', 'Time limit: ');
$form->addElement('text', 'mem_limit', 'Memory limit: ');
$elem =& $form->addElement('textarea', 'content', 'Problem content (XML): ');
$elem->setRows(10);
$elem->setCols(80);
$form->addElement('submit', null, 'Submit');
$form->applyFilter('prob_id', 'trim');
$form->applyFilter('summary', 'trim');
$form->applyFilter('weight', 'trim');
$form->applyFilter('time_limit', 'trim');
$form->applyFilter('mem_limit', 'trim');
$form->addRule('prob_id', 'Problem ID is required', 'required', null, 'client');
$form->addRule('summary', 'Problem summary is required', 'required', null, 'client');
$form->addRule('weight', 'Points weightage is required', 'required', null, 'client');
$form->addRule('time_limit', 'Time limit is required', 'required', null, 'client');
$form->addRule('mem_limit', 'Memory limit is required', 'required', null, 'client');
$form->addRule('content', 'Problem content in XML is required', 'required', null, 'client');
$form->setDefaults($row);
if ($form->validate()) {
$data = $form->getSubmitValues();
$errs = problem_check($data['content']);
if ($errs == null) {
//$data['contest_id'] = $_GET['id'];
$data['version'] = $row['version'] + 1;
// increment version
$res =& $db->autoExecute('problems', $data, DB_AUTOQUERY_UPDATE, 'contest_id=' . $_GET['id'] . " AND prob_id='" . $data['prob_id'] . "'");
if (PEAR::isError($res)) {
error($res->toString());
}
$cache->remove(problem_cache_id($_GET['id'], $data['prob_id']) . '.htm');
$cache->remove(problem_cache_id($_GET['id'], $data['prob_id']) . '.prob');
redirect('index.php?view=manage&task=problems&id=' . $_GET['id']);
} else {
?>
<p><b>Error:</b> The changes could not be saved due to the following errors encountered while
parsing the problem XML file. Please fix them and try submitting again.</p>
<?php
echo "<ol class=\"errors\">\n";
foreach ($errs as $line) {
echo "<li>{$line}</li>\n";
}
echo "</ol>\n<hr />\n";
}
}
$form->display();
break;
case 'show_problem':
$res =& db_query('problem_by_id', array($_GET['prob_id'], $_GET['id']));
$res->fetchInto($problem);
$res->free();
problem_display($problem);
break;
case 'settings':
// Re-using $row from above
// form for editing the contest
$form = new HTML_QuickForm('contestEditForm', 'post', selflink());
$form->addElement('header', null, "Edit contest {$row['name']} (id: {$row['contest_id']})");
$form->addElement('text', 'name', 'Name: ');
$form->addElement('text', 'description', 'Description: ');
$elem =& $form->addElement('text', 'team_size', 'Size of team: ');
$elem->setValue('1');
$date = getdate();
$form->addElement('date', 'show_time', 'Activation time: ', array('format' => 'dMY H:i', 'minYear' => $date['year'], 'maxYear' => $date['year'] + 5));
$form->addElement('date', 'begin_time', 'Begin time: ', array('format' => 'dMY H:i', 'minYear' => $date['year'], 'maxYear' => $date['year'] + 5));
$form->addElement('date', 'end_time', 'End time: ', array('format' => 'dMY H:i', 'minYear' => $date['year'], 'maxYear' => $date['year'] + 5));
$form->addElement('text', 'rules', 'Rules URL: ');
$form->addElement('submit', null, 'Submit');
// convert date format and store default values
$row['show_time'] = sql2form_datetime($row['show_time']);
$row['begin_time'] = sql2form_datetime($row['begin_time']);
$row['end_time'] = sql2form_datetime($row['end_time']);
$form->setDefaults($row);
$form->applyFilter('name', 'trim');
$form->applyFilter('description', 'trim');
$form->applyFilter('team_size', 'trim');
$form->addRule('name', 'Contest name is required.', 'required', null, 'client');
$form->addRule('team_size', 'Team size is required.', 'required', null, 'client');
// validate or display form
if ($form->validate()) {
$data = $form->getSubmitValues();
$data['show_time'] = form2sql_datetime($data['show_time']);
$data['begin_time'] = form2sql_datetime($data['begin_time']);
$data['end_time'] = form2sql_datetime($data['end_time']);
$db->autoExecute('contests', $data, DB_AUTOQUERY_UPDATE, 'contest_id=' . $_GET['id']);
if (PEAR::isError($res)) {
error($db->toString());
}
redirect('index.php?view=manage&id=' . $_GET['id']);
} else {
$form->display();
}
break;
case 'submissions':
// Re-use $row from above
if ($row['end_future'] != '1') {
// Contest has ended, show system test button
if ($row['tested'] != 1) {
?>
<p>Contest has ended.
<a class="button" href="index.php?view=manage&&task=test&updateratings=false&id=<?php
echo $_GET['id'];
?>
">Test and grade all submissions.</a>
<a class="button" href="index.php?view=manage&task=test&updateratings=true&id=<?php
echo $_GET['id'];
?>
">Update Ratings</a>
</p>
<?php
} else {
?>
<p>Contest has ended and system tests are over.
<a class="button" href="index.php?view=manage&task=test&id=<?php
echo $_GET['id'];
?>
">Re-run system tests.</a>
</p>
<?php
}
}
// Show table of all solutions in the contest
$table = new HTML_Table();
$res =& db_query('solutions_by_contest_id', $_GET['id']);
if (!$res->fetchInto($row)) {
// If no solutions in yet
?>
<p>Sorry, no solutions have been submitted yet.</p>
<?php
} else {
$table->addRow(array_keys($row), null, 'TH');
if ($row['score'] == '') {
$row['score'] = 'n/a';
}
if ($row['passed'] == '') {
$row['passed'] = 'n/a';
}
$table->addRow(array_values($row));
while ($res->fetchInto($row)) {
if ($row['score'] == '') {
$row['score'] = 'n/a';
}
if ($row['passed'] == '') {
$row['passed'] = 'n/a';
}
$table->addRow(array_values($row));
}
$table->altRowAttributes(1, null, array("class" => "altrow"));
echo '<div class="overflow">' . $table->toHtml() . '</div>';
}
break;
case 'test':
require_once 'tester.php';
ob_end_clean();
html_reset();
html_header(null, $cfg["dir"]["themes"] . '/' . $_SESSION["theme"] . '.css', $cfg["dir"]["themes"] . '/' . $_SESSION["theme"] . '-ie.css', null, "submit_frame");
$contest_id = $_GET['id'];
$update_ratings = $_GET['updateratings'];
session_write_close();
test_contest($update_ratings, $contest_id);
echo ' <a class="white" href="index.php?view=statistics&task=contest&id=' . $_GET['id'] . '">See the results.</a>';
html_footer();
exit;
}
}
source: function(query, callback) {
$.getJSON('<?php
echo get_uri('/rpc');
?>
', {type: "suggest", arg: query}, function(data) {
callback(data);
});
},
matcher: function(item) { return true; },
sorter: function(items) { return items; },
menu: '<ul class="pkgsearch-typeahead"></ul>',
items: 20,
updater: function(item) {
document.location = '/packages/' + item;
return item;
}
}).attr('autocomplete', 'off');
$('#pkgsearch-field').keydown(function(e) {
if (e.keyCode == 13) {
var selectedItem = $('ul.pkgsearch-typeahead li.active');
if (selectedItem.length == 0) {
$('#pkgsearch-form').submit();
}
}
});
});
</script>
<?php
html_footer(AURWEB_VERSION);
<?php
require_once "common-url.php";
require_once "common-msg.php";
html_header("URL: Enlace a formulario descargable");
?>
Ingrese la URL del enlace al formulario descargable.
<br/><br/>
<?php
echo formularioURL("URL: Enlace a formulario descargable", "La URL del formulario descargable ha sido actualizada.", "formulario_descargable", "(Ej. http://www.probidadytransparencia.gob.cl/formulario/plantilla_2012/plantilla-formulario-2012.pdf )");
?>
<?php
echo html_footer();
function new_message($group, $group_filter, $start, $subject, $sender, $body)
{
global $PHP_SELF, $NNTPSPEC, $options;
$subject = htmlspecialchars($subject, ENT_QUOTES);
$sender = htmlspecialchars($sender, ENT_QUOTES);
$body = htmlspecialchars($body, ENT_QUOTES);
nntp_header("Post Message to {$group}", array("All Forums" => "forums.php?g{$options}", "Back to {$group}" => "forums.php?g{$group}+s{$start}{$options}"));
print "<h2>Post Message to {$group}</h2>";
print "<form action='{$PHP_SELF}?s{$start}+g{$group}+p0{$options}' method='POST'>\n";
print "<center><table width='100%' border='0' cellpadding='5' cellspacing='0'>\n";
print "<tr><th align='right' valign='top'>Subject:</th>" . "<td><input type='text' name='SUBJECT' value='{$subject}' size='40'/></td></tr>\n";
print "<tr><th align='right' valign='top'>From:</th>" . "<td><input type='text' name='FROM' value='{$sender}' size='40'/></td></tr>\n";
print "<tr><th align='right' valign='top'>Body:</th>" . "<td><textarea name='BODY' cols='72' rows='24'>{$body}</textarea></td></tr>\n";
print "<tr><th></th>" . "<td><input type='submit' value='Post Message'/></td></tr>\n";
print "</table></center>\n";
print "</form>\n";
html_footer();
}
function makeHtaccess()
{
global $scriptPath, $baseURL;
if (is_file($scriptPath . ".htaccess")) {
return;
}
$htaccess = <<<EOF
Options +FollowSymLinks
Options +Indexes
RewriteEngine On
RewriteRule ^bbclone/.*\$ - [PT]
RewriteRule ^([^_]+)_player/(.*)\$ index.php?command=\$1_player&dir=\$2 [NC,L]
RewriteRule ^rss/(.*)\$ index.php?command=rss&dir=\$1 [NC,L]
RewriteRule ^slide/(.*)\$ index.php?command=slide&dir=\$1 [NC,L]
RewriteRule ^thumbs/(.*)\$ index.php?command=thumbs&dir=\$1 [NC,L]
RewriteRule ^captions/(.*)\$ index.php?command=captions&dir=\$1 [NC,L]
RewriteRule ^(.*)/\$ index.php?command=gallery&dir=\$1
RewriteRule ^\$ index.php?command=gallery&dir=
EOF;
if (!is_writable($scriptPath)) {
$who = exec('whoami');
html_header("Permissions Error");
echo "{$scriptPath} is not writable by {$who}. Can not create required .htaccess file.";
html_footer();
exit;
}
@file_put_contents($scriptPath . ".htaccess", $htaccess);
header("Location: {$baseURL}");
exit("Unknown Error. Please press refresh.");
}
function printoutPreview () {
echo html_header($this->config);
if (!$language = $this->config->getValue("Main", "language"))
$language = "de_DE";
init_i18n($language);
echo $this->toStringPreview();
echo html_footer();
}
* ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
* WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
* ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
* OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
*/
// XXX This will clear the weather data cache. Need to add some sort of admin
// interface.
// apc_clear_cache("user");
print html_header();
$GLOBALS["weather"] = new geoipweather();
$weather->init();
print html_form();
print html_conditions();
print html_forecast();
print html_ad_weathercom();
print html_footer();
function html_ad_weathercom()
{
$buf .= '<div style="clear:both">';
if (!$GLOBALS["weather"]->conditions) {
return $buf;
}
$buf .= '<p><br><h3>Weather data provided by:</h3>' . '<a href="http://www.weather.com/?par=xoap&site=wx_logo' . '&cm_ven=bd_oap&cm_cat=' . $GLOBALS["config"]["partnerid"] . '&cm_pla=HomePage&cm_ite=Logo">' . '<img src="/img/logos/TWClogo_61px.png" alt="weather.com">' . '</a><br><br>';
foreach ($GLOBALS["weather"]->conditions->lnks->link as $link) {
$buf .= '<a href="' . str_replace("&", "&", $link->l) . '">' . $link->t . "</a> ";
}
$buf .= "<br>\n";
return $buf;
}
function html_conditions()
{
$row = mysql_fetch_assoc($result);
# don't need to check if they have permissions, this is a
# normal user editing themselves.
#
print __("Use this form to update your account.");
print "<br />";
print __("Leave the password fields blank to keep your same password.");
display_account_form($atype, "UpdateAccount", $row["Username"], $row["AccountType"], $row["Suspended"], $row["Email"], "", "", $row["RealName"], $row["LangPreference"], $row["IRCNick"], $row["NewPkgNotify"], $row["ID"]);
}
}
}
} else {
# visitor is not logged in
#
if ($_REQUEST["Action"] == "AccountInfo") {
print __("You must log in to view user information.");
} elseif ($_REQUEST["Action"] == "NewAccount") {
# process the form input for creating a new account
#
process_account_form("", "new", "NewAccount", $_REQUEST["U"], 1, 0, $_REQUEST["E"], $_REQUEST["P"], $_REQUEST["C"], $_REQUEST["R"], $_REQUEST["L"], $_REQUEST["I"], $_REQUEST["N"]);
} else {
# display the account request form
#
print __("Use this form to create an account.");
display_account_form("", "NewAccount");
}
}
echo " </div>";
echo "</div>";
html_footer(AUR_VERSION);
/**
* Step 2 of upgrade - shows completion.
*/
function upgrade_complete()
{
global $lang;
echo html_header();
// Step title
echo "<h2>" . $lang['upgrade_step2'] . "</h2>\n";
// Step content
echo "<div class='install_content'>" . $lang['upgrade_step2_details'] . "</div>\n";
// Next button
echo "<div class='next'><a href='" . BASEURL . "'>" . $lang['upgrade_home'] . "</a></div>\n";
echo html_footer();
}
$result = db_query("SELECT * FROM article WHERE is_published = 1 "
."ORDER BY modify_date DESC LIMIT 3");
$count = db_count($result);
while ($row = db_next($result))
{
$id = $row['id'];
$title = htmlspecialchars($row['title']);
$abstract = htmlspecialchars($row['abstract']);
$date = date("H:i M d, Y", $row['modify_date']);
$count = count_comments("articles.php_L$id");
if ($count == 1)
$count .= " comment";
else
$count .= " comments";
print("<p><a href='articles.php?L$id'>$title</a> - $abstract<br>\n"
."<span class='dateinfo'>$date, $count</span></p>\n");
}
db_free($result);
?>
</td></tr>
</table>
<? html_footer(); ?>
/**
* Step 5 of installation - shows completion.
*/
function installation_complete()
{
global $lang;
echo html_header();
// Step title
echo "<h2>" . $lang['install_step5'] . "</h2>\n";
// Step content
echo "<div class='install_content'>" . $lang['install_step5_installation_complete'] . "</div>\n";
echo "<div class='install_content'>" . $lang['install_step5_installation_delete'] . "</div>\n";
echo "<div class='install_content'>" . $lang['install_step5_installation_go_play'] . "</div>\n";
// Previous/Next buttons
echo "<div class='back'><a href='install.php?step=4'>" . $lang['install_back'] . "</a></div>\n";
echo "<div class='next'><a href='" . BASEURL . "'>" . $lang['install_home'] . "</a></div>\n";
echo html_footer();
}
function step10()
{
debug_msg("FUNCTION: " . __FUNCTION__, 3);
global $dbcfg_type, $dbcfg_host, $dbcfg_name, $dbcfg_user, $dbcfg_password, $dbcfg_prefix, $dbcfg_port, $dbcfg_persistent, $dbcfg_path, $action;
$badsecurity = 0;
// ReSet bad securoty flag
$continue = TRUE;
$final_path = calc_db_path('');
if (!defined('S9YCONF_DBCFG_PATH')) {
define('S9YCONF_DBCFG_PATH', $final_path);
}
// include_once $final_path.'dbconfig.php';
include_once '../config.php';
steppage(10);
echo '<h1>Site Security</h1>';
// Check site security and suggest changes
// Check DBConfig still exists
if (file_exists($final_path . 'dbconfig.php')) {
// Check if the database configuration file exists
// Check DBConfig readable
if (!is_readable($final_path . 'dbconfig.php')) {
$badsecurity = $badsecurity | 0x1;
// Flag DBConfig NOT Readable
$continue = FALSE;
}
/*
dbconfig.php file created as
rw-,r--,r-- wwwrun:www
on a new installation with no config file
so standard user unable to chown/chmod
// Check DBConfig writeable
if (is_writable($final_path.'dbconfig.php')) {
$badsecurity = $badsecurity | 0x02; // Flag DBConfig Writeable
$continue = FALSE;
}
*/
} else {
// File does NOT exist!
$badsecurity = $badsecurity | 0x4;
// Flag DBConfig does NOT exist!
$continue = FALSE;
}
// Check Main Config still exists
if (file_exists('../config.php')) {
// Check if the main configuration file exists
// Check Main Config readable
if (!is_readable('../config.php')) {
$badsecurity = $badsecurity | 0x8;
// Flag main Config NOT Readable
$continue = FALSE;
}
/*
config.php file created as
rw-,r--,r-- wwwrun:www
on a new installation with no config file
so standard user unable to chown/chmod
// Check Main Config writeable
if (is_writable('../config.php')) {
$badsecurity = $badsecurity | 0x10; // Flag main Config Writeable
$continue = FALSE;
}
*/
} else {
// File does NOT exist!
$badsecurity = $badsecurity | 0x20;
// Flag main Config does NOT exist!
$continue = FALSE;
}
// DBconfig directory
if (is_dir($final_path)) {
// Does path exist?
if (!is_readable($final_path)) {
// NOT Readable
$badsecurity = $badsecurity | 0x40;
// Flag DBConfig path NOT Readable
$continue = FALSE;
}
if (is_writable($final_path)) {
// Writable
$badsecurity = $badsecurity | 0x80;
// Flag DBConfig path writeable
$continue = FALSE;
}
} else {
// Directory Doesn't exist
$badsecurity = $badsecurity | 0x100;
// Flag DBConfig path does NOT exist!
$continue = FALSE;
}
if (!is_readable('../')) {
// NOT Readable
$badsecurity = $badsecurity | 0x200;
// Flag main Config path NOT Readable
$continue = FALSE;
}
if (is_writable('../')) {
// Writable
$badsecurity = $badsecurity | 0x400;
// Flag main Config path writeable
$continue = FALSE;
}
/*
Bitwise flags held in $badsecurity
| Bit | Value | Decimal | Hex |
Flag DBConfig NOT Readable ------------ 1| 2^0 | 1 0x01
Flag DBConfig Writeable -------------- 2| 2^1 | 2 0x02
Flag DBConfig does NOT exist! -------- 3| 2^2 | 4 0x04
Flag main Config NOT Readable -------- 4| 2^3 | 8 0x08
Flag main Config Writeable ----------- 5| 2^4 | 16 0x10
Flag main Config does NOT exist! ----- 6| 2^5 | 32 0x20
Flag DBConfig path NOT Readable ------ 7| 2^6 | 64 0x40
Flag DBConfig path writeable --------- 8| 2^7 | 128 0x80
Flag DBConfig path does NOT exist! --- 9| 2^8 | 256 0x100
Flag main Config path NOT Readable --- 10| 2^9 | 512 0x200
Flag main Config path writeable ------ 11| 2^10 | 1024 0x400
*/
echo '<p><form action="' . $_SERVER['PHP_SELF'] . '" method="post">';
if (!$continue) {
// Check bad security flag
if (($badsecurity & 0x8) != 0) {
// Main config NOT readable
echo '<div class="error">ERROR!</div>';
echo '<p>The main configuration file is not readable!</p>';
echo '<p>Please make it readable by the webserver.</p>';
echo 'You may be able to do this using:<br />';
echo '<pre>#: chmod 0444 ' . realpath('../') . '/config.php</pre>';
echo '<br />';
}
if (($badsecurity & 0x10) != 0) {
// Main config writeable
echo '<div class="warning">Warning</div>';
echo '<p>Your installation can be made more secure by making the main configuration file read only.</p>';
echo '<br />';
echo 'You may do this using:<br />';
echo '<pre>#: chmod 0444 ' . realpath('../') . '/config.php</pre>';
echo '<br />';
}
if (($badsecurity & 0x20) != 0) {
// Main config does NOT exist!
echo '<div class="error">ERROR!</div>';
echo '<p>The main configuration file doesn't exist!</p>';
echo '<br />';
echo 'Please restart the installation<br />';
echo '<br />';
}
if (($badsecurity & 0x1) != 0) {
// DBConfig NOT readable
echo '<div class="error">ERROR!</div>';
echo '<p>The database configuration file is not readable!</p>';
echo '<p>Please make it readable by the webserver.</p>';
echo 'You may be able to do this using:<br />';
echo '<pre>#: chmod 0444 ' . $final_path . 'dbconfig.php</pre>';
echo '<br />';
}
if (($badsecurity & 0x2) != 0) {
// DBConfig writeable
echo '<div class="warning">Warning</div>';
echo '<p>Your installation can be made more secure by making the database configuration file read only.</p>';
echo '<br />';
echo 'You may be able to do this using:<br />';
echo '<pre>#: chmod 0444 ' . $final_path . 'dbconfig.php</pre>';
echo '<br />';
}
if (($badsecurity & 0x4) != 0) {
// DBConfig does NOT exist!
echo '<div class="error">ERROR!</div>';
echo '<p>The database configuration file doesn't exist!</p>';
echo '<br />';
echo 'Please restart the installation<br />';
echo '<br />';
}
if (($badsecurity & 0x200) != 0) {
// main Config path NOT Readable
echo '<div class="error">ERROR!</div>';
echo '<p>The main configuration file is not readable, as the main ' . S9YCONF_PROGRAM_NAME . ' directory can not be read !</p>';
echo '<p>Please make it readable by the webserver.</p>';
echo 'You may be able to do this using:<br />';
echo '<pre>#: chmod 0555 ' . realpath('../') . '</pre>';
echo '<br />';
}
if (($badsecurity & 0x400) != 0) {
// main Config path writeable
echo '<div class="warning">Warning</div>';
echo '<p>The ' . S9YCONF_PROGRAM_NAME . ' directory is writeable !</p>';
echo '<p>Please make it readable but NOT writeable by the webserver.</p>';
echo 'You may be able to do this using:<br />';
echo '<pre>#: chmod 0555 ' . realpath('../') . '</pre>';
echo '<br />';
}
if (($badsecurity & 0x40) != 0) {
// DBConfig path NOT Readable
echo '<div class="error">ERROR!</div>';
echo '<p>The database configuration file is not readable, as the main ' . $final_path . ' directory can not be read !</p>';
echo '<p>Please make it readable by the webserver.</p>';
echo 'You may do this using:<br />';
echo '<pre>#: be able to chmod 0555 ' . $final_path . '</pre>';
echo '<br />';
}
if (($badsecurity & 0x80) != 0) {
// DBConfig path writeable
echo '<div class="warning">Warning</div>';
echo '<p>The database configuration directory is writeable !</p>';
echo '<p>Please make it readable but NOT writeable by the webserver.</p>';
echo 'You may do this using:<br />';
echo '<pre>#: be able to chmod 0555 ' . $final_path . '</pre>';
echo '<br />';
}
if (($badsecurity & 0x100) != 0) {
// DBConfig path does NOT exist!
echo '<div class="error">ERROR!</div>';
echo '<p>The ' . $final_path . ' directory doesn't exist !</p>';
echo '<br />';
echo 'Please restart the installation<br />';
echo '<br />';
}
echo '<button name="action" value="step10" type="submit">Re-Check</button>';
} else {
echo '<div class="ok">Excellent</div>';
echo '<p>File and directory permissions have been set at acceptable levels.</p>';
echo '<p>You should new delete this install directory to prevent your configuration or database tables being overwritten accidentally.</p>';
echo '<br />';
}
echo ' ';
echo '<button name="action" value="step8" type="submit">Back</button></p>';
if ($continue) {
echo ' ';
html_link('../index.php', $text = 'Start using S9Y_Conf', $status = 'Start using S9Y_Conf', $target = '');
}
if (isset($dbcfg_type)) {
echo '<input type="hidden" name="dbcfg_type" value="' . $dbcfg_type . '" />';
}
if (isset($dbcfg_host)) {
echo '<input type="hidden" name="dbcfg_host" value="' . $dbcfg_host . '" />';
}
if (isset($dbcfg_name)) {
echo '<input type="hidden" name="dbcfg_name" value="' . $dbcfg_name . '" />';
}
if (isset($dbcfg_user)) {
echo '<input type="hidden" name="dbcfg_user" value="' . $dbcfg_user . '" />';
}
if (isset($dbcfg_password)) {
echo '<input type="hidden" name="dbcfg_password" value="' . $dbcfg_password . '" />';
}
if (isset($dbcfg_prefix)) {
echo '<input type="hidden" name="dbcfg_prefix" value="' . $dbcfg_prefix . '" />';
}
if (isset($dbcfg_port)) {
echo '<input type="hidden" name="dbcfg_port" value="' . $dbcfg_port . '" />';
}
if (isset($dbcfg_persistent)) {
echo '<input type="hidden" name="dbcfg_persistent" value="' . $dbcfg_persistent . '" />';
}
if (isset($dbcfg_path)) {
echo '<input type="hidden" name="dbcfg_path" value="' . $dbcfg_path . '" />';
}
?>
</form></p>
<?php
html_footer();
}
$(document).ready(function () {
$('tbody tr').quicksearch({
stripeRowClass: ['odd', 'even'],
position: 'before',
attached: 'table',
labelText: 'Buscar en esta página: ',
delay: 50
});
});
</script>
<?php
$csv = arrayPagina($_SESSION['data']['horasextraordinarias'][$nombre_archivo], 0);
echo acentosHTML(ArrayToTable($csv, 7, -1));
?>
<br/>
<br/>
<?php
echo html_volver("javascript:history.back()");
html_footer("codigo" . trim(alfanum($_SESSION['sigla'])) . " remuneraciones " . date('Y-m-d'));
function html_page_bottom1a($p_file = null)
{
if (null === $p_file) {
$p_file = basename($_SERVER['PHP_SELF']);
}
html_bottom_banner();
html_footer($p_file);
html_body_end();
html_end();
}
$row_rsCheckPass = mysqli_fetch_assoc($rsCheckPass);
$totalRows_rsCheckPass = mysqli_num_rows($rsCheckPass);
}
// does posted password match current password
if ($currentpass != $row_rsCheckPass[PASS_FLD]) {
$error = "Your current password was entered incorrectly.";
}
// if there are no users, or more than one, then return an error
if ($totalRows_rsCheckPass != 1) {
$error = "Your current password was entered incorrectly.";
}
}
if (empty($error)) {
$loginmessage = change_password($_SESSION['user_id'], $newpass);
} else {
$loginmessage = $error;
}
}
// text variables
$pass_title = "Change Password Service";
$pass_intro = "\n\t\t\t<p>Please complete this form to change your password. Once your password has been changed successfully you will need to log in again.</p>\n\t\t\t<p><strong>NOTE: Your new password must be between 6 - 10 characters.</strong></p>";
$pass_form = "\n\t\t\t<form name=\"changepass\" method=\"post\" action=\"" . $_SERVER['PHP_SELF'] . "?" . $_SERVER['QUERY_STRING'] . "\">\n\t\t\t\t<p><label for=\"currentpass\">Current Password:</label><br/>\n\t\t\t\t\t<input name=\"currentpass\" type=\"password\" id=\"currentpass\" class=\"loginpass\"></p>\n\t\t\t\t<p><label for=\"newpass\">New Password:</label><br/>\n\t\t\t\t\t<input name=\"newpass\" id=\"newpass\" type=\"password\" class=\"loginpass\"></p>\n\t\t\t\t<p><label for=\"newpass2\">Re-enter New Password:</label><br/>\n\t\t\t\t\t<input name=\"newpass2\" type=\"password\" id=\"newpass2\" class=\"loginpass\"></p>\n\t\t\t\t<p><input type=\"submit\" class=\"button\" name=\"change\" value=\"Change\"></p>\n\t\t\t\t</form>\n\t\t\t";
break;
default:
echo "not allowed";
break;
}
// show html page framework
echo html_header($pass_title);
echo "<div id=\"page\">" . html_title() . "<div id=\"content\">\n\t\t\n\t\t<h1>" . $pass_title . "</h1>\n\t\t\n\t\t<p class=\"loginmessage\">" . $loginmessage . "</p>\n\n\t\t" . $pass_intro . $pass_form . "<p>If you experience any problems with this form please email " . AD_ADMIN_EMAIL . "</p>\n\n\t\t</div>\n\t</div>" . html_footer();
attached: 'table',
labelText: 'Buscar en esta página: ',
delay: 50
});
});
</script>
<?php
echo acentosHTML(ArrayToTable(ArrayProject($csv, array(1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)), 15, array(11), array('Si'), array('No')));
echo '<br />';
if (getNumPags($_SESSION['data']['contrata']) > 1) {
echo "<center>\n";
echo $pag == 1 ? "1" : "<a href='per_contrata.html'>1</a>";
for ($i = 2; $i <= getNumPags($_SESSION['data']['contrata']); $i++) {
echo $i == $pag ? " - {$i}" : " - <a href='per_contrata-{$i}.html'>{$i}</a>";
}
echo "</center><br/>\n";
}
?>
<div id="footnotes">
<?php
echo acentosHTML(nl2br($_SESSION['footnotes']['contrata']));
?>
</div>
<br />
<?php
echo html_volver("../contrata_historico.html");
html_footer("codigo" . trim(alfanum($_SESSION['sigla'])) . " personal_contrata " . date('Y-m-d'));
function start_update()
{
// The updater
html_header("Coppermine - Upgrade");
html_logo();
test_fs();
if ($errors != '') {
html_prereq_errors($errors);
} else {
test_sql_connection();
if ($errors == '') {
update_tables();
update_system_thumbs();
} else {
html_error($errors);
}
if ($errors == '') {
html_install_success($notes);
session_destroy();
} else {
html_error($errors);
}
}
html_footer();
}
function edit ($file) {
global $self, $directory, $editcols, $editrows, $apache, $htpasswd, $htaccess;
html_header();
echo '<h2 style="margin-bottom: 3pt">' . html($file) . '</h2>
<form action="' . $self . '?tool=Files" method="post">
<table class="dialog">
<tr>
<td class="dialog">
<textarea name="content" cols="' . $editcols . '" rows="' . $editrows . '" WRAP="off">';
if (array_key_exists('content', $_POST)) {
echo $_POST['content'];
} else {
$f = fopen($file, 'r');
while (!feof($f)) {
echo html(fread($f, 8192));
}
fclose($f);
}
if (!empty($_POST['user'])) {
echo "\n" . $_POST['user'] . ':' . crypt($_POST['password']);
}
if (!empty($_POST['basic_auth'])) {
if ($win) {
$authfile = str_replace('\\', '/', $directory) . $htpasswd;
} else {
$authfile = $directory . $htpasswd;
}
echo "\nAuthType Basic\nAuthName "Restricted Directory"\n";
echo 'AuthUserFile "' . html($authfile) . ""\n";
echo 'Require valid-user';
}
echo '</textarea>
<hr />
';
if ($apache && basename($file) == $htpasswd) {
echo '
' . word('user') . ': <input type="text" name="user" />
' . word('password') . ': <input type="password" name="password" />
<input type="submit" value="' . word('add') . '" />
<hr />
';
}
if ($apache && basename($file) == $htaccess) {
echo '
<input type="submit" name="basic_auth" value="' . word('add_basic_auth') . '" />
<hr />
';
}
echo '
<input type="hidden" name="action" value="edit" />
<input type="hidden" name="file" value="' . html($file) . '" />
<input type="hidden" name="dir" value="' . html($directory) . '" />
<input type="reset" value="' . word('reset') . '" id="red_button" />
<input type="submit" name="save" value="' . word('save') . '" id="green_button" style="margin-left: 50px" />
</td>
</tr>
</table>
<p><a href="' . $self . '?tool=Files&dir=' . urlencode($directory) . '">[ ' . word('back') . ' ]</a></p>
</form>
';
html_footer();
}
function list_templates()
{
debug_msg("FUNCTION: " . __FUNCTION__, 3);
$result = db_multirec_read_all_templates();
debug_msg("Query Result: {$result}", 5);
$num_records = count($result);
debug_msg("Number of records: {$num_records}", 4);
if ($num_records > 0) {
html_header("List Templates");
?>
<div align="center">
<h1>Template Data</h1>
<br />
<table width="100%" cellpadding="0" align="center">
<tr>
<th colspan="2" class="list"></th> <!-- Edit/Delete -->
<th class="list">Name</th> <!-- Name -->
<th class="list">Description</th> <!-- Description -->
</tr>
<?php
for ($i = 0; $i < $num_records; $i++) {
$row = $result[$i];
if ($row == '') {
echo "Cannot seek to row {$record}:\n";
continue;
}
?>
<tr>
<td class="center-list">
<a href="template.php?action=edit&id=<?php
echo $row['id'];
?>
" onmouseover="window.status='Edit';return true" onmouseout="window.status='';return true"><img src="images/edit.png" alt="Edit" border="0" /></a>
</td>
<td class="center-list">
<a href="template.php?action=delete&id=<?php
echo $row['id'];
?>
" onmouseover="window.status='Delete';return true" onmouseout="window.status='';return true"><img src="images/delete.png" alt="Delete" border="0" /></a>
</td>
<td class="left-list">
<?php
echo $row['name'];
?>
</td>
<td class="left-list">
<?php
echo $row['description'];
?>
</td>
</tr>
<?php
}
?>
</table>
<br />
<table width="100%">
<tr>
<td class="left">
<a href="template.php?action=add" onmouseover="window.status='Add a new template';return true" onmouseout="window.status='';return true"><img src="images/add.png" alt="Add" border="0" /> Add new template</a>
</td>
</tr>
</table>
</div>
<?php
}
html_footer();
}
/**
* login_form
*
* generates complete login form page
*
* @return $login_form - complete html code
*/
function login_form()
{
global $bouncer_message;
global $bouncer_page;
// global $target_page;
global $pre;
$target = $_SERVER['HTTP_HOST'] . $_SERVER['REQUEST_URI'];
$target = substr($target, 0, 7) != "http://" ? "http://" . $target : $target;
// put together html
$login_form = html_header("Login Page");
$login_form .= "\n\t\t<div class=\"page_clear\"></div>\n\t\t<div id=\"page\">\n\t\t" . html_title() . "\n\t\t\t<div id=\"content\">";
if (isset($bouncer_message['error'])) {
$login_form .= "\n\t\t\t\t<div id=\"login_message\">" . $bouncer_message['error'] . "</div>";
}
if (!empty($bouncer_message['general'])) {
$login_form .= "\n\t\t\t\t<div id=\"general_message\">" . $bouncer_message['general'] . "</div>";
}
$login_form .= '
<h2>Please enter your email address and password to login</h2>
<form id="bouncer_loginform" name ="bouncer_loginform" method="post" action="' . $target . '">
<p><label for="email">Email address:</label><br/>
<input name="email" type="email" id="email" /></p>
<p><label for="pass">Password:</label><br/>
<input name="pass" id="pass" type="password" /></p>
<p><label for="remember">Remember Me:</label>
<input name="remember" type="checkbox" id="remember" /></p>
<p><input type="hidden" name="bounce" value="' . md5(constant($pre . 'BOUNCE_WEB_ROOT')) . '" />
<input type="submit" name="login" value="Login" /></p>
</form>
<h2>
<a href="' . $bouncer_page['password_email'] . '">Forgotten your password?</a>
</h2>
</div>
</div>
';
$login_form .= html_footer();
return $login_form;
}
function printoutPreview () {
if ($this->config->getValue("Main", "wholesite"))
echo html_header($this->config);
if (!$language = $this->config->getValue("Main", "language"))
$language = "de_DE";
init_i18n($language);
include($GLOBALS["RELATIVE_PATH_EXTERN"]
. "/modules/views/persondetails_preview.inc.php");
if ($this->config->getValue("Main", "wholesite"))
echo html_footer();
}
function login()
{
global $logintxt;
global $JSMainMenu;
$reqpage = $_SESSION['reqpage'];
html_header();
splash($reqpage . "<br>" . $logintxt);
//<html
?>
<form name="login" method="post" action="<?php
echo $reqpage;
?>
">
<table border=0 cellspacing=1 cellpadding=8 bgcolor=#000000 width=50% align=center>
<tr>
<th background=img/blubg.png>
User <input type="text" name="user" size="12">
</th>
<th background=img/blubg.png>
Pass <input type="password" name="pass" size="12">
</th>
<th background=img/blubg.png>
<input type="submit" value="Login">
</th>
</tr>
</table>
</form>
<?php
//html>
html_footer();
}
Paso 2: Complete la planilla con los datos solicitados en cada columna,
de acuerdo a lo dispuesto en el artículo 7-m de la ley N° 20.285.
<br/><br/>
Paso 3: Guarde su planilla Microsoft Excel u OpenOffice Calc, en formato CSV.
Los archivos CSV (del inglés <i>comma separated values</i>) son un tipo
de documento sencillo para representar datos en forma de tabla.
<br/><br/>
Paso 4: Presione Examinar y seleccione el archivo CSV.
<br/><br/>
Paso 5: Presione "Procesar" para acceder a los descargables de "Vínculos Institucionales".
<br/><br/>
<?php
echo formularioMultipagina("Vínculos Institucionales", "A continuación se listan las páginas generadas con la información de vínculos institucionales suministrada.", "A continuación se listan los distintos vínculos de participación, representación e intervención que este Organismo (" . $_SESSION['nombre'] . ") tiene con otros.", 7, array(6), "vinculos", "vinculos", "index.html", "vinculos_rep.txt");
?>
<br/>
<hr style="color: #ddddff;" />
<br/>
<h2>Generador de página de mensaje (HTML)</h2>
<?php
$opciones = array('No genera información' => 'Esta institución no tiene participación, representación e intervención en otras entidades.');
echo formularioExcepcion($opciones, "Vínculos institucionales", "vinculos", "vinculos.html");
html_footer();
}
echo "</center><br/>\n";
}
//Escribiendo la tabla
$alink = -1;
if (trim($links) != "") {
$alink = explode(",", $links);
}
$astr_noenlace = -1;
if (trim($str_noenlace) != "") {
$astr_noenlace = explode(",", $str_noenlace);
}
$astr_enlace = -1;
if (trim($str_enlace) != "") {
$astr_enlace = explode(",", $str_enlace);
}
echo acentosHTML(ArrayToTable($csv, $cols, $alink, $astr_enlace, $astr_noenlace));
echo acentosHTML("<div id='footnotes'>" . nl2br($footnotes) . "</div>");
//Indice del fondo
echo "<br/>\n";
if (getNumPags($data) > 1) {
echo "<center>\n";
echo $pag == 0 ? "1" : "<a href='{$nombre}.html'>1</a>";
for ($i = 2; $i <= getNumPags($data); $i++) {
echo $i == $pag + 1 ? " - {$i}" : " - <a href='{$nombre}-{$i}.html'>{$i}</a>";
}
echo "</center><br/>\n";
}
echo html_volver($backto);
html_footer("codigo" . trim(alfanum($_SESSION['sigla'])) . " " . $sv . " " . date('Y-m-d'));
