header('location:../supplier.php?tab=tab1&' . $err1 . '&' . $err2);
die;
}
}
if (isset($edit_supp)) {
if (isset($err1) || isset($err2)) {
header('location:../supplier.php?tab=tab2&edit_supp=' . $supp_id . '&' . $err1 . '&' . $err2);
die;
}
}
if ($filter->validate_url($url)) {
$supplier_url = $filter->filter_data($url);
} else {
$err1 = 'urlerr=please enter a valid url';
}
if ($filter->validate_username($sname) === true) {
$supplier_name = $filter->filter_data($sname);
} else {
$err2 = 'nameerr=' . $filter->validate_username($sname);
}
if (isset($sub)) {
if (isset($err1) || isset($err2)) {
header('location:../supplier.php?tab=tab1&' . $err1 . '&' . $err2);
die;
}
$results = $supplier->add_supplier($supplier_url, $supplier_name);
if ($results === 11) {
header("location:../subdata.php?sitename=" . $supplier_name);
} elseif ($results === 0) {
header('location:../supplier.php?tab=tab1&urlerr=Sorry we failed to add supplier');
} else {
}
if (isset($adduser)) {
if (empty($username)) {
$err = 'usernamerr=please enter a user name';
}
if (empty($email)) {
$err1 = 'emailerr=please enter user email';
}
if (empty($password)) {
$err2 = 'passerr=please enter user password';
}
if (isset($err) || isset($err1) || isset($err2)) {
header('location:../users.php?tab=tab2&' . $err . '&' . $err1 . '&' . $err2);
die;
}
if ($filter->validate_username($username)) {
$username = $filter->filter_data($username);
} else {
$err = 'usernamerr=please enter a valid username';
}
if ($filter->validate_email($email)) {
$email = $filter->filter_data($email);
} else {
$err1 = 'emailerr=please enter a valid email';
}
if ($filter->validate_password($password)) {
$password = $filter->filter_data($password);
} else {
$err2 = 'passerr=password length must be at least 8 chars';
}
if (isset($err) || isset($err1) || isset($err2)) {
}
if ($_SERVER['REQUEST_METHOD'] != 'POST') {
header('location:../404.php');
die;
}
extract($_POST);
$filter = new filter();
if (empty($username)) {
header('location:../login.php?logerr=Empty Username/Password');
die;
}
if (empty($password)) {
header('location:../login.php?logerr=Empty Username/Password');
die;
}
if ($filter->validate_username($username) || $filter->validate_email($username)) {
$username = $filter->filter_data($username);
} else {
header('location:../login.php?logerr=Please Enter a Valid Username');
die;
}
if ($filter->validate_password($password)) {
$password = $filter->filter_data($password);
} else {
header('location:../login.php?logerr=Please Enter a Valid Password');
die;
}
if ($user->login($username, $password)) {
header('location:../supplier.php');
} else {
header('location:../login.php?logerr=Wrong Username/Password');
