$error = ErrorMessage(array(_('Please enter a valid Sort Order.')));
}
}
unset($_REQUEST['tables']);
}
if ($_REQUEST['modfunc'] == 'delete' && AllowEdit()) {
if ($_REQUEST['id']) {
if (DeletePrompt(_('Address Field'))) {
$id = $_REQUEST['id'];
DBQuery("DELETE FROM ADDRESS_FIELDS WHERE ID='{$id}'");
DBQuery("ALTER TABLE ADDRESS DROP COLUMN CUSTOM_{$id}");
$_REQUEST['modfunc'] = '';
unset($_REQUEST['id']);
}
} elseif ($_REQUEST['category_id']) {
if (DeletePrompt(_('Address Field Category') . ' ' . _('and all fields in the category'))) {
$fields = DBGet(DBQuery("SELECT ID FROM ADDRESS_FIELDS WHERE CATEGORY_ID='{$_REQUEST['category_id']}'"));
foreach ($fields as $field) {
DBQuery("DELETE FROM ADDRESS_FIELDS WHERE ID='{$field['ID']}'");
DBQuery("ALTER TABLE ADDRESS DROP COLUMN CUSTOM_{$field['ID']}");
}
DBQuery("DELETE FROM ADDRESS_FIELD_CATEGORIES WHERE ID='{$_REQUEST['category_id']}'");
$_REQUEST['modfunc'] = '';
unset($_REQUEST['category_id']);
}
}
}
if (empty($_REQUEST['modfunc'])) {
//modif Francois: fix SQL bug invalid sort order
if (isset($error)) {
echo $error;
$extra['SELECT'] = ',LAST_LOGIN';
$extra['columns_after'] = array('LAST_LOGIN' => 'Last Login');
$extra['functions'] = array('LAST_LOGIN' => 'makeLogin');
if (basename($_SERVER['PHP_SELF']) != 'index.php') {
if ($_REQUEST['staff_id'] == 'new') {
DrawBC("Users > Add a User");
} else {
DrawBC("Users > " . ProgramTitle());
}
SearchStaff('staff_id', $extra);
} else {
DrawHeader('Create Account');
}
if ($_REQUEST['modfunc'] == 'delete' && basename($_SERVER['PHP_SELF']) != 'index.php' && AllowEdit()) {
# ------------------------------------ For Certification Start ------------------------------------------- #
if (DeletePrompt('certification')) {
DBQuery("DELETE FROM staff_certification WHERE STAFF_CERTIFICATION_ID='{$_REQUEST['certification_id']}'");
unset($_REQUEST['modfunc']);
$_REQUEST['certification_id'] = 'new';
}
}
if ((UserStaffID() || $_REQUEST['staff_id'] == 'new') && (basename($_SERVER['PHP_SELF']) != 'index.php' || !$_REQUEST['staff']['USERNAME']) && $_REQUEST['modfunc'] != 'delete' && $_SESSION['fn'] != 'user' && $_REQUEST['modfunc'] != 'remove') {
if ($_REQUEST['modfunc'] != 'delete' || $_REQUEST['delete_ok'] == '1') {
if ($_REQUEST['staff_id'] != 'new') {
$sql = "SELECT * FROM staff WHERE STAFF_ID='" . UserStaffID() . "'";
$QI = DBQuery($sql);
$staff = DBGet($QI);
$staff = $staff[1];
$email = $staff[EMAIL];
echo "<FORM name=staff id=staff action=Modules.php?modname={$_REQUEST['modname']}&custom=staff&include={$_REQUEST['include']}&category_id={$_REQUEST['category_id']}&staff_id=" . UserStaffID() . "&modfunc=update method=POST >";
} elseif (basename($_SERVER['PHP_SELF']) != 'index.php') {
<?php
DrawHeader('Pre-Defined Student Billing Fees');
if ($_REQUEST[modfunc] == 'update') {
$_REQUEST['date'] = $_REQUEST['day'] . '-' . $_REQUEST['month'] . '-' . $_REQUEST['year'];
if ($_REQUEST['date'] == '--') {
$_REQUEST['date'] = '';
}
$effective_date = DBDate();
$sql = "INSERT INTO STU_BILLING_DEFINED_FEES (ID,ACCOUNT_ID,TITLE,AMOUNT,DUE_DATE,SYEAR,SCHOOL,GRADE) \n\t\t\tvalues(" . db_seq_nextval('STU_BILLING_DEFINED_FEES_SEQ') . ",'{$_REQUEST['account_id']}','{$_REQUEST['title']}','{$_REQUEST['amount']}','{$_REQUEST['date']}','{$_REQUEST['syear']}','{$_REQUEST['school']}','{$_REQUEST['grade']}')";
DBQuery($sql);
$note[] = 'That Pre-Defined Fee has been added';
unset($_REQUEST[modfunc]);
}
if ($_REQUEST[modfunc] == 'delete') {
if (DeletePrompt('pre-defined fee')) {
DBQuery("DELETE FROM STU_BILLING_DEFINED_FEES WHERE ID='{$_REQUEST['id']}'");
$note[] = "That Pre-Defined Fee has been Deleted";
unset($_REQUEST[modfunc]);
}
}
if (!$_REQUEST[modfunc]) {
// LIST
if ($note) {
echo '<TABLE width=100%><TR><TD bgcolor=#E8E8E9><font size=-1>';
ErrorMessage($note, 'note');
echo '</font></TD></TR></TABLE>';
}
echo "<FORM action=Modules.php?modname={$_REQUEST['modname']}&modfunc=update METHOD=POST>";
$functions = array('AMOUNT' => 'Currency', 'ACCOUNT_ID' => 'getAccount', 'DUE_DATE' => 'ProperDate', 'SYEAR' => 'DispYear', 'SCHOOL' => 'GetSchool', 'GRADE' => 'GetGrade');
$RET = DBGet(DBQuery('SELECT DISTINCT sb.ID,sb.TITLE,sb.AMOUNT,
DBQuery($sql);
}
}
unset($_REQUEST['tables']);
}
if ($_REQUEST['modfunc'] == 'delete') {
if ($_REQUEST['id']) {
if (DeletePrompt('address field')) {
$id = $_REQUEST['id'];
DBQuery("DELETE FROM ADDRESS_FIELDS WHERE ID='{$id}'");
DBQuery("ALTER TABLE ADDRESS DROP COLUMN CUSTOM_{$id}");
$_REQUEST['modfunc'] = '';
unset($_REQUEST['id']);
}
} elseif ($_REQUEST['category_id']) {
if (DeletePrompt('address field category and all fields in the category')) {
$fields = DBGet(DBQuery("SELECT ID FROM ADDRESS_FIELDS WHERE CATEGORY_ID='{$_REQUEST['category_id']}'"));
foreach ($fields as $field) {
DBQuery("DELETE FROM ADDRESS_FIELDS WHERE ID='{$field['ID']}'");
DBQuery("ALTER TABLE ADDRESS DROP COLUMN CUSTOM_{$field['ID']}");
}
DBQuery("DELETE FROM ADDRESS_FIELD_CATEGORIES WHERE ID='{$_REQUEST['category_id']}'");
$_REQUEST['modfunc'] = '';
unset($_REQUEST['category_id']);
}
}
}
if (!$_REQUEST['modfunc']) {
// CATEGORIES
$sql = "SELECT ID,TITLE,SORT_ORDER FROM ADDRESS_FIELD_CATEGORIES ORDER BY SORT_ORDER,TITLE";
$QI = DBQuery($sql);
$sql[] = "DELETE FROM schedule_requests WHERE COURSE_ID='{$_REQUEST['course_id']}'";
} elseif ($_REQUEST['subject_id']) {
$table = 'subject';
$sql[] = "DELETE FROM course_subjects WHERE SUBJECT_ID='{$_REQUEST['subject_id']}'";
$courses = DBGet(DBQuery("SELECT COURSE_ID FROM courses WHERE SUBJECT_ID='{$_REQUEST['subject_id']}'"));
if (count($courses)) {
foreach ($courses as $course) {
$sql[] = "DELETE FROM courses WHERE COURSE_ID='{$course['COURSE_ID']}'";
$sql[] = "UPDATE course_periods SET PARENT_ID=NULL WHERE PARENT_ID IN (SELECT COURSE_PERIOD_ID FROM course_periods WHERE COURSE_ID='{$course['COURSE_ID']}')";
$sql[] = "DELETE FROM course_periods WHERE COURSE_ID='{$course['COURSE_ID']}'";
$sql[] = "DELETE FROM schedule WHERE COURSE_ID='{$course['COURSE_ID']}'";
$sql[] = "DELETE FROM schedule_requests WHERE COURSE_ID='{$course['COURSE_ID']}'";
}
}
}
if (DeletePrompt($table)) {
foreach ($sql as $query) {
DBQuery($query);
}
unset($_REQUEST['modfunc']);
}
}
if ((!$_REQUEST['modfunc'] || $_REQUEST['modfunc'] == 'choose_course') && !$_REQUEST['course_modfunc']) {
if ($_REQUEST['modfunc'] != 'choose_course') {
DrawBC("" . _('Scheduling') . " > " . ProgramTitle());
}
$sql = "SELECT SUBJECT_ID,TITLE FROM course_subjects WHERE SCHOOL_ID='" . UserSchool() . "' AND SYEAR='" . UserSyear() . "' ORDER BY TITLE";
$QI = DBQuery($sql);
$subjects_RET = DBGet($QI);
if ($_REQUEST['modfunc'] != 'choose_course') {
if (AllowEdit()) {
$extra[] = "DELETE FROM SCHOOL_PROGRESS_PERIODS WHERE QUARTER_ID IN (SELECT MARKING_PERIOD_ID FROM SCHOOL_QUARTERS WHERE SEMESTER_ID='{$_REQUEST['marking_period_id']}')";
$extra[] = "DELETE FROM SCHOOL_QUARTERS WHERE SEMESTER_ID='{$_REQUEST['marking_period_id']}'";
break;
case 'SCHOOL_QUARTERS':
$name = 'quarter';
$parent_term = 'SEM';
$parent_id = $_REQUEST['semester_id'];
$extra[] = "DELETE FROM SCHOOL_PROGRESS_PERIODS WHERE QUARTER_ID='{$_REQUEST['marking_period_id']}'";
break;
case 'SCHOOL_PROGRESS_PERIODS':
$name = 'progress period';
$parent_term = 'QTR';
$parent_id = $_REQUEST['quarter_id'];
break;
}
if (DeletePrompt($name)) {
foreach ($extra as $sql) {
DBQuery($sql);
}
DBQuery("DELETE FROM {$table} WHERE MARKING_PERIOD_ID='{$_REQUEST['marking_period_id']}'");
unset($_REQUEST['modfunc']);
$_REQUEST['mp_term'] = $parent_term;
$_REQUEST['marking_period_id'] = $parent_id;
}
unset($_SESSION['_REQUEST_vars']['modfunc']);
}
if (!$_REQUEST['modfunc']) {
if ($_REQUEST['marking_period_id'] != 'new') {
$delete_button = "<INPUT type=button class=btn_medium value=Delete onClick='javascript:window.location=\"Modules.php?modname={$_REQUEST['modname']}&modfunc=delete&mp_term={$_REQUEST['mp_term']}&year_id={$_REQUEST['year_id']}&semester_id={$_REQUEST['semester_id']}&quarter_id={$_REQUEST['quarter_id']}&marking_period_id={$_REQUEST['marking_period_id']}\"'>";
}
// ADDING & EDITING FORM
# Copyright (C) 2007-2008, Open Solutions for Education, Inc.
#
#*************************************************************************
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, version 2 of the License. See license.txt.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program. If not, see <http://www.gnu.org/licenses/>.
#**************************************************************************
DrawHeader(ProgramTitle());
if ($_REQUEST['modfunc'] == 'remove') {
if (DeletePrompt('request')) {
DBQuery("DELETE FROM SCHEDULE_REQUESTS WHERE STUDENT_ID='{$_REQUEST['student_id']}' AND COURSE_ID='{$_REQUEST['course_id']}' AND COURSE_WEIGHT='{$_REQUEST['course_weight']}' AND SYEAR='" . UserSyear() . "'");
unset($_REQUEST['modfunc']);
}
}
if (!$_REQUEST['modfunc']) {
$sql = "SELECT \n\t\t\t\ts.LAST_NAME||', '||s.FIRST_NAME AS FULL_NAME,r.STUDENT_ID,c.TITLE||' - '||r.COURSE_WEIGHT as COURSE,r.COURSE_ID,r.COURSE_WEIGHT \n\t\t\tFROM\n\t\t\t\tSCHEDULE_REQUESTS r,COURSES c,STUDENTS s\n\t\t\tWHERE\n\t\t\t\ts.STUDENT_ID = r.STUDENT_ID AND r.COURSE_ID = c.COURSE_ID\n\t\t\t\tAND r.SYEAR = '" . UserSyear() . "' AND r.SCHOOL_ID = '" . UserSchool() . "'\n\t\t\t\tAND NOT EXISTS (SELECT '' FROM SCHEDULE ss WHERE ss.STUDENT_ID=r.STUDENT_ID AND ss.COURSE_ID=r.COURSE_ID AND ss.COURSE_WEIGHT=r.COURSE_WEIGHT)\n\t\t\t";
$RET = DBGet(DBQuery($sql), array(), array('STUDENT_ID'));
$columns = array('FULL_NAME' => 'Student', 'STUDENT_ID' => 'Student ID', 'COURSE' => 'Course');
//$link['remove']['link'] = "Modules.php?modname=$_REQUEST[modname]&modfunc=remove";
$link['remove']['link'] = "#" . " onclick='check_content(\"ajax.php?modname={$_REQUEST['modname']}&modfunc=remove\");'";
$link['remove']['variables'] = array('student_id' => 'STUDENT_ID', 'course_id' => 'COURSE_ID', 'course_weight' => 'COURSE_WEIGHT');
ListOutput($RET, $columns, 'Unscheduled Request', 'Unscheduled Requests', $link, array(array('FULL_NAME', 'STUDENT_ID')));
}
$assYr = $_REQUEST['year_assigned'];
$dueMon = $_REQUEST['month_due'];
$dueDay = $_REQUEST['day_due'];
$dueYr = $_REQUEST['year_due'];
$username = User('USERNAME');
$monthnames = array(1 => 'JAN', 'FEB', 'MAR', 'APR', 'MAY', 'JUN', 'JUL', 'AUG', 'SEP', 'OCT', 'NOV', 'DEC');
$dueMon = array_search($dueMon, $monthnames);
$dueDate = $dueMon . '/' . $dueDay . '/' . $dueYr;
$assMon = array_search($assMon, $monthnames);
$assignedDate = $assMon . '/' . $assDay . '/' . $assYr;
Fee::addFee($amount, $title, $studentId, $dueDate, $assignedDate, $comment, $module, $username);
}
echo '<SCRIPT language=javascript>opener.document.location = "Modules.php?modname=' . $_REQUEST['modname'] . "&student_id={$studentId}" . '"; window.close();</script>';
} else {
if ($_REQUEST['modfunc'] == 'remove') {
if (DeletePrompt(_('fee'), _('waive'))) {
include 'modules/Billing/classes/Auth.php';
include 'modules/Billing/classes/Fee.php';
$auth = new Auth();
$staffId = User('STAFF_ID');
$profile = User('PROFILE');
if ($auth->checkAdmin($profile, $staffId)) {
$feeId = $_REQUEST['fee_id'];
$username = User('USERNAME');
Fee::waiveFee($feeId, $username);
}
$displayList = true;
}
} else {
if (isset($_REQUEST['student_id'])) {
$displayList = true;
if ($value) {
$fields .= $column . ',';
$values .= "'" . $value . "',";
$go = true;
}
}
$sql .= '(' . mb_substr($fields, 0, -1) . ') values(' . mb_substr($values, 0, -1) . ')';
if ($go) {
DBQuery($sql);
}
}
}
}
DrawHeader(ProgramTitle());
if ($_REQUEST['modfunc'] == 'remove') {
if (DeletePrompt(_('Activity'))) {
DBQuery("DELETE FROM ELIGIBILITY_ACTIVITIES WHERE ID='{$_REQUEST['id']}'");
unset($_REQUEST['modfunc']);
}
}
if ($_REQUEST['modfunc'] != 'remove') {
$sql = "SELECT ID,TITLE,START_DATE,END_DATE FROM ELIGIBILITY_ACTIVITIES WHERE SYEAR='" . UserSyear() . "' AND SCHOOL_ID='" . UserSchool() . "' ORDER BY TITLE";
$QI = DBQuery($sql);
$activities_RET = DBGet($QI, array('TITLE' => 'makeTextInput', 'START_DATE' => 'makeDateInput', 'END_DATE' => 'makeDateInput'));
$columns = array('TITLE' => _('Title'), 'START_DATE' => _('Begins'), 'END_DATE' => _('Ends'));
$link['add']['html'] = array('TITLE' => makeTextInput('', 'TITLE'), 'START_DATE' => makeDateInput('', 'START_DATE'), 'END_DATE' => makeDateInput('', 'END_DATE'));
$link['remove']['link'] = "Modules.php?modname={$_REQUEST['modname']}&modfunc=remove";
$link['remove']['variables'] = array('id' => 'ID');
echo '<FORM action="Modules.php?modname=' . $_REQUEST[modname] . '&modfunc=update" method="POST">';
DrawHeader('', SubmitButton(_('Save')));
ListOutput($activities_RET, $columns, 'Activity', 'Activities', $link);
}
}
$sql .= '(' . substr($fields, 0, -1) . ') values(' . substr($values, 0, -1) . ')';
if ($go) {
DBQuery($sql);
}
}
}
unset($_REQUEST['values']);
unset($_SESSION['_REQUEST_vars']['values']);
unset($_REQUEST['profiles']);
unset($_SESSION['_REQUEST_vars']['profiles']);
}
DrawHeader(ProgramTitle());
if ($_REQUEST['modfunc'] == 'remove' && AllowEdit()) {
if (DeletePrompt(_('message'))) {
DBQuery("DELETE FROM PORTAL_NOTES WHERE ID='{$_REQUEST['id']}'");
unset($_REQUEST['modfunc']);
}
}
if ($_REQUEST['modfunc'] != 'remove') {
$sql = "SELECT ID,SORT_ORDER,TITLE,CONTENT,START_DATE,END_DATE,PUBLISHED_PROFILES,CASE WHEN END_DATE IS NOT NULL AND END_DATE<CURRENT_DATE THEN 'Y' ELSE NULL END AS EXPIRED FROM PORTAL_NOTES WHERE SCHOOL_ID='" . UserSchool() . "' AND SYEAR='" . UserSyear() . "' ORDER BY EXPIRED DESC,SORT_ORDER,PUBLISHED_DATE DESC";
$QI = DBQuery($sql);
$notes_RET = DBGet($QI, array('TITLE' => '_makeTextInput', 'CONTENT' => '_makeContentInput', 'SORT_ORDER' => '_makeTextInput', 'START_DATE' => '_makePublishing'));
$columns = array('TITLE' => _('Title'), 'CONTENT' => _('Note'), 'SORT_ORDER' => _('Sort Order'), 'START_DATE' => _('Publishing Options'));
//,'START_TIME'=>'Start Time','END_TIME'=>'End Time'
$link['add']['html'] = array('TITLE' => _makeTextInput('', 'TITLE'), 'CONTENT' => _makeContentInput('', 'CONTENT'), 'SHORT_NAME' => _makeTextInput('', 'SHORT_NAME'), 'SORT_ORDER' => _makeTextInput('', 'SORT_ORDER'), 'START_DATE' => _makePublishing('', 'START_DATE'));
$link['remove']['link'] = "Modules.php?modname={$_REQUEST['modname']}&modfunc=remove";
$link['remove']['variables'] = array('id' => 'ID');
echo "<FORM action=Modules.php?modname={$_REQUEST['modname']}&modfunc=update method=POST>";
DrawHeader('', SubmitButton(_('Save')));
}
$go = true;
}
}
$sql .= '(' . substr($fields, 0, -1) . ') values(' . substr($values, 0, -1) . ')';
if ($go) {
DBQuery($sql);
}
}
echo '<SCRIPT language=javascript>opener.document.location = "Modules.php?modname=' . $_REQUEST['modname'] . '&year=' . $_REQUEST['year'] . '&month=' . MonthNWSwitch($_REQUEST['month'], 'tochar') . '"; window.close();</script>';
unset($_REQUEST['values']);
unset($_SESSION['_REQUEST_vars']['values']);
}
echo '<SCRIPT language=javascript> window.close();</script>';
} elseif (clean_param($_REQUEST['button'], PARAM_ALPHAMOD) == 'Delete') {
if (DeletePrompt('event', 'delete', 'y')) {
DBQuery("DELETE FROM calendar_events WHERE ID='" . paramlib_validation($column = EVENT_ID, $_REQUEST[event_id]) . "'");
echo '<SCRIPT language=javascript>opener.document.location = "Modules.php?modname=' . $_REQUEST['modname'] . '&year=' . $_REQUEST['year'] . '&month=' . MonthNWSwitch($_REQUEST['month'], 'tochar') . '"; window.close();</script>';
unset($_REQUEST['values']);
unset($_SESSION['_REQUEST_vars']['values']);
unset($_REQUEST['button']);
unset($_SESSION['_REQUEST_vars']['button']);
}
} else {
if ($_REQUEST['event_id']) {
if ($_REQUEST['event_id'] != 'new') {
$RET = DBGet(DBQuery("SELECT TITLE,DESCRIPTION,SCHOOL_DATE,CALENDAR_ID FROM calendar_events WHERE ID='{$_REQUEST['event_id']}'"));
$title = $RET[1]['TITLE'];
} else {
$title = 'New Event';
$RET[1]['SCHOOL_DATE'] = date('Y-m-d', strtotime($_REQUEST['school_date']));
if ($go) {
DBQuery($sql);
}
}
}
unset($_REQUEST['values']);
}
if ($_REQUEST['modfunc'] == 'remove' & AllowEdit()) {
if (DeletePrompt(_('Fee'))) {
DBQuery("DELETE FROM BILLING_FEES WHERE ID='" . $_REQUEST['id'] . "'");
DBQuery("DELETE FROM BILLING_FEES WHERE WAIVED_FEE_ID='" . $_REQUEST['id'] . "'");
unset($_REQUEST['modfunc']);
}
}
if ($_REQUEST['modfunc'] == 'waive' & AllowEdit()) {
if (DeletePrompt(_('Fee'), _('Waive'))) {
$fee_RET = DBGet(DBQuery("SELECT TITLE,AMOUNT FROM BILLING_FEES WHERE ID='{$_REQUEST['id']}'"));
DBQuery("INSERT INTO BILLING_FEES (ID,SYEAR,SCHOOL_ID,TITLE,AMOUNT,WAIVED_FEE_ID,STUDENT_ID,ASSIGNED_DATE,COMMENTS) values(" . db_seq_nextval('BILLING_FEES_SEQ') . ",'" . UserSyear() . "','" . UserSchool() . "','" . str_replace("'", "''", $fee_RET[1]['TITLE']) . " " . _('Waiver') . "','" . $fee_RET[1]['AMOUNT'] * -1 . "','{$_REQUEST['id']}','" . UserStudentID() . "','" . DBDate() . "','" . _('Waiver') . "')");
unset($_REQUEST['modfunc']);
}
}
if (UserStudentID() && !$_REQUEST['modfunc']) {
$fees_total = 0;
$functions = array('REMOVE' => '_makeFeesRemove', 'ASSIGNED_DATE' => 'ProperDate', 'DUE_DATE' => '_makeFeesDateInput', 'COMMENTS' => '_makeFeesTextInput', 'AMOUNT' => '_makeFeesAmount');
$waived_fees_RET = DBGet(DBQuery("SELECT '' AS REMOVE,f.ID,f.TITLE,f.ASSIGNED_DATE,f.DUE_DATE,f.COMMENTS,f.AMOUNT,f.WAIVED_FEE_ID FROM BILLING_FEES f WHERE f.STUDENT_ID='" . UserStudentID() . "' AND f.SYEAR='" . UserSyear() . "' AND f.WAIVED_FEE_ID IS NOT NULL"), $functions, array('WAIVED_FEE_ID'));
$fees_RET = DBGet(DBQuery("SELECT '' AS REMOVE,f.ID,f.TITLE,f.ASSIGNED_DATE,f.DUE_DATE,f.COMMENTS,f.AMOUNT,f.WAIVED_FEE_ID FROM BILLING_FEES f WHERE f.STUDENT_ID='" . UserStudentID() . "' AND f.SYEAR='" . UserSyear() . "' AND (f.WAIVED_FEE_ID IS NULL OR f.WAIVED_FEE_ID='') ORDER BY f.ASSIGNED_DATE"), $functions);
$i = 1;
$RET = array();
foreach ($fees_RET as $fee) {
$RET[$i] = $fee;
if ($waived_fees_RET[$fee['ID']]) {
# along with this program. If not, see <http://www.gnu.org/licenses/>.
#**************************************************************************
if ($_REQUEST['modfunc'] == 'save' && AllowEdit()) {
$current_RET = DBGet(DBQuery("SELECT STAFF_ID FROM STUDENTS_JOIN_USERS WHERE STUDENT_ID='" . UserStudentID() . "'"), array(), array('STAFF_ID'));
foreach ($_REQUEST['staff'] as $staff_id => $yes) {
if (!$current_RET[$staff_id]) {
$sql = "INSERT INTO STUDENTS_JOIN_USERS (STAFF_ID,STUDENT_ID) values('" . $staff_id . "','" . UserStudentID() . "')";
DBQuery($sql);
}
}
unset($_REQUEST['modfunc']);
$note = "The selected user's profile now includes access to the selected students.";
}
DrawBC("Students > " . ProgramTitle());
if ($_REQUEST['modfunc'] == 'delete' && AllowEdit()) {
if (DeletePrompt('student from that user', 'remove access to')) {
DBQuery("DELETE FROM STUDENTS_JOIN_USERS WHERE STAFF_ID='{$_REQUEST['staff_id']}' AND STUDENT_ID='" . UserStudentID() . "'");
unset($_REQUEST['modfunc']);
}
}
if ($note) {
DrawHeader('<IMG SRC=assets/check.gif>' . $note);
}
if ($_REQUEST['modfunc'] != 'delete') {
$extra['SELECT'] = ",(SELECT count(u.STAFF_ID) FROM STUDENTS_JOIN_USERS u,STAFF st WHERE u.STUDENT_ID=s.STUDENT_ID AND st.STAFF_ID=u.STAFF_ID AND st.SYEAR=ssm.SYEAR) AS ASSOCIATED";
$extra['columns_after'] = array('ASSOCIATED' => '# Associated');
Search('student_id', $extra);
if (UserStudentID()) {
if ($_REQUEST['modfunc'] == 'list') {
echo "<FORM action=Modules.php?modname={$_REQUEST['modname']}&modfunc=save method=POST>";
#DrawHeader('',SubmitButton('Add Selected Parents'));
$error = ErrorMessage(array(_('Please enter a valid Sort Order.')));
}
}
unset($_REQUEST['tables']);
}
if ($_REQUEST['modfunc'] == 'delete' && AllowEdit()) {
if ($_REQUEST['id']) {
if (DeletePrompt(_('User Field'))) {
$id = $_REQUEST['id'];
DBQuery("DELETE FROM STAFF_FIELDS WHERE ID='{$id}'");
DBQuery("ALTER TABLE STAFF DROP COLUMN CUSTOM_{$id}");
$_REQUEST['modfunc'] = '';
unset($_REQUEST['id']);
}
} elseif ($_REQUEST['category_id']) {
if (DeletePrompt(_('User Field Category') . ' ' . _('and all fields in the category'))) {
$fields = DBGet(DBQuery("SELECT ID FROM STAFF_FIELDS WHERE CATEGORY_ID='{$_REQUEST['category_id']}'"));
foreach ($fields as $field) {
DBQuery("DELETE FROM STAFF_FIELDS WHERE ID='{$field['ID']}'");
DBQuery("ALTER TABLE STAFF DROP COLUMN CUSTOM_{$field['ID']}");
}
DBQuery("DELETE FROM STAFF_FIELD_CATEGORIES WHERE ID='{$_REQUEST['category_id']}'");
// remove from profiles and permissions
DBQuery("DELETE FROM PROFILE_EXCEPTIONS WHERE MODNAME='Users/User.php&category_id={$_REQUEST['category_id']}'");
DBQuery("DELETE FROM STAFF_EXCEPTIONS WHERE MODNAME='Users/User.php&category_id={$_REQUEST['category_id']}'");
$_REQUEST['modfunc'] = '';
unset($_REQUEST['category_id']);
}
}
}
if (empty($_REQUEST['modfunc'])) {
$values .= "'" . str_replace("\\'", "''", $value) . "',";
}
$go = true;
}
}
$sql .= '(' . substr($fields, 0, -1) . ') values(' . substr($values, 0, -1) . ')';
if ($go) {
DBQuery($sql);
}
}
echo '<SCRIPT language=javascript>opener.document.location = "Modules.php?modname=' . $_REQUEST['modname'] . '&year=' . $_REQUEST['year'] . '&month=' . MonthNWSwitch($_REQUEST['month'], 'tochar') . '"; window.close();</script>';
unset($_REQUEST['values']);
unset($_SESSION['_REQUEST_vars']['values']);
}
} elseif ($_REQUEST['button'] == 'Delete') {
if (DeletePrompt('event')) {
DBQuery("DELETE FROM CALENDAR_EVENTS WHERE ID='{$_REQUEST['event_id']}'");
echo '<SCRIPT language=javascript>opener.document.location = "Modules.php?modname=' . $_REQUEST['modname'] . '&year=' . $_REQUEST['year'] . '&month=' . MonthNWSwitch($_REQUEST['month'], 'tochar') . '"; window.close();</script>';
unset($_REQUEST['values']);
unset($_SESSION['_REQUEST_vars']['values']);
unset($_REQUEST['button']);
unset($_SESSION['_REQUEST_vars']['button']);
}
} else {
if ($_REQUEST['event_id']) {
if ($_REQUEST['event_id'] != 'new') {
$RET = DBGet(DBQuery("SELECT TITLE,DESCRIPTION,DATE_FORMAT(SCHOOL_DATE,'%d-%b-%y') AS SCHOOL_DATE FROM CALENDAR_EVENTS WHERE ID='{$_REQUEST['event_id']}'"));
$title = $RET[1]['TITLE'];
} else {
$title = 'New Event';
$RET[1]['SCHOOL_DATE'] = $_REQUEST['school_date'];
DBQuery($sql_question);
}
}
}
} else {
$error = ErrorMessage(array(_('Please enter a valid Sort Order.')));
}
}
unset($_REQUEST['values']);
unset($_SESSION['_REQUEST_vars']['values']);
unset($_REQUEST['profiles']);
unset($_SESSION['_REQUEST_vars']['profiles']);
}
DrawHeader(ProgramTitle());
if ($_REQUEST['modfunc'] == 'remove' && AllowEdit()) {
if (DeletePrompt(_('Poll'))) {
DBQuery("DELETE FROM PORTAL_POLLS WHERE ID='{$_REQUEST['id']}'");
DBQuery("DELETE FROM PORTAL_POLL_QUESTIONS WHERE PORTAL_POLL_ID='{$_REQUEST['id']}'");
unset($_REQUEST['modfunc']);
}
}
if ($_REQUEST['modfunc'] != 'remove') {
$sql_questions = "SELECT ppq.ID,ppq.PORTAL_POLL_ID,ppq.OPTIONS,ppq.VOTES,ppq.QUESTION,ppq.TYPE FROM PORTAL_POLL_QUESTIONS ppq, PORTAL_POLLS pp WHERE pp.SCHOOL_ID='" . UserSchool() . "' AND pp.SYEAR='" . UserSyear() . "' AND pp.ID=ppq.PORTAL_POLL_ID ORDER BY ppq.ID";
$QI_questions = DBQuery($sql_questions);
$questions_RET = DBGet($QI_questions, array('OPTIONS' => '_makeOptionsInput'));
$sql = "SELECT pp.ID,pp.SORT_ORDER,pp.TITLE,'See_PORTAL_POLL_QUESTIONS' AS OPTIONS, pp.VOTES_NUMBER,pp.START_DATE,pp.END_DATE,pp.PUBLISHED_PROFILES,pp.STUDENTS_TEACHER_ID,CASE WHEN pp.END_DATE IS NOT NULL AND pp.END_DATE<CURRENT_DATE THEN 'Y' ELSE NULL END AS EXPIRED FROM PORTAL_POLLS pp WHERE pp.SCHOOL_ID='" . UserSchool() . "' AND pp.SYEAR='" . UserSyear() . "' ORDER BY EXPIRED DESC,pp.SORT_ORDER,pp.PUBLISHED_DATE DESC";
$QI = DBQuery($sql);
$polls_RET = DBGet($QI, array('TITLE' => '_makeTextInput', 'OPTIONS' => '_makeOptionsInputs', 'VOTES_NUMBER' => '_makePollVotes', 'SORT_ORDER' => '_makeTextInput', 'START_DATE' => '_makePublishing'));
$columns = array('TITLE' => _('Title'), 'OPTIONS' => _('Poll'), 'VOTES_NUMBER' => _('Results'), 'SORT_ORDER' => _('Sort Order'), 'START_DATE' => _('Publishing Options'));
//,'START_TIME'=>'Start Time','END_TIME'=>'End Time'
$link['add']['html'] = array('TITLE' => _makeTextInput('', 'TITLE'), 'OPTIONS' => _makeOptionsInputs('', 'OPTIONS'), 'VOTES_NUMBER' => _makePollVotes('', 'VOTES_NUMBER'), 'SHORT_NAME' => _makeTextInput('', 'SHORT_NAME'), 'SORT_ORDER' => _makeTextInput('', 'SORT_ORDER'), 'START_DATE' => _makePublishing('', 'START_DATE'));
}
$extra['SELECT'] = ',LAST_LOGIN';
$extra['functions'] = array('LAST_LOGIN' => 'makeLogin');
if (basename($_SERVER['PHP_SELF']) != 'index.php') {
if ($_REQUEST['staff_id'] == 'new') {
DrawBC("Users > Add a User");
} else {
DrawBC("Users > " . ProgramTitle());
}
unset($_SESSION['staff_id']);
Search('staff_id', $extra);
} else {
DrawHeader('Create Account');
}
if (clean_param($_REQUEST['modfunc'], PARAM_ALPHAMOD) == 'delete' && basename($_SERVER['PHP_SELF']) != 'index.php' && AllowEdit()) {
if (DeletePrompt('user')) {
DBQuery('DELETE FROM program_user_config WHERE USER_ID=\'' . UserStaffID() . '\'');
DBQuery('DELETE FROM students_join_people WHERE PERSON_ID=\'' . UserStaffID() . '\'');
DBQuery('DELETE FROM staff WHERE STAFF_ID=\'' . UserStaffID() . '\'');
unset($_SESSION['staff_id']);
unset($_REQUEST['staff_id']);
unset($_REQUEST['modfunc']);
echo '<script language=JavaScript>parent.side.location="' . $_SESSION['Side_PHP_SELF'] . '?modcat="+parent.side.document.forms[0].modcat.value;</script>';
Search('staff_id', $extra);
}
}
if ((UserStaffID() || $_REQUEST['staff_id'] == 'new') && (basename($_SERVER['PHP_SELF']) != 'index.php' || !$_REQUEST['staff']['USERNAME']) && $_REQUEST['modfunc'] != 'delete' && $_SESSION['fn'] != 'staff') {
if ($_REQUEST['staff_id'] != 'new') {
$sql = 'SELECT s.TITLE,s.STAFF_ID,s.FIRST_NAME,s.LAST_NAME,s.MIDDLE_NAME,
USERNAME,PASSWORD,up.TITLE AS PROFILE,s.PROFILE_ID,s.HOME_PHONE,s.EMAIL,LAST_LOGIN,IS_DISABLE
FROM people s,user_profiles up,login_authentication la WHERE s.STAFF_ID=la.USER_ID AND la.PROFILE_ID =4 AND s.STAFF_ID=\'' . UserStaffID() . '\' AND s.PROFILE_ID=up.ID';
}
echo '<FORM action=Modules.php?modname=' . strip_tags(trim($_REQUEST['modname'])) . ' method=POST>';
echo '<script language=JavaScript>parent.side.location="' . $_SESSION['Side_PHP_SELF'] . '?modcat="+parent.side.document.forms[0].modcat.value;</script>';
echo "<br><br>";
DrawHeaderHome('<IMG SRC=assets/check.gif> A new school called <strong>' . GetSchool(UserSchool()) . '</strong> has been created. To finish the operation, click OK button.', '<INPUT type=submit value=OK class="btn_medium">');
echo '<input type="hidden" name="copy" value="done"/>';
echo '</FORM>';
}
} else {
$_REQUEST['modfunc'] = '';
}
unset($_SESSION['_REQUEST_vars']['values']);
unset($_SESSION['_REQUEST_vars']['modfunc']);
}
if (clean_param($_REQUEST['modfunc'], PARAM_ALPHAMOD) == 'update' && clean_param($_REQUEST['button'], PARAM_ALPHAMOD) == 'Delete' && User('PROFILE') == 'admin') {
if (DeletePrompt('school')) {
if (BlockDelete('school')) {
DBQuery('DELETE FROM schools WHERE ID=\'' . UserSchool() . '\'');
DBQuery('DELETE FROM school_gradelevels WHERE SCHOOL_ID=\'' . UserSchool() . '\'');
DBQuery('DELETE FROM attendance_calendar WHERE SCHOOL_ID=\'' . UserSchool() . '\'');
DBQuery('DELETE FROM school_periods WHERE SCHOOL_ID=\'' . UserSchool() . '\'');
DBQuery('DELETE FROM school_years WHERE SCHOOL_ID=\'' . UserSchool() . '\'');
DBQuery('DELETE FROM school_semesters WHERE SCHOOL_ID=\'' . UserSchool() . '\'');
DBQuery('DELETE FROM school_quarters WHERE SCHOOL_ID=\'' . UserSchool() . '\'');
DBQuery('DELETE FROM school_progress_periods WHERE SCHOOL_ID=\'' . UserSchool() . '\'');
DBQuery('UPDATE staff SET CURRENT_SCHOOL_ID=NULL WHERE CURRENT_SCHOOL_ID=\'' . UserSchool() . '\'');
DBQuery('UPDATE staff SET SCHOOLS=replace(SCHOOLS,\',' . UserSchool() . ',\',\',\')');
unset($_SESSION['UserSchool']);
echo '<script language=JavaScript>parent.side.location="' . $_SESSION['Side_PHP_SELF'] . '?modcat="+parent.side.document.forms[0].modcat.value;</script>';
unset($_REQUEST);
$_REQUEST['modname'] = "schoolsetup/Schools.php?new_school=true";
DBQuery('DELETE FROM people_join_contacts WHERE PERSON_ID=\'' . $_REQUEST[person_id] . '\'');
}
unset($_REQUEST['modfunc']);
unset($_REQUEST['person_id']);
if (!isset($_REQUEST['address_id'])) {
$stu_ad_id = DBGet(DBQuery('SELECT ADDRESS_ID FROM address WHERE STUDENT_ID=\'' . UserStudentID() . '\''));
$stu_ad_id = $stu_ad_id[1]['ADDRESS_ID'];
if (count($stu_ad_id)) {
$_REQUEST['address_id'] = $stu_ad_id;
} else {
$_REQUEST['address_id'] = 'new';
}
}
}
} elseif ($_REQUEST['address_id']) {
if (DeletePrompt('address')) {
DBQuery('UPDATE students_join_people SET ADDRESS_ID=\'0\' WHERE STUDENT_ID=\'' . UserStudentID() . '\' AND ADDRESS_ID=\'' . $_REQUEST[address_id] . '\'');
DBQuery('DELETE FROM students_join_address WHERE STUDENT_ID=\'' . UserStudentID() . '\' AND ADDRESS_ID=\'' . $_REQUEST['address_id'] . '\'');
if (count(DBGet(DBQuery('SELECT STUDENT_ID FROM students_join_address WHERE ADDRESS_ID=\'' . $_REQUEST['address_id'] . '\''))) == 0) {
DBQuery('DELETE FROM address WHERE ADDRESS_ID=\'' . $_REQUEST['address_id'] . '\'');
}
unset($_REQUEST['modfunc']);
$_REQUEST['address_id'] = 'new';
}
}
}
if (!$_REQUEST['modfunc']) {
$addresses_RET = DBGet(DBQuery('SELECT a.ADDRESS_ID, sjp.STUDENT_RELATION,a.ADDRESS,a.STREET,a.CITY,a.STATE,a.ZIPCODE,a.BUS_NO,a.BUS_PICKUP,a.BUS_DROPOFF,a.MAIL_ADDRESS,a.MAIL_STREET,a.MAIL_CITY,a.MAIL_STATE,a.MAIL_ZIPCODE,a.PRIM_STUDENT_RELATION,a.PRI_FIRST_NAME,a.PRI_LAST_NAME,a.HOME_PHONE,a.WORK_PHONE,a.MOBILE_PHONE,a.EMAIL,a.PRIM_CUSTODY,a.PRIM_ADDRESS,a.PRIM_STREET,a.PRIM_CITY,a.PRIM_STATE,a.PRIM_ZIPCODE,a.SEC_STUDENT_RELATION,a.SEC_FIRST_NAME,a.SEC_LAST_NAME,a.SEC_HOME_PHONE,a.SEC_WORK_PHONE,a.SEC_MOBILE_PHONE,a.SEC_EMAIL,a.SEC_CUSTODY,a.SEC_ADDRESS,a.SEC_STREET,a.SEC_CITY,a.SEC_STATE,a.SEC_ZIPCODE, sjp.CUSTODY,sja.MAILING,sja.RESIDENCE FROM address a,students_join_address sja,students_join_people sjp WHERE a.ADDRESS_ID=sja.ADDRESS_ID AND sja.STUDENT_ID=\'' . UserStudentID() . '\' AND a.ADDRESS_ID=sjp.ADDRESS_ID AND sjp.STUDENT_ID=sja.STUDENT_ID' . ' UNION SELECT a.ADDRESS_ID,\'\' AS STUDENT_RELATION,a.ADDRESS,a.STREET,a.CITY,a.STATE,a.ZIPCODE,a.BUS_NO,a.BUS_PICKUP,a.BUS_DROPOFF,a.MAIL_ADDRESS,a.MAIL_STREET,a.MAIL_CITY,a.MAIL_STATE,a.MAIL_ZIPCODE,a.PRIM_STUDENT_RELATION,a.PRI_FIRST_NAME,a.PRI_LAST_NAME,a.HOME_PHONE,a.WORK_PHONE,a.MOBILE_PHONE,a.EMAIL,a.PRIM_CUSTODY,a.PRIM_ADDRESS,a.PRIM_STREET,a.PRIM_CITY,a.PRIM_STATE,a.PRIM_ZIPCODE,a.SEC_STUDENT_RELATION,a.SEC_FIRST_NAME,a.SEC_LAST_NAME,a.SEC_HOME_PHONE,a.SEC_WORK_PHONE,a.SEC_MOBILE_PHONE,a.SEC_EMAIL,a.SEC_CUSTODY,a.SEC_ADDRESS,a.SEC_STREET,a.SEC_CITY,a.SEC_STATE,a.SEC_ZIPCODE,a.PRIM_CUSTODY AS CUSTODY,sja.MAILING,sja.RESIDENCE FROM address a,students_join_address sja WHERE a.ADDRESS_ID=sja.ADDRESS_ID AND sja.STUDENT_ID=\'' . UserStudentID() . '\' AND NOT EXISTS (SELECT \'\' FROM students_join_people sjp WHERE sjp.STUDENT_ID=sja.STUDENT_ID AND sjp.ADDRESS_ID=a.ADDRESS_ID) ORDER BY CUSTODY ASC,STUDENT_RELATION'), array(), array('ADDRESS_ID'));
if (count($addresses_RET) == 1 && $_REQUEST['address_id'] != 'new' && $_REQUEST['address_id'] != 'old' && $_REQUEST['address_id'] != '0') {
$_REQUEST['address_id'] = key($addresses_RET);
}
foreach ($value as $val) {
if ($val) {
$sql .= str_replace('"', '"', $val) . '||';
}
}
$sql .= "',";
}
}
$sql = substr($sql, 0, -1) . " WHERE ID='{$_REQUEST['referral_id']}'";
DBQuery($sql);
unset($_REQUEST['values']);
unset($_SESSION['_REQUEST_vars']['values']);
}
DrawHeader(ProgramTitle());
if ($_REQUEST['modfunc'] == 'remove') {
if (DeletePrompt(_('referral'))) {
DBQuery("DELETE FROM DISCIPLINE_REFERRALS WHERE ID='{$_REQUEST['id']}'");
unset($_REQUEST['modfunc']);
}
}
$categories_RET = DBGet(DBQuery("SELECT df.ID,du.TITLE FROM DISCIPLINE_FIELDS df,DISCIPLINE_FIELD_USAGE du WHERE df.DATA_TYPE!='textarea' AND du.SYEAR='" . UserSyear() . "' AND du.SCHOOL_ID='" . UserSchool() . "' AND du.DISCIPLINE_FIELD_ID=df.ID ORDER BY du.SORT_ORDER"));
Widgets('all');
$extra['SELECT'] = ',dr.*';
if (strpos($extra['FROM'], 'DISCIPLINE_REFERRALS') === false) {
$extra['FROM'] .= ',DISCIPLINE_REFERRALS dr ';
$extra['WHERE'] .= ' AND dr.STUDENT_ID=ssm.STUDENT_ID AND dr.SYEAR=ssm.SYEAR AND dr.SCHOOL_ID=ssm.SCHOOL_ID ';
}
$extra['ORDER_BY'] = 'dr.ENTRY_DATE DESC,s.LAST_NAME,s.FIRST_NAME,s.MIDDLE_NAME';
$extra['columns_after'] = array('STAFF_ID' => _('Reporter'), 'ENTRY_DATE' => _('Incident Date'));
$extra['functions'] = array('STAFF_ID' => 'GetTeacher', 'ENTRY_DATE' => 'ProperDate');
foreach ($categories_RET as $category) {
DBQuery($sql);
}
}
unset($_REQUEST['tables']);
}
if ($_REQUEST['modfunc'] == 'delete') {
if ($_REQUEST['id']) {
if (DeletePrompt('contact field')) {
$id = $_REQUEST['id'];
DBQuery('DELETE FROM people_fields WHERE ID=\'' . $id . '\'');
DBQuery('ALTER TABLE people DROP COLUMN CUSTOM_\'' . $id . '\'');
$_REQUEST['modfunc'] = '';
unset($_REQUEST['id']);
}
} elseif ($_REQUEST['category_id']) {
if (DeletePrompt('contact field category and all fields in the category')) {
$fields = DBGet(DBQuery('SELECT ID FROM people_fields WHERE CATEGORY_ID=\'' . $_REQUEST[category_id] . '\''));
foreach ($fields as $field) {
DBQuery('DELETE FROM people_fields WHERE ID=\'' . $field[ID] . '\'');
DBQuery('ALTER TABLE people DROP COLUMN CUSTOM_\'' . $field[ID] . '\'');
}
DBQuery('DELETE FROM people_field_categories WHERE ID=\'' . $_REQUEST[category_id] . '\\"');
$_REQUEST['modfunc'] = '';
unset($_REQUEST['category_id']);
}
}
}
if (!$_REQUEST['modfunc']) {
// CATEGORIES
$sql = 'SELECT ID,TITLE,SORT_ORDER FROM people_field_categories ORDER BY SORT_ORDER,TITLE';
$QI = DBQuery($sql);
/* if($_REQUEST['modname']!='Attendance/Administration.php')
{
DrawHeaderHome( 'Selected Student: '.$RET[1]['FIRST_NAME'].' '.($RET[1]['MIDDLE_NAME']?$RET[1]['MIDDLE_NAME'].' ':'').$RET[1]['LAST_NAME'].' '.$RET[1]['NAME_SUFFIX'].' (<A HREF=Side.php?student_id=new&modcat='.$_REQUEST['modcat'].'><font color=red>Remove</font></A>) | <A HREF=Modules.php?modname='.$_REQUEST['modname'].'&search_modfunc=list&next_modname='.$_REQUEST['modname'].'&ajax=true&bottom_back=true&return_session=true target=body>Back to Student List</A>');
}*/
} else {
if ($count_student_RET[1]['NUM'] == 1) {
DrawHeaderHome(_('Selected Student') . ': ' . $RET[1]['FIRST_NAME'] . ' ' . ($RET[1]['MIDDLE_NAME'] ? $RET[1]['MIDDLE_NAME'] . ' ' : '') . $RET[1]['LAST_NAME'] . ' ' . $RET[1]['NAME_SUFFIX'] . ' (<A HREF=Side.php?student_id=new&modcat=' . clean_param($_REQUEST['modcat'], PARAM_NOTAGS) . '><font color=red>' . _('Deselect') . '</font></A>) ');
}
}
}
if ($_REQUEST['modfunc'] == 'add' && AllowEdit()) {
DBQuery('INSERT INTO student_eligibility_activities (STUDENT_ID,ACTIVITY_ID,SYEAR) values(\'' . UserStudentID() . '\',\'' . $_REQUEST['new_activity'] . '\',\'' . UserSyear() . '\')');
unset($_REQUEST['modfunc']);
}
if ($_REQUEST['modfunc'] == 'remove' && AllowEdit()) {
if (DeletePrompt('activity')) {
DBQuery('DELETE FROM student_eligibility_activities WHERE STUDENT_ID=\'' . UserStudentID() . '\' AND ACTIVITY_ID=\'' . $_REQUEST['activity_id'] . '\' AND SYEAR=\'' . UserSyear() . '\'');
unset($_REQUEST['modfunc']);
}
}
if (UserStudentID() && !$_REQUEST['modfunc']) {
$start_end_RET = DBGet(DBQuery('SELECT TITLE,VALUE FROM program_config WHERE SYEAR=\'' . UserSyear() . '\' AND SCHOOL_ID=\'' . UserSchool() . '\' AND PROGRAM=\'eligibility\' AND TITLE IN (\'' . 'START_DAY' . '\',\'' . 'END_DAY' . '\')'));
if (count($start_end_RET)) {
foreach ($start_end_RET as $value) {
${$value}['TITLE'] = $value['VALUE'];
}
}
switch (date('D')) {
case 'Mon':
$today = 1;
break;
if (count($_REQUEST['mp_arr'])) {
foreach ($_REQUEST['mp_arr'] as $mp) {
$mp_list .= ",'{$mp}'";
}
$mp_list = substr($mp_list, 1);
$last_mp = $mp;
}
$delete_message = " ";
if (optional_param('modfunc', '', PARAM_NOTAGS) != 'gradelist') {
$x = "x";
} else {
$extra['action'] .= '&modfunc=gradelist';
}
$extra['force_search'] = true;
if (optional_param('delete', '', PARAM_ALPHA) == 'true') {
if (DeletePrompt('Duplicate Attendance Record')) {
$i = 0;
$ii = 0;
$iii = 0;
$sid = optional_param('studentidx', '', PARAM_ALPHANUM);
$cnt = optional_param('deletecheck', '', PARAM_INT);
$pid = optional_param('periodidx', '', PARAM_SPCL);
$sdt = $_REQUEST['schooldatex'];
foreach ($cnt as $a => $val_dchck) {
$val1 = $val_dchck;
if ($val1 >= 0) {
foreach ($sid as $b => $val_sid) {
$val2 = $val_sid;
if ($val1 == $i) {
foreach ($pid as $c => $val_pid) {
$val3 = $val_pid;
} else {
ShowErrPhp(_('You can\'t add any enrollment code in this type'));
}
}
}
}
DrawBC("" . _('Students') . " > " . ProgramTitle());
if (clean_param($_REQUEST['modfunc'], PARAM_ALPHAMOD) == 'remove') {
$select_enroll = DBGet(DBQuery('SELECT TYPE FROM student_enrollment_codes WHERE ID=\'' . $_REQUEST[id] . '\''));
if ($select_enroll[1][TYPE] != 'Roll' && $select_enroll[1][TYPE] != 'TrnD' && $select_enroll[1][TYPE] != 'TrnE') {
$has_assigned_RET = DBGet(DBQuery('SELECT COUNT(*) AS TOTAL_ASSIGNED FROM student_enrollment WHERE ENROLLMENT_CODE=\'' . $_REQUEST[id] . '\''));
$has_assigned = $has_assigned_RET[1]['TOTAL_ASSIGNED'];
if ($has_assigned > 0) {
UnableDeletePrompt(_('Cannot delete because enrollment codes are associated.'));
} else {
if (DeletePrompt('enrollment code')) {
DBQuery('DELETE FROM student_enrollment_codes WHERE ID=\'' . $_REQUEST[id] . '\'');
unset($_REQUEST['modfunc']);
}
}
} else {
UnableDeletePrompt(_('Cannot delete because it is not deletable.'));
}
}
if ($_REQUEST['modfunc'] != 'remove') {
$sql = 'SELECT ID,TITLE,SHORT_NAME,TYPE FROM student_enrollment_codes WHERE SYEAR=\'' . UserSyear() . '\' ORDER BY TITLE';
$QI = DBQuery($sql);
$codes_RET = DBGet($QI, array('TITLE' => 'makeTextInput', 'SHORT_NAME' => 'makeTextInput', 'TYPE' => 'makeSelectInput'));
$columns = array('TITLE' => '' . _('Title') . '', 'SHORT_NAME' => '' . _('Short Name') . '', 'TYPE' => '' . _('Type') . '');
$link['add']['html'] = array('TITLE' => makeTextInput('', 'TITLE'), 'SHORT_NAME' => makeTextInput('', 'SHORT_NAME'), 'TYPE' => makeSelectInput('', 'TYPE'));
$link['remove']['link'] = "Modules.php?modname={$_REQUEST['modname']}&modfunc=remove";
$error = ErrorMessage(array(_('Please enter a valid Sort Order.')));
}
}
unset($_REQUEST['tables']);
}
if ($_REQUEST['modfunc'] == 'delete' && AllowEdit()) {
if ($_REQUEST['id']) {
if (DeletePrompt(_('Student Field'))) {
$id = $_REQUEST['id'];
DBQuery("DELETE FROM CUSTOM_FIELDS WHERE ID='{$id}'");
DBQuery("ALTER TABLE STUDENTS DROP COLUMN CUSTOM_{$id}");
$_REQUEST['modfunc'] = '';
unset($_REQUEST['id']);
}
} elseif ($_REQUEST['category_id']) {
if (DeletePrompt(_('Student Field Category') . ' ' . _('and all fields in the category'))) {
$fields = DBGet(DBQuery("SELECT ID FROM CUSTOM_FIELDS WHERE CATEGORY_ID='{$_REQUEST['category_id']}'"));
foreach ($fields as $field) {
DBQuery("DELETE FROM CUSTOM_FIELDS WHERE ID='{$field['ID']}'");
DBQuery("ALTER TABLE STUDENTS DROP COLUMN CUSTOM_{$field['ID']}");
}
DBQuery("DELETE FROM STUDENT_FIELD_CATEGORIES WHERE ID='{$_REQUEST['category_id']}'");
// remove from profiles and permissions
DBQuery("DELETE FROM PROFILE_EXCEPTIONS WHERE MODNAME='Students/Student.php&category_id={$_REQUEST['category_id']}'");
DBQuery("DELETE FROM STAFF_EXCEPTIONS WHERE MODNAME='Students/Student.php&category_id={$_REQUEST['category_id']}'");
$_REQUEST['modfunc'] = '';
unset($_REQUEST['category_id']);
}
}
}
if (empty($_REQUEST['modfunc'])) {
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program. If not, see <http://www.gnu.org/licenses/>.
#
#***************************************************************************************
include '../../../Redirect_includes.php';
include_once 'modules/Students/includes/functions.php';
if (clean_param($_REQUEST['modfunc'], PARAM_ALPHAMOD) == 'delete' && User('PROFILE') == 'admin') {
if (!$_REQUEST['delete_ok'] && !$_REQUEST['delete_cancel']) {
echo '</FORM>';
}
if (DeletePrompt($_REQUEST['title'])) {
DBQuery("DELETE FROM {$_REQUEST['table']} WHERE ID='{$_REQUEST['id']}'");
unset($_REQUEST['modfunc']);
}
}
if (clean_param($_REQUEST['modfunc'], PARAM_ALPHAMOD) == 'update') {
unset($_REQUEST['modfunc']);
}
if (!$_REQUEST['modfunc']) {
echo '<div style="position: absolute; z-index:1000; width: 495px; height: 300px; visibility:hidden; background-image:url(\'assets/comment_background.gif\');" id="dc"></div>';
echo '<TABLE width=100% border=0 cellpadding=0 cellspacing=0>';
echo '<TR><TD valign=top>';
$_REQUEST['category_id'] = 2;
echo '<div class=hseparator><b>' . _('Medical Information') . '</b></div><div class=clear></div>';
echo '<TABLE cellpadding=5>';
echo '<TR>';
if ($go) {
DBQuery($sql);
}
}
}
unset($_REQUEST['modfunc']);
}
DrawHeader(ProgramTitle());
if ($_REQUEST['modfunc'] == 'remove') {
if ($_REQUEST['table'] != 'new') {
if (DeletePrompt('attendance code')) {
DBQuery("DELETE FROM ATTENDANCE_CODES WHERE ID='{$_REQUEST['id']}'");
unset($_REQUEST['modfunc']);
}
} else {
if (DeletePrompt('category')) {
DBQuery("DELETE FROM ATTENDANCE_CODE_CATEGORIES WHERE ID='{$_REQUEST['id']}'");
DBQuery("DELETE FROM ATTENDANCE_CODES WHERE TABLE_NAME='{$_REQUEST['id']}'");
DBQuery("UPDATE COURSE_PERIODS SET DOES_ATTENDANCE=replace(DOES_ATTENDANCE,',{$_REQUEST['id']},',',') WHERE SYEAR='" . UserSyear() . "' AND SCHOOL_ID='" . UserSchool() . "'");
DBQuery("UPDATE COURSE_PERIODS SET DOES_ATTENDANCE=NULL WHERE DOES_ATTENDANCE=',' AND SYEAR='" . UserSyear() . "' AND SCHOOL_ID='" . UserSchool() . "'");
unset($_REQUEST['modfunc']);
}
}
}
if (!$_REQUEST['modfunc']) {
if ($_REQUEST['table'] !== 'new') {
$sql = "SELECT ID,TITLE,SHORT_NAME,TYPE,DEFAULT_CODE,STATE_CODE,SORT_ORDER FROM ATTENDANCE_CODES WHERE SYEAR='" . UserSyear() . "' AND SCHOOL_ID='" . UserSchool() . "' AND TABLE_NAME='" . $_REQUEST['table'] . "' ORDER BY SORT_ORDER,TITLE";
$QI = DBQuery($sql);
$attendance_codes_RET = DBGet($QI, array('TITLE' => '_makeTextInput', 'SHORT_NAME' => '_makeTextInput', 'SORT_ORDER' => '_makeTextInput', 'TYPE' => '_makeSelectInput', 'STATE_CODE' => '_makeSelectInput', 'DEFAULT_CODE' => '_makeCheckBoxInput'));
}
$tabs = array(array('title' => _('Attendance'), 'link' => "Modules.php?modname={$_REQUEST['modname']}&table=0"));
}
unset($_REQUEST['values']);
unset($_SESSION['_REQUEST_vars']['values']);
}
if ($_REQUEST['modfunc'] == 'delete' && AllowEdit()) {
if (DeletePrompt(_('Category'))) {
$id = $_REQUEST['id'];
DBQuery("DELETE FROM DISCIPLINE_FIELDS WHERE ID='{$id}'");
DBQuery("DELETE FROM DISCIPLINE_FIELD_USAGE WHERE DISCIPLINE_FIELD_ID='{$id}'");
DBQuery("ALTER TABLE DISCIPLINE_REFERRALS DROP COLUMN CATEGORY_{$id}");
unset($_REQUEST['modfunc']);
unset($_REQUEST['id']);
}
}
if ($_REQUEST['modfunc'] == 'delete_usage' && AllowEdit()) {
if (DeletePrompt(_('category from this school\'s referral form'), 'remove')) {
$id = $_REQUEST['id'];
DBQuery("DELETE FROM DISCIPLINE_FIELD_USAGE WHERE ID='{$id}'");
unset($_REQUEST['modfunc']);
unset($_REQUEST['id']);
}
}
if ($_REQUEST['modfunc'] == 'add_usage' && AllowEdit()) {
DBQuery("INSERT INTO DISCIPLINE_FIELD_USAGE (ID,DISCIPLINE_FIELD_ID,SYEAR,SCHOOL_ID,TITLE,SELECT_OPTIONS,SORT_ORDER) SELECT " . db_seq_nextval('DISCIPLINE_FIELD_USAGE_SEQ') . " AS ID,'" . $_REQUEST['id'] . "' AS DISCIPLINE_FIELD_ID,'" . UserSyear() . "' AS SYEAR,'" . UserSchool() . "' AS SCHOOL_ID,TITLE,NULL AS SELECT_OPTIONS,NULL AS SORT_ORDER FROM DISCIPLINE_FIELDS WHERE ID='" . $_REQUEST['id'] . "'");
unset($_REQUEST['modfunc']);
unset($_REQUEST['id']);
}
if (empty($_REQUEST['modfunc'])) {
$sql = "SELECT NULL AS REMOVE,du.ID AS USAGE_ID,df.ID,COALESCE(du.TITLE,df.TITLE) AS TITLE,du.SORT_ORDER,df.DATA_TYPE,du.SELECT_OPTIONS FROM DISCIPLINE_FIELDS df LEFT OUTER JOIN DISCIPLINE_FIELD_USAGE du ON (du.DISCIPLINE_FIELD_ID=df.ID AND du.SYEAR='" . UserSyear() . "' AND du.SCHOOL_ID='" . UserSchool() . "') ORDER BY du.ID,du.SORT_ORDER";
$QI = DBQuery($sql);
$referrals_RET = DBGet($QI, array('REMOVE' => '_makeRemove', 'TITLE' => '_makeTextInput', 'SORT_ORDER' => '_makeTextInput', 'DATA_TYPE' => '_makeType', 'SELECT_OPTIONS' => '_makeTextAreaInput'));
DBQuery($sql);
}
$max_ID = DBGet(DBQuery('SELECT MAX(ID) AS ID FROM login_message'));
$login_VAL = DBGet(DBQuery('SELECT ID,MESSAGE FROM login_message WHERE ID=' . $max_ID[1]['ID'] . ' '));
$sql = 'UPDATE login_message SET ';
if ($login_VAL[1]['MESSAGE'] != '') {
$sql .= $col . '=\'Y\' ';
$sql .= ' WHERE ID=' . $max_ID[1]['ID'] . '';
}
DBQuery($sql);
}
}
unset($_REQUEST['maintain']);
}
if (clean_param($_REQUEST['modfunc'], PARAM_ALPHAMOD) == 'remove') {
if (DeletePrompt('login message')) {
DBQuery("DELETE FROM login_message WHERE ID='{$_REQUEST['id']}'");
unset($_REQUEST['modfunc']);
}
}
if ($_REQUEST['modfunc'] != 'remove') {
$maintain_RET = DBGet(DBQuery("SELECT SYSTEM_MAINTENANCE_SWITCH FROM system_preference_misc LIMIT 1"));
$maintain = $maintain_RET[1];
echo "<FORM name=maintenance id=maintenance action=Modules.php?modname={$_REQUEST['modname']}&modfunc=update&page_display=MAINTENANCE method=POST>";
echo '<table>';
echo '<tr><td align=left><span style="font-size:12px; font-weight:bold;">' . _('Under Maintenance') . ' :</td><td><span style="font-weight:bold;">' . CheckboxInput($maintain['SYSTEM_MAINTENANCE_SWITCH'], 'maintain[SYSTEM_MAINTENANCE_SWITCH]') . '</span></td></tr>';
$sql = 'SELECT ID,MESSAGE,DISPLAY FROM login_message ORDER BY ID';
$QI = DBQuery($sql);
$login_MESSAGE = DBGet($QI, array('MESSAGE' => '_makeContentInput', 'DISPLAY' => '_makeRadio'));
$link['add']['html'] = array('MESSAGE' => _makeContentInput('', 'MESSAGE'), 'DISPLAY' => _makeRadio('', 'DISPLAY'));
$link['remove']['link'] = "Modules.php?modname={$_REQUEST['modname']}&modfunc=remove&page_display=MAINTENANCE";
if ($value) {
$fields .= $column . ',';
$values .= "'" . str_replace("\\'", "''", $value) . "',";
$go = true;
}
}
$sql .= '(' . substr($fields, 0, -1) . ') values(' . substr($values, 0, -1) . ')';
if ($go) {
DBQuery($sql);
}
}
}
}
DrawHeader(ProgramTitle());
if ($_REQUEST['modfunc'] == 'remove' && AllowEdit()) {
if (DeletePrompt('period')) {
DBQuery("DELETE FROM SCHOOL_PERIODS WHERE PERIOD_ID='{$_REQUEST['id']}'");
unset($_REQUEST['modfunc']);
}
}
if ($_REQUEST['modfunc'] != 'remove') {
$sql = "SELECT PERIOD_ID,TITLE,SHORT_NAME,SORT_ORDER,LENGTH,START_TIME,END_TIME,BLOCK,ATTENDANCE FROM SCHOOL_PERIODS WHERE SYEAR='" . UserSyear() . "' AND SCHOOL_ID='" . UserSchool() . "' ORDER BY SORT_ORDER";
$QI = DBQuery($sql);
$periods_RET = DBGet($QI, array('TITLE' => '_makeTextInput', 'SHORT_NAME' => '_makeTextInput', 'SORT_ORDER' => '_makeTextInput', 'BLOCK' => '_makeTextInput', 'LENGTH' => '_makeTextInput', 'START_TIME' => '_makeTimeInput', 'END_TIME' => '_makeTimeInput', 'ATTENDANCE' => '_makeCheckboxInput'));
$columns = array('TITLE' => _('Title'), 'SHORT_NAME' => _('Short Name'), 'SORT_ORDER' => _('Sort Order'), 'LENGTH' => _('Length (minutes)'), 'BLOCK' => _('Block'), 'ATTENDANCE' => _('Used for Attendance'), 'START_TIME' => _('Start Time'), 'END_TIME' => _('End Time'));
$link['add']['html'] = array('TITLE' => _makeTextInput('', 'TITLE'), 'SHORT_NAME' => _makeTextInput('', 'SHORT_NAME'), 'LENGTH' => _makeTextInput('', 'LENGTH'), 'SORT_ORDER' => _makeTextInput('', 'SORT_ORDER'), 'BLOCK' => _makeTextInput('', 'BLOCK'), 'START_TIME' => _makeTimeInput('', 'START_TIME'), 'END_TIME' => _makeTimeInput('', 'END_TIME'), 'ATTENDANCE' => _makeCheckboxInput('', 'ATTENDANCE'));
$link['remove']['link'] = "Modules.php?modname={$_REQUEST['modname']}&modfunc=remove";
$link['remove']['variables'] = array('id' => 'PERIOD_ID');
echo "<FORM action=Modules.php?modname={$_REQUEST['modname']}&modfunc=update method=POST>";
DrawHeader('', SubmitButton(_('Save')));
ListOutput($periods_RET, $columns, _('Period'), _('Periods'), $link);
