$error = ErrorMessage(array(_('Please enter a valid Sort Order.'))); } } unset($_REQUEST['tables']); } if ($_REQUEST['modfunc'] == 'delete' && AllowEdit()) { if ($_REQUEST['id']) { if (DeletePrompt(_('Address Field'))) { $id = $_REQUEST['id']; DBQuery("DELETE FROM ADDRESS_FIELDS WHERE ID='{$id}'"); DBQuery("ALTER TABLE ADDRESS DROP COLUMN CUSTOM_{$id}"); $_REQUEST['modfunc'] = ''; unset($_REQUEST['id']); } } elseif ($_REQUEST['category_id']) { if (DeletePrompt(_('Address Field Category') . ' ' . _('and all fields in the category'))) { $fields = DBGet(DBQuery("SELECT ID FROM ADDRESS_FIELDS WHERE CATEGORY_ID='{$_REQUEST['category_id']}'")); foreach ($fields as $field) { DBQuery("DELETE FROM ADDRESS_FIELDS WHERE ID='{$field['ID']}'"); DBQuery("ALTER TABLE ADDRESS DROP COLUMN CUSTOM_{$field['ID']}"); } DBQuery("DELETE FROM ADDRESS_FIELD_CATEGORIES WHERE ID='{$_REQUEST['category_id']}'"); $_REQUEST['modfunc'] = ''; unset($_REQUEST['category_id']); } } } if (empty($_REQUEST['modfunc'])) { //modif Francois: fix SQL bug invalid sort order if (isset($error)) { echo $error;
$extra['SELECT'] = ',LAST_LOGIN'; $extra['columns_after'] = array('LAST_LOGIN' => 'Last Login'); $extra['functions'] = array('LAST_LOGIN' => 'makeLogin'); if (basename($_SERVER['PHP_SELF']) != 'index.php') { if ($_REQUEST['staff_id'] == 'new') { DrawBC("Users > Add a User"); } else { DrawBC("Users > " . ProgramTitle()); } SearchStaff('staff_id', $extra); } else { DrawHeader('Create Account'); } if ($_REQUEST['modfunc'] == 'delete' && basename($_SERVER['PHP_SELF']) != 'index.php' && AllowEdit()) { # ------------------------------------ For Certification Start ------------------------------------------- # if (DeletePrompt('certification')) { DBQuery("DELETE FROM staff_certification WHERE STAFF_CERTIFICATION_ID='{$_REQUEST['certification_id']}'"); unset($_REQUEST['modfunc']); $_REQUEST['certification_id'] = 'new'; } } if ((UserStaffID() || $_REQUEST['staff_id'] == 'new') && (basename($_SERVER['PHP_SELF']) != 'index.php' || !$_REQUEST['staff']['USERNAME']) && $_REQUEST['modfunc'] != 'delete' && $_SESSION['fn'] != 'user' && $_REQUEST['modfunc'] != 'remove') { if ($_REQUEST['modfunc'] != 'delete' || $_REQUEST['delete_ok'] == '1') { if ($_REQUEST['staff_id'] != 'new') { $sql = "SELECT * FROM staff WHERE STAFF_ID='" . UserStaffID() . "'"; $QI = DBQuery($sql); $staff = DBGet($QI); $staff = $staff[1]; $email = $staff[EMAIL]; echo "<FORM name=staff id=staff action=Modules.php?modname={$_REQUEST['modname']}&custom=staff&include={$_REQUEST['include']}&category_id={$_REQUEST['category_id']}&staff_id=" . UserStaffID() . "&modfunc=update method=POST >"; } elseif (basename($_SERVER['PHP_SELF']) != 'index.php') {
<?php DrawHeader('Pre-Defined Student Billing Fees'); if ($_REQUEST[modfunc] == 'update') { $_REQUEST['date'] = $_REQUEST['day'] . '-' . $_REQUEST['month'] . '-' . $_REQUEST['year']; if ($_REQUEST['date'] == '--') { $_REQUEST['date'] = ''; } $effective_date = DBDate(); $sql = "INSERT INTO STU_BILLING_DEFINED_FEES (ID,ACCOUNT_ID,TITLE,AMOUNT,DUE_DATE,SYEAR,SCHOOL,GRADE) \n\t\t\tvalues(" . db_seq_nextval('STU_BILLING_DEFINED_FEES_SEQ') . ",'{$_REQUEST['account_id']}','{$_REQUEST['title']}','{$_REQUEST['amount']}','{$_REQUEST['date']}','{$_REQUEST['syear']}','{$_REQUEST['school']}','{$_REQUEST['grade']}')"; DBQuery($sql); $note[] = 'That Pre-Defined Fee has been added'; unset($_REQUEST[modfunc]); } if ($_REQUEST[modfunc] == 'delete') { if (DeletePrompt('pre-defined fee')) { DBQuery("DELETE FROM STU_BILLING_DEFINED_FEES WHERE ID='{$_REQUEST['id']}'"); $note[] = "That Pre-Defined Fee has been Deleted"; unset($_REQUEST[modfunc]); } } if (!$_REQUEST[modfunc]) { // LIST if ($note) { echo '<TABLE width=100%><TR><TD bgcolor=#E8E8E9><font size=-1>'; ErrorMessage($note, 'note'); echo '</font></TD></TR></TABLE>'; } echo "<FORM action=Modules.php?modname={$_REQUEST['modname']}&modfunc=update METHOD=POST>"; $functions = array('AMOUNT' => 'Currency', 'ACCOUNT_ID' => 'getAccount', 'DUE_DATE' => 'ProperDate', 'SYEAR' => 'DispYear', 'SCHOOL' => 'GetSchool', 'GRADE' => 'GetGrade'); $RET = DBGet(DBQuery('SELECT DISTINCT sb.ID,sb.TITLE,sb.AMOUNT,
DBQuery($sql); } } unset($_REQUEST['tables']); } if ($_REQUEST['modfunc'] == 'delete') { if ($_REQUEST['id']) { if (DeletePrompt('address field')) { $id = $_REQUEST['id']; DBQuery("DELETE FROM ADDRESS_FIELDS WHERE ID='{$id}'"); DBQuery("ALTER TABLE ADDRESS DROP COLUMN CUSTOM_{$id}"); $_REQUEST['modfunc'] = ''; unset($_REQUEST['id']); } } elseif ($_REQUEST['category_id']) { if (DeletePrompt('address field category and all fields in the category')) { $fields = DBGet(DBQuery("SELECT ID FROM ADDRESS_FIELDS WHERE CATEGORY_ID='{$_REQUEST['category_id']}'")); foreach ($fields as $field) { DBQuery("DELETE FROM ADDRESS_FIELDS WHERE ID='{$field['ID']}'"); DBQuery("ALTER TABLE ADDRESS DROP COLUMN CUSTOM_{$field['ID']}"); } DBQuery("DELETE FROM ADDRESS_FIELD_CATEGORIES WHERE ID='{$_REQUEST['category_id']}'"); $_REQUEST['modfunc'] = ''; unset($_REQUEST['category_id']); } } } if (!$_REQUEST['modfunc']) { // CATEGORIES $sql = "SELECT ID,TITLE,SORT_ORDER FROM ADDRESS_FIELD_CATEGORIES ORDER BY SORT_ORDER,TITLE"; $QI = DBQuery($sql);
$sql[] = "DELETE FROM schedule_requests WHERE COURSE_ID='{$_REQUEST['course_id']}'"; } elseif ($_REQUEST['subject_id']) { $table = 'subject'; $sql[] = "DELETE FROM course_subjects WHERE SUBJECT_ID='{$_REQUEST['subject_id']}'"; $courses = DBGet(DBQuery("SELECT COURSE_ID FROM courses WHERE SUBJECT_ID='{$_REQUEST['subject_id']}'")); if (count($courses)) { foreach ($courses as $course) { $sql[] = "DELETE FROM courses WHERE COURSE_ID='{$course['COURSE_ID']}'"; $sql[] = "UPDATE course_periods SET PARENT_ID=NULL WHERE PARENT_ID IN (SELECT COURSE_PERIOD_ID FROM course_periods WHERE COURSE_ID='{$course['COURSE_ID']}')"; $sql[] = "DELETE FROM course_periods WHERE COURSE_ID='{$course['COURSE_ID']}'"; $sql[] = "DELETE FROM schedule WHERE COURSE_ID='{$course['COURSE_ID']}'"; $sql[] = "DELETE FROM schedule_requests WHERE COURSE_ID='{$course['COURSE_ID']}'"; } } } if (DeletePrompt($table)) { foreach ($sql as $query) { DBQuery($query); } unset($_REQUEST['modfunc']); } } if ((!$_REQUEST['modfunc'] || $_REQUEST['modfunc'] == 'choose_course') && !$_REQUEST['course_modfunc']) { if ($_REQUEST['modfunc'] != 'choose_course') { DrawBC("" . _('Scheduling') . " > " . ProgramTitle()); } $sql = "SELECT SUBJECT_ID,TITLE FROM course_subjects WHERE SCHOOL_ID='" . UserSchool() . "' AND SYEAR='" . UserSyear() . "' ORDER BY TITLE"; $QI = DBQuery($sql); $subjects_RET = DBGet($QI); if ($_REQUEST['modfunc'] != 'choose_course') { if (AllowEdit()) {
$extra[] = "DELETE FROM SCHOOL_PROGRESS_PERIODS WHERE QUARTER_ID IN (SELECT MARKING_PERIOD_ID FROM SCHOOL_QUARTERS WHERE SEMESTER_ID='{$_REQUEST['marking_period_id']}')"; $extra[] = "DELETE FROM SCHOOL_QUARTERS WHERE SEMESTER_ID='{$_REQUEST['marking_period_id']}'"; break; case 'SCHOOL_QUARTERS': $name = 'quarter'; $parent_term = 'SEM'; $parent_id = $_REQUEST['semester_id']; $extra[] = "DELETE FROM SCHOOL_PROGRESS_PERIODS WHERE QUARTER_ID='{$_REQUEST['marking_period_id']}'"; break; case 'SCHOOL_PROGRESS_PERIODS': $name = 'progress period'; $parent_term = 'QTR'; $parent_id = $_REQUEST['quarter_id']; break; } if (DeletePrompt($name)) { foreach ($extra as $sql) { DBQuery($sql); } DBQuery("DELETE FROM {$table} WHERE MARKING_PERIOD_ID='{$_REQUEST['marking_period_id']}'"); unset($_REQUEST['modfunc']); $_REQUEST['mp_term'] = $parent_term; $_REQUEST['marking_period_id'] = $parent_id; } unset($_SESSION['_REQUEST_vars']['modfunc']); } if (!$_REQUEST['modfunc']) { if ($_REQUEST['marking_period_id'] != 'new') { $delete_button = "<INPUT type=button class=btn_medium value=Delete onClick='javascript:window.location=\"Modules.php?modname={$_REQUEST['modname']}&modfunc=delete&mp_term={$_REQUEST['mp_term']}&year_id={$_REQUEST['year_id']}&semester_id={$_REQUEST['semester_id']}&quarter_id={$_REQUEST['quarter_id']}&marking_period_id={$_REQUEST['marking_period_id']}\"'>"; } // ADDING & EDITING FORM
# Copyright (C) 2007-2008, Open Solutions for Education, Inc. # #************************************************************************* # This program is free software: you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation, version 2 of the License. See license.txt. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, see <http://www.gnu.org/licenses/>. #************************************************************************** DrawHeader(ProgramTitle()); if ($_REQUEST['modfunc'] == 'remove') { if (DeletePrompt('request')) { DBQuery("DELETE FROM SCHEDULE_REQUESTS WHERE STUDENT_ID='{$_REQUEST['student_id']}' AND COURSE_ID='{$_REQUEST['course_id']}' AND COURSE_WEIGHT='{$_REQUEST['course_weight']}' AND SYEAR='" . UserSyear() . "'"); unset($_REQUEST['modfunc']); } } if (!$_REQUEST['modfunc']) { $sql = "SELECT \n\t\t\t\ts.LAST_NAME||', '||s.FIRST_NAME AS FULL_NAME,r.STUDENT_ID,c.TITLE||' - '||r.COURSE_WEIGHT as COURSE,r.COURSE_ID,r.COURSE_WEIGHT \n\t\t\tFROM\n\t\t\t\tSCHEDULE_REQUESTS r,COURSES c,STUDENTS s\n\t\t\tWHERE\n\t\t\t\ts.STUDENT_ID = r.STUDENT_ID AND r.COURSE_ID = c.COURSE_ID\n\t\t\t\tAND r.SYEAR = '" . UserSyear() . "' AND r.SCHOOL_ID = '" . UserSchool() . "'\n\t\t\t\tAND NOT EXISTS (SELECT '' FROM SCHEDULE ss WHERE ss.STUDENT_ID=r.STUDENT_ID AND ss.COURSE_ID=r.COURSE_ID AND ss.COURSE_WEIGHT=r.COURSE_WEIGHT)\n\t\t\t"; $RET = DBGet(DBQuery($sql), array(), array('STUDENT_ID')); $columns = array('FULL_NAME' => 'Student', 'STUDENT_ID' => 'Student ID', 'COURSE' => 'Course'); //$link['remove']['link'] = "Modules.php?modname=$_REQUEST[modname]&modfunc=remove"; $link['remove']['link'] = "#" . " onclick='check_content(\"ajax.php?modname={$_REQUEST['modname']}&modfunc=remove\");'"; $link['remove']['variables'] = array('student_id' => 'STUDENT_ID', 'course_id' => 'COURSE_ID', 'course_weight' => 'COURSE_WEIGHT'); ListOutput($RET, $columns, 'Unscheduled Request', 'Unscheduled Requests', $link, array(array('FULL_NAME', 'STUDENT_ID'))); }
$assYr = $_REQUEST['year_assigned']; $dueMon = $_REQUEST['month_due']; $dueDay = $_REQUEST['day_due']; $dueYr = $_REQUEST['year_due']; $username = User('USERNAME'); $monthnames = array(1 => 'JAN', 'FEB', 'MAR', 'APR', 'MAY', 'JUN', 'JUL', 'AUG', 'SEP', 'OCT', 'NOV', 'DEC'); $dueMon = array_search($dueMon, $monthnames); $dueDate = $dueMon . '/' . $dueDay . '/' . $dueYr; $assMon = array_search($assMon, $monthnames); $assignedDate = $assMon . '/' . $assDay . '/' . $assYr; Fee::addFee($amount, $title, $studentId, $dueDate, $assignedDate, $comment, $module, $username); } echo '<SCRIPT language=javascript>opener.document.location = "Modules.php?modname=' . $_REQUEST['modname'] . "&student_id={$studentId}" . '"; window.close();</script>'; } else { if ($_REQUEST['modfunc'] == 'remove') { if (DeletePrompt(_('fee'), _('waive'))) { include 'modules/Billing/classes/Auth.php'; include 'modules/Billing/classes/Fee.php'; $auth = new Auth(); $staffId = User('STAFF_ID'); $profile = User('PROFILE'); if ($auth->checkAdmin($profile, $staffId)) { $feeId = $_REQUEST['fee_id']; $username = User('USERNAME'); Fee::waiveFee($feeId, $username); } $displayList = true; } } else { if (isset($_REQUEST['student_id'])) { $displayList = true;
if ($value) { $fields .= $column . ','; $values .= "'" . $value . "',"; $go = true; } } $sql .= '(' . mb_substr($fields, 0, -1) . ') values(' . mb_substr($values, 0, -1) . ')'; if ($go) { DBQuery($sql); } } } } DrawHeader(ProgramTitle()); if ($_REQUEST['modfunc'] == 'remove') { if (DeletePrompt(_('Activity'))) { DBQuery("DELETE FROM ELIGIBILITY_ACTIVITIES WHERE ID='{$_REQUEST['id']}'"); unset($_REQUEST['modfunc']); } } if ($_REQUEST['modfunc'] != 'remove') { $sql = "SELECT ID,TITLE,START_DATE,END_DATE FROM ELIGIBILITY_ACTIVITIES WHERE SYEAR='" . UserSyear() . "' AND SCHOOL_ID='" . UserSchool() . "' ORDER BY TITLE"; $QI = DBQuery($sql); $activities_RET = DBGet($QI, array('TITLE' => 'makeTextInput', 'START_DATE' => 'makeDateInput', 'END_DATE' => 'makeDateInput')); $columns = array('TITLE' => _('Title'), 'START_DATE' => _('Begins'), 'END_DATE' => _('Ends')); $link['add']['html'] = array('TITLE' => makeTextInput('', 'TITLE'), 'START_DATE' => makeDateInput('', 'START_DATE'), 'END_DATE' => makeDateInput('', 'END_DATE')); $link['remove']['link'] = "Modules.php?modname={$_REQUEST['modname']}&modfunc=remove"; $link['remove']['variables'] = array('id' => 'ID'); echo '<FORM action="Modules.php?modname=' . $_REQUEST[modname] . '&modfunc=update" method="POST">'; DrawHeader('', SubmitButton(_('Save'))); ListOutput($activities_RET, $columns, 'Activity', 'Activities', $link);
} } $sql .= '(' . substr($fields, 0, -1) . ') values(' . substr($values, 0, -1) . ')'; if ($go) { DBQuery($sql); } } } unset($_REQUEST['values']); unset($_SESSION['_REQUEST_vars']['values']); unset($_REQUEST['profiles']); unset($_SESSION['_REQUEST_vars']['profiles']); } DrawHeader(ProgramTitle()); if ($_REQUEST['modfunc'] == 'remove' && AllowEdit()) { if (DeletePrompt(_('message'))) { DBQuery("DELETE FROM PORTAL_NOTES WHERE ID='{$_REQUEST['id']}'"); unset($_REQUEST['modfunc']); } } if ($_REQUEST['modfunc'] != 'remove') { $sql = "SELECT ID,SORT_ORDER,TITLE,CONTENT,START_DATE,END_DATE,PUBLISHED_PROFILES,CASE WHEN END_DATE IS NOT NULL AND END_DATE<CURRENT_DATE THEN 'Y' ELSE NULL END AS EXPIRED FROM PORTAL_NOTES WHERE SCHOOL_ID='" . UserSchool() . "' AND SYEAR='" . UserSyear() . "' ORDER BY EXPIRED DESC,SORT_ORDER,PUBLISHED_DATE DESC"; $QI = DBQuery($sql); $notes_RET = DBGet($QI, array('TITLE' => '_makeTextInput', 'CONTENT' => '_makeContentInput', 'SORT_ORDER' => '_makeTextInput', 'START_DATE' => '_makePublishing')); $columns = array('TITLE' => _('Title'), 'CONTENT' => _('Note'), 'SORT_ORDER' => _('Sort Order'), 'START_DATE' => _('Publishing Options')); //,'START_TIME'=>'Start Time','END_TIME'=>'End Time' $link['add']['html'] = array('TITLE' => _makeTextInput('', 'TITLE'), 'CONTENT' => _makeContentInput('', 'CONTENT'), 'SHORT_NAME' => _makeTextInput('', 'SHORT_NAME'), 'SORT_ORDER' => _makeTextInput('', 'SORT_ORDER'), 'START_DATE' => _makePublishing('', 'START_DATE')); $link['remove']['link'] = "Modules.php?modname={$_REQUEST['modname']}&modfunc=remove"; $link['remove']['variables'] = array('id' => 'ID'); echo "<FORM action=Modules.php?modname={$_REQUEST['modname']}&modfunc=update method=POST>"; DrawHeader('', SubmitButton(_('Save')));
} $go = true; } } $sql .= '(' . substr($fields, 0, -1) . ') values(' . substr($values, 0, -1) . ')'; if ($go) { DBQuery($sql); } } echo '<SCRIPT language=javascript>opener.document.location = "Modules.php?modname=' . $_REQUEST['modname'] . '&year=' . $_REQUEST['year'] . '&month=' . MonthNWSwitch($_REQUEST['month'], 'tochar') . '"; window.close();</script>'; unset($_REQUEST['values']); unset($_SESSION['_REQUEST_vars']['values']); } echo '<SCRIPT language=javascript> window.close();</script>'; } elseif (clean_param($_REQUEST['button'], PARAM_ALPHAMOD) == 'Delete') { if (DeletePrompt('event', 'delete', 'y')) { DBQuery("DELETE FROM calendar_events WHERE ID='" . paramlib_validation($column = EVENT_ID, $_REQUEST[event_id]) . "'"); echo '<SCRIPT language=javascript>opener.document.location = "Modules.php?modname=' . $_REQUEST['modname'] . '&year=' . $_REQUEST['year'] . '&month=' . MonthNWSwitch($_REQUEST['month'], 'tochar') . '"; window.close();</script>'; unset($_REQUEST['values']); unset($_SESSION['_REQUEST_vars']['values']); unset($_REQUEST['button']); unset($_SESSION['_REQUEST_vars']['button']); } } else { if ($_REQUEST['event_id']) { if ($_REQUEST['event_id'] != 'new') { $RET = DBGet(DBQuery("SELECT TITLE,DESCRIPTION,SCHOOL_DATE,CALENDAR_ID FROM calendar_events WHERE ID='{$_REQUEST['event_id']}'")); $title = $RET[1]['TITLE']; } else { $title = 'New Event'; $RET[1]['SCHOOL_DATE'] = date('Y-m-d', strtotime($_REQUEST['school_date']));
if ($go) { DBQuery($sql); } } } unset($_REQUEST['values']); } if ($_REQUEST['modfunc'] == 'remove' & AllowEdit()) { if (DeletePrompt(_('Fee'))) { DBQuery("DELETE FROM BILLING_FEES WHERE ID='" . $_REQUEST['id'] . "'"); DBQuery("DELETE FROM BILLING_FEES WHERE WAIVED_FEE_ID='" . $_REQUEST['id'] . "'"); unset($_REQUEST['modfunc']); } } if ($_REQUEST['modfunc'] == 'waive' & AllowEdit()) { if (DeletePrompt(_('Fee'), _('Waive'))) { $fee_RET = DBGet(DBQuery("SELECT TITLE,AMOUNT FROM BILLING_FEES WHERE ID='{$_REQUEST['id']}'")); DBQuery("INSERT INTO BILLING_FEES (ID,SYEAR,SCHOOL_ID,TITLE,AMOUNT,WAIVED_FEE_ID,STUDENT_ID,ASSIGNED_DATE,COMMENTS) values(" . db_seq_nextval('BILLING_FEES_SEQ') . ",'" . UserSyear() . "','" . UserSchool() . "','" . str_replace("'", "''", $fee_RET[1]['TITLE']) . " " . _('Waiver') . "','" . $fee_RET[1]['AMOUNT'] * -1 . "','{$_REQUEST['id']}','" . UserStudentID() . "','" . DBDate() . "','" . _('Waiver') . "')"); unset($_REQUEST['modfunc']); } } if (UserStudentID() && !$_REQUEST['modfunc']) { $fees_total = 0; $functions = array('REMOVE' => '_makeFeesRemove', 'ASSIGNED_DATE' => 'ProperDate', 'DUE_DATE' => '_makeFeesDateInput', 'COMMENTS' => '_makeFeesTextInput', 'AMOUNT' => '_makeFeesAmount'); $waived_fees_RET = DBGet(DBQuery("SELECT '' AS REMOVE,f.ID,f.TITLE,f.ASSIGNED_DATE,f.DUE_DATE,f.COMMENTS,f.AMOUNT,f.WAIVED_FEE_ID FROM BILLING_FEES f WHERE f.STUDENT_ID='" . UserStudentID() . "' AND f.SYEAR='" . UserSyear() . "' AND f.WAIVED_FEE_ID IS NOT NULL"), $functions, array('WAIVED_FEE_ID')); $fees_RET = DBGet(DBQuery("SELECT '' AS REMOVE,f.ID,f.TITLE,f.ASSIGNED_DATE,f.DUE_DATE,f.COMMENTS,f.AMOUNT,f.WAIVED_FEE_ID FROM BILLING_FEES f WHERE f.STUDENT_ID='" . UserStudentID() . "' AND f.SYEAR='" . UserSyear() . "' AND (f.WAIVED_FEE_ID IS NULL OR f.WAIVED_FEE_ID='') ORDER BY f.ASSIGNED_DATE"), $functions); $i = 1; $RET = array(); foreach ($fees_RET as $fee) { $RET[$i] = $fee; if ($waived_fees_RET[$fee['ID']]) {
# along with this program. If not, see <http://www.gnu.org/licenses/>. #************************************************************************** if ($_REQUEST['modfunc'] == 'save' && AllowEdit()) { $current_RET = DBGet(DBQuery("SELECT STAFF_ID FROM STUDENTS_JOIN_USERS WHERE STUDENT_ID='" . UserStudentID() . "'"), array(), array('STAFF_ID')); foreach ($_REQUEST['staff'] as $staff_id => $yes) { if (!$current_RET[$staff_id]) { $sql = "INSERT INTO STUDENTS_JOIN_USERS (STAFF_ID,STUDENT_ID) values('" . $staff_id . "','" . UserStudentID() . "')"; DBQuery($sql); } } unset($_REQUEST['modfunc']); $note = "The selected user's profile now includes access to the selected students."; } DrawBC("Students > " . ProgramTitle()); if ($_REQUEST['modfunc'] == 'delete' && AllowEdit()) { if (DeletePrompt('student from that user', 'remove access to')) { DBQuery("DELETE FROM STUDENTS_JOIN_USERS WHERE STAFF_ID='{$_REQUEST['staff_id']}' AND STUDENT_ID='" . UserStudentID() . "'"); unset($_REQUEST['modfunc']); } } if ($note) { DrawHeader('<IMG SRC=assets/check.gif>' . $note); } if ($_REQUEST['modfunc'] != 'delete') { $extra['SELECT'] = ",(SELECT count(u.STAFF_ID) FROM STUDENTS_JOIN_USERS u,STAFF st WHERE u.STUDENT_ID=s.STUDENT_ID AND st.STAFF_ID=u.STAFF_ID AND st.SYEAR=ssm.SYEAR) AS ASSOCIATED"; $extra['columns_after'] = array('ASSOCIATED' => '# Associated'); Search('student_id', $extra); if (UserStudentID()) { if ($_REQUEST['modfunc'] == 'list') { echo "<FORM action=Modules.php?modname={$_REQUEST['modname']}&modfunc=save method=POST>"; #DrawHeader('',SubmitButton('Add Selected Parents'));
$error = ErrorMessage(array(_('Please enter a valid Sort Order.'))); } } unset($_REQUEST['tables']); } if ($_REQUEST['modfunc'] == 'delete' && AllowEdit()) { if ($_REQUEST['id']) { if (DeletePrompt(_('User Field'))) { $id = $_REQUEST['id']; DBQuery("DELETE FROM STAFF_FIELDS WHERE ID='{$id}'"); DBQuery("ALTER TABLE STAFF DROP COLUMN CUSTOM_{$id}"); $_REQUEST['modfunc'] = ''; unset($_REQUEST['id']); } } elseif ($_REQUEST['category_id']) { if (DeletePrompt(_('User Field Category') . ' ' . _('and all fields in the category'))) { $fields = DBGet(DBQuery("SELECT ID FROM STAFF_FIELDS WHERE CATEGORY_ID='{$_REQUEST['category_id']}'")); foreach ($fields as $field) { DBQuery("DELETE FROM STAFF_FIELDS WHERE ID='{$field['ID']}'"); DBQuery("ALTER TABLE STAFF DROP COLUMN CUSTOM_{$field['ID']}"); } DBQuery("DELETE FROM STAFF_FIELD_CATEGORIES WHERE ID='{$_REQUEST['category_id']}'"); // remove from profiles and permissions DBQuery("DELETE FROM PROFILE_EXCEPTIONS WHERE MODNAME='Users/User.php&category_id={$_REQUEST['category_id']}'"); DBQuery("DELETE FROM STAFF_EXCEPTIONS WHERE MODNAME='Users/User.php&category_id={$_REQUEST['category_id']}'"); $_REQUEST['modfunc'] = ''; unset($_REQUEST['category_id']); } } } if (empty($_REQUEST['modfunc'])) {
$values .= "'" . str_replace("\\'", "''", $value) . "',"; } $go = true; } } $sql .= '(' . substr($fields, 0, -1) . ') values(' . substr($values, 0, -1) . ')'; if ($go) { DBQuery($sql); } } echo '<SCRIPT language=javascript>opener.document.location = "Modules.php?modname=' . $_REQUEST['modname'] . '&year=' . $_REQUEST['year'] . '&month=' . MonthNWSwitch($_REQUEST['month'], 'tochar') . '"; window.close();</script>'; unset($_REQUEST['values']); unset($_SESSION['_REQUEST_vars']['values']); } } elseif ($_REQUEST['button'] == 'Delete') { if (DeletePrompt('event')) { DBQuery("DELETE FROM CALENDAR_EVENTS WHERE ID='{$_REQUEST['event_id']}'"); echo '<SCRIPT language=javascript>opener.document.location = "Modules.php?modname=' . $_REQUEST['modname'] . '&year=' . $_REQUEST['year'] . '&month=' . MonthNWSwitch($_REQUEST['month'], 'tochar') . '"; window.close();</script>'; unset($_REQUEST['values']); unset($_SESSION['_REQUEST_vars']['values']); unset($_REQUEST['button']); unset($_SESSION['_REQUEST_vars']['button']); } } else { if ($_REQUEST['event_id']) { if ($_REQUEST['event_id'] != 'new') { $RET = DBGet(DBQuery("SELECT TITLE,DESCRIPTION,DATE_FORMAT(SCHOOL_DATE,'%d-%b-%y') AS SCHOOL_DATE FROM CALENDAR_EVENTS WHERE ID='{$_REQUEST['event_id']}'")); $title = $RET[1]['TITLE']; } else { $title = 'New Event'; $RET[1]['SCHOOL_DATE'] = $_REQUEST['school_date'];
DBQuery($sql_question); } } } } else { $error = ErrorMessage(array(_('Please enter a valid Sort Order.'))); } } unset($_REQUEST['values']); unset($_SESSION['_REQUEST_vars']['values']); unset($_REQUEST['profiles']); unset($_SESSION['_REQUEST_vars']['profiles']); } DrawHeader(ProgramTitle()); if ($_REQUEST['modfunc'] == 'remove' && AllowEdit()) { if (DeletePrompt(_('Poll'))) { DBQuery("DELETE FROM PORTAL_POLLS WHERE ID='{$_REQUEST['id']}'"); DBQuery("DELETE FROM PORTAL_POLL_QUESTIONS WHERE PORTAL_POLL_ID='{$_REQUEST['id']}'"); unset($_REQUEST['modfunc']); } } if ($_REQUEST['modfunc'] != 'remove') { $sql_questions = "SELECT ppq.ID,ppq.PORTAL_POLL_ID,ppq.OPTIONS,ppq.VOTES,ppq.QUESTION,ppq.TYPE FROM PORTAL_POLL_QUESTIONS ppq, PORTAL_POLLS pp WHERE pp.SCHOOL_ID='" . UserSchool() . "' AND pp.SYEAR='" . UserSyear() . "' AND pp.ID=ppq.PORTAL_POLL_ID ORDER BY ppq.ID"; $QI_questions = DBQuery($sql_questions); $questions_RET = DBGet($QI_questions, array('OPTIONS' => '_makeOptionsInput')); $sql = "SELECT pp.ID,pp.SORT_ORDER,pp.TITLE,'See_PORTAL_POLL_QUESTIONS' AS OPTIONS, pp.VOTES_NUMBER,pp.START_DATE,pp.END_DATE,pp.PUBLISHED_PROFILES,pp.STUDENTS_TEACHER_ID,CASE WHEN pp.END_DATE IS NOT NULL AND pp.END_DATE<CURRENT_DATE THEN 'Y' ELSE NULL END AS EXPIRED FROM PORTAL_POLLS pp WHERE pp.SCHOOL_ID='" . UserSchool() . "' AND pp.SYEAR='" . UserSyear() . "' ORDER BY EXPIRED DESC,pp.SORT_ORDER,pp.PUBLISHED_DATE DESC"; $QI = DBQuery($sql); $polls_RET = DBGet($QI, array('TITLE' => '_makeTextInput', 'OPTIONS' => '_makeOptionsInputs', 'VOTES_NUMBER' => '_makePollVotes', 'SORT_ORDER' => '_makeTextInput', 'START_DATE' => '_makePublishing')); $columns = array('TITLE' => _('Title'), 'OPTIONS' => _('Poll'), 'VOTES_NUMBER' => _('Results'), 'SORT_ORDER' => _('Sort Order'), 'START_DATE' => _('Publishing Options')); //,'START_TIME'=>'Start Time','END_TIME'=>'End Time' $link['add']['html'] = array('TITLE' => _makeTextInput('', 'TITLE'), 'OPTIONS' => _makeOptionsInputs('', 'OPTIONS'), 'VOTES_NUMBER' => _makePollVotes('', 'VOTES_NUMBER'), 'SHORT_NAME' => _makeTextInput('', 'SHORT_NAME'), 'SORT_ORDER' => _makeTextInput('', 'SORT_ORDER'), 'START_DATE' => _makePublishing('', 'START_DATE'));
} $extra['SELECT'] = ',LAST_LOGIN'; $extra['functions'] = array('LAST_LOGIN' => 'makeLogin'); if (basename($_SERVER['PHP_SELF']) != 'index.php') { if ($_REQUEST['staff_id'] == 'new') { DrawBC("Users > Add a User"); } else { DrawBC("Users > " . ProgramTitle()); } unset($_SESSION['staff_id']); Search('staff_id', $extra); } else { DrawHeader('Create Account'); } if (clean_param($_REQUEST['modfunc'], PARAM_ALPHAMOD) == 'delete' && basename($_SERVER['PHP_SELF']) != 'index.php' && AllowEdit()) { if (DeletePrompt('user')) { DBQuery('DELETE FROM program_user_config WHERE USER_ID=\'' . UserStaffID() . '\''); DBQuery('DELETE FROM students_join_people WHERE PERSON_ID=\'' . UserStaffID() . '\''); DBQuery('DELETE FROM staff WHERE STAFF_ID=\'' . UserStaffID() . '\''); unset($_SESSION['staff_id']); unset($_REQUEST['staff_id']); unset($_REQUEST['modfunc']); echo '<script language=JavaScript>parent.side.location="' . $_SESSION['Side_PHP_SELF'] . '?modcat="+parent.side.document.forms[0].modcat.value;</script>'; Search('staff_id', $extra); } } if ((UserStaffID() || $_REQUEST['staff_id'] == 'new') && (basename($_SERVER['PHP_SELF']) != 'index.php' || !$_REQUEST['staff']['USERNAME']) && $_REQUEST['modfunc'] != 'delete' && $_SESSION['fn'] != 'staff') { if ($_REQUEST['staff_id'] != 'new') { $sql = 'SELECT s.TITLE,s.STAFF_ID,s.FIRST_NAME,s.LAST_NAME,s.MIDDLE_NAME, USERNAME,PASSWORD,up.TITLE AS PROFILE,s.PROFILE_ID,s.HOME_PHONE,s.EMAIL,LAST_LOGIN,IS_DISABLE FROM people s,user_profiles up,login_authentication la WHERE s.STAFF_ID=la.USER_ID AND la.PROFILE_ID =4 AND s.STAFF_ID=\'' . UserStaffID() . '\' AND s.PROFILE_ID=up.ID';
} echo '<FORM action=Modules.php?modname=' . strip_tags(trim($_REQUEST['modname'])) . ' method=POST>'; echo '<script language=JavaScript>parent.side.location="' . $_SESSION['Side_PHP_SELF'] . '?modcat="+parent.side.document.forms[0].modcat.value;</script>'; echo "<br><br>"; DrawHeaderHome('<IMG SRC=assets/check.gif> A new school called <strong>' . GetSchool(UserSchool()) . '</strong> has been created. To finish the operation, click OK button.', '<INPUT type=submit value=OK class="btn_medium">'); echo '<input type="hidden" name="copy" value="done"/>'; echo '</FORM>'; } } else { $_REQUEST['modfunc'] = ''; } unset($_SESSION['_REQUEST_vars']['values']); unset($_SESSION['_REQUEST_vars']['modfunc']); } if (clean_param($_REQUEST['modfunc'], PARAM_ALPHAMOD) == 'update' && clean_param($_REQUEST['button'], PARAM_ALPHAMOD) == 'Delete' && User('PROFILE') == 'admin') { if (DeletePrompt('school')) { if (BlockDelete('school')) { DBQuery('DELETE FROM schools WHERE ID=\'' . UserSchool() . '\''); DBQuery('DELETE FROM school_gradelevels WHERE SCHOOL_ID=\'' . UserSchool() . '\''); DBQuery('DELETE FROM attendance_calendar WHERE SCHOOL_ID=\'' . UserSchool() . '\''); DBQuery('DELETE FROM school_periods WHERE SCHOOL_ID=\'' . UserSchool() . '\''); DBQuery('DELETE FROM school_years WHERE SCHOOL_ID=\'' . UserSchool() . '\''); DBQuery('DELETE FROM school_semesters WHERE SCHOOL_ID=\'' . UserSchool() . '\''); DBQuery('DELETE FROM school_quarters WHERE SCHOOL_ID=\'' . UserSchool() . '\''); DBQuery('DELETE FROM school_progress_periods WHERE SCHOOL_ID=\'' . UserSchool() . '\''); DBQuery('UPDATE staff SET CURRENT_SCHOOL_ID=NULL WHERE CURRENT_SCHOOL_ID=\'' . UserSchool() . '\''); DBQuery('UPDATE staff SET SCHOOLS=replace(SCHOOLS,\',' . UserSchool() . ',\',\',\')'); unset($_SESSION['UserSchool']); echo '<script language=JavaScript>parent.side.location="' . $_SESSION['Side_PHP_SELF'] . '?modcat="+parent.side.document.forms[0].modcat.value;</script>'; unset($_REQUEST); $_REQUEST['modname'] = "schoolsetup/Schools.php?new_school=true";
DBQuery('DELETE FROM people_join_contacts WHERE PERSON_ID=\'' . $_REQUEST[person_id] . '\''); } unset($_REQUEST['modfunc']); unset($_REQUEST['person_id']); if (!isset($_REQUEST['address_id'])) { $stu_ad_id = DBGet(DBQuery('SELECT ADDRESS_ID FROM address WHERE STUDENT_ID=\'' . UserStudentID() . '\'')); $stu_ad_id = $stu_ad_id[1]['ADDRESS_ID']; if (count($stu_ad_id)) { $_REQUEST['address_id'] = $stu_ad_id; } else { $_REQUEST['address_id'] = 'new'; } } } } elseif ($_REQUEST['address_id']) { if (DeletePrompt('address')) { DBQuery('UPDATE students_join_people SET ADDRESS_ID=\'0\' WHERE STUDENT_ID=\'' . UserStudentID() . '\' AND ADDRESS_ID=\'' . $_REQUEST[address_id] . '\''); DBQuery('DELETE FROM students_join_address WHERE STUDENT_ID=\'' . UserStudentID() . '\' AND ADDRESS_ID=\'' . $_REQUEST['address_id'] . '\''); if (count(DBGet(DBQuery('SELECT STUDENT_ID FROM students_join_address WHERE ADDRESS_ID=\'' . $_REQUEST['address_id'] . '\''))) == 0) { DBQuery('DELETE FROM address WHERE ADDRESS_ID=\'' . $_REQUEST['address_id'] . '\''); } unset($_REQUEST['modfunc']); $_REQUEST['address_id'] = 'new'; } } } if (!$_REQUEST['modfunc']) { $addresses_RET = DBGet(DBQuery('SELECT a.ADDRESS_ID, sjp.STUDENT_RELATION,a.ADDRESS,a.STREET,a.CITY,a.STATE,a.ZIPCODE,a.BUS_NO,a.BUS_PICKUP,a.BUS_DROPOFF,a.MAIL_ADDRESS,a.MAIL_STREET,a.MAIL_CITY,a.MAIL_STATE,a.MAIL_ZIPCODE,a.PRIM_STUDENT_RELATION,a.PRI_FIRST_NAME,a.PRI_LAST_NAME,a.HOME_PHONE,a.WORK_PHONE,a.MOBILE_PHONE,a.EMAIL,a.PRIM_CUSTODY,a.PRIM_ADDRESS,a.PRIM_STREET,a.PRIM_CITY,a.PRIM_STATE,a.PRIM_ZIPCODE,a.SEC_STUDENT_RELATION,a.SEC_FIRST_NAME,a.SEC_LAST_NAME,a.SEC_HOME_PHONE,a.SEC_WORK_PHONE,a.SEC_MOBILE_PHONE,a.SEC_EMAIL,a.SEC_CUSTODY,a.SEC_ADDRESS,a.SEC_STREET,a.SEC_CITY,a.SEC_STATE,a.SEC_ZIPCODE, sjp.CUSTODY,sja.MAILING,sja.RESIDENCE FROM address a,students_join_address sja,students_join_people sjp WHERE a.ADDRESS_ID=sja.ADDRESS_ID AND sja.STUDENT_ID=\'' . UserStudentID() . '\' AND a.ADDRESS_ID=sjp.ADDRESS_ID AND sjp.STUDENT_ID=sja.STUDENT_ID' . ' UNION SELECT a.ADDRESS_ID,\'\' AS STUDENT_RELATION,a.ADDRESS,a.STREET,a.CITY,a.STATE,a.ZIPCODE,a.BUS_NO,a.BUS_PICKUP,a.BUS_DROPOFF,a.MAIL_ADDRESS,a.MAIL_STREET,a.MAIL_CITY,a.MAIL_STATE,a.MAIL_ZIPCODE,a.PRIM_STUDENT_RELATION,a.PRI_FIRST_NAME,a.PRI_LAST_NAME,a.HOME_PHONE,a.WORK_PHONE,a.MOBILE_PHONE,a.EMAIL,a.PRIM_CUSTODY,a.PRIM_ADDRESS,a.PRIM_STREET,a.PRIM_CITY,a.PRIM_STATE,a.PRIM_ZIPCODE,a.SEC_STUDENT_RELATION,a.SEC_FIRST_NAME,a.SEC_LAST_NAME,a.SEC_HOME_PHONE,a.SEC_WORK_PHONE,a.SEC_MOBILE_PHONE,a.SEC_EMAIL,a.SEC_CUSTODY,a.SEC_ADDRESS,a.SEC_STREET,a.SEC_CITY,a.SEC_STATE,a.SEC_ZIPCODE,a.PRIM_CUSTODY AS CUSTODY,sja.MAILING,sja.RESIDENCE FROM address a,students_join_address sja WHERE a.ADDRESS_ID=sja.ADDRESS_ID AND sja.STUDENT_ID=\'' . UserStudentID() . '\' AND NOT EXISTS (SELECT \'\' FROM students_join_people sjp WHERE sjp.STUDENT_ID=sja.STUDENT_ID AND sjp.ADDRESS_ID=a.ADDRESS_ID) ORDER BY CUSTODY ASC,STUDENT_RELATION'), array(), array('ADDRESS_ID')); if (count($addresses_RET) == 1 && $_REQUEST['address_id'] != 'new' && $_REQUEST['address_id'] != 'old' && $_REQUEST['address_id'] != '0') { $_REQUEST['address_id'] = key($addresses_RET); }
foreach ($value as $val) { if ($val) { $sql .= str_replace('"', '"', $val) . '||'; } } $sql .= "',"; } } $sql = substr($sql, 0, -1) . " WHERE ID='{$_REQUEST['referral_id']}'"; DBQuery($sql); unset($_REQUEST['values']); unset($_SESSION['_REQUEST_vars']['values']); } DrawHeader(ProgramTitle()); if ($_REQUEST['modfunc'] == 'remove') { if (DeletePrompt(_('referral'))) { DBQuery("DELETE FROM DISCIPLINE_REFERRALS WHERE ID='{$_REQUEST['id']}'"); unset($_REQUEST['modfunc']); } } $categories_RET = DBGet(DBQuery("SELECT df.ID,du.TITLE FROM DISCIPLINE_FIELDS df,DISCIPLINE_FIELD_USAGE du WHERE df.DATA_TYPE!='textarea' AND du.SYEAR='" . UserSyear() . "' AND du.SCHOOL_ID='" . UserSchool() . "' AND du.DISCIPLINE_FIELD_ID=df.ID ORDER BY du.SORT_ORDER")); Widgets('all'); $extra['SELECT'] = ',dr.*'; if (strpos($extra['FROM'], 'DISCIPLINE_REFERRALS') === false) { $extra['FROM'] .= ',DISCIPLINE_REFERRALS dr '; $extra['WHERE'] .= ' AND dr.STUDENT_ID=ssm.STUDENT_ID AND dr.SYEAR=ssm.SYEAR AND dr.SCHOOL_ID=ssm.SCHOOL_ID '; } $extra['ORDER_BY'] = 'dr.ENTRY_DATE DESC,s.LAST_NAME,s.FIRST_NAME,s.MIDDLE_NAME'; $extra['columns_after'] = array('STAFF_ID' => _('Reporter'), 'ENTRY_DATE' => _('Incident Date')); $extra['functions'] = array('STAFF_ID' => 'GetTeacher', 'ENTRY_DATE' => 'ProperDate'); foreach ($categories_RET as $category) {
DBQuery($sql); } } unset($_REQUEST['tables']); } if ($_REQUEST['modfunc'] == 'delete') { if ($_REQUEST['id']) { if (DeletePrompt('contact field')) { $id = $_REQUEST['id']; DBQuery('DELETE FROM people_fields WHERE ID=\'' . $id . '\''); DBQuery('ALTER TABLE people DROP COLUMN CUSTOM_\'' . $id . '\''); $_REQUEST['modfunc'] = ''; unset($_REQUEST['id']); } } elseif ($_REQUEST['category_id']) { if (DeletePrompt('contact field category and all fields in the category')) { $fields = DBGet(DBQuery('SELECT ID FROM people_fields WHERE CATEGORY_ID=\'' . $_REQUEST[category_id] . '\'')); foreach ($fields as $field) { DBQuery('DELETE FROM people_fields WHERE ID=\'' . $field[ID] . '\''); DBQuery('ALTER TABLE people DROP COLUMN CUSTOM_\'' . $field[ID] . '\''); } DBQuery('DELETE FROM people_field_categories WHERE ID=\'' . $_REQUEST[category_id] . '\\"'); $_REQUEST['modfunc'] = ''; unset($_REQUEST['category_id']); } } } if (!$_REQUEST['modfunc']) { // CATEGORIES $sql = 'SELECT ID,TITLE,SORT_ORDER FROM people_field_categories ORDER BY SORT_ORDER,TITLE'; $QI = DBQuery($sql);
/* if($_REQUEST['modname']!='Attendance/Administration.php') { DrawHeaderHome( 'Selected Student: '.$RET[1]['FIRST_NAME'].' '.($RET[1]['MIDDLE_NAME']?$RET[1]['MIDDLE_NAME'].' ':'').$RET[1]['LAST_NAME'].' '.$RET[1]['NAME_SUFFIX'].' (<A HREF=Side.php?student_id=new&modcat='.$_REQUEST['modcat'].'><font color=red>Remove</font></A>) | <A HREF=Modules.php?modname='.$_REQUEST['modname'].'&search_modfunc=list&next_modname='.$_REQUEST['modname'].'&ajax=true&bottom_back=true&return_session=true target=body>Back to Student List</A>'); }*/ } else { if ($count_student_RET[1]['NUM'] == 1) { DrawHeaderHome(_('Selected Student') . ': ' . $RET[1]['FIRST_NAME'] . ' ' . ($RET[1]['MIDDLE_NAME'] ? $RET[1]['MIDDLE_NAME'] . ' ' : '') . $RET[1]['LAST_NAME'] . ' ' . $RET[1]['NAME_SUFFIX'] . ' (<A HREF=Side.php?student_id=new&modcat=' . clean_param($_REQUEST['modcat'], PARAM_NOTAGS) . '><font color=red>' . _('Deselect') . '</font></A>) '); } } } if ($_REQUEST['modfunc'] == 'add' && AllowEdit()) { DBQuery('INSERT INTO student_eligibility_activities (STUDENT_ID,ACTIVITY_ID,SYEAR) values(\'' . UserStudentID() . '\',\'' . $_REQUEST['new_activity'] . '\',\'' . UserSyear() . '\')'); unset($_REQUEST['modfunc']); } if ($_REQUEST['modfunc'] == 'remove' && AllowEdit()) { if (DeletePrompt('activity')) { DBQuery('DELETE FROM student_eligibility_activities WHERE STUDENT_ID=\'' . UserStudentID() . '\' AND ACTIVITY_ID=\'' . $_REQUEST['activity_id'] . '\' AND SYEAR=\'' . UserSyear() . '\''); unset($_REQUEST['modfunc']); } } if (UserStudentID() && !$_REQUEST['modfunc']) { $start_end_RET = DBGet(DBQuery('SELECT TITLE,VALUE FROM program_config WHERE SYEAR=\'' . UserSyear() . '\' AND SCHOOL_ID=\'' . UserSchool() . '\' AND PROGRAM=\'eligibility\' AND TITLE IN (\'' . 'START_DAY' . '\',\'' . 'END_DAY' . '\')')); if (count($start_end_RET)) { foreach ($start_end_RET as $value) { ${$value}['TITLE'] = $value['VALUE']; } } switch (date('D')) { case 'Mon': $today = 1; break;
if (count($_REQUEST['mp_arr'])) { foreach ($_REQUEST['mp_arr'] as $mp) { $mp_list .= ",'{$mp}'"; } $mp_list = substr($mp_list, 1); $last_mp = $mp; } $delete_message = " "; if (optional_param('modfunc', '', PARAM_NOTAGS) != 'gradelist') { $x = "x"; } else { $extra['action'] .= '&modfunc=gradelist'; } $extra['force_search'] = true; if (optional_param('delete', '', PARAM_ALPHA) == 'true') { if (DeletePrompt('Duplicate Attendance Record')) { $i = 0; $ii = 0; $iii = 0; $sid = optional_param('studentidx', '', PARAM_ALPHANUM); $cnt = optional_param('deletecheck', '', PARAM_INT); $pid = optional_param('periodidx', '', PARAM_SPCL); $sdt = $_REQUEST['schooldatex']; foreach ($cnt as $a => $val_dchck) { $val1 = $val_dchck; if ($val1 >= 0) { foreach ($sid as $b => $val_sid) { $val2 = $val_sid; if ($val1 == $i) { foreach ($pid as $c => $val_pid) { $val3 = $val_pid;
} else { ShowErrPhp(_('You can\'t add any enrollment code in this type')); } } } } DrawBC("" . _('Students') . " > " . ProgramTitle()); if (clean_param($_REQUEST['modfunc'], PARAM_ALPHAMOD) == 'remove') { $select_enroll = DBGet(DBQuery('SELECT TYPE FROM student_enrollment_codes WHERE ID=\'' . $_REQUEST[id] . '\'')); if ($select_enroll[1][TYPE] != 'Roll' && $select_enroll[1][TYPE] != 'TrnD' && $select_enroll[1][TYPE] != 'TrnE') { $has_assigned_RET = DBGet(DBQuery('SELECT COUNT(*) AS TOTAL_ASSIGNED FROM student_enrollment WHERE ENROLLMENT_CODE=\'' . $_REQUEST[id] . '\'')); $has_assigned = $has_assigned_RET[1]['TOTAL_ASSIGNED']; if ($has_assigned > 0) { UnableDeletePrompt(_('Cannot delete because enrollment codes are associated.')); } else { if (DeletePrompt('enrollment code')) { DBQuery('DELETE FROM student_enrollment_codes WHERE ID=\'' . $_REQUEST[id] . '\''); unset($_REQUEST['modfunc']); } } } else { UnableDeletePrompt(_('Cannot delete because it is not deletable.')); } } if ($_REQUEST['modfunc'] != 'remove') { $sql = 'SELECT ID,TITLE,SHORT_NAME,TYPE FROM student_enrollment_codes WHERE SYEAR=\'' . UserSyear() . '\' ORDER BY TITLE'; $QI = DBQuery($sql); $codes_RET = DBGet($QI, array('TITLE' => 'makeTextInput', 'SHORT_NAME' => 'makeTextInput', 'TYPE' => 'makeSelectInput')); $columns = array('TITLE' => '' . _('Title') . '', 'SHORT_NAME' => '' . _('Short Name') . '', 'TYPE' => '' . _('Type') . ''); $link['add']['html'] = array('TITLE' => makeTextInput('', 'TITLE'), 'SHORT_NAME' => makeTextInput('', 'SHORT_NAME'), 'TYPE' => makeSelectInput('', 'TYPE')); $link['remove']['link'] = "Modules.php?modname={$_REQUEST['modname']}&modfunc=remove";
$error = ErrorMessage(array(_('Please enter a valid Sort Order.'))); } } unset($_REQUEST['tables']); } if ($_REQUEST['modfunc'] == 'delete' && AllowEdit()) { if ($_REQUEST['id']) { if (DeletePrompt(_('Student Field'))) { $id = $_REQUEST['id']; DBQuery("DELETE FROM CUSTOM_FIELDS WHERE ID='{$id}'"); DBQuery("ALTER TABLE STUDENTS DROP COLUMN CUSTOM_{$id}"); $_REQUEST['modfunc'] = ''; unset($_REQUEST['id']); } } elseif ($_REQUEST['category_id']) { if (DeletePrompt(_('Student Field Category') . ' ' . _('and all fields in the category'))) { $fields = DBGet(DBQuery("SELECT ID FROM CUSTOM_FIELDS WHERE CATEGORY_ID='{$_REQUEST['category_id']}'")); foreach ($fields as $field) { DBQuery("DELETE FROM CUSTOM_FIELDS WHERE ID='{$field['ID']}'"); DBQuery("ALTER TABLE STUDENTS DROP COLUMN CUSTOM_{$field['ID']}"); } DBQuery("DELETE FROM STUDENT_FIELD_CATEGORIES WHERE ID='{$_REQUEST['category_id']}'"); // remove from profiles and permissions DBQuery("DELETE FROM PROFILE_EXCEPTIONS WHERE MODNAME='Students/Student.php&category_id={$_REQUEST['category_id']}'"); DBQuery("DELETE FROM STAFF_EXCEPTIONS WHERE MODNAME='Students/Student.php&category_id={$_REQUEST['category_id']}'"); $_REQUEST['modfunc'] = ''; unset($_REQUEST['category_id']); } } } if (empty($_REQUEST['modfunc'])) {
# This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, see <http://www.gnu.org/licenses/>. # #*************************************************************************************** include '../../../Redirect_includes.php'; include_once 'modules/Students/includes/functions.php'; if (clean_param($_REQUEST['modfunc'], PARAM_ALPHAMOD) == 'delete' && User('PROFILE') == 'admin') { if (!$_REQUEST['delete_ok'] && !$_REQUEST['delete_cancel']) { echo '</FORM>'; } if (DeletePrompt($_REQUEST['title'])) { DBQuery("DELETE FROM {$_REQUEST['table']} WHERE ID='{$_REQUEST['id']}'"); unset($_REQUEST['modfunc']); } } if (clean_param($_REQUEST['modfunc'], PARAM_ALPHAMOD) == 'update') { unset($_REQUEST['modfunc']); } if (!$_REQUEST['modfunc']) { echo '<div style="position: absolute; z-index:1000; width: 495px; height: 300px; visibility:hidden; background-image:url(\'assets/comment_background.gif\');" id="dc"></div>'; echo '<TABLE width=100% border=0 cellpadding=0 cellspacing=0>'; echo '<TR><TD valign=top>'; $_REQUEST['category_id'] = 2; echo '<div class=hseparator><b>' . _('Medical Information') . '</b></div><div class=clear></div>'; echo '<TABLE cellpadding=5>'; echo '<TR>';
if ($go) { DBQuery($sql); } } } unset($_REQUEST['modfunc']); } DrawHeader(ProgramTitle()); if ($_REQUEST['modfunc'] == 'remove') { if ($_REQUEST['table'] != 'new') { if (DeletePrompt('attendance code')) { DBQuery("DELETE FROM ATTENDANCE_CODES WHERE ID='{$_REQUEST['id']}'"); unset($_REQUEST['modfunc']); } } else { if (DeletePrompt('category')) { DBQuery("DELETE FROM ATTENDANCE_CODE_CATEGORIES WHERE ID='{$_REQUEST['id']}'"); DBQuery("DELETE FROM ATTENDANCE_CODES WHERE TABLE_NAME='{$_REQUEST['id']}'"); DBQuery("UPDATE COURSE_PERIODS SET DOES_ATTENDANCE=replace(DOES_ATTENDANCE,',{$_REQUEST['id']},',',') WHERE SYEAR='" . UserSyear() . "' AND SCHOOL_ID='" . UserSchool() . "'"); DBQuery("UPDATE COURSE_PERIODS SET DOES_ATTENDANCE=NULL WHERE DOES_ATTENDANCE=',' AND SYEAR='" . UserSyear() . "' AND SCHOOL_ID='" . UserSchool() . "'"); unset($_REQUEST['modfunc']); } } } if (!$_REQUEST['modfunc']) { if ($_REQUEST['table'] !== 'new') { $sql = "SELECT ID,TITLE,SHORT_NAME,TYPE,DEFAULT_CODE,STATE_CODE,SORT_ORDER FROM ATTENDANCE_CODES WHERE SYEAR='" . UserSyear() . "' AND SCHOOL_ID='" . UserSchool() . "' AND TABLE_NAME='" . $_REQUEST['table'] . "' ORDER BY SORT_ORDER,TITLE"; $QI = DBQuery($sql); $attendance_codes_RET = DBGet($QI, array('TITLE' => '_makeTextInput', 'SHORT_NAME' => '_makeTextInput', 'SORT_ORDER' => '_makeTextInput', 'TYPE' => '_makeSelectInput', 'STATE_CODE' => '_makeSelectInput', 'DEFAULT_CODE' => '_makeCheckBoxInput')); } $tabs = array(array('title' => _('Attendance'), 'link' => "Modules.php?modname={$_REQUEST['modname']}&table=0"));
} unset($_REQUEST['values']); unset($_SESSION['_REQUEST_vars']['values']); } if ($_REQUEST['modfunc'] == 'delete' && AllowEdit()) { if (DeletePrompt(_('Category'))) { $id = $_REQUEST['id']; DBQuery("DELETE FROM DISCIPLINE_FIELDS WHERE ID='{$id}'"); DBQuery("DELETE FROM DISCIPLINE_FIELD_USAGE WHERE DISCIPLINE_FIELD_ID='{$id}'"); DBQuery("ALTER TABLE DISCIPLINE_REFERRALS DROP COLUMN CATEGORY_{$id}"); unset($_REQUEST['modfunc']); unset($_REQUEST['id']); } } if ($_REQUEST['modfunc'] == 'delete_usage' && AllowEdit()) { if (DeletePrompt(_('category from this school\'s referral form'), 'remove')) { $id = $_REQUEST['id']; DBQuery("DELETE FROM DISCIPLINE_FIELD_USAGE WHERE ID='{$id}'"); unset($_REQUEST['modfunc']); unset($_REQUEST['id']); } } if ($_REQUEST['modfunc'] == 'add_usage' && AllowEdit()) { DBQuery("INSERT INTO DISCIPLINE_FIELD_USAGE (ID,DISCIPLINE_FIELD_ID,SYEAR,SCHOOL_ID,TITLE,SELECT_OPTIONS,SORT_ORDER) SELECT " . db_seq_nextval('DISCIPLINE_FIELD_USAGE_SEQ') . " AS ID,'" . $_REQUEST['id'] . "' AS DISCIPLINE_FIELD_ID,'" . UserSyear() . "' AS SYEAR,'" . UserSchool() . "' AS SCHOOL_ID,TITLE,NULL AS SELECT_OPTIONS,NULL AS SORT_ORDER FROM DISCIPLINE_FIELDS WHERE ID='" . $_REQUEST['id'] . "'"); unset($_REQUEST['modfunc']); unset($_REQUEST['id']); } if (empty($_REQUEST['modfunc'])) { $sql = "SELECT NULL AS REMOVE,du.ID AS USAGE_ID,df.ID,COALESCE(du.TITLE,df.TITLE) AS TITLE,du.SORT_ORDER,df.DATA_TYPE,du.SELECT_OPTIONS FROM DISCIPLINE_FIELDS df LEFT OUTER JOIN DISCIPLINE_FIELD_USAGE du ON (du.DISCIPLINE_FIELD_ID=df.ID AND du.SYEAR='" . UserSyear() . "' AND du.SCHOOL_ID='" . UserSchool() . "') ORDER BY du.ID,du.SORT_ORDER"; $QI = DBQuery($sql); $referrals_RET = DBGet($QI, array('REMOVE' => '_makeRemove', 'TITLE' => '_makeTextInput', 'SORT_ORDER' => '_makeTextInput', 'DATA_TYPE' => '_makeType', 'SELECT_OPTIONS' => '_makeTextAreaInput'));
DBQuery($sql); } $max_ID = DBGet(DBQuery('SELECT MAX(ID) AS ID FROM login_message')); $login_VAL = DBGet(DBQuery('SELECT ID,MESSAGE FROM login_message WHERE ID=' . $max_ID[1]['ID'] . ' ')); $sql = 'UPDATE login_message SET '; if ($login_VAL[1]['MESSAGE'] != '') { $sql .= $col . '=\'Y\' '; $sql .= ' WHERE ID=' . $max_ID[1]['ID'] . ''; } DBQuery($sql); } } unset($_REQUEST['maintain']); } if (clean_param($_REQUEST['modfunc'], PARAM_ALPHAMOD) == 'remove') { if (DeletePrompt('login message')) { DBQuery("DELETE FROM login_message WHERE ID='{$_REQUEST['id']}'"); unset($_REQUEST['modfunc']); } } if ($_REQUEST['modfunc'] != 'remove') { $maintain_RET = DBGet(DBQuery("SELECT SYSTEM_MAINTENANCE_SWITCH FROM system_preference_misc LIMIT 1")); $maintain = $maintain_RET[1]; echo "<FORM name=maintenance id=maintenance action=Modules.php?modname={$_REQUEST['modname']}&modfunc=update&page_display=MAINTENANCE method=POST>"; echo '<table>'; echo '<tr><td align=left><span style="font-size:12px; font-weight:bold;">' . _('Under Maintenance') . ' :</td><td><span style="font-weight:bold;">' . CheckboxInput($maintain['SYSTEM_MAINTENANCE_SWITCH'], 'maintain[SYSTEM_MAINTENANCE_SWITCH]') . '</span></td></tr>'; $sql = 'SELECT ID,MESSAGE,DISPLAY FROM login_message ORDER BY ID'; $QI = DBQuery($sql); $login_MESSAGE = DBGet($QI, array('MESSAGE' => '_makeContentInput', 'DISPLAY' => '_makeRadio')); $link['add']['html'] = array('MESSAGE' => _makeContentInput('', 'MESSAGE'), 'DISPLAY' => _makeRadio('', 'DISPLAY')); $link['remove']['link'] = "Modules.php?modname={$_REQUEST['modname']}&modfunc=remove&page_display=MAINTENANCE";
if ($value) { $fields .= $column . ','; $values .= "'" . str_replace("\\'", "''", $value) . "',"; $go = true; } } $sql .= '(' . substr($fields, 0, -1) . ') values(' . substr($values, 0, -1) . ')'; if ($go) { DBQuery($sql); } } } } DrawHeader(ProgramTitle()); if ($_REQUEST['modfunc'] == 'remove' && AllowEdit()) { if (DeletePrompt('period')) { DBQuery("DELETE FROM SCHOOL_PERIODS WHERE PERIOD_ID='{$_REQUEST['id']}'"); unset($_REQUEST['modfunc']); } } if ($_REQUEST['modfunc'] != 'remove') { $sql = "SELECT PERIOD_ID,TITLE,SHORT_NAME,SORT_ORDER,LENGTH,START_TIME,END_TIME,BLOCK,ATTENDANCE FROM SCHOOL_PERIODS WHERE SYEAR='" . UserSyear() . "' AND SCHOOL_ID='" . UserSchool() . "' ORDER BY SORT_ORDER"; $QI = DBQuery($sql); $periods_RET = DBGet($QI, array('TITLE' => '_makeTextInput', 'SHORT_NAME' => '_makeTextInput', 'SORT_ORDER' => '_makeTextInput', 'BLOCK' => '_makeTextInput', 'LENGTH' => '_makeTextInput', 'START_TIME' => '_makeTimeInput', 'END_TIME' => '_makeTimeInput', 'ATTENDANCE' => '_makeCheckboxInput')); $columns = array('TITLE' => _('Title'), 'SHORT_NAME' => _('Short Name'), 'SORT_ORDER' => _('Sort Order'), 'LENGTH' => _('Length (minutes)'), 'BLOCK' => _('Block'), 'ATTENDANCE' => _('Used for Attendance'), 'START_TIME' => _('Start Time'), 'END_TIME' => _('End Time')); $link['add']['html'] = array('TITLE' => _makeTextInput('', 'TITLE'), 'SHORT_NAME' => _makeTextInput('', 'SHORT_NAME'), 'LENGTH' => _makeTextInput('', 'LENGTH'), 'SORT_ORDER' => _makeTextInput('', 'SORT_ORDER'), 'BLOCK' => _makeTextInput('', 'BLOCK'), 'START_TIME' => _makeTimeInput('', 'START_TIME'), 'END_TIME' => _makeTimeInput('', 'END_TIME'), 'ATTENDANCE' => _makeCheckboxInput('', 'ATTENDANCE')); $link['remove']['link'] = "Modules.php?modname={$_REQUEST['modname']}&modfunc=remove"; $link['remove']['variables'] = array('id' => 'PERIOD_ID'); echo "<FORM action=Modules.php?modname={$_REQUEST['modname']}&modfunc=update method=POST>"; DrawHeader('', SubmitButton(_('Save'))); ListOutput($periods_RET, $columns, _('Period'), _('Periods'), $link);