require_once "classes/rope_class.php";
require_once "classes/genie_class.php";
require_once "classes/letdown_line_class.php";
session_name('raprec');
session_start();
require_once "includes/constants.php";
// Force 'constants.php' to load, even if it has been previously included by one of the classes above. Must set SESSION vars AFTER the session_start() declaration.
require_once "includes/auth_functions.php";
require_once "includes/check_get_vars.php";
require_once "includes/make_menu.php";
require_once "includes/photo_upload_functions.php";
require_once "includes/aircraft_layouts.php";
// Determine whether the current user has permission to access this page
// If user doesn't have permission to add new equipment to the Crew being viewed, reload this page with the user's own crew specified
if ($_SESSION['logged_in'] == 1) {
if (isset($_GET['crew']) && check_crew($_GET['crew']) && check_access("crew_admin", $_GET['crew']) != false) {
$crew_id = $_GET['crew'];
} elseif (check_access("crew_admin")) {
header('location: ' . $_SERVER['PHP_SELF'] . '?crew=' . $_SESSION['current_user']->get('crew_affiliation_id'));
} else {
header('location: index.php');
}
// ACCESS DENIED!
} else {
// ACCESS DENIED!
store_intended_location();
//Redirect user back to their intended location after they log in
header('location: index.php');
}
/*********************************************************************************************************************/
/*********************************************************************************************************************/
function make_menu()
{
/******* PROCESS LOGIN ATTEMPT ***************************/
/*
if(isset($_POST['username']) && isset($_POST['passwd'])) $login_result = login($_POST['username'], $_POST['passwd']);
elseif(!isset($_SESSION['logged_in']) && !isset($login_result)) $login_result = array(-1,"No login attempt made yet");
else $login_result = array(-1,"No login attempt made yet");
*/
/******* MAKE LOCATION BAR ***************************/
if (isset($_GET['year']) && check_year($_GET['year'])) {
$_SESSION['current_view']['year'] = $_GET['year'];
} elseif (!isset($_SESSION['current_view']['year'])) {
$_SESSION['current_view']['year'] = date('Y');
}
if (!isset($_SESSION['mobile'])) {
$_SESSION['mobile'] = false;
}
$current_file = explode('/', $_SERVER['PHP_SELF']);
$current_file = strtolower($current_file[sizeof($current_file) - 1]);
// Get the filename of the script that called this function (no path info, just the filename)
$region = NULL;
$crew = new crew();
$hrap = new hrap();
$op = NULL;
try {
//This exception below is meant solely to trigger the 'catch' block. The message is never displayed to the user.
if ($current_file == "index.php" || $current_file == "proficiency_report.php") {
throw new Exception('You cannot specify an individual HRAP on the index or proficiency page.');
}
isset($_GET['hrap']) ? $hrap->load($_GET['hrap']) : $hrap->load(false);
$crew->load($hrap->get_crew_by_year($_SESSION['current_view']['year']));
$_SESSION['current_view']['hrap'] = $hrap;
if (isset($crew->id)) {
$_SESSION['current_view']['region'] = $crew->region;
$_SESSION['current_view']['crew'] = $crew;
$_SESSION['location_bar'] = "Location: <a href=\"./index.php\">Home</a>";
$_SESSION['location_bar'] .= " / <a href=\"./" . $current_file . "?region=" . $crew->region . "\">R" . $crew->region . "</a>";
$_SESSION['location_bar'] .= " / <a href=\"./" . $current_file . "?region=" . $crew->region . "&crew=" . $crew->id . "\">" . $crew->name . "</a>";
$_SESSION['location_bar'] .= " / <a href=\"./" . $current_file . "?region=" . $crew->region . "&crew=" . $crew->id . "&hrap=" . $hrap->id . "\">" . $hrap->name . "</a>";
} else {
/* The requested HRAP is not assigned to a crew for the requested year, maintain the previous 'current_view' (do nothing)*/
}
} catch (Exception $e) {
if (isset($_GET['eq_type'])) {
// The current view is on a piece of equipment, retain CREW and REGION but reset all other 'current_view' parameter
$_SESSION['location_bar'] = "Location: <a href=\"./index.php\">Home</a>";
if (isset($_GET['eq_id'])) {
try {
$eq = new $_GET['eq_type']();
$eq->load($_GET['eq_id']);
$_SESSION['current_view']['crew'] = new crew();
$_SESSION['current_view']['crew']->load($eq->get('crew_affiliation_id'));
$result = mydb::cxn()->query("SELECT region FROM crews WHERE id = " . $eq->get('crew_affiliation_id'));
$row = $result->fetch_assoc();
$_SESSION['current_view']['region'] = $row['region'];
$_SESSION['location_bar'] .= " / <a href=\"view_equipment.php?eq_type=" . $_GET['eq_type'] . "®ion=" . $_SESSION['current_view']['region'] . "\">R" . $_SESSION['current_view']['region'] . "</a>" . " / <a href=\"view_equipment.php?eq_type=" . $_GET['eq_type'] . "&crew=" . $_SESSION['current_view']['crew']->get('id') . "\">" . $_SESSION['current_view']['crew']->get('name') . "</a>" . " / <a href=\"view_equipment.php?crew=" . $_SESSION['current_view']['crew']->get('id') . "\">Equipment</a>";
} catch (Exception $e) {
}
} elseif (isset($_GET['crew']) && check_crew($_GET['crew'])) {
$crew->load($_GET['crew']);
$_SESSION['current_view']['region'] = $crew->get('region');
$_SESSION['current_view']['crew'] = $crew;
$_SESSION['location_bar'] .= " / <a href=\"view_equipment.php?eq_type=" . $_GET['eq_type'] . "®ion=" . $_SESSION['current_view']['region'] . "\">R" . $_SESSION['current_view']['region'] . "</a>" . " / <a href=\"view_equipment.php?eq_type=" . $_GET['eq_type'] . "&crew=" . $_SESSION['current_view']['crew']->get('id') . "\">" . $_SESSION['current_view']['crew']->get('name') . "</a>" . " / <a href=\"view_equipment.php?crew=" . $_SESSION['current_view']['crew']->get('id') . "\">Equipment</a>";
} elseif (isset($_GET['region']) && is_valid_region($_GET['region'])) {
$_SESSION['current_view']['region'] = $_GET['region'];
$_SESSION['location_bar'] .= " / <a href=\"view_equipment.php?eq_type=" . $_GET['eq_type'] . "®ion=" . $_SESSION['current_view']['region'] . "\">R" . $_SESSION['current_view']['region'] . "</a>" . " / <a href=\"view_equipment.php?region=" . $_SESSION['current_view']['region'] . "\">Equipment</a>";
$_SESSION['current_view']['crew'] = NULL;
}
$_SESSION['current_view']['hrap'] = NULL;
$_SESSION['current_view']['op'] = NULL;
} elseif (isset($_GET['crew']) && check_crew($_GET['crew'])) {
try {
$crew->load($_GET['crew']);
} catch (Exception $e) {
}
$_SESSION['current_view']['region'] = $crew->get('region');
$_SESSION['current_view']['crew'] = $crew;
$_SESSION['location_bar'] = "Location: <a href=\"./index.php\">Home</a>";
if ($current_file != "modify_roster.php") {
$_SESSION['location_bar'] .= " / <a href=\"./" . $current_file . "?region=" . $crew->get('region') . "\">R" . $crew->get('region') . "</a>";
} else {
$_SESSION['location_bar'] .= " / <a href=\"./index.php?region=" . $crew->get('region') . "\">R" . $crew->get('region') . "</a>";
}
$_SESSION['location_bar'] .= " / <a href=\"./" . $current_file . "?region=" . $crew->get('region') . "&crew=" . $crew->get('id') . "\">" . $crew->get('name') . "</a>";
if ($current_file == "proficiency_report.php") {
$_SESSION['location_bar'] .= " / Proficiency Report";
}
// Clear the unknown 'current_view' elements
$_SESSION['current_view']['hrap'] = NULL;
$_SESSION['current_view']['op'] = NULL;
} elseif (isset($_GET['region']) && is_valid_region($_GET['region'])) {
$region = $_GET['region'];
$_SESSION['current_view']['region'] = $region;
$_SESSION['location_bar'] = "Location: <a href=\"./index.php\">Home</a>";
$_SESSION['location_bar'] .= " / <a href=\"./" . $current_file . "?region=" . $region . "\">R" . $region . "</a>";
if ($current_file == "proficiency_report.php") {
$_SESSION['location_bar'] .= " / Proficiency Report";
}
// Clear the unknown 'current_view' elements
$_SESSION['current_view']['crew'] = NULL;
$_SESSION['current_view']['hrap'] = NULL;
$_SESSION['current_view']['op'] = NULL;
} elseif (isset($_GET['op']) && operation::exists($_GET['op'])) {
// If a specific OPERATION is being viewed (and none of the above criteria were met), there is a mix of different CREWS, HRAPS, and possibly REGIONS...
// So just maintain the same location bar that was shown before the user accessed this page
$op = $_GET['op'];
// DO NOTHING
} elseif ($current_file == "proficiency_report.php") {
// Viewing the proficiency report, but no Crew or Region has been specified.
// 1st - Look for pre-existing crew or region in the $_SESSION['current_view'] array
// 2nd - Try to determine the current user's crew and use that
// 3rd - Display the page with no parameters - the page will show an error and offer a link to the Home page
if (isset($_SESSION['current_view']['crew'])) {
$crew = $_SESSION['current_view']['crew'];
$region = $crew->get('region');
$_SESSION['current_view']['region'] = $region;
$_SESSION['location_bar'] = "Location: <a href=\"./index.php\">Home</a>";
$_SESSION['location_bar'] .= " / <a href=\"" . $current_file . "?region=" . $region . "\">R" . $region . "</a>";
$_SESSION['location_bar'] .= " / <a href=\"./" . $current_file . "?region=" . $crew->get('region') . "&crew=" . $crew->get('id') . "\">" . $crew->get('name') . "</a>";
$_SESSION['location_bar'] .= " / Proficiency Report";
// Clear the unknown 'current_view' elements
$_SESSION['current_view']['hrap'] = NULL;
$_SESSION['current_view']['op'] = NULL;
} elseif (isset($_SESSION['current_view']['region'])) {
$region = $_SESSION['current_view']['region'];
$_SESSION['location_bar'] = "Location: <a href=\"./index.php\">Home</a>";
$_SESSION['location_bar'] .= " / <a href=\"" . $current_file . "?region=" . $region . "\">R" . $region . "</a>";
$_SESSION['location_bar'] .= " / Proficiency Report";
// Clear the unknown 'current_view' elements
$_SESSION['current_view']['crew'] = NULL;
$_SESSION['current_view']['hrap'] = NULL;
$_SESSION['current_view']['op'] = NULL;
} elseif (isset($_SESSION['current_user']) && $_SESSION['current_user']->get('crew_affiliation_id') != false) {
$crew = new crew();
$crew->load($_SESSION['current_user']->get('crew_affiliation_id'));
$region = $crew->get('region');
$_SESSION['current_view']['crew'] = $crew;
$_SESSION['current_view']['region'] = $region;
$_SESSION['location_bar'] = "Location: <a href=\"./index.php\">Home</a>";
$_SESSION['location_bar'] .= " / <a href=\"" . $current_file . "?region=" . $region . "\">R" . $region . "</a>";
$_SESSION['location_bar'] .= " / <a href=\"./" . $current_file . "?region=" . $crew->get('region') . "&crew=" . $crew->get('id') . "\">" . $crew->get('name') . "</a>";
$_SESSION['location_bar'] .= " / Proficiency Report";
// Clear the unknown 'current_view' elements
$_SESSION['current_view']['hrap'] = NULL;
$_SESSION['current_view']['op'] = NULL;
}
} else {
// Clear the unknown 'current_view' elements
$_SESSION['location_bar'] = "Location: <a href=\"./index.php\">Home</a>";
$_SESSION['current_view']['region'] = NULL;
$_SESSION['current_view']['crew'] = NULL;
$_SESSION['current_view']['hrap'] = NULL;
$_SESSION['current_view']['op'] = NULL;
}
}
// End: try/catch block
/********************************************************************************************************************************/
/*******************<< USER is not logged in (yet) >>****************************************************************************/
if (!isset($_SESSION['logged_in']) || $_SESSION['logged_in'] != 1) {
//Initialize the current_user as a GUEST
$_SESSION['current_user'] = new user('guest');
/******* PROCESS LOGIN ATTEMPT ***************************/
try {
if (!isset($_POST['username']) || !isset($_POST['passwd'])) {
throw new Exception('');
}
//No login attempt was made
login($_POST['username'], $_POST['passwd']);
} catch (Exception $e) {
// If this block is reached, either no login attempt was made, or a login attempt failed with an exception.
echo "<div id=\"left_sidebar_title\">Login</div>\n";
echo "<form action=\"" . $_SERVER['PHP_SELF'] . "?" . $_SERVER['QUERY_STRING'] . "\" method=\"post\" style=\"margin:0; padding:0;\">\n" . "\t<table style=\"margin:0; padding:0;\">\n" . "\t\t<tr><td colspan=\"2\"><div id=\"login_result\">" . $e->getMessage() . "</div></td></tr>\n" . "\t\t<tr><td>Username:</td><td><input name=\"username\" type=\"text\" class=\"loginfield\" value=\"" . (isset($_POST['username']) ? $_POST['username'] : "") . "\" /></td></tr>\n" . "\t\t<tr><td>Password:</td><td><input name=\"passwd\" type=\"password\" class=\"loginfield\" /></td></tr>\n" . "\t\t<tr><td> </td><td style=\"text-align:right;\"><input type=\"submit\" value=\"Login\" class=\"form_button\" style=\"margin-right:0;\" /></td></tr>\n" . "\t</table>\n" . "</form>";
echo "<hr><br>\n" . "<table>\n" . "\t<tr><td>You are viewing information for the following year:</td></tr>\n" . "\t<tr><td style=\"text-align:center;vertical-align:center;padding:0;\">\n" . "\t\t<form action=\"" . $_SERVER['PHP_SELF'] . "?" . $_SERVER['QUERY_STRING'] . "\" method=\"GET\" id=\"sidebar_year_form\" name=\"sidebar_year_form\">\n" . "\t\t<input name=\"year\" type=\"text\" value=\"" . $_SESSION['current_view']['year'] . "\" style=\"width:40px; height:1.3em; font-size:1.2em; font-weight:bold; margin:1px;\">\n";
if ($region != NULL) {
echo "<input type=\"hidden\" name=\"region\" value=\"" . $_GET['region'] . "\">\n";
}
if ($crew != NULL) {
echo "<input type=\"hidden\" name=\"crew\" value=\"" . $crew->get('id') . "\">\n";
}
if ($hrap != NULL) {
echo "<input type=\"hidden\" name=\"hrap\" value=\"" . $hrap->get('id') . "\">\n";
}
if ($op != NULL) {
echo "<input type=\"hidden\" name=\"op\" value=\"" . $op . "\">\n";
}
if (isset($_GET['function']) && $_GET['function'] != '') {
echo "<input type=\"hidden\" name=\"function\" value=\"" . $_GET['function'] . "\">\n";
}
echo "\t\t<input type=\"button\" value=\"Update\" class=\"form_button\" onClick=' document.forms.sidebar_year_form.submit();'>\n" . "\t\t</form>\n" . "\t\t</td>\n" . "\t</tr>\n" . "</table>\n" . "<br><hr>\n\n";
}
}
/******* USER IS LOGGED IN*******************************************************************************************************/
if (isset($_SESSION['logged_in']) && $_SESSION['logged_in'] == 1) {
echo "<div id=\"left_sidebar_title\">RapRec Menu</div>\n";
echo "You are logged in as:<br />" . $_SESSION['current_user']->get('firstname') . " " . $_SESSION['current_user']->get('lastname') . "<br /><i>" . $_SESSION['current_user']->get('username') . "</i><br><br>\n";
echo "<a href=\"index.php?logout=1" . (isset($_SESSION['mobile']) ? "&mobile=" . $_SESSION['mobile'] : "") . "\">Logout</a><br>";
echo "<hr><br>\n" . "<table>\n" . "\t<tr><td>You are viewing information for the following year:</td></tr>\n" . "\t<tr><td>\n" . "\t\t<form action=\"" . $_SERVER['PHP_SELF'] . "?" . $_SERVER['QUERY_STRING'] . "\" method=\"GET\" id=\"sidebar_year_form\" name=\"sidebar_year_form\">\n" . "\t\t<input name=\"year\" id=\"sidebar_year\" type=\"text\" size=\"4\" value=\"" . $_SESSION['current_view']['year'] . "\" style=\"width:40px\">\n";
if ($region != NULL) {
echo "<input type=\"hidden\" name=\"region\" value=\"" . $_GET['region'] . "\">\n";
}
if ($crew != NULL) {
echo "<input type=\"hidden\" name=\"crew\" value=\"" . $crew->get('id') . "\">\n";
}
if ($hrap != NULL) {
echo "<input type=\"hidden\" name=\"hrap\" value=\"" . $hrap->get('id') . "\">\n";
}
if ($op != NULL) {
echo "<input type=\"hidden\" name=\"op\" value=\"" . $op . "\">\n";
}
if (isset($_GET['function']) && $_GET['function'] != '') {
echo "<input type=\"hidden\" name=\"function\" value=\"" . $_GET['function'] . "\">\n";
}
echo "<input type=\"button\" value=\"Update\" class=\"form_button\" onClick='document.forms.sidebar_year_form.submit();'></form></td></tr></table><br><hr>\n\n";
/*
//Decide what to show in the 'Location Bar' when navigating to the 'update_rappels.php' page, since updating rappels is not a crew-dependent operation
if(isset($_SESSION['current_view']['crew']) && ($_SESSION['current_view']['crew']->get('id') != NULL)) $update_rappels_crew_id = $_SESSION['current_view']['crew']->get('id');
else $update_rappels_crew_id = $_SESSION['current_user']->get('crew_affiliation_id');
*/
$crew_id = "";
$crew_name = "None Selected";
$region = "";
if (isset($_SESSION['current_view']['crew'])) {
$crew_id = $_SESSION['current_view']['crew']->get('id');
$crew_name = $_SESSION['current_view']['crew']->get('name');
}
if (isset($_SESSION['current_view']['region'])) {
$region = $_SESSION['current_view']['region'];
}
$academy_id = get_academy_id($region);
echo "<h3>" . ucwords(str_replace("_", " ", $_SESSION['current_user']->get('account_type'))) . "</h3><br><br>\n" . "<ul class=\"sidebar_menu\">\n";
echo "<li>Home\n" . "<ul>\n" . "\t<li><a href=\"index.php\">National Map</a></li>\n";
if ($_SESSION['current_user']->get('crew_affiliation_id')) {
echo "\t<li><a href=\"index.php?crew=" . $_SESSION['current_user']->get('crew_affiliation_id') . "\">My Crew</a></li>\n";
}
echo "<li><a href=\"weekly_report.php\">Weekly Report</a></li>\n";
echo "</ul></li>\n";
/*
if($crew_id != "") {
echo "<li><a href=\"modify_roster.php?crew=".$crew_id."\">Current Crew<br><small>(".$crew_name.")</small></a>\n"
."<ul>\n"
." <li><a href=\"modify_roster.php?crew=".$crew_id."\">View / Edit Crewmembers</a></li>\n"
." <li><a href=\"modify_roster.php?crew=".$crew_id."&function=add_hrap_menu\">Add Crewmembers</a></li>\n"
."</ul></li>\n\n";
}
*/
if ($region != "" || $crew_id != "" || $_SESSION['current_user']->get('account_type') == 'crew_admin') {
echo "<li>Rosters\n<ul>\n";
}
if ($region != "") {
echo "\t<li><a href=\"index.php?region=" . $region . "\">Regional Crew List</a></li>\n";
}
if ($crew_id != "") {
echo "\t<li><a href=\"index.php?region=" . $region . "&crew=" . $crew_id . "\">Crew Roster</a></li>\n";
}
if ($_SESSION['current_user']->get('account_type') == 'crew_admin') {
echo "\t<li><a href=\"modify_roster.php?&crew=" . $_SESSION['current_user']->get('crew_affiliation_id') . "\">Modify My Roster</a></li>\n";
}
if ($crew_id != "" && $_SESSION['current_user']->get('account_type') == 'admin') {
echo "\t<li><a href=\"modify_roster.php?&crew=" . $crew_id . "\">Modify This Roster</a></li>\n";
}
if ($region != "" || $crew_id != "" || $_SESSION['current_user']->get('account_type') == 'crew_admin') {
echo "</ul></li>\n";
}
if (in_array($_SESSION['current_user']->get('account_type'), array('admin', 'crew_admin'))) {
echo "\t<li>Rappel Records\n" . "\t<ul>\n" . "\t<li><a href=\"update_rappels.php?function=add_rappel\">Add a New Rappel</a></li>\n";
} elseif ($crew_id != "" || $region != "") {
echo "\t<li>Rappel Records\n" . "\t<ul>\n";
}
if ($crew_id != "" || $region != "") {
echo "\t<li><a href=\"proficiency_report.php?region=" . $region . "\">Regional Proficiency Report</a></li>\n" . "\t<li><a href=\"view_rappels.php?region=" . $region . "\">Regional Rappels</a></li>\n";
}
if ($crew_id != "") {
echo "\t<li><a href=\"proficiency_report.php?crew=" . $crew_id . "\">Crew Proficiency Report</a></li>\n" . "\t<li><a href=\"view_rappels.php?crew=" . $crew_id . "\">Crew Rappels</a></li>\n";
}
if ($crew_id != "" || $region != "" || in_array($_SESSION['current_user']->get('account_type'), array('admin', 'crew_admin'))) {
echo "</ul></li>\n\n";
}
if ($crew_id != "" || $region != "") {
echo "<li>Equipment\n" . "<ul>\n";
if (in_array($_SESSION['current_user']->get('account_type'), array('admin', 'crew_admin'))) {
echo "\t<li><a href=\"add_new_equipment.php?crew=" . $crew->get('id') . "\">Add New Equipment</a></li>\n";
}
echo "\t<li><a href=\"view_equipment.php?region=" . $region . "\">Regional Equipment</a></li>\n";
if ($academy_id != false) {
echo "\t<li><a href=\"view_equipment.php?crew=" . $academy_id . "®ion=" . $region . "\">Academy Equipment</a></li>\n";
}
if ($crew_id != "") {
echo "\t<li><a href=\"view_equipment.php?crew=" . $crew_id . "\">Crew Equipment</a></li>\n";
}
echo "</ul></li>\n\n";
}
echo "\t<li>Account Management\n" . "\t\t<ul><li><a href=\"account_management.php?function=edit_account&user_id=" . $_SESSION['current_user']->get('id') . "\">Edit My Account</a></li>\n";
if (in_array($_SESSION['current_user']->get('account_type'), array('admin', 'crew_admin'))) {
echo "\t\t<li><a href=\"account_management.php\">All Accounts</a></li>\n";
}
if (in_array($_SESSION['current_user']->get('account_type'), array('admin', 'crew_admin'))) {
echo "\t\t<li><a href=\"account_management.php?function=create_account\">Create an Account</a></li></ul>\n";
}
echo "\t</li>\n";
echo "</ul>\n\n";
}
}
function show_confirm_existing_hrap_menu()
{
//Check that the requested HRAP is valid
$name = check_hrap($_GET['hrap_id']);
$crew = check_crew($_GET['crew']);
//Check that the requested HRAP is not already on a roster for the requested year
$query = "SELECT crews.name as crew_name FROM rosters INNER JOIN crews ON crews.id = rosters.crew_id WHERE rosters.hrap_id = " . $_GET['hrap_id'] . " AND rosters.year = '" . $_SESSION['current_view']['year'] . "'";
$result = mydb::cxn()->query($query);
$msg = "";
if ($name === 0) {
$msg = "The rappeller you requested does not appear to exist!";
} elseif ($crew == false) {
$msg = "The crew you requested does not appear to exist!";
} elseif (mydb::cxn()->affected_rows > 0) {
$row = $result->fetch_assoc();
$msg = $name . " is already a member of " . $row['crew_name'] . " in " . $_SESSION['current_view']['year'] . "!";
} else {
$msg = "Are you sure you want to add " . $name . " to your " . $_SESSION['current_view']['year'] . " roster?<br><br>\n\n" . "<form action=\"\" method=\"post\">\n <input type=\"hidden\" name=\"hrap_id\" value=\"" . $_GET['hrap_id'] . "\">\n " . "<input type=\"submit\" value=\"Add\"> <input type=\"button\" value=\"Cancel\" onClick=\"window.location.href='" . $_SERVER['PHP_SELF'] . "?crew=" . $_GET['crew'] . "&function=add_existing_hrap'\">\n " . "</form>";
}
show_header();
echo "<div style=\"border:2px solid #666666;padding:10px;text-align:center;\">" . $msg . "</div><br>\n\n";
echo "</div>\n";
}
require_once "includes/aircraft_layouts.php";
// Make sure this user is allowed to access this page
if ($_SESSION['logged_in'] == 1) {
// ACCESS GRANTED!
global $crew;
$crew = new crew();
global $allow_edit;
$allow_edit = 0;
global $op;
// If a specific operation is requested, this will hold all the details
// Check this user's permissions to determine whether to show an 'Edit' link by each rappel record
if (isset($_SESSION['current_view']['crew'])) {
if (check_access('crew_admin', $_SESSION['current_view']['crew']->get('id'))) {
$allow_edit = 1;
}
} elseif (isset($_GET['crew']) && check_crew($_GET['crew'])) {
$allow_edit = 1;
}
} else {
// ACCESS DENIED!
// Users who are NOT LOGGED IN are not allowed to view the details of individual rappels. They can only view cumulative data and statistics (on the index.php page)
store_intended_location();
//Redirect user back to their intended location after they log in
header('location: index.php');
}
/*********************************************************************************************************************/
/*********************************************************************************************************************/
/*********************************************************************************************************************/
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
