$section = 'banner';
$sub = 'list';
?>
<?php
$typeOfUser = fAuthorization::checkAuthLevel('super');
//$canEdit = fAuthorization::checkACL('poll', 'edit');
//$canDelete = fAuthorization::checkACL('poll', 'delete');
$where = " WHERE ";
if (!$typeOfUser) {
$where = " WHERE " . fSession::get('where_at') . " AND ";
}
$limit = fRequest::encode('limit', 'integer');
$page = fRequest::encode('p', 'integer');
$query = fRequest::encode('query', 'string');
if ($page < 1) {
exit;
}
$start = ($page - 1) * $limit;
$sections = fRecordSet::buildFromSQL('BannerSection', "SELECT * FROM bannersection {$where} (name LIKE '%{$query}%' OR id_region IN (SELECT id_region FROM region WHERE name LIKE '%{$query}%')) LIMIT {$start},{$limit}", "SELECT count(*) FROM bannersection {$where} (name LIKE '%{$query}%' OR id_region IN (SELECT id_region FROM region WHERE name LIKE '%{$query}%'))", $limit, $page);
if ($sections->count() == 0) {
echo '<div class="notification information" >
Por el momento no hay registros en <b> Secciones de banners </b>.
</div>';
} else {
$p = new Pagination($sections->getPages(), $sections->getPage(), 3);
$pagination = $p->getPaginationLinks();
?>
<center>
<table class="contenttoc" style="width:auto; float:left">
<?php
$section = 'categories';
$section_id = 25;
$sub = 'listGcategory';
$typeOfUser = fAuthorization::checkAuthLevel('super');
$where = "";
if (!$typeOfUser) {
$where = " WHERE " . fSession::get('where_at');
}
?>
<?php
$limit = fRequest::encode('limit', 'integer');
$page = fRequest::encode('p', 'integer');
if ($page < 1) {
exit;
}
$start = ($page - 1) * $limit;
$categories = fRecordSet::buildFromSQL('EconomicUnitCategory', "SELECT * FROM economic_unit_categories {$where} LIMIT {$start},{$limit}", "SELECT count(*) FROM economic_unit_categories {$where}", $limit, $page);
if ($categories->count() == 0) {
echo '<div class="notification information" >
Por el momento no hay registros en <b> Categorías de Geolocalización</b>.
</div>';
} else {
$p = new Pagination($categories->getPages(), $categories->getPage(), 3);
$pagination = $p->getPaginationLinks();
?>
<center>
<table class="contenttoc" style="width:auto; float:left">
<tr>
$u->setEmail(fRequest::encode('email', 'string'));
$u->setPassword($p);
$u->setFirstName(fRequest::encode('firstName', 'string'));
$u->setLastName(fRequest::encode('lastName', 'string'));
$u->setBirthday(fRequest::encode('birthday', 'date'));
$u->setPhone(fRequest::encode('phone', 'string'));
$u->setCellphone(fRequest::encode('cellphone', 'string'));
$u->setNextel(fRequest::encode('nextel', 'string'));
$u->setNextel(fRequest::encode('fax', 'string'));
$u->setNextel(fRequest::encode('address', 'string'));
$u->store();
} catch (Exception $e) {
die('El correo electrónico ya está asociado con una cuenta' . $e->getMessage());
}
$regions = array_unique(fRequest::encode('region', 'array'));
$permissions = array_unique(fRequest::encode('permission', 'array'));
try {
foreach ($regions as $item) {
if (!empty($item) && $item != 'null') {
$ur = new UserRegion();
$ur->setIdUser($u->getIdUser());
$ur->setIdRegion($item);
$ur->store();
}
}
foreach ($permissions as $item) {
if (!empty($item) && $item != 'null') {
$up = new UserPermission();
$up->setIdUser($u->getIdUser());
$up->setIdPermission($item);
$up->store();
}
$lastId = $banner->prepareIdBanner();
/*
* Add Region
* Limited By User Permissions
*/
/*
* Add Files to Server
*/
if (!empty($_FILES)) {
$uploader = new fUpload();
$uploader->setOptional();
$uploader->setMIMETypes($acceptedFiles, 'El tipo de archivo es incorrecto');
$dir = 'uploads/banner/';
$dir2 = 'uploads/banner/thumbs/';
$imageDescrip = fRequest::encode('imageDescrip');
$uploaded = fUpload::count('files');
for ($i = 0; $i < $uploaded; $i++) {
$ext = strtolower(pathinfo($_FILES['files']['name'][$i], PATHINFO_EXTENSION));
$_FILES['files']['name'][$i] = fURL::makeFriendly(str_replace(' ', '-', $_FILES['files']['name'][$i])) . ".{$ext}";
$uploader->move($dir, 'files', $i);
$fileName[] = $_FILES['files']['name'][$i];
$fileType[] = $_FILES['files']['type'][$i];
copy($dir . $fileName[$i], $dir2 . $fileName[$i]);
$image3 = new fImage($dir2 . $fileName[$i]);
$image3->cropToRatio(1, 1, 'left', 'bottom');
$image3->resize(200, 0);
$image3->saveChanges();
/*
$ftp = new ftp($user,$pass);
$ftp->upload($dir . "/" . $fileName[$i], 'DIR EN REMOTE');
<?php
$id = fRequest::encode('id', 'integer');
$s = fRequest::encode('id_section', 'integer');
try {
if ($s != 2) {
$category = new EconomicUnitCategory($id);
$category->setName(fRequest::encode('name', 'string'));
} else {
$category = new EconomicUnitCategory($id);
$category->setEconomicUnitCategoryName(fRequest::encode('name', 'string'));
}
} catch (Exception $e) {
}
try {
$category->store();
} catch (Exception $e) {
exit("Ha ocurrido un error.");
}
exit("1");
<?php
fSession::open();
$idUser = fSession::get(SESSION_ID_USER);
if (empty($idUser)) {
header('Location: ' . SITE);
exit("No se ha podido acceder a esta secci&oacite;n");
}
//if (fRequest::isPost()):
$section_id = fRequest::encode('id_section', 'integer');
$parent_id = fRequest::encode('id_parent', 'integer');
//var_dump($_POST); var_dump($_GET);
//$categories = Category::findAllUp($section_id,0,$region_id);
$categories = fRecordSet::buildFromSQL("Category", "SELECT * FROM category WHERE id_section = {$section_id} AND id_parent = {$parent_id}");
?>
<?php
if ($categories->count() > 0) {
echo '<tr>
<td><label for="id_category"> Categoría </label> </td>
<td >
<select class="subcategories" style="width:680px; " name="id_category">';
foreach ($categories as $category) {
echo '<option value="' . $category->prepareId_category() . '"> ' . $category->prepareName() . ' </option>';
}
//endif;
?>
</select>
</td>
</tr>
<tr class="category_select">
}
/*
* Add Files to Server
*/
if (!empty($_FILES['files2']['name'][0])) {
$uploader = new fUpload();
$uploader->setOptional();
$uploader->setMIMETypes($acceptedFiles, 'El tipo de archivo es incorrecto');
$dir = 'uploads/geolocation/';
$dir2 = 'uploads/geolocation/thumbs/';
$imageDescrip = fRequest::encode('imageDescrip');
try {
$uploaded2 = fUpload::count('files2');
$productname = fRequest::encode('productname');
$productdescrip = fRequest::encode('descripp');
$productprice = fRequest::encode('price');
for ($i = 0; $i < $uploaded2; $i++) {
$ext = strtolower(pathinfo($_FILES['files2']['name'][$i], PATHINFO_EXTENSION));
$_FILES['files2']['name'][$i] = fURL::makeFriendly(str_replace(' ', '-', $_FILES['files2']['name'][$i])) . ".{$ext}";
$uploader->move($dir, 'files2', $i);
$fileName[] = $_FILES['files2']['name'][$i];
$fileType[] = $_FILES['files2']['type'][$i];
$ap = new EconomicUnitProduct();
$ap->setEconomicUnitId($lastId);
$ap->setName($productname[$i]);
$ap->setPrice($productprice[$i]);
$ap->setDescription($productdescrip[$i]);
$ap->setImage($fileName[$i]);
$ap->store();
copy($dir . $fileName[$i], $dir2 . $fileName[$i]);
$image3 = new fImage($dir2 . $fileName[$i]);
<?php
fSession::open();
$idUser = fSession::get(SESSION_ID_USER);
if (empty($idUser)) {
header('Location: ' . SITE);
exit("No se ha podido acceder a esta sección");
}
$id_parent = fRequest::encode('id_parent', 'integer') > 0 ? fRequest::encode('id_parent', 'integer') : -1;
$zones = fRecordSet::buildFromSQL('BannerSection', "SELECT * FROM bannersection WHERE id_parent = {$id_parent} ORDER BY name");
if ($zones->count() > 0) {
foreach ($zones as $zone) {
echo '<option value="' . $zone->prepareIdBannersection() . '">' . $zone->prepareName() . '</option>';
}
} else {
echo '<option value="0"> Selecciona una zona </option>';
}
die('1');
/**
* Encode & store the submitted value (if any) in the meta info
**/
public function _getSubmittedValue()
{
$input = fRequest::encode($this->name);
// TODO: Cast to approprate type?
if (is_string($input)) {
$input = trim($input);
}
$this->_value = $input;
return $this;
}
<?php
require_once 'init.php';
fSession::open();
$idUser = fSession::get(SESSION_ID_USER);
if (!empty($idUser)) {
header('Location: ' . SITE);
}
if (fRequest::isPost()) {
$u = new User(array('email' => fRequest::encode('email', 'string')));
$p = fRequest::encode('password', 'string') . SALT;
$p = md5($p);
$p = base64_encode($p);
$p = hash('sha256', $p);
if ($u && $u->preparePassword() == $p) {
switch ($u->prepareIdRole()) {
case 1:
fAuthorization::setUserAuthLevel('super');
break;
case 2:
fAuthorization::setUserAuthLevel('admin');
break;
case 3:
case 4:
case 5:
case 6:
case 7:
case 8:
fAuthorization::setUserAuthLevel('employee');
break;
case 9:
<?php
require_once '../init.php';
$section = 'banner';
$sub = 'editSection';
fSession::open();
$idUser = fSession::get(SESSION_ID_USER);
if (empty($idUser)) {
header('Location: ' . SITE);
exit("No se ha podido acceder a esta secci&oacite;n");
}
$id_bannersection = fRequest::encode('id', 'integer');
if (!fAuthorization::checkAuthLevel('super')) {
$isOwner = fRecordSet::build('BannerSection', array('id_bannersection=' => $id_bannersection));
$count = $isOwner->count() > 0;
if (!$count) {
header("Location: " . SITE);
}
}
try {
$bannersection = new BannerSection($id_bannersection);
} catch (Exception $e) {
header("Location: " . SITE);
}
require_once INCLUDES . 'header.php';
?>
<!-- MAIN CONTAINER -->
<link rel="stylesheet" href="<?php
echo JS;
?>
jwysiwyg/jquery.wysiwyg.css" type="text/css" />
<?php
fSession::open();
$id_role = fRequest::get('id_role', 'integer');
$email = fRequest::encode('email', 'string');
if (empty($email)) {
exit;
}
$arr = array();
if (fAuthorization::checkAuthLevel('super')) {
if (empty($id_role)) {
$users = User::getByEmailSup($email);
} else {
$users = User::getByRoleAndEmailSup($id_role, $email);
}
} else {
if (empty($id_role)) {
$users = User::getByEmail($email, fSession::get('regs'));
} else {
$users = User::getByRoleAndEmail($id_role, $email, fSession::get('regs'));
}
}
if (!empty($users)) {
foreach ($users as $user) {
$arr[] = array('id_user' => $user->getIdUser(), 'email' => $user->getEmail());
}
}
echo json_encode($arr);
<?php
require_once '../init.php';
$section = 'categories';
$sub = 'edit';
/*
if(!fAuthorization::checkAuthLevel('employee')):
exit("No se ha podido acceder");
endif;
*/
$id = fRequest::encode('id', 'integer');
$s = fRequest::encode('s', 'integer');
try {
$category = new EconomicUnitCategory($id);
} catch (Exception $e) {
header("Location: " . SITE);
}
require_once INCLUDES . 'header.php';
?>
<link rel="stylesheet" href="<?php
echo CSS;
?>
ui-lightness/jquery-ui-1.8.16.custom.css" type="text/css" />
<script type="text/javascript" src="<?php
echo JS;
?>
jquery.form.js"></script>
<script type="text/javascript" src="<?php
echo JS;
?>
upload/jquery.MultiFile.js"></script>
<?php
fSession::open();
$idUser = fSession::get(SESSION_ID_USER);
if (empty($idUser) || !fAuthorization::checkACL('news', 'delete')) {
header('Location: ' . SITE);
exit("No se ha podido acceder a esta secci&oacite;n");
}
$id = fRequest::encode('id', 'string');
if (strstr($id, ",")) {
fORMDatabase::retrieve()->query("DELETE FROM economic_units WHERE economic_unit_id IN ({$id})");
} else {
$author = new EconomicUnit($id);
$author->delete();
}
fORMDatabase::retrieve()->query("DELETE FROM economic_units_has_economic_unit_categories WHERE economic_units_economic_unit_id IN ({$id})");
<?php
$r = new Region();
$tmp = $r->findAll(fRequest::encode('region'));
$regions = array();
if (!empty($tmp)) {
foreach ($tmp as $item) {
$regions[] = array('id_region' => $item->prepareIdRegion(), 'name' => $item->prepareName());
}
}
die(json_encode($regions));
<?php
require_once '../init.php';
$id_section = 2;
$section = 'user';
$sub = 'edit';
$idUser = fRequest::encode('id', 'integer');
if (empty($idUser) || !is_numeric($idUser)) {
exit;
}
$u = new User($idUser);
if (empty($u)) {
header('Location: ' . USER . 'list');
}
fSession::open();
$idUser = fSession::get(SESSION_ID_USER);
//if(empty($idUser) || !fAuthorization::checkACL($section, $sub)) {
if (empty($idUser)) {
header('Location: ' . SITE);
exit("No se ha podido acceder a esta secci&oacite;n");
}
//if($u->prepareIdRole() == 1 && !fAuthorization::checkAuthLevel('super')) header('Location: '.SITE);
require_once INCLUDES . 'header.php';
?>
<!-- MAIN CONTAINER -->
<link rel="stylesheet" href="<?php
echo CSS;
?>
ui-lightness/jquery-ui-1.8.16.custom.css">
<script type="text/javascript" src="<?php
echo SCRIPT;
<?php
fSession::open();
$idUser = fSession::get(SESSION_ID_USER);
if (empty($idUser)) {
header('Location: ' . SITE);
exit("No se ha podido acceder a esta sección");
}
$id = fRequest::encode('id_bannersection', 'integer');
if (!fAuthorization::checkAuthLevel('super')) {
$isOwner = fRecordSet::build('BannerSection', array('id_bannersection=' => $id_bannersection));
$count = $isOwner->count() > 0;
if (!$count) {
exit("0");
}
}
try {
$bannersection = new BannerSection($id);
$bannersection->setName(fRequest::encode('name', 'string'));
$bannersection->store();
} catch (Exception $e) {
die('Ha ocurrido un error. ' . $e->getMessage());
}
die('1');
