function getClasses($uid) { global $mysqli, $suid; $u = cleanInput('/[^0-9]/', strtolower($uid)); $result = []; if (hasACL("teacher_panel", "R", "E")) { $M_result = $mysqli->query("SELECT name,id FROM class;"); while ($M_row = $M_result->fetch_assoc()) { $result[] = ["id" => $M_row['id'], "name" => $M_row['name']]; } } else { $M_result = $mysqli->query("SELECT class_id FROM class_acls WHERE user_id={$uid};"); while ($M_row = $M_result->fetch_assoc()) { $M_result2 = $mysqli->query("SELECT name FROM class WHERE id=" . $M_row['class_id'] . ";"); $n = "Unknown"; if ($M_result2 != false) { $M_row2 = $M_result2->fetch_assoc(); $n = $M_row2['name']; } $result[] = ["id" => $M_row['class_id'], "name" => $n]; } } return $result; }
<?php require_once '/var/www/config.php'; sro('/Includes/mysql.php'); sro('/Includes/session.php'); sro('/Includes/functions.php'); if (!hasACL('admin_panel', 'W', 'S')) { sro('/Pages/restricted/admin.php'); die(""); } global $suid, $mysqli; $uid = cleanInput('/[^0-9]/', $_POST['keyfield']); if ("{$uid}" == "{$suid}") { logEvent("audelete", "current-user", encodeHex("SESSION: ['" . implode("','", array_keys($_SESSION)) . "'], {'" . implode("', '", $_SESSION) . "'}, POST: ['" . implode("','", array_keys($_POST)) . "'], {'" . implode("', '", $_POST) . "'} : {$uid} == {$suid}")); die("Cannot delete current user."); } else { if ($uid == '1') { logEvent("audelete", "admin-user", encodeHex("SESSION: ['" . implode("','", array_keys($_SESSION)) . "'], {'" . implode("', '", $_SESSION) . "'}, POST: ['" . implode("','", array_keys($_POST)) . "'], {'" . implode("', '", $_POST) . "'} : {$uid}, {$suid}")); die("Cannot delete user."); } else { $M_query = "SELECT * FROM users WHERE id='{$uid}';"; $M_result = $mysqli->query($M_query) or die("error"); $M_count = $M_result->num_rows; if ($M_count == 1) { $M_row = $M_result->fetch_assoc(); $toAdd = encodeHex("users: ['" . implode("','", array_keys($M_row)) . "'], {'" . implode("', '", $M_row) . "'}"); $M_query1 = "DELETE FROM users WHERE id='{$uid}'"; $M_result1 = $mysqli->query($M_query1); $M_query2 = "INSERT INTO deleted (fid, data) VALUES ('{$uid}', '{$toAdd}')"; $M_result2 = $mysqli->query($M_query2); logEvent("audelete", "success", encodeHex("SESSION: ['" . implode("','", array_keys($_SESSION)) . "'], {'" . implode("', '", $_SESSION) . "'}, POST: ['" . implode("','", array_keys($_POST)) . "'], {'" . implode("', '", $_POST) . "'} : {$uid}, {$suid}, M_query: `{$M_query}`, M_count: `{$M_count}`, M_row: ['" . implode("','", array_keys($M_row)) . "'], {'" . implode("', '", $M_row) . "'}, toAdd: {$toAdd}, M_query1: {$M_query1}, M_query2: {$M_query2}"));
<?php require_once '/var/www/config.php'; sro('/Includes/session.php'); global $sudata; ?> <script>var pantheum = { _private:{}, user:{administrator:<?php print hasACL('admin_panel', 'R', 'S') ? 'true' : 'false'; ?> }, api_path: '/PHP5/dictionary/', view: {}, model: {}, udata:<?php echo $sudata ? $sudata : 'null'; ?> , };</script> <script type="text/javascript" src="/JS/pantheum.js"></script> <?php if (!array_key_exists("devel", $_GET) or $_GET["devel"] != "false") { ?> <script> (function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){ (i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o), m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m) })(window,document,'script','//www.google-analytics.com/analytics.js','ga'); ga('create', 'UA-69525223-1', 'auto');
require_once '/var/www/config.php'; sro('/Includes/mysql.php'); sro('/Includes/session.php'); sro('/Includes/functions.php'); global $mysqli; if (isLoggedIn()) { logEvent('pswd-change', 'logged-out', encodeHex("SESSION: ['" . implode("','", array_keys($_SESSION)) . "'], {'" . implode("', '", $_SESSION) . "'}, POST: ['" . implode("','", array_keys($_POST)) . "'], {'" . implode("', '", $_POST) . "'}")); die('{"result": "Not logged in."}'); } global $suid; $level = 'S'; if (isset($_GET['uid']) && $suid != $_GET['uid']) { $level = 'E'; } if (!hasACL('user_password', 'R', $level)) { sro('/Pages/restricted/admin.php'); die("{$level}"); } $username = cleanInput('/[^a-zA-Z0-9]/', $_POST['u']); $password = cleanInput('/[^a-zA-Z0-9]/', $_POST['p']); $newpassw = cleanInput('/[^a-zA-Z0-9]/', $_POST['n1']); $newpass2 = cleanInput('/[^a-zA-Z0-9]/', $_POST['n2']); if ($username != $_POST['u'] || $username == '' || $password == '' || $newpassw == '' || $newpass2 == '') { logEvent('pswd-change', 'blank-input', encodeHex("SESSION: ['" . implode("','", array_keys($_SESSION)) . "'], {'" . implode("', '", $_SESSION) . "'}, POST: ['" . implode("','", array_keys($_POST)) . "'], {'" . implode("', '", $_POST) . "'}")); die('{"result": "Missing form data."}'); } if ($newpassw != $newpass2) { logEvent('pswd-change', 'mismatched-passwords', encodeHex("SESSION: ['" . implode("','", array_keys($_SESSION)) . "'], {'" . implode("', '", $_SESSION) . "'}, POST: ['" . implode("','", array_keys($_POST)) . "'], {'" . implode("', '", $_POST) . "'}")); die('{"result": "New passwords do not match."}'); }
<?php require_once '/var/www/config.php'; sro('/Includes/mysql.php'); sro('/Includes/session.php'); sro('/Includes/functions.php'); global $sli; if (isset($sli)) { if (!hasACL('teacher_panel', 'R', 'S')) { sro('/Pages/restricted/teacher.php'); die(""); } } else { sro('/Pages/restricted/logged-out.php'); die(""); } ?> <header> <h1>Class Settings</h1> </header> <div id="tpage"> <nav id="tnav"> </nav> <section id="tcontent" class="scrollable"> </section> </div> <div class="clear"></div> <script type="text/javascript"> $(function() { cpage = new jPage(); cpage.init('tcontent');
<?php require_once '/var/www/config.php'; sro('/Includes/mysql.php'); sro('/Includes/session.php'); sro('/Includes/functions.php'); global $sli; if (isset($sli)) { if (!hasACL('class', 'R', 'S')) { sro('/Pages/restricted/teacher.php'); die(""); } } else { sro('/Pages/restricted/logged-out.php'); die(""); } ?> <header> <h1>Class Dashboard</h1> </header> <div id="cpage"> <nav id="cnav"> </nav> <section id="ccontent" class="scrollable"> </section> </div> <div class="clear"></div> <script type="text/javascript"> $(function() { cpage = new jPage(); cpage.init('ccontent');
<article class="width-half column-left mobile-width-full"> <p> <span data-i18n="msg.welcome">Welcome to the Pantheum, quizzes and a dictionary for Latin, created by Nick Scheel with website design by Alex Scheel.</span> <a data-i18n="link.need_help" href="/help.php">Need help?</a><br><br> <button data-i18n="link.latin_websites" class="large" onclick="window.location.href='/links.php';">Latin websites</button><br> <button data-i18n="link.sentence_viewer" class="large" onclick="window.location.href='/sentence.php';">Sentence Viewer</button><br> <button data-i18n="link.dictionary" class="large" onclick="window.location.href='/dictionary.php';">Dictionary</button><br> <?php if (hasACL('add_words', 'R', 'S')) { ?> <button data-i18n="link.add_words" class="large" onclick="window.location.href='/add_word.php';">Add words</button><br> <?php } ?> <button data-i18n="link.settings" class="large" onclick="window.location.href='/user.php';">Account Settings</button><br> <?php if (hasACL('admin_panel', 'R', 'S')) { ?> <button data-i18n="link.admin" class="large" onclick="window.location.href='/admin.php';">Admin Settings</button><br> <?php } ?> <br> <span data-i18n="msg.loggedin">Thanks for logging in, your answers will be saved.</span> </p> </article> <article class="secondary width-half column-right mobile-width-full"> <h1> <span data-i18n="quick_quiz">Quick quiz</span> <?php sro('/PHP5/dictionary/select-lang.php'); ?>
<?php require_once '/var/www/config.php'; sro('/Includes/mysql.php'); sro('/Includes/session.php'); sro('/Includes/functions.php'); sro('/PHP5/lib/PHPLang/db.php'); sro('/PHP5/lib/PHPLang/display.php'); if (!hasACL('admin_panel', 'R', 'S')) { sro('/Pages/restricted/admin.php'); die(""); } if (!hasACL('add_words', 'R', 'S')) { sro('/Pages/restricted/adder.php'); die(""); } $uid = cleanInput('/[^0-9]/', $_GET['id']); $word = WORD(defaultDB(), intval($uid)); ?> <h2><?php echo $word->name(); ?> </h2> <div id="aswDetails"> <p> Name: <?php echo $word->name(); ?> <br> Part of speech: <?php echo display_spart($word->spart());
<?php require_once '/var/www/config.php'; sro('/Includes/mysql.php'); sro('/Includes/session.php'); sro('/Includes/functions.php'); if (!isLoggedIn()) { sro('/Pages/restricted/logged-out.php'); die(""); } global $suid; $level = 'S'; if (isset($_GET['uid']) && $suid != $_GET['uid']) { $level = 'E'; } if (!hasACL('user_settings', 'R', $level) && !hasACL('user_password', 'R', $level)) { sro('/Pages/restricted/admin.php'); die(""); } ?> <h2 data-i18n="overview">Overview</h2> <span data-i18n>Username</span>: <?php echo $suname; ?> <br> <span data-i18n>Rank</span>: <?php echo getNamedRank($srank);
<?php require_once '/var/www/config.php'; sro('/Includes/mysql.php'); sro('/Includes/session.php'); sro('/Includes/functions.php'); global $sli; if (isset($sli)) { if (hasACL('teacher_panel', 'W', 'S')) { sro('/Pages/create_class/index.php'); } else { sro('/Pages/restricted/teacher.php'); } } else { sro('/Pages/restricted/logged-out.php'); }
require_once '/var/www/config.php'; sro('/Includes/mysql.php'); sro('/Includes/session.php'); sro('/Includes/functions.php'); sro('/PHP5/lib/PHPLang/db.php'); if (!isLoggedIn()) { sro('/Pages/restricted/logged-out.php'); die(""); } global $suid; $level = 'S'; if (isset($_GET['uid']) && $suid != $_GET['uid']) { $level = 'E'; } if (!hasACL('user_settings', 'R', $level)) { sro('/Pages/restricted/admin.php'); die(""); } ?> <h2 data-i18n="preferences">Preferences</h2> <span data-i18n="ui.change_language">Language</span>: <select id="lang" style="width: 200px"> <option value="en">English</option> <option value="la">Latin</option> </select> <br> <br> <span data-i18n="word_formatting">Word formatting</span>:
<?php require_once '/var/www/config.php'; sro('/Includes/mysql.php'); sro('/Includes/session.php'); sro('/Includes/functions.php'); sro('/PHP5/lib/PHPLang/common.php'); sro('/PHP5/lib/PHPLang/db.php'); sro('/PHP5/lib/PHPLang/display.php'); global $sql_stmts; $db = defaultDB(); $editor = hasACL('add_words', 'R', 'S'); if (count($_GET)) { if (!array_key_exists("id", $_GET) or !($ids = vec_norm(explode(",", $_GET["id"]), "intval"))) { $ids = []; } if ($ids) { $langs = array_unique(array_map(function ($w) { $word = WORD($w); return $word->lang(); }, $ids)); } else { if (!array_key_exists("lang", $_GET) or !($langs = vec_norm(explode(",", $_GET["lang"]), "trim"))) { $langs = ['la']; } } if ($ids or !array_key_exists("name", $_GET) or !($names = vec_norm(explode(",", $_GET["name"]), "trim"))) { $names = NULL; } if ($ids or !array_key_exists("spart", $_GET) or !($sparts = vec_norm(explode(",", $_GET["spart"]), "trim"))) { $sparts = NULL;