} else {
echo 'id is not specified';
}
} else {
echo 'type is not specified';
}
//------------------------------------------------A D D I N G------------------------------------------------
} else {
if (isset($_REQUEST['add'])) {
//if action is adding
if (isset($_REQUEST['type'])) {
if (isset($_REQUEST['id'])) {
$header = '';
if (!isset($_REQUEST['info'])) {
if ($_REQUEST['type'] === RequestOnRegister::$type) {
$_REQUEST['info'] = 'Вы уверены, что хотите принять запрос пользователя ' . RequestOnRegister::FetchByID($_REQUEST['id'])->name . '?';
}
}
if (isset($_REQUEST['info'])) {
$header = $_REQUEST['info'];
} else {
$header = 'Вы уверены, что хотите добавить <b>' . $_REQUEST['type'] . '</b> с <b>id</b> = ' . $_REQUEST['id'] . '?';
}
//form for agree or cancel
$title = 'Подтверждение добавления';
$content = DialogFormYesNo($link_to_utility_sql_worker, 'add', $_REQUEST['type'], $_REQUEST['id']);
require_once $link_to_registering_template;
exit;
} else {
echo 'id is not specified';
}
public function InsertToDB()
{
global $db_connection;
$res = User::FetchBy(['eq_conds' => ['login' => $this->login], 'select_list' => 'id', 'is_unique' => true]);
if (!Error::IsError($res)) {
self::$last_error = Language::Word('user with such login already exists');
return false;
}
$name_tmp = $db_connection->real_escape_string($this->name);
$surname_tmp = $db_connection->real_escape_string($this->surname);
$fathername_tmp = $db_connection->real_escape_string($this->fathername);
$login_tmp = $db_connection->real_escape_string($this->login);
$email_tmp = $db_connection->real_escape_string($this->email);
$telephone_tmp = $db_connection->real_escape_string($this->telephone);
$text_tmp = $db_connection->real_escape_string($this->text);
$res = $db_connection->query("INSERT INTO `register_requests`\r\n\t\t\t\t(`name`, `surname`, `fathername`, `login`, `password`, `request_time`, `email`, `telephone`, `text`)\r\n\t\t\t\tVALUES\r\n\t\t\t\t('" . $name_tmp . "', '" . $surname_tmp . "', '" . $fathername_tmp . "',\r\n\t\t\t\t\t'" . $login_tmp . "', '" . password_hash($this->password, PASSWORD_DEFAULT) . "', CURRENT_TIMESTAMP, '" . $email_tmp . "', '" . $telephone_tmp . "',\r\n\t\t\t\t\t'" . $text_tmp . "')");
if (!$res) {
self::$last_error = $db_connection->error;
return false;
}
return true;
}
<?php
include_once 'utility_lgmis_lib.php';
include_once $link_to_utility_authorization;
$header = '';
$content = '';
$footer = '';
$prev_page = $link_to_admin;
$header .= Language::Word('requests on register');
if (GetUserPrivileges() !== admin_user_id) {
$content = AlertMessage('alert-danger', Language::Word('access denied'));
include $link_to_admin_template;
exit;
}
$reg_requests = RequestOnRegister::FetchAll();
$size = count($reg_requests);
if ($size) {
$content = '<div class="row">';
$content .= '<table class="table table-striped text-center">';
$content .= '<thead>';
$content .= '<tr>';
$content .= '<th class="text-center">' . Language::Word('full name') . '</th>';
$content .= '<th class="text-center">' . Language::Word('date') . '</th>';
$content .= '<th class="text-center">' . Language::Word('comment') . '</th>';
$content .= '<th class="text-center">' . Language::Word('mail') . '</th>';
$content .= '<th class="text-center">' . Language::Word('telephone') . '</th>';
$content .= '<th class="text-center">' . Language::Word('actions') . '</th>';
$content .= '</tr>';
$content .= '</thead>';
$content .= '<tbody>';
$from = -1;
if (isset($_POST['id'])) {
$title = Language::Word('adding result');
$header = $title;
$content = '';
$new_id = -1;
switch ($_POST['type']) {
case RequestOnRegister::$type:
$request = RequestOnRegister::FetchByID($_POST['id']);
if ($request == NULL) {
$content = AlertMessage('alert-danger', Language::Word('error while user adding'));
} else {
if (!User::InsertToDB($request)) {
$content = AlertMessage('alert-danger', Language::Word('error while user adding'));
} else {
$content = AlertMessage('alert-success', Language::Word('request is accepted'));
RequestOnRegister::Delete($_POST['id']);
}
}
break;
case UserBlock::$type:
$usr_block = UserBlock::FetchFromAssoc($_POST);
if ($usr_block === NULL) {
$content = AlertMessage('alert-danger', Language::Word('error while user block adding'));
} else {
$glob_id = 0;
if (isset($_POST['glob_id'])) {
$glob_id = $_POST['glob_id'];
}
if (UserBlock::InsertToDB($usr_block, $_POST['language'], $glob_id)) {
$content = AlertMessage('alert-success', Language::Word('user block is successfully added'));
} else {
}
return error_flag != true;
}
</script>
</head>
<body>
<?php
echo '<div class="row">';
echo '<div class="' . ColAllTypes(12) . '" align="center">';
echo ToPageHeader(Language::Word('registration'));
echo '</div>';
echo '</div>';
echo '<div class="row">';
if ($no_content_center) {
echo '<div class="' . ColAllTypes(12) . '">';
} else {
echo '<div class="' . ColAllTypes(12) . '" align="center">';
}
echo RequestOnRegister::FormForCreating();
echo '</div>';
echo '</div>';
echo '<div class="row">';
echo '<div class="' . ColAllTypes(12) . '" align="center">';
echo $footer;
echo '</div>';
echo '</div>';
?>
</body>
</html>
