} else { echo 'id is not specified'; } } else { echo 'type is not specified'; } //------------------------------------------------A D D I N G------------------------------------------------ } else { if (isset($_REQUEST['add'])) { //if action is adding if (isset($_REQUEST['type'])) { if (isset($_REQUEST['id'])) { $header = ''; if (!isset($_REQUEST['info'])) { if ($_REQUEST['type'] === RequestOnRegister::$type) { $_REQUEST['info'] = 'Вы уверены, что хотите принять запрос пользователя ' . RequestOnRegister::FetchByID($_REQUEST['id'])->name . '?'; } } if (isset($_REQUEST['info'])) { $header = $_REQUEST['info']; } else { $header = 'Вы уверены, что хотите добавить <b>' . $_REQUEST['type'] . '</b> с <b>id</b> = ' . $_REQUEST['id'] . '?'; } //form for agree or cancel $title = 'Подтверждение добавления'; $content = DialogFormYesNo($link_to_utility_sql_worker, 'add', $_REQUEST['type'], $_REQUEST['id']); require_once $link_to_registering_template; exit; } else { echo 'id is not specified'; }
public function InsertToDB() { global $db_connection; $res = User::FetchBy(['eq_conds' => ['login' => $this->login], 'select_list' => 'id', 'is_unique' => true]); if (!Error::IsError($res)) { self::$last_error = Language::Word('user with such login already exists'); return false; } $name_tmp = $db_connection->real_escape_string($this->name); $surname_tmp = $db_connection->real_escape_string($this->surname); $fathername_tmp = $db_connection->real_escape_string($this->fathername); $login_tmp = $db_connection->real_escape_string($this->login); $email_tmp = $db_connection->real_escape_string($this->email); $telephone_tmp = $db_connection->real_escape_string($this->telephone); $text_tmp = $db_connection->real_escape_string($this->text); $res = $db_connection->query("INSERT INTO `register_requests`\r\n\t\t\t\t(`name`, `surname`, `fathername`, `login`, `password`, `request_time`, `email`, `telephone`, `text`)\r\n\t\t\t\tVALUES\r\n\t\t\t\t('" . $name_tmp . "', '" . $surname_tmp . "', '" . $fathername_tmp . "',\r\n\t\t\t\t\t'" . $login_tmp . "', '" . password_hash($this->password, PASSWORD_DEFAULT) . "', CURRENT_TIMESTAMP, '" . $email_tmp . "', '" . $telephone_tmp . "',\r\n\t\t\t\t\t'" . $text_tmp . "')"); if (!$res) { self::$last_error = $db_connection->error; return false; } return true; }
<?php include_once 'utility_lgmis_lib.php'; include_once $link_to_utility_authorization; $header = ''; $content = ''; $footer = ''; $prev_page = $link_to_admin; $header .= Language::Word('requests on register'); if (GetUserPrivileges() !== admin_user_id) { $content = AlertMessage('alert-danger', Language::Word('access denied')); include $link_to_admin_template; exit; } $reg_requests = RequestOnRegister::FetchAll(); $size = count($reg_requests); if ($size) { $content = '<div class="row">'; $content .= '<table class="table table-striped text-center">'; $content .= '<thead>'; $content .= '<tr>'; $content .= '<th class="text-center">' . Language::Word('full name') . '</th>'; $content .= '<th class="text-center">' . Language::Word('date') . '</th>'; $content .= '<th class="text-center">' . Language::Word('comment') . '</th>'; $content .= '<th class="text-center">' . Language::Word('mail') . '</th>'; $content .= '<th class="text-center">' . Language::Word('telephone') . '</th>'; $content .= '<th class="text-center">' . Language::Word('actions') . '</th>'; $content .= '</tr>'; $content .= '</thead>'; $content .= '<tbody>'; $from = -1;
if (isset($_POST['id'])) { $title = Language::Word('adding result'); $header = $title; $content = ''; $new_id = -1; switch ($_POST['type']) { case RequestOnRegister::$type: $request = RequestOnRegister::FetchByID($_POST['id']); if ($request == NULL) { $content = AlertMessage('alert-danger', Language::Word('error while user adding')); } else { if (!User::InsertToDB($request)) { $content = AlertMessage('alert-danger', Language::Word('error while user adding')); } else { $content = AlertMessage('alert-success', Language::Word('request is accepted')); RequestOnRegister::Delete($_POST['id']); } } break; case UserBlock::$type: $usr_block = UserBlock::FetchFromAssoc($_POST); if ($usr_block === NULL) { $content = AlertMessage('alert-danger', Language::Word('error while user block adding')); } else { $glob_id = 0; if (isset($_POST['glob_id'])) { $glob_id = $_POST['glob_id']; } if (UserBlock::InsertToDB($usr_block, $_POST['language'], $glob_id)) { $content = AlertMessage('alert-success', Language::Word('user block is successfully added')); } else {
} return error_flag != true; } </script> </head> <body> <?php echo '<div class="row">'; echo '<div class="' . ColAllTypes(12) . '" align="center">'; echo ToPageHeader(Language::Word('registration')); echo '</div>'; echo '</div>'; echo '<div class="row">'; if ($no_content_center) { echo '<div class="' . ColAllTypes(12) . '">'; } else { echo '<div class="' . ColAllTypes(12) . '" align="center">'; } echo RequestOnRegister::FormForCreating(); echo '</div>'; echo '</div>'; echo '<div class="row">'; echo '<div class="' . ColAllTypes(12) . '" align="center">'; echo $footer; echo '</div>'; echo '</div>'; ?> </body> </html>