PageRenderTime 69ms CodeModel.GetById 29ms RepoModel.GetById 0ms app.codeStats 1ms

/activelog.php

https://bitbucket.org/vincentbii/hkm-legal
PHP | 3026 lines | 2930 code | 49 blank | 47 comment | 68 complexity | 0a7951ad37ce707a8f507df7c92e6783 MD5 | raw file

Large files files are truncated, but you can click here to view the full file

  1. <SCRIPT TYPE="text/javascript">
  2. <!--
  3. function popupform(myform, windowname) {
  4. if (! window.focus)return true;
  5. window.open('', windowname, 'width=600,left=200,top=200');
  6. myform.target=windowname;
  7. return true;
  8. }
  9. function OpenPopup(myform, windowname, height, windth) {
  10. if (! window.focus)return true;
  11. window.open('', windowname, 'height=height,width=width,left=400,top=200');
  12. myform.target=windowname;
  13. return true;
  14. }
  15. -->
  16. /**
  17. * DHTML date validation script. Courtesy of SmartWebby.com (http://www.smartwebby.com/dhtml/)
  18. */
  19. // Declaring valid date character, minimum year and maximum year
  20. var dtCh= "/";
  21. var minYear=1900;
  22. var maxYear=2100;
  23. function isInteger(s){
  24. var i;
  25. for (i = 0; i < s.length; i++){
  26. // Check that current character is number.
  27. var c = s.charAt(i);
  28. if (((c < "0") || (c > "9"))) return false;
  29. }
  30. // All characters are numbers.
  31. return true;
  32. }
  33. function stripCharsInBag(s, bag){
  34. var i;
  35. var returnString = "";
  36. // Search teProcough string's characters one by one.
  37. // If character is not in bag, append to returnString.
  38. for (i = 0; i < s.length; i++){
  39. var c = s.charAt(i);
  40. if (bag.indexOf(c) == -1) returnString += c;
  41. }
  42. return returnString;
  43. }
  44. function daysInFebruary (year){
  45. // February has 29 days in any year evenly divisible by four,
  46. // EXCEPT for centurial years which are not also divisible by 400.
  47. return (((year % 4 == 0) && ( (!(year % 100 == 0)) || (year % 400 == 0))) ? 29 : 28 );
  48. }
  49. function DaysArray(n) {
  50. for (var i = 1; i <= n; i++) {
  51. this[i] = 31
  52. if (i==4 || i==6 || i==9 || i==11) {this[i] = 30}
  53. if (i==2) {this[i] = 29}
  54. }
  55. return this
  56. }
  57. function isDate(dtStr){
  58. var daysInMonth = DaysArray(12)
  59. var pos1=dtStr.indexOf(dtCh)
  60. var pos2=dtStr.indexOf(dtCh,pos1+1)
  61. var strMonth=dtStr.substring(0,pos1)
  62. var strDay=dtStr.substring(pos1+1,pos2)
  63. var strYear=dtStr.substring(pos2+1)
  64. strYr=strYear
  65. if (strDay.charAt(0)=="0" && strDay.length>1) strDay=strDay.substring(1)
  66. if (strMonth.charAt(0)=="0" && strMonth.length>1) strMonth=strMonth.substring(1)
  67. for (var i = 1; i <= 3; i++) {
  68. if (strYr.charAt(0)=="0" && strYr.length>1) strYr=strYr.substring(1)
  69. }
  70. month=parseInt(strMonth)
  71. day=parseInt(strDay)
  72. year=parseInt(strYr)
  73. if (pos1==-1 || pos2==-1){
  74. alert("The date format should be : mm/dd/yyyy")
  75. return false
  76. }
  77. if (strMonth.length<1 || month<1 || month>12){
  78. alert("Please enter a valid month")
  79. return false
  80. }
  81. if (strDay.length<1 || day<1 || day>31 || (month==2 && day>daysInFebruary(year)) || day > daysInMonth[month]){
  82. alert("Please enter a valid day")
  83. return false
  84. }
  85. if (strYear.length != 4 || year==0 || year<minYear || year>maxYear){
  86. alert("Please enter a valid 4 digit year between "+minYear+" and "+maxYear)
  87. return false
  88. }
  89. if (dtStr.indexOf(dtCh,pos2+1)!=-1 || isInteger(stripCharsInBag(dtStr, dtCh))==false){
  90. alert("Please enter a valid date")
  91. return false
  92. }
  93. return true
  94. }
  95. function ValidateForm(){
  96. var dt=document.frmSample.txtDate
  97. if (isDate(dt.value)==false){
  98. dt.focus()
  99. return false
  100. }
  101. return true
  102. }
  103. function round_decimals(original_number, decimals) {
  104. var result1 = original_number * Math.pow(10, decimals)
  105. var result2 = Math.round(result1)
  106. var result3 = result2 / Math.pow(10, decimals)
  107. return pad_with_zeros(result3, decimals)
  108. }
  109. function pad_with_zeros(rounded_value, decimal_places) {
  110. // Convert the number to a string
  111. var value_string = rounded_value.toString()
  112. // Locate the decimal point
  113. var decimal_location = value_string.indexOf(".")
  114. // Is there a decimal point?
  115. if (decimal_location == -1) {
  116. // If no, then all decimal places will be padded with 0s
  117. decimal_part_length = 0
  118. // If decimal_places is greater than zero, tack on a decimal point
  119. value_string += decimal_places > 0 ? "." : ""
  120. }
  121. else {
  122. // If yes, then only the extra decimal places will be padded with 0s
  123. decimal_part_length = value_string.length - decimal_location - 1
  124. }
  125. // Calculate the number of decimal places that need to be padded with 0s
  126. var pad_total = decimal_places - decimal_part_length
  127. if (pad_total > 0) {
  128. // Pad the string with 0s
  129. for (var counter = 1; counter <= pad_total; counter++)
  130. value_string += "0"
  131. }
  132. return value_string
  133. }
  134. </SCRIPT>
  135. <?php
  136. // Report all errors except E_NOTICE
  137. error_reporting(E_ALL ^ E_NOTICE);
  138. // DATABASE CONNECTION
  139. // -----------------------
  140. define("HOSTNAME","localhost");
  141. define("DB","legal");
  142. define("username","root");
  143. define("PWD","b$9bnFCa-1z,");
  144. //define("PWD","finlay001","true");
  145. // ------------------------------------------------------------------------------
  146. // AUXILLIARY FUNCTIONS
  147. // ------------------------------------------------------------------------------
  148. // DATE FUNCTION
  149. $dt = getdate();
  150. $date = sprintf("%s-%s-%s", $dt['year'], $dt['mon'], $dt['mday']);
  151. $long_date = sprintf("%s %s, %s", $dt['month'], $dt['mday'], $dt['year']);
  152. $time = sprintf("%s:%s:%s", $dt['hours'], $dt['minutes'], $dt['seconds']);
  153. // ------------------------------------------------------------------------------
  154. // MONTH ARRAY
  155. // ------------------------------------------------------------------------------
  156. $MONTH = array(1=>'January', 'February', 'March', 'April', 'May', 'June', 'July', 'August', 'September', 'October', 'November', 'December');
  157. $DAY = array(1=>'Monday', 'Tuesday', 'Wednesday', 'Thursday', 'Friday', 'Saturday', 'Sunday');
  158. // ------------------------------------------------------------------------------
  159. //Includes for functions not on this file but required
  160. include('includes/scripts/user.php');
  161. include('includes/scripts/requisitions.php');
  162. include('includes/scripts/catalogue.php');
  163. include_once('includes/ean13class.php');
  164. //--------------------------------------------------------------------
  165. function log_activity($uid, $action, $section, $act) {
  166. // --------------------------------------------------------------
  167. // FUNCTION FOR LOGGING USER ACTIVITY WITHIN THE DONOR DATABASE
  168. // --------------------------------------------------------------
  169. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  170. // --------------------------------------------------------------
  171. $dt = getdate(); $ts = time();
  172. $date = sprintf("%s-%s-%s", $dt['year'], $dt['mon'], $dt['mday']);
  173. $time = sprintf("%s:%s:%s", $dt['hours'], $dt['minutes'], $dt['seconds']);
  174. $logSQL = "INSERT INTO activelog (uid, action, adate, atime, section, ACT, TSTAMP) VALUES ('". $uid ."','". $action ."','". $date ."','". $time ."','". $section ."','". $act ."','". $ts ."')";
  175. // --------------------------------------------------------------
  176. mysqli_select_db($CON, DB);
  177. $done = mysqli_query($CON, $logSQL) or die("LOG ERROR: Trying to save trackable user activity - ".mysqli_error());
  178. // --------------------------------------------------------------
  179. return $done;
  180. }
  181. function evalNull($value, $nullmsg, $msg) {
  182. if (is_null($value) || $value == "") {
  183. $message = $nullmsg;
  184. } else {
  185. $message = $msg;
  186. }
  187. return $message;
  188. }
  189. // This function writes the Javascript url onto the page
  190. // Important when you need PHP generated urls to use!
  191. function addJavascript($url) {
  192. echo '<script language="javascript" src="'.$url.'"></script>';
  193. }
  194. function assessVAL($val) {
  195. if ($val == 1) {
  196. $ret = "YES";
  197. } else {
  198. $ret = "NO";
  199. }
  200. return $ret;
  201. }
  202. function GetSQLValueString($theValue, $theType, $theDefinedValue = "", $theNotDefinedValue = "")
  203. {
  204. $theValue = (!get_magic_quotes_gpc()) ? addslashes($theValue) : $theValue;
  205. switch ($theType) {
  206. case "text":
  207. $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
  208. break;
  209. case "long":
  210. case "int":
  211. $theValue = ($theValue != "") ? intval($theValue) : "NULL";
  212. break;
  213. case "double":
  214. $theValue = ($theValue != "") ? "'" . doubleval($theValue) . "'" : "NULL";
  215. break;
  216. case "date":
  217. $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
  218. break;
  219. case "defined":
  220. $theValue = ($theValue != "") ? $theDefinedValue : $theNotDefinedValue;
  221. break;
  222. }
  223. return $theValue;
  224. }
  225. function make_time($day, $mon, $year, $time) {
  226. // Break time to hours and minutes
  227. // ------------------------------------
  228. list($eProc, $min) = explode(':', $time);
  229. // ------------------------------------
  230. $timestamp = mktime($eProc, $min, 0 ,$mon, $day, $year);
  231. return $timestamp;
  232. }
  233. // --------------------------------------------------------------------------------
  234. // Function to process timestamps and return date
  235. // --------------------------------------------------------------------------------
  236. function process_time($ts, $form) {
  237. if ($ts == '') { $ts = time(); }
  238. $pdt = getdate($ts);
  239. $pdate = sprintf("%s-%s-%s", $pdt['year'], $pdt['mon'], $pdt['mday']);
  240. $pshort_date = sprintf("%s-%s-%s", $pdt['year'], $pdt['month'], $pdt['mday']);
  241. $pshorter_date = sprintf("%s-%s-%s", $pdt['year'], substr($pdt['month'], 0, 3), $pdt['mday']);
  242. $plong_date = sprintf("%s %s, %s", $pdt['month'], $pdt['mday'], $pdt['year']);
  243. $ptime = sprintf("%s:%s", $pdt['hours'], $pdt['minutes']);
  244. $pdate_time = $pdate."&nbsp;&nbsp; ".$ptime;
  245. $pdate_time = date("Y-m-d H:i:s");
  246. switch ($form) {
  247. case '1':
  248. $FORMATTED_DATE = $pdate;
  249. break;
  250. case '2':
  251. $FORMATTED_DATE = $pshort_date;
  252. break;
  253. case '3':
  254. $FORMATTED_DATE = $plong_date;
  255. break;
  256. case '4':
  257. $FORMATTED_DATE = $pdate_time;
  258. break;
  259. case '5':
  260. $FORMATTED_DATE = $pshorter_date;
  261. break;
  262. default:
  263. $FORMATTED_DATE = $pdate;
  264. break;
  265. }
  266. return $FORMATTED_DATE;
  267. }
  268. function recordexists($tablename,$columnname,$value) {
  269. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  270. $logSQL = "SELECT ".$columnname." FROM ".$tablename." WHERE ".$columnname." = '".$value."'";
  271. mysqli_select_db($CON, DB);
  272. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to check record exists - ".mysqli_error(). $logSQL);
  273. //$rowuser = mysqli_fetch_assoc($done);
  274. $num_rows = mysqli_num_rows($done); //Get number of rows
  275. if ($num_rows > 0) {
  276. return 'yes';
  277. } else {
  278. return 'no';
  279. }
  280. }
  281. function getEndValue($rowuser) {
  282. end($rowuser);
  283. $value = current($rowuser);
  284. return $value;
  285. }
  286. function getStartValue($rowuser) {
  287. reset($rowuser);
  288. $value = current($rowuser);
  289. return $value;
  290. }
  291. function remFunnyChars($DIRTY) {
  292. $CLEAN = str_replace('/','',$DIRTY);
  293. $CLEAN = str_replace('\\','',$CLEAN);
  294. $CLEAN = str_replace(' ',',',$CLEAN);
  295. return $CLEAN;
  296. }
  297. // -------------------------------------------------------------------------
  298. // Create name hash for unique identification of event
  299. // -------------------------------------------------------------------------
  300. function createHASH($name = '') {
  301. // RANDOM ARRAY FEED
  302. //-----------------------------------------------------------------
  303. $alpha = array('a','b','c','d','e','f','g','h','i','j','k','l','m','n','o','p','q','r','s','t','u','v','w','x','y','z');
  304. $numer = array('0','1','2','3','4','5','6','7','8','9');
  305. // ---------------------------------------------------------------------------------------------------------------------
  306. $word = explode(" ",$name);
  307. $new_sen = "";
  308. // Happens only when name is not sent
  309. if ($name == '') {
  310. // Create Random String
  311. for ($m = 1; $m <= 10; $m++) {
  312. $id = mt_rand(1,count($alpha));
  313. $id2 = mt_rand(1,count($numer));
  314. // Append to string
  315. $new_sen .= $alpha[$id].$numer[$id2];
  316. }
  317. } else {
  318. $rand = rand(12345, 99999);
  319. for ($i = 1; $i <= count($word); $i++) {
  320. if ($i == 1) {
  321. $new_sen .= $rand;
  322. $new_sen .= $word[$i];
  323. } else {
  324. $new_sen .= $word[$i];
  325. }
  326. }
  327. }
  328. return strtoupper($new_sen);
  329. }
  330. function rem_space($name) {
  331. $word = explode(" ",$name);
  332. $new_sen = substr_replace($name,"",0,1);
  333. $new_sen = substr_replace($name,"",strlen($name),-1);
  334. return strtoupper($new_sen);
  335. }
  336. function listShow($divs, $table, $main, $id, $url = '') {
  337. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  338. $logSQL = "SELECT ".$main.",".$id." FROM ".$table;
  339. mysqli_select_db($CON, DB);
  340. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve data - ".mysqli_error());
  341. $rowuser = mysqli_fetch_assoc($done);
  342. $tot_rows = mysqli_num_rows($done);
  343. $dist = floor($tot_rows / $divs);
  344. $d_mod = $tot_rows % $divs;
  345. $div = $divs;
  346. $c = array();
  347. // for ($x = 1; $x <= $div; $x++) { $c[$x] = $dist; }
  348. for ($x = 1; $x <= $div; $x++) { $c[$x] = $dist; }
  349. $mt[1] = 0; $mt[2] = $dist; $mt[3] = $dist * 2; $mt[4] = $dist * 3;
  350. if ($d_mod > 0) { $c[1] = $c[1] + $d_mod; $c[2] = $c[2] + $d_mod; }// $div = $divs + 1;
  351. $l = 0;
  352. do {
  353. $l++;
  354. $CAT[$l] = $rowuser[$main];
  355. $IDS[$l] = $rowuser[$id];
  356. } while ($rowuser = mysqli_fetch_assoc($done));
  357. //print_r(array_values($CAT));
  358. echo "<table width=\"100%\" border=\"0\" align=\"left\" cellpadding=\"3\" cellspacing=\"0\">
  359. <tr valign=\"top\">"; $nct = 0;
  360. for ($m = 1; $m <= $div; $m++) {
  361. echo "<td><table width=\"100%\" border=\"0\" cellspacing=\"0\" cellpadding=\"3\">";
  362. for ($z = 1; $z <= $c[$m]; $z++) {
  363. $a = $z + $mt[$m];
  364. echo "<tr>
  365. <td width=\"5%\"><img src=\"bullet.gif\"></td>";
  366. if ($url != '') {
  367. echo "<td width=\"95%\"><a href=\"".$url."?id=".$IDS[$a]."\">".$CAT[$a]."</a></td>";
  368. } else {
  369. echo "<td width=\"95%\">".$CAT[$a]."</td>";
  370. }
  371. echo "</tr>";
  372. }
  373. echo "</table></td>";
  374. }
  375. echo "</tr>
  376. </table>";
  377. }
  378. function arrayListShow($divs, $commalist) {
  379. $array = explode(',',$commalist);
  380. $tot_rows = count($array);
  381. $dist = floor($tot_rows / $divs);
  382. $d_mod = $tot_rows % $divs;
  383. $div = $divs;
  384. $c = array();
  385. // for ($x = 1; $x <= $div; $x++) { $c[$x] = $dist; }
  386. for ($x = 1; $x <= $div; $x++) { $c[$x] = $dist; }
  387. $mt[1] = 0; $mt[2] = $dist; $mt[3] = $dist * 2; $mt[4] = $dist * 3;
  388. if ($d_mod > 0) { $c[1] = $c[1] + $d_mod; $c[2] = $c[2] + $d_mod; }// $div = $divs + 1;
  389. echo "<table width=\"100%\" border=\"0\" align=\"left\" cellpadding=\"3\" cellspacing=\"0\">
  390. <tr valign=\"top\">"; $nct = 0;
  391. for ($m = 1; $m <= $div; $m++) {
  392. echo "<td><table width=\"100%\" border=\"0\" cellspacing=\"0\" cellpadding=\"3\">";
  393. for ($z = 1; $z <= $c[$m]; $z++) {
  394. $a = $z + $mt[$m];
  395. if (empty($array[$a])) {
  396. // do nothing
  397. } else {
  398. echo "<tr>
  399. <td width=\"5%\"><img src=\"bullet.gif\"></td>";
  400. echo "<td width=\"95%\">".$array[$a]."</td>";
  401. echo "</tr>";
  402. }
  403. }
  404. echo "</table></td>";
  405. }
  406. echo "</tr>
  407. </table>";
  408. }
  409. function showCompanies($showadmin="",$cc="") {
  410. $CON = mysqli_connect(HOSTNAME, username, PWD);
  411. if($CON){echo "connected";} else{ echo "error".mysqli_error($CON);}
  412. if ($_SESSION['USERTYPE']=="") {
  413. } else {
  414. }
  415. $logSQL = "SELECT * FROM companyinfo ";
  416. mysqli_select_db($CON, DB);
  417. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve companies list - ".mysqli_error());
  418. $rowuser = mysqli_fetch_assoc($done);
  419. $nums = mysqli_num_rows($done);
  420. $selected="n";
  421. if ($nums > 0) {
  422. do {
  423. if ($cc != '' && $cc == $rowuser['com_id']) {
  424. echo "<option selected value=\"".$rowuser['com_id']."\">".$rowuser['company']."</option>";
  425. $selected="y";
  426. } else {
  427. if ($rowuser['default']=="Yes") {
  428. if ($selected=="n") {
  429. echo "<option selected value=\"".$rowuser['com_id']."\">".$rowuser['company']."</option>";
  430. }
  431. } else {
  432. echo "<option value=\"".$rowuser['com_id']."\">".$rowuser['company']."</option>";
  433. }
  434. }
  435. } while($rowuser = mysqli_fetch_assoc($done));
  436. if ($showadmin == 'SHOWADMIN') {
  437. echo "<option value='ADM' class='admred'>Administrative Login</option>";
  438. }
  439. } else {
  440. echo "<option value='ADM' class='admred'>Administrative Login</option>";
  441. echo "<option>No Companies Created</option>";
  442. }
  443. }
  444. function showGroups($dp = '', $IncludeCoAdmin=FALSE,$showid="1") {
  445. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  446. if ($IncludeCoAdmin==FALSE) {
  447. $logSQL = "SELECT groups.groupid, groups.groupname, groups.groupid, groups.groupdesc, groups.sys
  448. FROM groups WHERE groups.sys =0 AND groups.groupname <> 'company administrator' ORDER BY groups.groupname";
  449. } else {
  450. $logSQL = "SELECT groups.groupid, groups.groupname, groups.groupid, groups.groupdesc, groups.sys FROM groups WHERE groups.groupname <> 'company administrator' ORDER BY groups.groupname";
  451. }
  452. mysqli_select_db($CON, DB);
  453. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve groups list - ".mysqli_error());
  454. $rowuser = mysqli_fetch_assoc($done);
  455. $nums = mysqli_num_rows($done);
  456. $id=0;
  457. $nm="";
  458. if ($nums > 0) {
  459. echo "<option > </option>";
  460. do {
  461. $id=$rowuser['groupid'];
  462. $nm=$rowuser['groupname'];
  463. if ($dp != '' && $dp == $rowuser['groupid']) {
  464. if ($showid=="1") {
  465. echo "<option selected value=\"".$id."\">".$nm."</option>";
  466. } else {
  467. echo "<option selected value=\"".$nm."\">".$nm."</option>";
  468. }
  469. } else {
  470. if ($showid=="1") {
  471. echo "<option value=\"".$id."\">".$nm."</option>";
  472. } else {
  473. echo "<option value=\"".$nm."\">".$nm."</option>";
  474. }
  475. }
  476. } while($rowuser = mysqli_fetch_assoc($done));
  477. } else {
  478. echo "<option>No groups Selected</option>";
  479. }
  480. }
  481. function showGrouptypes($selected = '') {
  482. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  483. $logSQL = "SELECT * FROM grouptypes ";
  484. mysqli_select_db($CON, DB);
  485. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve group types list - ".mysqli_error());
  486. $rowuser = mysqli_fetch_assoc($done);
  487. $nums = mysqli_num_rows($done);
  488. if ($nums > 0) {
  489. echo "<option> </option>";
  490. do {
  491. $id=$rowuser['id'];
  492. $nm=$rowuser['grouptypename'];
  493. if ($selected != '' && $selected == $rowuser['id'])
  494. {
  495. echo "<option selected value=\"".$rowuser['id']."\">".$rowuser['grouptypename']."</option>";
  496. } else {
  497. echo "<option value=\"".$rowuser['id']."\">".$rowuser['grouptypename']."</option>";
  498. }
  499. } while($rowuser = mysqli_fetch_assoc($done));
  500. } else {
  501. echo "<option>No groups types Selected </option>";
  502. }
  503. }
  504. function getgrouptype($selected) {
  505. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  506. $logSQL = "SELECT * FROM grouptypes WHERE id = '".$selected."'";
  507. mysqli_select_db($CON, DB);
  508. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve group types list - ".mysqli_error());
  509. $rowuser = mysqli_fetch_assoc($done);
  510. return $rowuser['grouptypename'];
  511. }
  512. function InsertUserGroups ($authcode,$groupid) {
  513. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  514. mysqli_select_db($CON, DB);
  515. //groups
  516. $sql="DELETE FROM user_groups WHERE userid = '".$authcode."'";
  517. $Result1 = mysqli_query($CON, $sql) or die(mysqli_error());
  518. $sql="INSERT INTO user_groups (userid,groupid) VALUES ('".$authcode."','".$groupid."')";
  519. //echo $sql;
  520. $Result1 = mysqli_query($CON, $sql) or die(mysqli_error($CON));
  521. $selectSQL = "SELECT * FROM groups WHERE groups.groupname <> 'System administrator' ";
  522. $done = mysqli_query($CON, $selectSQL) or die("ERROR: Trying to retrieve groups list - ".mysqli_error($CON));
  523. $groupslist = mysqli_fetch_assoc($done);
  524. if (mysqli_num_rows($done)>0)
  525. {
  526. do {
  527. if (isset($_POST[$groupslist['groupid']]) && $_POST[$groupslist['groupid']]!='' && $_POST[$groupslist['groupid']]!=$groupid) {
  528. $sql="INSERT INTO user_groups (userid,groupid) VALUES ('".$authcode."','".$groupslist['groupid']."')";
  529. //echo $sql;
  530. $Result1 = mysqli_query($CON, $sql) or die(mysqli_error($CON));
  531. }
  532. } while ($groupslist = mysqli_fetch_assoc($done));
  533. }
  534. }
  535. function getcompanyadmingroup() {
  536. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  537. $logSQL = "SELECT groups.groupid, groups.groupname,groups.groupid, groups.groupdesc, groups.sys
  538. FROM groups WHERE groups.sys = 0 AND groups.groupname = 'Company Administrator'";
  539. mysqli_select_db($CON, DB);
  540. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve groups list - ".mysqli_error($CON));
  541. $rowuser = mysqli_fetch_assoc($done);
  542. $nums = mysqli_num_rows($done);
  543. if ($nums > 0) {
  544. return $rowuser['groupid'];
  545. }
  546. }
  547. function getcompany($enum) {
  548. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  549. $logSQL = "SELECT com_id, company FROM companyinfo WHERE com_id = '".$enum."'";
  550. mysqli_select_db($CON, DB);
  551. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve company name - ".mysqli_error($CON));
  552. $rowuser = mysqli_fetch_assoc($done);
  553. return $rowuser['company'];
  554. }
  555. function gettelno($enum) {
  556. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  557. $logSQL = "SELECT * FROM companyinfo WHERE com_id = '".$enum."'";
  558. mysqli_select_db($CON, DB);
  559. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve company name - ".mysqli_error());
  560. $rowuser = mysqli_fetch_assoc($done);
  561. return $rowuser['telphone'];
  562. }
  563. function getaddress($enum) {
  564. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  565. $logSQL = "SELECT * FROM companyinfo WHERE com_id = '".$enum."'";
  566. mysqli_select_db($CON, DB);
  567. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve company name - ".mysqli_error());
  568. $rowuser = mysqli_fetch_assoc($done);
  569. return $rowuser['address'];
  570. }
  571. function getfilter($enum) {
  572. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  573. $logSQL = "SELECT FilterName FROM filter WHERE FilterCode = '".$enum."'";
  574. mysqli_select_db($CON, DB);
  575. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve control - ".mysqli_error());
  576. $rowuser = mysqli_fetch_assoc($done);
  577. return $rowuser['FilterName'];
  578. }
  579. function getcompanyID($enum) {
  580. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  581. trim ($enum);
  582. $logSQL = "SELECT com_id FROM companyinfo WHERE company = '".$enum."'";
  583. mysqli_select_db($CON, DB);
  584. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve company name - ".mysqli_error());
  585. $rowuser = mysqli_fetch_assoc($done);
  586. return $rowuser['com_id'];
  587. }
  588. function getGroup($enum) {
  589. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  590. $logSQL = "SELECT groupname FROM groups WHERE groupid = '".$enum."'";
  591. mysqli_select_db($CON, DB);
  592. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve group name - ".mysqli_error());
  593. $rowuser = mysqli_fetch_assoc($done);
  594. return $rowuser['groupname'];
  595. }
  596. function getGroupID($enum) {
  597. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  598. $logSQL = "SELECT groupid FROM groups WHERE groupname = '".$enum."'";
  599. mysqli_select_db($CON, DB);
  600. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve group name - ".mysqli_error());
  601. $rowuser = mysqli_fetch_assoc($done);
  602. return $rowuser['groupid'];
  603. }
  604. function getgrouptypeid($id)
  605. {
  606. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  607. $logSQL = "SELECT grouptypeid FROM groups WHERE groupid = '".$id."'";
  608. mysqli_select_db($CON, DB);
  609. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve group type id - ".mysqli_error());
  610. $rowuser = mysqli_fetch_assoc($done);
  611. return $rowuser['grouptypeid'];
  612. }
  613. function scopeValid($valid) {
  614. // Break Apart
  615. list($time, $period) = explode(' ', $valid, 2);
  616. switch ($period) {
  617. case 'M':
  618. $per = 'Months';
  619. break;
  620. case 'Y':
  621. $per = 'Years';
  622. break;
  623. default:
  624. $per = 'Months';
  625. break;
  626. }
  627. $ret = $time." ".$per;
  628. return $ret;
  629. }
  630. // REQ SESSION status
  631. // --------------------------------------------------------------
  632. function showIcon($sessval) {
  633. switch ($sessval) {
  634. case 'N':
  635. $icon = 'grymkr.gif';
  636. break;
  637. case 'I':
  638. $icon = 'orgmkr.gif';
  639. break;
  640. case 'C':
  641. $icon = 'grntck.gif';
  642. break;
  643. default:
  644. $icon = 'grymkr.gif';
  645. break;
  646. }
  647. return $icon;
  648. }
  649. function ifrecordexists($tablename,$columnname1,$columnname2,$columnname3,$value1,$value2,$value3) {
  650. $SQL = "SELECT * FROM ".$tablename." WHERE ".$columnname1." = '".$value1."' AND ".$columnname2." = '".$value2."' AND ".$columnname3." = '".$value3."' ";
  651. //echo $SQL;
  652. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  653. $done = mysqli_query($SQL, $CON) or die("ERROR: Trying to check record exists - ".mysqli_error());
  654. $num_rows = mysqli_num_rows($done);
  655. $rTrue = TRUE;
  656. $rFalse = FALSE;
  657. if ($num_rows > 0) {
  658. return $rTrue;
  659. } else {
  660. return $rFalse;
  661. }
  662. }
  663. function getUsername($enum) {
  664. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  665. $logSQL = "SELECT * FROM users WHERE authcode = '".$enum."'";
  666. mysqli_select_db($CON, DB);
  667. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve user details - ".mysqli_error());
  668. $rowuser = mysqli_fetch_assoc($done);
  669. return $rowuser['fulname'] ;
  670. }
  671. function gettheUsername($enum) {
  672. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  673. $logSQL = "SELECT * FROM employee WHERE id = '".$enum."'";
  674. mysqli_select_db($CON, DB);
  675. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve user details - ".mysqli_error());
  676. $rowuser = mysqli_fetch_assoc($done);
  677. return $rowuser['name'] ;
  678. }
  679. function getclient($enum) {
  680. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  681. $logSQL ="SELECT * FROM clients WHERE id = '".$enum."'";
  682. mysqli_select_db($CON, DB);
  683. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve user details - ".mysqli_error());
  684. $rowuser = mysqli_fetch_assoc($done);
  685. return $rowuser['fname']." ".$rowuser['lname'] ;
  686. }
  687. function getcat($enum) {
  688. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  689. $logSQL ="SELECT * FROM category WHERE id = '".$enum."'";
  690. mysqli_select_db($CON, DB);
  691. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve user details - ".mysqli_error());
  692. $rowuser = mysqli_fetch_assoc($done);
  693. return $rowuser['name'] ;
  694. }
  695. function getfname($enum) {
  696. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  697. $logSQL ="SELECT * FROM users WHERE authcode = '".$enum."'";
  698. mysqli_select_db($CON, DB);
  699. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve user details - ".mysqli_error());
  700. $rowuser = mysqli_fetch_assoc($done);
  701. return $rowuser['username'] ;
  702. }
  703. function getadminEmail() {
  704. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  705. $logSQL ="SELECT email FROM users WHERE admin ='1'";
  706. mysqli_select_db($CON, DB);
  707. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve user details - ".mysqli_error());
  708. $rowuser = mysqli_fetch_assoc($done);
  709. return $rowuser['email'] ;
  710. }
  711. function getusergroup($user) {
  712. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  713. $logSQL = "SELECT groupid FROM users WHERE authcode ='".$user."'";
  714. mysqli_select_db($CON, DB);
  715. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve user details - ".mysqli_error());
  716. $rowuser = mysqli_fetch_assoc($done);
  717. return $rowuser['groupid'] ;
  718. }
  719. function createbarcode($value) {
  720. $ean13 = new ean13;
  721. $ean13->article = $value; // initial article code
  722. $ean13->article .= $ean13->generate_checksum(); // add the proper checksum value
  723. //$ean13->reverse(); // the string is printed backwards
  724. $value = $ean13->codestring(); // returns a string as input for the truetype font
  725. return $value ; // render the image as PNG image
  726. }
  727. function getcompanyaddress ($enum) {
  728. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  729. $logSQL = "SELECT * FROM companyinfo WHERE com_id = '".$enum."'";
  730. mysqli_select_db($CON, DB);
  731. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve company details - ".mysqli_error());
  732. $rowuser = mysqli_fetch_assoc($done);
  733. return $rowuser['address'];
  734. }
  735. function getcompanyaddress2 ($enum) {
  736. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  737. $logSQL = "SELECT * FROM companyinfo WHERE com_id = '".$enum."'";
  738. mysqli_select_db($CON, DB);
  739. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve company details - ".mysqli_error());
  740. $rowuser = mysqli_fetch_assoc($done);
  741. return $rowuser['address2'];
  742. }
  743. function getcompanytown ($enum) {
  744. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  745. $logSQL = "SELECT * FROM companyinfo WHERE com_id = '".$enum."'";
  746. mysqli_select_db($CON, DB);
  747. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve company details - ".mysqli_error());
  748. $rowuser = mysqli_fetch_assoc($done);
  749. return $rowuser['town'];
  750. }
  751. function getcompanycountry ($enum) {
  752. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  753. $logSQL = "SELECT * FROM companyinfo WHERE com_id = '".$enum."'";
  754. mysqli_select_db($CON, DB);
  755. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve company details - ".mysqli_error());
  756. $rowuser = mysqli_fetch_assoc($done);
  757. return $rowuser['country'];
  758. }
  759. function getcompanylocation ($enum) {
  760. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  761. $logSQL = "SELECT * FROM companyinfo WHERE com_id = '".$enum."'";
  762. mysqli_select_db($CON, DB);
  763. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve company details - ".mysqli_error());
  764. $rowuser = mysqli_fetch_assoc($done);
  765. return $rowuser['location'];
  766. }
  767. function getcompanytel ($enum) {
  768. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  769. $logSQL = "SELECT * FROM companyinfo WHERE com_id = '".$enum."'";
  770. mysqli_select_db($CON, DB);
  771. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve company details - ".mysqli_error());
  772. $rowuser = mysqli_fetch_assoc($done);
  773. return $rowuser['telphone'];
  774. }
  775. function getcompanyfax ($enum) {
  776. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  777. $logSQL = "SELECT * FROM companyinfo WHERE com_id = '".$enum."'";
  778. mysqli_select_db($CON, DB);
  779. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve company details - ".mysqli_error());
  780. $rowuser = mysqli_fetch_assoc($done);
  781. return $rowuser['faxphone'];
  782. }
  783. function getcompanyemail ($enum) {
  784. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  785. $logSQL = "SELECT * FROM companyinfo WHERE com_id = '".$enum."'";
  786. mysqli_select_db($CON, DB);
  787. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve company details - ".mysqli_error());
  788. $rowuser = mysqli_fetch_assoc($done);
  789. return $rowuser['email'];
  790. }
  791. function getcompanywebsite ($enum) {
  792. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  793. $logSQL = "SELECT * FROM companyinfo WHERE com_id = '".$enum."'";
  794. mysqli_select_db($CON, DB);
  795. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve company details - ".mysqli_error());
  796. $rowuser = mysqli_fetch_assoc($done);
  797. return $rowuser['website'];
  798. }
  799. function getusertype($enum) {
  800. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  801. $logSQL = "SELECT * FROM users WHERE authcode = '".$enum."'";
  802. mysqli_select_db($CON, DB);
  803. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve usertype - ".mysqli_error());
  804. $rowuser = mysqli_fetch_assoc($done);
  805. return $rowuser['admin'];
  806. }
  807. function getnextcode($field,$table) {
  808. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  809. $logSQL = "SELECT max(".$field.") AS num FROM ".$table." LIMIT 1";
  810. ;
  811. mysqli_select_db($CON, DB);
  812. $prq1 = mysqli_query($CON, $logSQL) or die(mysqli_error());
  813. $row_prq1 = mysqli_fetch_assoc($prq1);
  814. return $row_prq1[num]+1;
  815. }
  816. function ifmyrecordcodeexists($tablename,$col1,$value1) {
  817. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  818. $logSQL = "SELECT * FROM ".$tablename." WHERE ".$col1." = '".$value1."' ";
  819. mysqli_select_db($CON, DB);
  820. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to check record exists - ".mysqli_error(). $logSQL);
  821. //$rowuser = mysqli_fetch_assoc($done);
  822. $num_rows = mysqli_num_rows($done); //Get number of rows
  823. if ($num_rows > 0) {
  824. return 'yes';
  825. } else {
  826. return 'no';
  827. }
  828. }
  829. function showclients($selected = '') {
  830. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  831. $logSQL = "SELECT * FROM clients ORDER BY fulnames ASC ";
  832. //echo $logSQL;
  833. mysqli_select_db($CON, DB);
  834. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve clients list - ".mysqli_error());
  835. $rowuser = mysqli_fetch_assoc($done);
  836. $nums = mysqli_num_rows($done);
  837. if ($nums > 0) {
  838. echo "<option> </option>";
  839. do {
  840. if ($selected != '' && $selected == $rowuser['clientno'])
  841. {
  842. echo "<option selected value=\"".$rowuser['clientno']."\">".$rowuser['fulnames']."</option>";
  843. } else {
  844. echo "<option value=\"".$rowuser['clientno']."\">".$rowuser['fulnames']."</option>";
  845. }
  846. } while($rowuser = mysqli_fetch_assoc($done));
  847. } else {
  848. echo "<option>No clients Selected </option>";
  849. }
  850. }
  851. function showcategory($selected = '') {
  852. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  853. $logSQL = "SELECT * FROM category ORDER BY name ASC ";
  854. //echo $logSQL;
  855. mysqli_select_db($CON, DB);
  856. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve category list - ".mysqli_error());
  857. $rowuser = mysqli_fetch_assoc($done);
  858. $nums = mysqli_num_rows($done);
  859. if ($nums > 0) {
  860. echo "<option> </option>";
  861. do {
  862. if ($selected != '' && $selected == $rowuser['id'])
  863. {
  864. echo "<option selected value=\"".$rowuser['id']."\">".$rowuser['name']."</option>";
  865. } else {
  866. echo "<option value=\"".$rowuser['id']."\">".$rowuser['name']."</option>";
  867. }
  868. } while($rowuser = mysqli_fetch_assoc($done));
  869. } else {
  870. echo "<option>No category Selected </option>";
  871. }
  872. }
  873. function showitemtype($selected = '') {
  874. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  875. $logSQL = "SELECT * FROM itypes ORDER BY name ASC ";
  876. //echo $logSQL;
  877. mysqli_select_db($CON, DB);
  878. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve itemtype list - ".mysqli_error());
  879. $rowuser = mysqli_fetch_assoc($done);
  880. $nums = mysqli_num_rows($done);
  881. if ($nums > 0) {
  882. echo "<option> </option>";
  883. do {
  884. if ($selected != '' && $selected == $rowuser['id'])
  885. {
  886. echo "<option selected value=\"".$rowuser['id']."\">".$rowuser['name']."</option>";
  887. } else {
  888. echo "<option value=\"".$rowuser['id']."\">".$rowuser['name']."</option>";
  889. }
  890. } while($rowuser = mysqli_fetch_assoc($done));
  891. } else {
  892. echo "<option>No itemtype Selected </option>";
  893. }
  894. }
  895. function getmaxnum($field,$table,$client) {
  896. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  897. $logSQL = "SELECT max(".$field.") AS num FROM ".$table." WHERE client='".$client."' LIMIT 1";
  898. ;
  899. mysqli_select_db($CON, DB);
  900. $prq1 = mysqli_query($CON, $logSQL) or die(mysqli_error());
  901. $row_prq1 = mysqli_fetch_assoc($prq1);
  902. if($row_prq1['num']<=0){
  903. $n=2;
  904. }else{
  905. $n=$row_prq1['num']+1;
  906. }
  907. return $n;
  908. }
  909. function getlastspecfile($field,$table,$client) {
  910. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  911. $logSQL = "SELECT max(".$field.") AS num FROM ".$table." WHERE client='".$client."' LIMIT 1";
  912. ;
  913. mysqli_select_db($CON, DB);
  914. $prq1 = mysqli_query($CON, $logSQL) or die(mysqli_error());
  915. $row_prq1 = mysqli_fetch_assoc($prq1);
  916. return $row_prq1['num'];
  917. }
  918. function getmaxjobno() {
  919. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  920. $logSQL1 = "SELECT max(jobno) AS num FROM jobs LIMIT 1";
  921. ;
  922. mysqli_select_db($CON, DB);
  923. $prq1 = mysqli_query($CON, $logSQL1) or die(mysqli_error());
  924. $row_prq1 = mysqli_fetch_assoc($prq1);
  925. $logSQL = "SELECT max(jno) AS num FROM specificfile LIMIT 1";
  926. ;
  927. mysqli_select_db($CON, DB);
  928. $prq = mysqli_query($CON, $logSQL) or die(mysqli_error());
  929. $row_prq = mysqli_fetch_assoc($prq);
  930. if($row_prq1['num']>$row_prq['num']){
  931. return $row_prq1['num']+1;
  932. }
  933. if($row_prq['num']>$row_prq1['num']){
  934. return $row_prq['num']+1;
  935. }
  936. if($row_prq['num']==$row_prq1['num']){
  937. return $row_prq['num']+1;
  938. }
  939. }
  940. function getmaxid($field,$table) {
  941. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  942. $logSQL = "SELECT max(".$field.") AS num FROM ".$table." LIMIT 1";
  943. ;
  944. mysqli_select_db($CON, DB);
  945. $prq1 = mysqli_query($CON, $logSQL) or die(mysqli_error());
  946. $row_prq1 = mysqli_fetch_assoc($prq1);
  947. return $row_prq1['num']+1;
  948. }
  949. function getlastid($field,$table) {
  950. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  951. $logSQL = "SELECT max(".$field.") AS num FROM ".$table." LIMIT 1";
  952. mysqli_select_db($CON, DB);
  953. $prq1 = mysqli_query($CON, $logSQL) or die(mysqli_error());
  954. $row_prq1 = mysqli_fetch_assoc($prq1);
  955. return $row_prq1['num'];
  956. }
  957. /*
  958. function b() {
  959. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  960. $k=1;
  961. while($k<=1520){
  962. mysqli_select_db($CON, DB);
  963. $logSQL = "INSERT INTO `casenos` (name) VALUES('".$k."')";
  964. $prq1 = mysqli_query($CON, $logSQL) or die(mysqli_error());
  965. $k++;
  966. }
  967. }*/
  968. //------------------------------------------------------------------------------------------------------------------------------------
  969. function showmaritalstatus($selected = '') {
  970. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  971. $logSQL = "SELECT * FROM maritalstatus ORDER BY name ASC ";
  972. //echo $logSQL;
  973. mysqli_select_db($CON, DB);
  974. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve ms list - ".mysqli_error());
  975. $rowuser = mysqli_fetch_assoc($done);
  976. $nums = mysqli_num_rows($done);
  977. if ($nums > 0) {
  978. echo "<option>Please Select Marital Status </option>";
  979. do {
  980. if ($selected != '' && $selected == $rowuser['id'])
  981. {
  982. echo "<option selected value=\"".$rowuser['id']."\">".$rowuser['name']."</option>";
  983. } else {
  984. echo "<option value=\"".$rowuser['id']."\">".$rowuser['name']."</option>";
  985. }
  986. } while($rowuser = mysqli_fetch_assoc($done));
  987. } else {
  988. echo "<option>No Marital Status Selected </option>";
  989. }
  990. }
  991. function showtowns($selected = '') {
  992. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  993. $logSQL = "SELECT * FROM town ORDER BY name ASC ";
  994. //echo $logSQL;
  995. mysqli_select_db($CON, DB);
  996. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve town list - ".mysqli_error());
  997. $rowuser = mysqli_fetch_assoc($done);
  998. $nums = mysqli_num_rows($done);
  999. if ($nums > 0) {
  1000. echo "<option></option>";
  1001. do {
  1002. if ($selected != '' && $selected == $rowuser['id'])
  1003. {
  1004. echo "<option selected value=\"".$rowuser['id']."\">".$rowuser['name']."</option>";
  1005. } else {
  1006. echo "<option value=\"".$rowuser['id']."\">".$rowuser['name']."</option>";
  1007. }
  1008. } while($rowuser = mysqli_fetch_assoc($done));
  1009. } else {
  1010. echo "<option>No town Selected </option>";
  1011. }
  1012. }
  1013. function showtheusers($selected = '') {
  1014. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  1015. $logSQL = "SELECT * FROM employee ORDER BY name ASC ";
  1016. //echo $logSQL;
  1017. mysqli_select_db($CON, DB);
  1018. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve employee list - ".mysqli_error());
  1019. $rowuser = mysqli_fetch_assoc($done);
  1020. $nums = mysqli_num_rows($done);
  1021. if ($nums > 0) {
  1022. echo "<option></option>";
  1023. do {
  1024. if ($selected != '' && $selected == $rowuser['id'])
  1025. {
  1026. echo "<option selected value=\"".$rowuser['id']."\">".$rowuser['name']."</option>";
  1027. } else {
  1028. echo "<option value=\"".$rowuser['id']."\">".$rowuser['name']."</option>";
  1029. }
  1030. } while($rowuser = mysqli_fetch_assoc($done));
  1031. } else {
  1032. echo "<option>No Employee Selected </option>";
  1033. }
  1034. }
  1035. /*function showmonth($selected = '') {
  1036. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  1037. $logSQL = "SELECT * FROM months ORDER BY id ASC ";
  1038. //echo $logSQL;
  1039. mysqli_select_db($CON, DB);
  1040. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve month list - ".mysqli_error());
  1041. $rowuser = mysqli_fetch_assoc($done);
  1042. $nums = mysqli_num_rows($done);
  1043. if ($nums > 0) {
  1044. echo "<option>Month </option>";
  1045. do {
  1046. if ($selected != '' && $selected == $rowuser['id'])
  1047. {
  1048. echo "<option selected value=\"".$rowuser['id']."\">".$rowuser['name']."</option>";
  1049. } else {
  1050. echo "<option value=\"".$rowuser['id']."\">".$rowuser['name']."</option>";
  1051. }
  1052. } while($rowuser = mysqli_fetch_assoc($done));
  1053. } else {
  1054. echo "<option>No month Selected </option>";
  1055. }
  1056. }
  1057. function showday($selected = '') {
  1058. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  1059. $logSQL = "SELECT * FROM days ORDER BY id ASC ";
  1060. //echo $logSQL;
  1061. mysqli_select_db($CON, DB);
  1062. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve day list - ".mysqli_error());
  1063. $rowuser = mysqli_fetch_assoc($done);
  1064. $nums = mysqli_num_rows($done);
  1065. if ($nums > 0) {
  1066. echo "<option>Day </option>";
  1067. do {
  1068. if ($selected != '' && $selected == $rowuser['id'])
  1069. {
  1070. echo "<option selected value=\"".$rowuser['id']."\">".$rowuser['name']."</option>";
  1071. } else {
  1072. echo "<option value=\"".$rowuser['id']."\">".$rowuser['name']."</option>";
  1073. }
  1074. } while($rowuser = mysqli_fetch_assoc($done));
  1075. } else {
  1076. echo "<option>No day Selected </option>";
  1077. }
  1078. }
  1079. function showyear($selected = '') {
  1080. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  1081. $logSQL = "SELECT * FROM years ORDER BY id ASC ";
  1082. //echo $logSQL;
  1083. mysqli_select_db($CON, DB);
  1084. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve year list - ".mysqli_error());
  1085. $rowuser = mysqli_fetch_assoc($done);
  1086. $nums = mysqli_num_rows($done);
  1087. if ($nums > 0) {
  1088. echo "<option>Year </option>";
  1089. do {
  1090. if ($selected != '' && $selected == $rowuser['id'])
  1091. {
  1092. echo "<option selected value=\"".$rowuser['id']."\">".$rowuser['name']."</option>";
  1093. } else {
  1094. echo "<option value=\"".$rowuser['id']."\">".$rowuser['name']."</option>";
  1095. }
  1096. } while($rowuser = mysqli_fetch_assoc($done));
  1097. } else {
  1098. echo "<option>No year Selected </option>";
  1099. }
  1100. }
  1101. */
  1102. function showcompanyType($selected = '') {
  1103. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  1104. $logSQL = "SELECT * FROM companytype ORDER BY name ASC ";
  1105. //echo $logSQL;
  1106. mysqli_select_db($CON, DB);
  1107. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve companytype list - ".mysqli_error());
  1108. $rowuser = mysqli_fetch_assoc($done);
  1109. $nums = mysqli_num_rows($done);
  1110. if ($nums > 0) {
  1111. echo "<option>Please Select a Company type </option>";
  1112. do {
  1113. if ($selected != '' && $selected == $rowuser['id'])
  1114. {
  1115. echo "<option selected value=\"".$rowuser['id']."\">".$rowuser['name']."</option>";
  1116. } else {
  1117. echo "<option value=\"".$rowuser['id']."\">".$rowuser['name']."</option>";
  1118. }
  1119. } while($rowuser = mysqli_fetch_assoc($done));
  1120. } else {
  1121. echo "<option>No companytype Selected </option>";
  1122. }
  1123. }
  1124. function showgender($selected = '') {
  1125. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  1126. $logSQL = "SELECT * FROM gender ORDER BY name ASC ";
  1127. //echo $logSQL;
  1128. mysqli_select_db($CON, DB);
  1129. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve gender list - ".mysqli_error());
  1130. $rowuser = mysqli_fetch_assoc($done);
  1131. $nums = mysqli_num_rows($done);
  1132. if ($nums > 0) {
  1133. echo "<option>Please Select a Gender </option>";
  1134. do {
  1135. if ($selected != '' && $selected == $rowuser['id'])
  1136. {
  1137. echo "<option selected value=\"".$rowuser['id']."\">".$rowuser['name']."</option>";
  1138. } else {
  1139. echo "<option value=\"".$rowuser['id']."\">".$rowuser['name']."</option>";
  1140. }
  1141. } while($rowuser = mysqli_fetch_assoc($done));
  1142. } else {
  1143. echo "<option>No gender Selected </option>";
  1144. }
  1145. }
  1146. function showdept($selected = '') {
  1147. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  1148. $logSQL = "SELECT * FROM depts ORDER BY name DESC ";
  1149. //echo $logSQL;
  1150. mysqli_select_db($CON, DB);
  1151. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve dept list - ".mysqli_error());
  1152. $rowuser = mysqli_fetch_assoc($done);
  1153. $nums = mysqli_num_rows($done);
  1154. if ($nums > 0) {
  1155. //echo "<option>Please Select a Department </option>";
  1156. do {
  1157. if ($selected != '' && $selected == $rowuser['initials'])
  1158. {
  1159. echo "<option selected value=\"".$rowuser['initials']."\">".$rowuser['name']."</option>";
  1160. } else {
  1161. echo "<option value=\"".$rowuser['initials']."\">".$rowuser['name']."</option>";
  1162. }
  1163. } while($rowuser = mysqli_fetch_assoc($done));
  1164. } else {
  1165. echo "<option>No dept Selected </option>";
  1166. }
  1167. }
  1168. function showctype($selected = '') {
  1169. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  1170. $logSQL = "SELECT * FROM clienttype ORDER BY name ASC ";
  1171. //echo $logSQL;
  1172. mysqli_select_db($CON, DB);
  1173. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve clienttype list - ".mysqli_error());
  1174. $rowuser = mysqli_fetch_assoc($done);
  1175. $nums = mysqli_num_rows($done);
  1176. if ($nums > 0) {
  1177. echo "<option>Please Select a Client Type </option>";
  1178. do {
  1179. if ($selected != '' && $selected == $rowuser['initials'])
  1180. {
  1181. echo "<option selected value=\"".$rowuser['initials']."\">".$rowuser['name']."</option>";
  1182. } else {
  1183. echo "<option value=\"".$rowuser['initials']."\">".$rowuser['name']."</option>";
  1184. }
  1185. } while($rowuser = mysqli_fetch_assoc($done));
  1186. } else {
  1187. echo "<option>No clienttype Selected </option>";
  1188. }
  1189. }
  1190. function showimportance($selected = '') {
  1191. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  1192. $logSQL = "SELECT * FROM importance ORDER BY name ASC ";
  1193. //echo $logSQL;
  1194. mysqli_select_db($CON, DB);
  1195. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve importance list - ".mysqli_error());
  1196. $rowuser = mysqli_fetch_assoc($done);
  1197. $nums = mysqli_num_rows($done);
  1198. if ($nums > 0) {
  1199. echo "<option>Please Select The client Importance </option>";
  1200. do {
  1201. if ($selected != '' && $selected == $rowuser['initials'])
  1202. {
  1203. echo "<option selected value=\"".$rowuser['initials']."\">".$rowuser['name']."</option>";
  1204. } else {
  1205. echo "<option value=\"".$rowuser['initials']."\">".$rowuser['name']."</option>";
  1206. }
  1207. } while($rowuser = mysqli_fetch_assoc($done));
  1208. } else {
  1209. echo "<option>No importance Selected </option>";
  1210. }
  1211. }
  1212. function showstatus($selected = '') {
  1213. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  1214. $logSQL = "SELECT * FROM status ORDER BY name ASC ";
  1215. //echo $logSQL;
  1216. mysqli_select_db($CON, DB);
  1217. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve status list - ".mysqli_error());
  1218. $rowuser = mysqli_fetch_assoc($done);
  1219. $nums = mysqli_num_rows($done);
  1220. if ($nums > 0) {
  1221. echo "<option>Please Select Status </option>";
  1222. do {
  1223. if ($selected != '' && $selected == $rowuser['id'])
  1224. {
  1225. echo "<option selected value=\"".$rowuser['id']."\">".$rowuser['name']."</option>";
  1226. } else {
  1227. echo "<option value=\"".$rowuser['id']."\">".$rowuser['name']."</option>";
  1228. }
  1229. } while($rowuser = mysqli_fetch_assoc($done));
  1230. } else {
  1231. echo "<option>No status Selected </option>";
  1232. }
  1233. }
  1234. function showjobtype($selected = '') {
  1235. $CON = mysqli_connect(HOSTNAME, username, PWD) or trigger_error(mysqli_error(),E_USER_ERROR);
  1236. $logSQL = "SELECT * FROM jobtype ORDER BY name ASC ";
  1237. //echo $logSQL;
  1238. mysqli_select_db($CON, DB);
  1239. $done = mysqli_query($CON, $logSQL) or die("ERROR: Trying to retrieve jobtype list - ".mysqli_error());
  1240. $rowuser = mysqli_fetch_assoc($don

Large files files are truncated, but you can click here to view the full file