PageRenderTime 28ms CodeModel.GetById 30ms RepoModel.GetById 1ms app.codeStats 0ms

/lib/contents/member.inc.php

https://gitlab.com/mucill/majalengka
PHP | 767 lines | 570 code | 59 blank | 138 comment | 101 complexity | 7d8b660f88cd0abc7e85e183b842d920 MD5 | raw file
    

  1. <?php
    2. 

  2. /**
    3. 

  3.  *
    4. 

  4.  * Member Area/Information
    5. 

  5.  * Copyright (C) 2009  Arie Nugraha (dicarve@yahoo.com)
    6. 

  6.  * Patched by Hendro Wicaksono (hendrowicaksono@yahoo.com)
    7. 

  7.  *
    8. 

  8.  * This program is free software; you can redistribute it and/or modify
    9. 

  9.  * it under the terms of the GNU General Public License as published by
    10. 

  10.  * the Free Software Foundation; either version 2 of the License, or
    11. 

  11.  * (at your option) any later version.
    12. 

  12.  *
    13. 

  13.  * This program is distributed in the hope that it will be useful,
    14. 

  14.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
    15. 

  15.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    16. 

  16.  * GNU General Public License for more details.
    17. 

  17.  *
    18. 

  18.  * You should have received a copy of the GNU General Public License
    19. 

  19.  * along with this program; if not, write to the Free Software
    20. 

  20.  * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301  USA
    21. 

  21.  *
    22. 

  22.  */
    23. 

  23. 

  24. // be sure that this file not accessed directly
    25. 

  25. if (!defined('INDEX_AUTH')) {
    26. 

  26.     die("can not access this file directly");
    27. 

  27. } elseif (INDEX_AUTH != 1) {
    28. 

  28.     die("can not access this file directly");
    29. 

  29. }
    30. 

  30. 

  31. require SIMBIO.'simbio_DB/simbio_dbop.inc.php';
    32. 

  32. 

  33. // IP based access limitation
    34. 

  34. do_checkIP('opac');
    35. 

  35. do_checkIP('opac-member');
    36. 

  36. // required file
    37. 

  37. require LIB.'member_logon.inc.php';
    38. 

  38. // check if member already logged in
    39. 

  39. $is_member_login = utility::isMemberLogin();
    40. 

  40. 

  41. $info = __('Welcome to Member\'s Area where you can view your current loan information and view your membership status.');
    42. 

  42. 

  43. // member's password changing flags
    44. 

  44. define('CURR_PASSWD_WRONG', -1);
    45. 

  45. define('PASSWD_NOT_MATCH', -2);
    46. 

  46. define('CANT_UPDATE_PASSWD', -3);
    47. 

  47. 

  48. // if member is logged out
    49. 

  49. if (isset($_GET['logout']) && $_GET['logout'] == '1') {
    50. 

  50.     // write log
    51. 

  51.     utility::writeLogs($dbs, 'member', $_SESSION['email'], 'Login', $_SESSION['member_name'].' Log Out from address '.$_SERVER['REMOTE_ADDR']);
    52. 

  52.     // completely destroy session cookie
    53. 

  53.     simbio_security::destroySessionCookie(null, MEMBER_COOKIES_NAME, SWB, false);
    54. 

  54.     header('Location: index.php?p=member');
    55. 

  55.     header('Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0');
    56. 

  56.     header('Expires: Sat, 26 Jul 1997 05:00:00 GMT');
    57. 

  57.     header('Pragma: no-cache');
    58. 

  58.     exit();
    59. 

  59. }
    60. 

  60. 

  61. // if there is member login action
    62. 

  62. if (isset($_POST['logMeIn']) && !$is_member_login) {
    63. 

  63.     $username = trim(strip_tags($_POST['memberID']));
    64. 

  64.     $password = trim(strip_tags($_POST['memberPassWord']));
    65. 

  65.     // check if username or password is empty
    66. 

  66.     if (!$username OR !$password) {
    67. 

  67.         echo '<div class="errorBox">'.__('Please fill your Username and Password to Login!').'</div>';
    68. 

  68.     } else {
    69. 

  69.         # <!-- Captcha form processing - start -->
    70. 

  70.         if ($sysconf['captcha']['member']['enable']) {
    71. 

  71.             if ($sysconf['captcha']['member']['type'] == 'recaptcha') {
    72. 

  72.                 require_once LIB.$sysconf['captcha']['member']['folder'].'/'.$sysconf['captcha']['member']['incfile'];
    73. 

  73.                 $privatekey = $sysconf['captcha']['member']['privatekey'];
    74. 

  74.                 $resp = recaptcha_check_answer ($privatekey,
    75. 

  75.                     $_SERVER["REMOTE_ADDR"],
    76. 

  76.                     $_POST["recaptcha_challenge_field"],
    77. 

  77.                     $_POST["recaptcha_response_field"]);
    78. 

  78. 

  79.                 if (!$resp->is_valid) {
    80. 

  80.                     // What happens when the CAPTCHA was entered incorrectly
    81. 

  81.                     session_unset();
    82. 

  82.                     header("location:index.php?p=member&captchaInvalid=true");
    83. 

  83.                     die();
    84. 

  84.                 }
    85. 

  85.             } else if ($sysconf['captcha']['member']['type'] == 'others') {
    86. 

  86.                 # other captchas here
    87. 

  87.             }
    88. 

  88.         }
    89. 

  89.         # <!-- Captcha form processing - end -->
    90. 

  90. 

  91.         // regenerate session ID to prevent session hijacking
    92. 

  92.         session_regenerate_id(true);
    93. 

  93.         // create logon class instance
    94. 

  94.         $logon = new member_logon($username, $password, $sysconf['auth']['member']['method']);
    95. 

  95.         if ($sysconf['auth']['member']['method'] === 'LDAP') {
    96. 

  96.           $ldap_configs = $sysconf['auth']['member'];
    97. 

  97.         }
    98. 

  98.         if ($logon->valid($dbs)) {
    99. 

  99.             // write log
    100. 

  100.             utility::writeLogs($dbs, 'member', $username, 'Login', 'Login success for member '.$username.' from address '.$_SERVER['REMOTE_ADDR']);
    101. 

  101.             header('Location: index.php?p=member');
    102. 

  102.             exit();
    103. 

  103.         } else {
    104. 

  104.             // md5 password
    105. 

  105.             $md5_password = MD5($password);
    106. 

  106.             // query password
    107. 

  107.             $_pass_q = $dbs->query('SELECT mpasswd FROM member WHERE member_id = \''.$username.'\'');
    108. 

  108.             $_pass_d = $_pass_q->fetch_row();
    109. 

  109.             if ($_pass_d[0] === $md5_password) {
    110. 

  110.                 $msg  = '';
    111. 

  111.                 $msg .= '<div class="panel panel-danger">';
    112. 

  112.                 $msg .= '<div class="panel-heading">'.__('Please update your password!').'</div>';
    113. 

  113.                 $msg .= '<div class="panel-body">';
    114. 

  114.                 $msg .= '<form method="post" action="index.php?p=member">';
    115. 

  115.                 $msg .= '<div class="form-group">';
    116. 

  116.                 $msg .= '<label for="isusername">Username</label>';
    117. 

  117.                 $msg .= '<input type="text" class="form-control" id="isusername" name="isusername" placeholder="Username">';
    118. 

  118.                 $msg .= '</div>';
    119. 

  119.                 $msg .= '<div class="form-group">';
    120. 

  120.                 $msg .= '<label for="isoldpassword">Current Password</label>';
    121. 

  121.                 $msg .= '<input type="password" class="form-control" id="isoldpassword" name="isoldpassword" placeholder="Old Password">';
    122. 

  122.                 $msg .= '</div>';
    123. 

  123.                 $msg .= '<div class="form-group">';
    124. 

  124.                 $msg .= '<label for="isnewpassword">New Password</label>';
    125. 

  125.                 $msg .= '<input type="password" class="form-control" id="isnewpassword" name="isnewpassword" placeholder="New Password">';
    126. 

  126.                 $msg .= '</div>';
    127. 

  127.                 $msg .= '<div class="form-group">';
    128. 

  128.                 $msg .= '<label for="isconfirmnewpassword">Confirm New Password</label>';
    129. 

  129.                 $msg .= '<input type="password" class="form-control" id="isconfirmnewpassword" name="isconfirmnewpassword" placeholder="Confirm New Password">';
    130. 

  130.                 $msg .= '</div>';
    131. 

  131.                 $msg .= '</div>';
    132. 

  132.                 $msg .= '<div class="panel-footer">';
    133. 

  133.                 $msg .= '<button type="submit" name="renewPass" class="btn btn-success">Update</button>';
    134. 

  134.                 $msg .= '</form></div></div>';
    135. 

  135.                 simbio_security::destroySessionCookie($msg, MEMBER_COOKIES_NAME, SWB, false);                
    136. 

  136.             } else {
    137. 

  137.                 // write log
    138. 

  138.                 utility::writeLogs($dbs, 'member', $username, 'Login', 'Login FAILED for member '.$username.' from address '.$_SERVER['REMOTE_ADDR']);
    139. 

  139.                 // message
    140. 

  140.                 $msg = '<div class="errorBox">'.__('Login FAILED! Wrong username or password!').'</div>';
    141. 

  141.                 simbio_security::destroySessionCookie($msg, MEMBER_COOKIES_NAME, SWB, false);                
    142. 

  142.             }
    143. 

  143.         }
    144. 

  144.     }
    145. 

  145. }
    146. 

  146. 

  147. // check if member already login
    148. 

  148. if (!$is_member_login) {
    149. 

  149. 

  150.     function procChangePasswordNew($str_user, $str_curr_pass, $str_new_pass, $str_conf_new_pass)
    151. 

  151.     {
    152. 

  152.         global $dbs;
    153. 

  153.         // current password checking
    154. 

  154.         $_sql_pass_check = sprintf('SELECT member_id FROM member
    155. 

  155.             WHERE mpasswd=MD5(\'%s\') AND member_id=\'%s\'',
    156. 

  156.             $dbs->escape_string(trim($str_curr_pass)), $dbs->escape_string(trim($str_user)));
    157. 

  157.         $_pass_check = $dbs->query($_sql_pass_check);
    158. 

  158.         if ($_pass_check->num_rows == 1) {
    159. 

  159.             $str_new_pass = trim($str_new_pass);
    160. 

  160.             $str_conf_new_pass = trim($str_conf_new_pass);
    161. 

  161.             // password confirmation check
    162. 

  162.             if ($str_new_pass && $str_conf_new_pass && ($str_new_pass === $str_conf_new_pass)) {
    163. 

  163.                 $_new_password = password_hash($str_conf_new_pass, PASSWORD_BCRYPT);
    164. 

  164.                 $_sql_update_mpasswd = sprintf('UPDATE member SET mpasswd=\'%s\'
    165. 

  165.                     WHERE member_id=\'%s\'', $dbs->escape_string($_new_password), $dbs->escape_string(trim($str_user)));
    166. 

  166.                 @$dbs->query($_sql_update_mpasswd);
    167. 

  167.                 if (!$dbs->error) {
    168. 

  168.                     return true;
    169. 

  169.                 } else {
    170. 

  170.                     return CANT_UPDATE_PASSWD;
    171. 

  171.                 }
    172. 

  172.             } else {
    173. 

  173.                 return PASSWD_NOT_MATCH;
    174. 

  174.             }
    175. 

  175.         } else {
    176. 

  176.             return CURR_PASSWD_WRONG;
    177. 

  177.         }
    178. 

  178.     }
    179. 

  179. 

  180.     // if there is change md5 password request
    181. 

  181.     if (isset($_POST['renewPass'])) {
    182. 

  182.         $change_pass = procChangePasswordNew($_POST['isusername'], $_POST['isoldpassword'], $_POST['isnewpassword'], $_POST['isconfirmnewpassword']);
    183. 

  183.         
    184. 

  184.         if ($change_pass === true) {
    185. 

  185.             $info = '<span style="font-size: 120%; font-weight: bold;">'.__('Your password have been changed successfully.').'</span>';
    186. 

  186.             $info_class = 'alert-success';
    187. 

  187.         } else {
    188. 

  188.             if ($change_pass === CURR_PASSWD_WRONG) {
    189. 

  189.                 $info = __('Current password entered WRONG! Please insert the right password!');
    190. 

  190.             } else if ($change_pass === PASSWD_NOT_MATCH) {
    191. 

  191.                 $info = __('Password confirmation FAILED! Make sure to check undercase or uppercase letters!');
    192. 

  192.             } else {
    193. 

  193.                 $info = __('Password update FAILED! ERROR ON DATABASE!');
    194. 

  194.             }
    195. 

  195.             $info_class = 'alert-danger';
    196. 

  196.         }
    197. 

  197.         $msg = '<div class="alert '.$info_class.'"><span>'.$info.'</span></div>';
    198. 

  198.         simbio_security::destroySessionCookie($msg, MEMBER_COOKIES_NAME, SWB, false);
    199. 

  199.     }
    200. 

  200. 

  201. ?>
    202. 

  202.     <div class="tagline"><?php echo __('Library Member Login'); ?></div>
    203. 

  203. 	<?php
    204. 

  204. 	// captcha invalid warning
    205. 

  205. 	if (isset($_GET['captchaInvalid']) && $_GET['captchaInvalid'] === 'true') {
    206. 

  206. 		echo '<div class="errorBox">'.__('Wrong Captcha Code entered, Please write the right code!').'</div>';
    207. 

  207. 	}
    208. 

  208. 	?>
    209. 

  209.     <div class="loginInfo"><?php echo __('Please insert your member ID and password given by library system administrator. If you are library\'s member and don\'t have a password yet, please contact library staff.'); ?></div>
    210. 

  210.     <!-- Captcha preloaded javascript - start -->
    211. 

  211.     <?php if ($sysconf['captcha']['member']['enable']) { ?>
    212. 

  212.       <?php if ($sysconf['captcha']['member']['type'] == "recaptcha") { ?>
    213. 

  213.       <script type="text/javascript">
    214. 

  214.         var RecaptchaOptions = {
    215. 

  215.           theme : '<?php echo$sysconf['captcha']['member']['recaptcha']['theme']; ?>',
    216. 

  216.           lang : '<?php echo$sysconf['captcha']['member']['recaptcha']['lang']; ?>',
    217. 

  217.           <?php if($sysconf['captcha']['member']['recaptcha']['customlang']['enable']) { ?>
    218. 

  218.                 custom_translations : {
    219. 

  219.                 instructions_visual : "<?php echo $sysconf['captcha']['member']['recaptcha']['customlang']['instructions_visual']; ?>",
    220. 

  220.                 instructions_audio : "<?php echo $sysconf['captcha']['member']['recaptcha']['customlang']['instructions_audio']; ?>",
    221. 

  221.                 play_again : "<?php echo $sysconf['captcha']['member']['recaptcha']['customlang']['play_again']; ?>",
    222. 

  222.                 cant_hear_this : "<?php echo $sysconf['captcha']['member']['recaptcha']['customlang']['cant_hear_this']; ?>",
    223. 

  223.                 visual_challenge : "<?php echo $sysconf['captcha']['member']['recaptcha']['customlang']['visual_challenge']; ?>",
    224. 

  224.                 audio_challenge : "<?php echo $sysconf['captcha']['member']['recaptcha']['customlang']['audio_challenge']; ?>",
    225. 

  225.                 refresh_btn : "<?php echo $sysconf['captcha']['member']['recaptcha']['customlang']['refresh_btn']; ?>",
    226. 

  226.                 help_btn : "<?php echo $sysconf['captcha']['member']['recaptcha']['customlang']['help_btn']; ?>",
    227. 

  227.                 incorrect_try_again : "<?php echo $sysconf['captcha']['member']['recaptcha']['customlang']['incorrect_try_again']; ?>",
    228. 

  228.                 },
    229. 

  229.           <?php } ?>
    230. 

  230.         };
    231. 

  231.       </script>
    232. 

  232.       <?php } ?>
    233. 

  233.     <?php } ?>
    234. 

  234.     <!-- Captcha preloaded javascript - end -->
    235. 

  235.     <div class="loginInfo">
    236. 

  236.     <form action="index.php?p=member" method="post">
    237. 

  237.     <div class="fieldLabel"><?php echo __('Member ID'); ?></div>
    238. 

  238.         <div class="login_input"><input type="text" name="memberID" /></div>
    239. 

  239.     <div class="fieldLabel marginTop"><?php echo __('Password'); ?></div>
    240. 

  240.         <div  class="login_input"><input type="password" name="memberPassWord" /></div>
    241. 

  241.     <!-- Captcha in form - start -->
    242. 

  242.     <div>
    243. 

  243.     <?php if ($sysconf['captcha']['member']['enable']) { ?>
    244. 

  244.       <?php if ($sysconf['captcha']['member']['type'] == "recaptcha") { ?>
    245. 

  245.       <div class="captchaMember">
    246. 

  246.       <?php
    247. 

  247.         require_once LIB.$sysconf['captcha']['member']['folder'].'/'.$sysconf['captcha']['member']['incfile'];
    248. 

  248.         $publickey = $sysconf['captcha']['member']['publickey'];
    249. 

  249.         echo recaptcha_get_html($publickey);
    250. 

  250.       ?>
    251. 

  251.       </div>
    252. 

  252.       <!-- <div><input type="text" name="captcha_code" id="captcha-form" style="width: 80%;" /></div> -->
    253. 

  253.     <?php
    254. 

  254.       } elseif ($sysconf['captcha']['member']['type'] == "others") {
    255. 

  255. 

  256.       }
    257. 

  257.       #debugging
    258. 

  258.       #echo SWB.'lib/'.$sysconf['captcha']['folder'].'/'.$sysconf['captcha']['webfile'];
    259. 

  259.     } ?>
    260. 

  260.     </div>
    261. 

  261.     <!-- Captcha in form - end -->
    262. 

  262.     <input type="submit" name="logMeIn" value="<?php echo __('Login'); ?>" class="memberButton" />
    263. 

  263.     </form>
    264. 

  264.     </div>
    265. 

  265.     </div>
    266. 

  266. <?php
    267. 

  267. } else {
    268. 

  268.     /*
    269. 

  269.      * Function to show member change password form
    270. 

  270.      *
    271. 

  271.      * @return      string
    272. 

  272.      */
    273. 

  273.     function changePassword()
    274. 

  274.     {
    275. 

  275.         // show the member information
    276. 

  276.         $_form = '<form id="memberChangePassword" method="post" action="index.php?p=member">'."\n";
    277. 

  277.         $_form .= '<table class="memberDetail" cellpadding="5" cellspacing="0">'."\n";
    278. 

  278.         $_form .= '<tr>'."\n";
    279. 

  279.         $_form .= '<td class="key alterCell" width="20%"><strong>'.__('Current Password').'</strong></td>';
    280. 

  280.         $_form .= '<td class="value alterCell2"><input type="password" name="currPass" /></td>';
    281. 

  281.         $_form .= '</tr>'."\n";
    282. 

  282.         $_form .= '<tr>'."\n";
    283. 

  283.         $_form .= '<td class="key alterCell" width="20%"><strong>'.__('New Password').'</strong></td>';
    284. 

  284.         $_form .= '<td class="value alterCell2"><input type="password" name="newPass" /></td>';
    285. 

  285.         $_form .= '</tr>'."\n";
    286. 

  286.         $_form .= '<tr>'."\n";
    287. 

  287.         $_form .= '<td class="key alterCell" width="20%"><strong>'.__('Confirm Password').'</strong></td>';
    288. 

  288.         $_form .= '<td class="value alterCell2"><input type="password" name="newPass2" /></td>';
    289. 

  289.         $_form .= '</tr>'."\n";
    290. 

  290.         $_form .= '<tr>'."\n";
    291. 

  291.         $_form .= '<td class="alterCell2" colspan="2"><input type="submit" id="loginButton" name="changePass" value="'.__('Change Password').'" /></td>';
    292. 

  292.         $_form .= '</tr>'."\n";
    293. 

  293.         $_form .= '</table>'."\n";
    294. 

  294.         $_form .= '</form>'."\n";
    295. 

  295. 

  296.         return $_form;
    297. 

  297.     }
    298. 

  298. 

  299. 

  300.     /*
    301. 

  301.      * Function to process member's password changes
    302. 

  302.      *
    303. 

  303.      * @param       string      $str_curr_pass = member's current password
    304. 

  304.      * @param       string      $str_new_pass = member's new password request
    305. 

  305.      * @param       string      $str_conf_new_pass = member's new password request confirmation
    306. 

  306.      * @return      boolean     true on success, false on failed
    307. 

  307.      */
    308. 

  308.     function procChangePassword($str_curr_pass, $str_new_pass, $str_conf_new_pass)
    309. 

  309.     {
    310. 

  310.         global $dbs;
    311. 

  311.         // get hash from db
    312. 

  312.         $_str_pass_sql = sprintf('SELECT mpasswd FROM member
    313. 

  313.             WHERE member_id=\'%s\'', $dbs->escape_string(trim($_SESSION['mid'])));
    314. 

  314.         $_str_pass_q = $dbs->query($_str_pass_sql);
    315. 

  315.         $_str_pass_d = $_str_pass_q->fetch_row();
    316. 

  316.         $verified = password_verify($str_curr_pass, $_str_pass_d[0]);
    317. 

  317.         // current password checking
    318. 

  318.         // $_sql_pass_check = sprintf('SELECT member_id FROM member
    319. 

  319.         //     WHERE mpasswd=MD5(\'%s\') AND member_id=\'%s\'',
    320. 

  320.         //     $dbs->escape_string(trim($str_curr_pass)), $dbs->escape_string(trim($_SESSION['mid'])));
    321. 

  321.         // $_pass_check = $dbs->query($_sql_pass_check);
    322. 

  322.         if ($verified) {
    323. 

  323.             $str_new_pass = trim($str_new_pass);
    324. 

  324.             $str_conf_new_pass = trim($str_conf_new_pass);
    325. 

  325.             // password confirmation check
    326. 

  326.             if ($str_new_pass && $str_conf_new_pass && ($str_new_pass === $str_conf_new_pass)) {
    327. 

  327.                 $_new_password = password_hash($str_conf_new_pass, PASSWORD_BCRYPT);
    328. 

  328.                 $_sql_update_mpasswd = sprintf('UPDATE member SET mpasswd=\'%s\'
    329. 

  329.                     WHERE member_id=\'%s\'', $dbs->escape_string($_new_password), $dbs->escape_string(trim($_SESSION['mid'])));
    330. 

  330.                 @$dbs->query($_sql_update_mpasswd);
    331. 

  331.                 if (!$dbs->error) {
    332. 

  332.                     return true;
    333. 

  333.                 } else {
    334. 

  334.                     return CANT_UPDATE_PASSWD;
    335. 

  335.                 }
    336. 

  336.             } else {
    337. 

  337.                 return PASSWD_NOT_MATCH;
    338. 

  338.             }
    339. 

  339.         } else {
    340. 

  340.             return CURR_PASSWD_WRONG;
    341. 

  341.         }
    342. 

  342.     }
    343. 

  343. 

  344.     /*
    345. 

  345.      * Function to send reservation e-mail for titles in basket
    346. 

  346.      *
    347. 

  347.      * @return      array
    348. 

  348.      */
    349. 

  349.     function sendReserveMail()
    350. 

  350.     {
    351. 

  351.         if (count($_SESSION['m_mark_biblio']) > 0) {
    352. 

  352.             $_ids = '(';
    353. 

  353.             foreach ($_SESSION['m_mark_biblio'] as $_biblio) {
    354. 

  354.                 $_ids .= (integer)$_biblio.',';
    355. 

  355.             }
    356. 

  356.             $_ids = substr_replace($_ids, '', -1);
    357. 

  357.             $_ids .= ')';
    358. 

  358.         } else {
    359. 

  359.             return array('status' => 'ERROR', 'message' => 'No Titles to reserve');
    360. 

  360.         }
    361. 

  361. 

  362.         global $dbs, $sysconf;
    363. 

  363.         require LIB.'phpmailer/class.phpmailer.php';
    364. 

  364. 

  365.         $_mail = new PHPMailer(false);
    366. 

  366.         $_mail->IsSMTP();
    367. 

  367. 

  368.         // get message template
    369. 

  369.         $_msg_tpl = @file_get_contents(SB.'template/reserve-mail-tpl.html');
    370. 

  370. 

  371.         // date
    372. 

  372.         $_curr_date = date('Y-m-d H:i:s');
    373. 

  373. 

  374.         // query
    375. 

  375.         $_biblio_q = $dbs->query("SELECT biblio_id, title FROM biblio WHERE biblio_id IN $_ids");
    376. 

  376. 

  377.         // compile reservation data
    378. 

  378.         $_data = '<table width="100%" border="1">'."\n";
    379. 

  379.         $_data .= '<tr><th>Titles to reserve</th></tr>'."\n";
    380. 

  380.         while ($_title_d = $_biblio_q->fetch_assoc()) {
    381. 

  381.             $_data .= '<tr>';
    382. 

  382.             $_data .= '<td>'.$_title_d['title'].'</td>'."\n";
    383. 

  383.             $_data .= '</tr>';
    384. 

  384.         }
    385. 

  385.         $_data .= '</table>';
    386. 

  386. 

  387. 

  388.         // message
    389. 

  389.         $_message = str_ireplace(array('<!--MEMBER_ID-->', '<!--MEMBER_NAME-->', '<!--DATA-->', '<!--DATE-->'),
    390. 

  390.             array($_SESSION['mid'], $_SESSION['m_name'], $_data, $_curr_date), $_msg_tpl);
    391. 

  391. 

  392.         // e-mail setting
    393. 

  393.         // $_mail->SMTPDebug = 2;
    394. 

  394.         $_mail->SMTPAuth = $sysconf['mail']['auth_enable'];
    395. 

  395.         $_mail->Host = $sysconf['mail']['server'];
    396. 

  396.         $_mail->Port = $sysconf['mail']['server_port'];
    397. 

  397.         $_mail->Username = $sysconf['mail']['auth_username'];
    398. 

  398.         $_mail->Password = $sysconf['mail']['auth_password'];
    399. 

  399.         $_mail->SetFrom($sysconf['mail']['from'], $sysconf['mail']['from_name']);
    400. 

  400.         $_mail->AddReplyTo($sysconf['mail']['reply_to'], $sysconf['mail']['reply_to_name']);
    401. 

  401.         // send carbon copy off reserve e-mail to member/requester
    402. 

  402.         $_mail->AddCC($_SESSION['m_email'], $_SESSION['m_name']);
    403. 

  403.         // send reservation e-mail to librarian
    404. 

  404.         $_mail->AddAddress($sysconf['mail']['from'], $sysconf['mail']['from_name']);
    405. 

  405.         // additional recipient
    406. 

  406.         if (isset($sysconf['mail']['add_recipients'])) {
    407. 

  407.           foreach ($sysconf['mail']['add_recipients'] as $_recps) {
    408. 

  408.             $_mail->AddAddress($_recps['from'], $_recps['from_name']);
    409. 

  409.           }
    410. 

  410.         }
    411. 

  411.         $_mail->Subject = 'Reservation request from Member '.$_SESSION['m_name'].' ('.$_SESSION['m_email'].')';
    412. 

  412.         $_mail->AltBody = strip_tags($_message);
    413. 

  413.         $_mail->MsgHTML($_message);
    414. 

  414. 

  415.         $_sent = $_mail->Send();
    416. 

  416.         if (!$_sent) {
    417. 

  417.             return array('status' => 'ERROR', 'message' => $_mail->ErrorInfo);
    418. 

  418.             utility::writeLogs($this->obj_db, 'member', isset($_SESSION['mid'])?$_SESSION['mid']:'0', 'membership', 'FAILED to send reservation e-mail to '.$_SESSION['m_email'].' ('.$_mail->ErrorInfo.')');
    419. 

  419.         } else {
    420. 

  420.             return array('status' => 'SENT', 'message' => 'Overdue notification E-Mail have been sent to '.$_SESSION['m_email']);
    421. 

  421.             utility::writeLogs($this->obj_db, 'member', isset($_SESSION['mid'])?$_SESSION['mid']:'0', 'membership', 'Reservation notification e-mail sent to '.$_SESSION['m_email']);
    422. 

  422.         }
    423. 

  423.     }
    424. 

  424. 

  425. 

  426.     /*
    427. 

  427.      * Function to show member collection basket
    428. 

  428.      *
    429. 

  429.      * @param       int         number of loan records to show
    430. 

  430.      * @return      string
    431. 

  431.      */
    432. 

  432.     function showBasket($num_recs_show = 20)
    433. 

  433.     {
    434. 

  434.         global $dbs;
    435. 

  435. 

  436.         // table spec
    437. 

  437.         $_table_spec = 'biblio AS b';
    438. 

  438. 

  439.         // create datagrid
    440. 

  440.         $_loan_list = new simbio_datagrid();
    441. 

  441.         $_loan_list->table_ID = 'basket';
    442. 

  442.         $_loan_list->setSQLColumn('b.biblio_id AS \''.__('Remove').'\'', 'b.title AS \''.__('Title').'\'');
    443. 

  443.         $_loan_list->setSQLorder('b.last_update DESC');
    444. 

  444.         $_criteria = 'biblio_id = 0';
    445. 

  445.         if (count($_SESSION['m_mark_biblio']) > 0) {
    446. 

  446.             $_ids = '';
    447. 

  447.             foreach ($_SESSION['m_mark_biblio'] as $_biblio) {
    448. 

  448.                 $_ids .= (integer)$_biblio.',';
    449. 

  449.             }
    450. 

  450.             $_ids = substr_replace($_ids, '', -1);
    451. 

  451.             $_criteria = "b.biblio_id IN ($_ids)";
    452. 

  452.         }
    453. 

  453.         $_loan_list->setSQLCriteria($_criteria);
    454. 

  454.         $_loan_list->column_width[0] = '5%';
    455. 

  455.         $_loan_list->modifyColumnContent(0, '<input type="checkbox" name="basket[]" class="basketItem" value="{column_value}" />');
    456. 

  456. 

  457.         // set table and table header attributes
    458. 

  458.         $_loan_list->table_attr = 'align="center" class="memberBasketList" cellpadding="5" cellspacing="0"';
    459. 

  459.         $_loan_list->table_header_attr = 'class="dataListHeader" style="font-weight: bold;"';
    460. 

  460.         $_loan_list->using_AJAX = false;
    461. 

  461.         // return the result
    462. 

  462.         $_result = '<form name="memberBasketListForm" id="memberBasketListForm" action="index.php?p=member" method="post">'."\n";
    463. 

  463.         $_datagrid = $_loan_list->createDataGrid($dbs, $_table_spec, $num_recs_show);
    464. 

  464.         if ($_loan_list->num_rows > 0) {
    465. 

  465.             $_actions = '<div class="memberBasketAction">';
    466. 

  466.             $_actions .= '<a href="index.php?p=member" class="basket reserve">'.__('Reserve title(s) on Basket').'</a> ';
    467. 

  467.             $_actions .= '<a href="index.php?p=member" class="basket clearAll" postdata="clear_biblio=1">'.__('Clear Basket').'</a> ';
    468. 

  468.             $_actions .= '<a href="index.php?p=member" class="basket clearOne">'.__('Remove selected title(s) from Basket').'</a> ';
    469. 

  469.             $_actions .= '</div>';
    470. 

  470.             $_result .= '<div class="memberBasketInfo">'.$_loan_list->num_rows.' '.__('title(s) on basket').$_actions.'</div>'."\n".$_datagrid;
    471. 

  471.         }
    472. 

  472. 		$_result .= "\n</form>";
    473. 

  473. 

  474.         return $_result;
    475. 

  475.     }
    476. 

  476. 

  477. 

  478.     /*
    479. 

  479.      * Function to show membership detail of logged in member
    480. 

  480.      *
    481. 

  481.      * @return      string
    482. 

  482.      */
    483. 

  483.     function showMemberDetail()
    484. 

  484.     {
    485. 

  485.         // show the member information
    486. 

  486.         $_detail = '<table class="memberDetail" cellpadding="5" cellspacing="0">'."\n";
    487. 

  487.         // member notes and pending information
    488. 

  488.         if ($_SESSION['m_membership_pending'] || $_SESSION['m_is_expired']) {
    489. 

  489.             $_detail .= '<tr>'."\n";
    490. 

  490.             $_detail .= '<td class="key alterCell" width="15%"><strong>Notes</strong></td><td class="value alterCell2" colspan="3">';
    491. 

  491.             if ($_SESSION['m_is_expired']) {
    492. 

  492.                 $_detail .= '<div style="color: #f00;">'.__('Your Membership Already EXPIRED! Please extend your membership.').'</div>';
    493. 

  493.             }
    494. 

  494.             if ($_SESSION['m_membership_pending']) {
    495. 

  495.                 $_detail .= '<div style="color: #f00;">'.__('Membership currently in pending state, no loan transaction can be made yet.').'</div>';
    496. 

  496.             }
    497. 

  497.             $_detail .= '</td>';
    498. 

  498.             $_detail .= '</tr>'."\n";
    499. 

  499.         }
    500. 

  500.         $_detail .= '<tr>'."\n";
    501. 

  501.         $_detail .= '<td class="key alterCell" width="15%"><strong>'.__('Member Name').'</strong></td><td class="value alterCell2" width="30%">'.$_SESSION['m_name'].'</td>';
    502. 

  502.         $_detail .= '<td class="key alterCell" width="15%"><strong>'.__('Member ID').'</strong></td><td class="value alterCell2" width="30%">'.$_SESSION['mid'].'</td>';
    503. 

  503.         $_detail .= '</tr>'."\n";
    504. 

  504.         $_detail .= '<tr>'."\n";
    505. 

  505.         $_detail .= '<td class="key alterCell" width="15%"><strong>'.__('Member Email').'</strong></td><td class="value alterCell2" width="30%">'.$_SESSION['m_email'].'</td>';
    506. 

  506.         $_detail .= '<td class="key alterCell" width="15%"><strong>'.__('Member Type').'</strong></td><td class="value alterCell2" width="30%">'.$_SESSION['m_member_type'].'</td>';
    507. 

  507.         $_detail .= '</tr>'."\n";
    508. 

  508.         $_detail .= '<tr>'."\n";
    509. 

  509.         $_detail .= '<td class="key alterCell" width="15%"><strong>'.__('Register Date').'</strong></td><td class="value alterCell2" width="30%">'.$_SESSION['m_register_date'].'</td>';
    510. 

  510.         $_detail .= '<td class="key alterCell" width="15%"><strong>'.__('Expiry Date').'</strong></td><td class="value alterCell2" width="30%">'.$_SESSION['m_expire_date'].'</td>';
    511. 

  511.         $_detail .= '</tr>'."\n";
    512. 

  512.         $_detail .= '<tr>'."\n";
    513. 

  513.         $_detail .= '<td class="key alterCell" width="15%"><strong>'.__('Institution').'</strong></td>'
    514. 

  514.             .'<td class="value alterCell2" colspan="3">'.$_SESSION['m_institution'].'</td>';
    515. 

  515.         $_detail .= '</tr>'."\n";
    516. 

  516.         $_detail .= '</table>'."\n";
    517. 

  517. 

  518. 

  519.         return $_detail;
    520. 

  520.     }
    521. 

  521. 

  522. 

  523.     /* callback function to show overdue */
    524. 

  524.     function showOverdue($obj_db, $array_data)
    525. 

  525.     {
    526. 

  526.         $_curr_date = date('Y-m-d');
    527. 

  527.         if (simbio_date::compareDates($array_data[3], $_curr_date) == $_curr_date) {
    528. 

  528.             return '<strong style="color: #f00;">'.$array_data[3].' '.__('OVERDUED').'</strong>';
    529. 

  529.         } else {
    530. 

  530.             return $array_data[3];
    531. 

  531.         }
    532. 

  532.     }
    533. 

  533. 

  534. 

  535.     /*
    536. 

  536.      * Function to show list of logged in member loan
    537. 

  537.      *
    538. 

  538.      * @param       int         number of loan records to show
    539. 

  539.      * @return      string
    540. 

  540.      */
    541. 

  541.     function showLoanList($num_recs_show = 20)
    542. 

  542.     {
    543. 

  543.         global $dbs;
    544. 

  544.         require SIMBIO.'simbio_GUI/table/simbio_table.inc.php';
    545. 

  545.         require SIMBIO.'simbio_DB/datagrid/simbio_dbgrid.inc.php';
    546. 

  546.         require SIMBIO.'simbio_GUI/paging/simbio_paging.inc.php';
    547. 

  547.         require SIMBIO.'simbio_UTILS/simbio_date.inc.php';
    548. 

  548. 

  549.         // table spec
    550. 

  550.         $_table_spec = 'loan AS l
    551. 

  551.             LEFT JOIN member AS m ON l.member_id=m.member_id
    552. 

  552.             LEFT JOIN item AS i ON l.item_code=i.item_code
    553. 

  553.             LEFT JOIN biblio AS b ON i.biblio_id=b.biblio_id';
    554. 

    555. 

  555.         // create datagrid
    556. 

  556.         $_loan_list = new simbio_datagrid();
    557. 

  557.         $_loan_list->disable_paging = true;
    558. 

  558.         $_loan_list->table_ID = 'loanlist';
    559. 

  559.         $_loan_list->setSQLColumn('l.item_code AS \''.__('Item Code').'\'',
    560. 

  560.             'b.title AS \''.__('Title').'\'',
    561. 

  561.             'l.loan_date AS \''.__('Loan Date').'\'',
    562. 

  562.             'l.due_date AS \''.__('Due Date').'\'');
    563. 

  563.         $_loan_list->setSQLorder('l.loan_date DESC');
    564. 

  564.         $_criteria = sprintf('m.member_id=\'%s\' AND l.is_lent=1 AND is_return=0 ', $_SESSION['mid']);
    565. 

  565.         $_loan_list->setSQLCriteria($_criteria);
    566. 

  566. 

  567.         // modify column value
    568. 

  568.         $_loan_list->modifyColumnContent(3, 'callback{showOverdue}');
    569. 

  569.         // set table and table header attributes
    570. 

  570.         $_loan_list->table_attr = 'align="center" class="memberLoanList" cellpadding="5" cellspacing="0"';
    571. 

  571.         $_loan_list->table_header_attr = 'class="dataListHeader" style="font-weight: bold;"';
    572. 

  572.         $_loan_list->using_AJAX = false;
    573. 

  573.         // return the result
    574. 

  574.         $_result = $_loan_list->createDataGrid($dbs, $_table_spec, $num_recs_show);
    575. 

  575.         $_result = '<div class="memberLoanListInfo">'.$_loan_list->num_rows.' '.__('item(s) currently on loan').' | <a href="?p=download_current_loan">Download All Current Loan</a></div>'."\n".$_result;
    576. 

  576.         return $_result;
    577. 

  577.     }
    578. 

  578. 

  579.     /* Experimental Loan History - start */
    580. 

  580.     function showLoanHist($num_recs_show = 20)
    581. 

  581.     {
    582. 

  582.         global $dbs;
    583. 

  583. 

  584.         // table spec
    585. 

  585.         $_table_spec = 'loan AS l
    586. 

  586.             LEFT JOIN member AS m ON l.member_id=m.member_id
    587. 

  587.             LEFT JOIN item AS i ON l.item_code=i.item_code
    588. 

  588.             LEFT JOIN biblio AS b ON i.biblio_id=b.biblio_id';
    589. 

    590. 

  590.         // create datagrid
    591. 

  591.         $_loan_hist = new simbio_datagrid();
    592. 

  592.         $_loan_hist->disable_paging = true;
    593. 

  593.         $_loan_hist->table_ID = 'loanhist';
    594. 

  594.         $_loan_hist->setSQLColumn('l.item_code AS \''.__('Item Code').'\'',
    595. 

  595.             'b.title AS \''.__('Title').'\'',
    596. 

  596.             'l.loan_date AS \''.__('Loan Date').'\'',
    597. 

  597.             'l.return_date AS \''.__('Return Date').'\'');
    598. 

  598.         $_loan_hist->setSQLorder('l.loan_date DESC');
    599. 

  599.         $_criteria = sprintf('m.member_id=\'%s\' AND l.is_lent=1 AND is_return=1 ', $_SESSION['mid']);
    600. 

  600.         $_loan_hist->setSQLCriteria($_criteria);
    601. 

  601. 

  602.         // modify column value
    603. 

  603.         #$_loan_hist->modifyColumnContent(3, 'callback{showOverdue}');
    604. 

  604.         // set table and table header attributes
    605. 

  605.         $_loan_hist->table_attr = 'align="center" class="memberLoanList" cellpadding="5" cellspacing="0"';
    606. 

  606.         $_loan_hist->table_header_attr = 'class="dataListHeader" style="font-weight: bold;"';
    607. 

  607.         $_loan_hist->using_AJAX = false;
    608. 

  608.         // return the result
    609. 

  609.         $_result = $_loan_hist->createDataGrid($dbs, $_table_spec, $num_recs_show);
    610. 

  610.         $_result = '<div class="memberLoanHistInfo"> &nbsp;'.$_loan_hist->num_rows.' '.__('item(s) loan history').' | <a href="?p=download_loan_history">Download All Loan History</a></div>'."\n".$_result;
    611. 

  611.         return $_result;
    612. 

  612.     }
    613. 

  613.     /* Experimental Loan History - end */
    614. 

  614. 

  615.     // if there is change password request
    616. 

  616.     if (isset($_POST['changePass']) && $sysconf['auth']['member']['method'] == 'native') {
    617. 

  617.         $change_pass = procChangePassword($_POST['currPass'], $_POST['newPass'], $_POST['newPass2']);
    618. 

  618.         if ($change_pass === true) {
    619. 

  619.             $info = '<span style="font-size: 120%; font-weight: bold;">'.__('Your password have been changed successfully.').'</span>';
    620. 

  620.         } else {
    621. 

  621.             if ($change_pass === CURR_PASSWD_WRONG) {
    622. 

  622.                 $info = __('Current password entered WRONG! Please insert the right password!');
    623. 

  623.             } else if ($change_pass === PASSWD_NOT_MATCH) {
    624. 

  624.                 $info = __('Password confirmation FAILED! Make sure to check undercase or uppercase letters!');
    625. 

  625.             } else {
    626. 

  626.                 $info = __('Password update FAILED! ERROR ON DATABASE!');
    627. 

  627.             }
    628. 

  628.             $info = '<span style="font-size: 120%; font-weight: bold; color: red;">'.$info.'</span>';
    629. 

  629.         }
    630. 

  630.     }
    631. 

  631. 

  632.     // send reserve e-mail
    633. 

  633.     if (isset($_POST['sendReserve'])) {
    634. 

  634.         $mail = sendReserveMail();
    635. 

  635.         // die();
    636. 

  636.         if ($mail['status'] != 'ERROR') {
    637. 

  637.             $info = __('Reservation e-mail sent successfully!');
    638. 

  638.         } else {
    639. 

  639.             $info = '<span style="font-size: 120%; font-weight: bold; color: red;">'.__(sprintf('Reservation e-mail FAILED to sent with error: %s Please contact administrator!', $mail['message'])).'</span>';
    640. 

  640.         }
    641. 

  641.     }
    642. 

  642. 

  643.     // biblio basket add process
    644. 

  644.     if (isset($_POST['biblio'])) {
    645. 

  645.         if (!is_array($_POST['biblio']) && is_scalar($_POST['biblio'])) {
    646. 

  646.             $_tmp_biblio = $_POST['biblio']; unset($_POST['biblio']);
    647. 

  647.             $_POST['biblio'][] = $_tmp_biblio;
    648. 

  648.         }
    649. 

  649.         // check reserve limit
    650. 

  650.         if ( (count($_SESSION['m_mark_biblio'])+count($_POST['biblio'])) > $sysconf['max_biblio_mark'] ) {
    651. 

  651.             $info = '<span style="font-size: 120%; font-weight: bold; color: red;">Maximum '.$sysconf['max_biblio_mark'].' titles can be added to basket!</span>';
    652. 

  652.         } else {
    653. 

  653.             foreach ($_POST['biblio'] as $biblio) {
    654. 

  654.                 $biblio = (integer)$biblio;
    655. 

  655.                 $_SESSION['m_mark_biblio'][$biblio] = $biblio;
    656. 

  656.             }
    657. 

  657.         }
    658. 

  658.     }
    659. 

  659. 

  660.     // biblio basket remove process
    661. 

  661.     if (isset($_GET['rm_biblio'])) {
    662. 

  662.         if (!is_array($_GET['rm_biblio']) && is_scalar($_GET['rm_biblio'])) {
    663. 

  663.             $_tmp_biblio = $_GET['rm_biblio']; unset($_GET['rm_biblio']);
    664. 

  664.             $_GET['rm_biblio'][] = $_tmp_biblio;
    665. 

  665.         }
    666. 

  666.         foreach ($_GET['rm_biblio'] as $biblio) {
    667. 

  667.             $biblio = (integer)$biblio;
    668. 

  668.             unset($_SESSION['m_mark_biblio'][$biblio]);
    669. 

  669.         }
    670. 

  670.     }
    671. 

  671. 

  672.     // biblio basket item removal process
    673. 

  673.     if (isset($_POST['basketRemove']) && isset($_POST['basket']) && count($_POST['basket']) > 0) {
    674. 

  674.         foreach ($_POST['basket'] as $basket_item) {
    675. 

  675. 			unset($_SESSION['m_mark_biblio'][$basket_item]);
    676. 

  676. 		}
    677. 

  677.     }
    678. 

  678. 

  679.     // biblio basket clear process
    680. 

  680.     if (isset($_POST['clear_biblio'])) {
    681. 

  681.         $_SESSION['m_mark_biblio'] = array();
    682. 

  682.     }
    683. 

  683. 

  684.     // show all
    685. 

  685. 	echo '<div class="tagline">';
    686. 

  686.     echo '<div class="memberInfoHead">'.__('Member Detail').'</div>'."\n";
    687. 

  687.     echo '</div>';
    688. 

  688.     echo '<div class="collection-list"><div class="item_list">';
    689. 

  689.     echo showMemberDetail();
    690. 

  690.     echo '</div>';
    691. 

  691. 	echo '<div class="tagline">';
    692. 

  692.     echo '<div class="memberInfoHead">'.__('Your Current Loan').'</div>'."\n";
    693. 

  693.     echo '</div>';
    694. 

  694.     echo '<div class="collection-list"><div class="item_list">';
    695. 

  695.     echo showLoanList();
    696. 

  696.     echo '</div>';
    697. 

  697. 	echo '<div class="tagline">';
    698. 

  698.     echo '<div class="memberInfoHead">'.__('Your Loan History').'</div>'."\n";
    699. 

  699.     echo '</div>';
    700. 

  700.     echo showLoanHist();
    701. 

  701.     echo '</div>';
    702. 

  702. 	echo '<div class="tagline">';
    703. 

  703.     echo '<div class="memberInfoHead">'.__('Your Title Basket').'</div><a name="biblioBasket"></a>'."\n";
    704. 

  704.     echo showBasket();
    705. 

  705.     echo '</div>';
    706. 

  706.     // change password only form NATIVE authentication, not for others such as LDAP
    707. 

  707.     if ($sysconf['auth']['member']['method'] == 'native') {
    708. 

  708. 	echo '<div class="tagline">';
    709. 

  709.         echo '<div class="memberInfoHead">'.__('Change Password').'</div>'."\n";
    710. 

  710. 	    echo '</div>';
    711. 

  711.         echo changePassword();
    712. 

  712.     }
    713. 

  713.     ?>
    714. 

  714.     <script type="text/javascript">
    715. 

  715.     $(document).ready( function() {
    716. 

  716.         $('.clearAll').click(function(evt) {
    717. 

  717.             evt.preventDefault();
    718. 

  718.             var anchor = $(this);
    719. 

  719.             // get anchor href
    720. 

  720.             var aHREF = anchor.attr('href');
    721. 

  721.             var postData = anchor.attr('postdata');
    722. 

  722.             if (confirm('Clear your title(s) basket?')) {
    723. 

  723.                 // send ajax
    724. 

  724.                 $.ajax({ type: 'POST',
    725. 

  725.                   url: aHREF, cache: false, data: postData, async: false,
    726. 

  726.                   success: function(ajaxRespond) {
    727. 

  727.                     alert('Basket data cleared!');
    728. 

  728.                     window.location.href = aHREF;
    729. 

  729.                   }
    730. 

  730.                 });
    731. 

  731.             }
    732. 

  732.         });
    733. 

  733. 

  734. 		$('.clearOne').click(function(evt) {
    735. 

  735.             evt.preventDefault();
    736. 

  736. 			var basketForm = $('#memberBasketListForm');
    737. 

  737. 			var basketData = basketForm.serialize() + '&basketRemove=1';
    738. 

  738.             // get anchor href
    739. 

  739.             var basketAction = basketForm.attr('action');
    740. 

  740.             if (confirm('Remove selected title(s) from basket?')) {
    741. 

  741.                 // send ajax
    742. 

  742.                 $.ajax({ type: 'POST',
    743. 

  743.                   url: basketAction, cache: false, data: basketData, async: false,
    744. 

  744.                   success: function(ajaxRespond) {
    745. 

  745.                     alert('Selected basket data removed!');
    746. 

  746.                     window.location.href = 'index.php?p=member';
    747. 

  747.                   }
    748. 

  748.                 });
    749. 

  749.             }
    750. 

  750. 		});
    751. 

  751. 

  752.         $('.reserve').click(function(evt) {
    753. 

  753.             evt.preventDefault();
    754. 

  754.             var anchor = $(this);
    755. 

  755.             // get anchor href
    756. 

  756.             var aHREF = anchor.attr('href');
    757. 

  757.             // send ajax
    758. 

  758.             $.ajax({ type: 'POST',
    759. 

  759.               url: aHREF, cache: false, data: 'sendReserve=1', async: false,
    760. 

  760.                 success: function(ajaxRespond) { alert('Reservation e-mail sent'); window.location.href = aHREF; }
    761. 

  761.             });
    762. 

  762.         });
    763. 

  763.     }
    764. 

  764.     );
    765. 

  765.     </script>
    766. 

  766.     <?php
    767. 

  767. }
    768. 

  768.