PageRenderTime 43ms CodeModel.GetById 16ms RepoModel.GetById 1ms app.codeStats 0ms

/Quản lý website trường trung học phổ thông PHP/lc1/modules/users/admin/user_waiting.php

https://gitlab.com/phamngsinh/baitaplon_sinhvien
PHP | 222 lines | 178 code | 36 blank | 8 comment | 20 complexity | 3b9de9db2be43e7339e57ab1c61b4ecf MD5 | raw file
    

  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * @Project NUKEVIET CMS 3.0
    5. 

  5.  * @Author VINADES (contact@vinades.vn)
    6. 

  6.  * @Copyright (C) 2010 VINADES. All rights reserved
    7. 

  7.  * @Createdate 04/05/2010 
    8. 

  8.  */
    9. 

  9. 

  10. if ( ! defined( 'NV_IS_FILE_ADMIN' ) ) die( 'Stop!!!' );
    11. 

  11. 

  12. //Xoa thanh vien
    13. 

  13. if ( $nv_Request->isset_request( 'del', 'post' ) )
    14. 

  14. {
    15. 

  15.     $userid = $nv_Request->get_int( 'userid', 'post', 0 );
    16. 

  16.     
    17. 

  17.     $sql = "DELETE FROM `" . NV_USERS_GLOBALTABLE . "_reg` WHERE `userid`=" . $userid;
    18. 

  18.     $result = $db->sql_query( $sql );
    19. 

  19.     
    20. 

  20.     if ( ! $result )
    21. 

  21.     {
    22. 

  22.         die( "NO" );
    23. 

  23.     }
    24. 

  24.     
    25. 

  25.     die( "OK" );
    26. 

  26. }
    27. 

  27. 

  28. //Kich hoat thanh vien
    29. 

  29. if ( $nv_Request->isset_request( 'act', 'get' ) )
    30. 

  30. {
    31. 

  31.     $userid = $nv_Request->get_int( 'userid', 'get', 0 );
    32. 

  32.     
    33. 

  33.     if ( ! $userid )
    34. 

  34.     {
    35. 

  35.         Header( "Location: " . NV_BASE_ADMINURL . "index.php?" . NV_NAME_VARIABLE . "=" . $module_name );
    36. 

  36.         die();
    37. 

  37.     }
    38. 

  38.     
    39. 

  39.     $sql = "SELECT * FROM `" . NV_USERS_GLOBALTABLE . "_reg` WHERE `userid`=" . $userid;
    40. 

  40.     $result = $db->sql_query( $sql );
    41. 

  41.     $numrows = $db->sql_numrows( $result );
    42. 

  42.     if ( $numrows != 1 )
    43. 

  43.     {
    44. 

  44.         Header( "Location: " . NV_BASE_ADMINURL . "index.php?" . NV_NAME_VARIABLE . "=" . $module_name );
    45. 

  45.         die();
    46. 

  46.     }
    47. 

  47.     $row = $db->sql_fetchrow( $result );
    48. 

  48.     
    49. 

  49.     $sql = "INSERT INTO `" . NV_USERS_GLOBALTABLE . "` (
    50. 

  50.     `userid`, `username`, `md5username`, `password`, `email`, `full_name`, `gender`, `photo`, `birthday`, 
    51. 

  51.     `regdate`, `website`, `location`, `yim`, `telephone`, `fax`, `mobile`, `question`, 
    52. 

  52.     `answer`, `passlostkey`, `view_mail`, `remember`, `in_groups`, `active`, `checknum`, 
    53. 

  53.     `last_login`, `last_ip`, `last_agent`, `last_openid`
    54. 

  54.     ) VALUES (
    55. 

  55.     NULL, 
    56. 

  56.     " . $db->dbescape( $row['username'] ) . ", 
    57. 

  57.     " . $db->dbescape( md5( $row['username'] ) ) . ", 
    58. 

  58.     " . $db->dbescape( $row['password'] ) . ", 
    59. 

  59.     " . $db->dbescape( $row['email'] ) . ", 
    60. 

  60.     " . $db->dbescape( $row['full_name'] ) . ", 
    61. 

  61.     '', '', 0, " . $row['regdate'] . ", '', '', '', '', '', '', 
    62. 

  62.     " . $db->dbescape( $row['question'] ) . ", 
    63. 

  63.     " . $db->dbescape( $row['answer'] ) . ", 
    64. 

  64.     '', 0, 0, '', 1, '', 0, '', '', '')";
    65. 

  65.     
    66. 

  66.     $userid = $db->sql_query_insert_id( $sql );
    67. 

  67.     
    68. 

  68.     if ( $userid )
    69. 

  69.     {
    70. 

  70.         $db->sql_query( "DELETE FROM `" . NV_USERS_GLOBALTABLE . "_reg` WHERE `userid`=" . $row['userid'] );
    71. 

  71.         
    72. 

  72.         $full_name = ( ! empty( $row['full_name'] ) ) ? $row['full_name'] : $row['username'];
    73. 

  73.         $subject = $lang_module['adduser_register'];
    74. 

  74.         $message = sprintf( $lang_module['adduser_register_info'], $full_name, $global_config['site_name'], NV_MY_DOMAIN . NV_BASE_SITEURL . "index.php?" . NV_LANG_VARIABLE . "=" . NV_LANG_DATA . "&" . NV_NAME_VARIABLE . "=" . $module_name, $row['username'] );
    75. 

  75.         $message .= "<br /><br />------------------------------------------------<br /><br />";
    76. 

  76.         $message .= nv_EncString( $message );
    77. 

  77.         @nv_sendmail( $global_config['site_email'], $row['email'], $subject, $message );
    78. 

  78.     }
    79. 

  79.     
    80. 

  80.     Header( "Location: " . NV_BASE_ADMINURL . "index.php?" . NV_NAME_VARIABLE . "=" . $module_name . "&" . NV_OP_VARIABLE . "=user_waiting" );
    81. 

  81.     die();
    82. 

  82. }
    83. 

  83. 

  84. $page_title = $table_caption = $lang_module['member_wating'];
    85. 

  85. 

  86. $sql = "FROM `" . NV_USERS_GLOBALTABLE . "_reg`";
    87. 

  87. $base_url = NV_BASE_ADMINURL . "index.php?" . NV_NAME_VARIABLE . "=" . $module_name . "&amp;" . NV_OP_VARIABLE . "=user_waiting";
    88. 

  88. 

  89. $methods = array(  //
    90. 

  90.     'userid' => array( 
    91. 

  91.     'key' => 'userid', 'value' => $lang_module['search_id'], 'selected' => '' 
    92. 

  92. ), //
    93. 

  93. 'username' => array( 
    94. 

  94.     'key' => 'username', 'value' => $lang_module['search_account'], 'selected' => '' 
    95. 

  95. ), //
    96. 

  96. 'full_name' => array( 
    97. 

  97.     'key' => 'full_name', 'value' => $lang_module['search_name'], 'selected' => '' 
    98. 

  98. ), //
    99. 

  99. 'email' => array( 
    100. 

  100.     'key' => 'email', 'value' => $lang_module['search_mail'], 'selected' => '' 
    101. 

  101. )  //
    102. 

  102. );
    103. 

  103. $method = $nv_Request->isset_request( 'method', 'post' ) ? $nv_Request->get_string( 'method', 'post', '' ) : ( $nv_Request->isset_request( 'method', 'get' ) ? urldecode( $nv_Request->get_string( 'method', 'get', '' ) ) : '' );
    104. 

  104. $methodvalue = $nv_Request->isset_request( 'value', 'post' ) ? $nv_Request->get_string( 'value', 'post' ) : ( $nv_Request->isset_request( 'value', 'get' ) ? urldecode( $nv_Request->get_string( 'value', 'get', '' ) ) : '' );
    105. 

  105. 

  106. $orders = array( 
    107. 

  107.     'userid', 'username', 'full_name', 'email', 'regdate' 
    108. 

  108. );
    109. 

  109. $orderby = $nv_Request->get_string( 'sortby', 'get', '' );
    110. 

  110. $ordertype = $nv_Request->get_string( 'sorttype', 'get', '' );
    111. 

  111. if ( $ordertype != "ASC" ) $ordertype = "DESC";
    112. 

  112. 

  113. if ( ! empty( $method ) and isset( $methods[$method] ) and ! empty( $methodvalue ) )
    114. 

  114. {
    115. 

  115.     $sql .= " WHERE `" . $method . "` LIKE '%" . $db->dblikeescape( $methodvalue ) . "%'";
    116. 

  116.     $base_url .= "&amp;method=" . urlencode( $method ) . "&amp;value=" . urlencode( $methodvalue );
    117. 

  117.     $methods[$method]['selected'] = " selected=\"selected\"";
    118. 

  118.     $table_caption = $lang_module['search_page_title'];
    119. 

  119. }
    120. 

  120. 

  121. if ( ! empty( $orderby ) and in_array( $orderby, $orders ) )
    122. 

  122. {
    123. 

  123.     $sql .= " ORDER BY `" . $orderby . "` " . $ordertype;
    124. 

  124.     $base_url .= "&amp;sortby=" . $orderby . "&amp;sorttype=" . $ordertype;
    125. 

  125. }
    126. 

  126. 

  127. $page = $nv_Request->get_int( 'page', 'get', 0 );
    128. 

  128. $per_page = 30;
    129. 

  129. 

  130. $sql2 = "SELECT SQL_CALC_FOUND_ROWS * " . $sql . " LIMIT " . $page . ", " . $per_page;
    131. 

  131. $query2 = $db->sql_query( $sql2 );
    132. 

  132. 

  133. $result_all = $db->sql_query( "SELECT FOUND_ROWS()" );
    134. 

  134. list( $numf ) = $db->sql_fetchrow( $result_all );
    135. 

  135. $all_page = ( $numf ) ? $numf : 1;
    136. 

  136. 

  137. $users_list = array();
    138. 

  138. while ( $row = $db->sql_fetchrow( $query2 ) )
    139. 

  139. {
    140. 

  140.     $users_list[$row['userid']] = array(  //
    141. 

  141.         'userid' => ( int )$row['userid'], //
    142. 

  142. 'username' => ( string )$row['username'], //
    143. 

  143. 'full_name' => ( string )$row['full_name'], //
    144. 

  144. 'email' => ( string )$row['email'], //
    145. 

  145. 'regdate' => date( "d/m/Y H:i", $row['regdate'] )  //
    146. 

  146.     );
    147. 

  147. }
    148. 

  148. 

  149. $generate_page = nv_generate_page( $base_url, $all_page, $per_page, $page );
    150. 

  150. 

  151. $head_tds = array();
    152. 

  152. $head_tds['userid']['title'] = $lang_module['userid'];
    153. 

  153. $head_tds['userid']['href'] = NV_BASE_ADMINURL . "index.php?" . NV_NAME_VARIABLE . "=" . $module_name . "&amp;" . NV_OP_VARIABLE . "=user_waiting&amp;sortby=userid&amp;sorttype=ASC";
    154. 

  154. $head_tds['username']['title'] = $lang_module['account'];
    155. 

  155. $head_tds['username']['href'] = NV_BASE_ADMINURL . "index.php?" . NV_NAME_VARIABLE . "=" . $module_name . "&amp;" . NV_OP_VARIABLE . "=user_waiting&amp;sortby=username&amp;sorttype=ASC";
    156. 

  156. $head_tds['full_name']['title'] = $lang_module['name'];
    157. 

  157. $head_tds['full_name']['href'] = NV_BASE_ADMINURL . "index.php?" . NV_NAME_VARIABLE . "=" . $module_name . "&amp;" . NV_OP_VARIABLE . "=user_waiting&amp;sortby=full_name&amp;sorttype=ASC";
    158. 

  158. $head_tds['email']['title'] = $lang_module['email'];
    159. 

  159. $head_tds['email']['href'] = NV_BASE_ADMINURL . "index.php?" . NV_NAME_VARIABLE . "=" . $module_name . "&amp;" . NV_OP_VARIABLE . "=user_waiting&amp;sortby=email&amp;sorttype=ASC";
    160. 

  160. $head_tds['regdate']['title'] = $lang_module['register_date'];
    161. 

  161. $head_tds['regdate']['href'] = NV_BASE_ADMINURL . "index.php?" . NV_NAME_VARIABLE . "=" . $module_name . "&amp;" . NV_OP_VARIABLE . "=user_waiting&amp;sortby=regdate&amp;sorttype=ASC";
    162. 

  162. 

  163. foreach ( $orders as $order )
    164. 

  164. {
    165. 

  165.     if ( $orderby == $order and $ordertype == 'ASC' )
    166. 

  166.     {
    167. 

  167.         $head_tds[$order]['href'] = NV_BASE_ADMINURL . "index.php?" . NV_NAME_VARIABLE . "=" . $module_name . "&amp;" . NV_OP_VARIABLE . "=user_waiting&amp;sortby=" . $order . "&amp;sorttype=DESC";
    168. 

  168.         $head_tds[$order]['title'] .= " &darr;";
    169. 

  169.     }
    170. 

  170.     elseif ( $orderby == $order and $ordertype == 'DESC' )
    171. 

  171.     {
    172. 

  172.         $head_tds[$order]['href'] = NV_BASE_ADMINURL . "index.php?" . NV_NAME_VARIABLE . "=" . $module_name . "&amp;" . NV_OP_VARIABLE . "=user_waiting&amp;sortby=" . $order . "&amp;sorttype=ASC";
    173. 

  173.         $head_tds[$order]['title'] .= " &uarr;";
    174. 

  174.     }
    175. 

  175. }
    176. 

  176. 

  177. $xtpl = new XTemplate( "user_waitting.tpl", NV_ROOTDIR . "/themes/" . $global_config['module_theme'] . "/modules/" . $module_file );
    178. 

  178. $xtpl->assign( 'LANG', $lang_module );
    179. 

  179. $xtpl->assign( 'FORM_ACTION', NV_BASE_ADMINURL . "index.php?" . NV_NAME_VARIABLE . "=" . $module_name . "&amp;" . NV_OP_VARIABLE . "=user_waiting" );
    180. 

  180. $xtpl->assign( 'SORTURL', NV_BASE_ADMINURL . "index.php?" . NV_NAME_VARIABLE . "=" . $module_name );
    181. 

  181. $xtpl->assign( 'SEARCH_VALUE', $methodvalue );
    182. 

  182. $xtpl->assign( 'TABLE_CAPTION', $table_caption );
    183. 

  183. 

  184. if ( defined( 'NV_IS_USER_FORUM' ) )
    185. 

  185. {
    186. 

  186.     $xtpl->parse( 'main.is_forum' );
    187. 

  187. }
    188. 

  188. 

  189. foreach ( $methods as $m )
    190. 

  190. {
    191. 

  191.     $xtpl->assign( 'METHODS', $m );
    192. 

  192.     $xtpl->parse( 'main.method' );
    193. 

  193. }
    194. 

  194. 

  195. foreach ( $head_tds as $head_td )
    196. 

  196. {
    197. 

  197.     $xtpl->assign( 'HEAD_TD', $head_td );
    198. 

  198.     $xtpl->parse( 'main.head_td' );
    199. 

  199. }
    200. 

  200. 

  201. foreach ( $users_list as $u )
    202. 

  202. {
    203. 

  203.     $xtpl->assign( 'CONTENT_TD', $u );
    204. 

  204.     $xtpl->assign( 'ACTIVATE_URL', NV_BASE_ADMINURL . "index.php?" . NV_NAME_VARIABLE . "=" . $module_name . "&amp;" . NV_OP_VARIABLE . "=user_waiting&amp;act=1&amp;userid=" . $u['userid'] );
    205. 

  205.     $xtpl->assign( 'EDIT_URL', NV_BASE_ADMINURL . "index.php?" . NV_NAME_VARIABLE . "=" . $module_name . "&amp;" . NV_OP_VARIABLE . "=user_waiting&amp;del&amp;userid=" . $u['userid'] );
    206. 

  206.     $xtpl->parse( 'main.xusers' );
    207. 

  207. }
    208. 

  208. 

  209. if ( ! empty( $generate_page ) )
    210. 

  210. {
    211. 

  211.     $xtpl->assign( 'GENERATE_PAGE', $generate_page );
    212. 

  212.     $xtpl->parse( 'main.generate_page' );
    213. 

  213. }
    214. 

  214. 

  215. $xtpl->parse( 'main' );
    216. 

  216. $contents = $xtpl->text( 'main' );
    217. 

  217. 

  218. include ( NV_ROOTDIR . "/includes/header.php" );
    219. 

  219. echo nv_admin_theme( $contents );
    220. 

  220. include ( NV_ROOTDIR . "/includes/footer.php" );
    221. 

  221. 

  222. ?>
    223.