|
Server : Apache/2.4.62 System : FreeBSD fbsdweb2.web.rcn.net 14.1-RELEASE FreeBSD 14.1-RELEASE releng/14.1-n267679-10e31f0946d8 GENERIC amd64 User : www ( 80) PHP Version : 8.3.8 Disable Function : NONE Directory : /domains/abtechsci/mmc15/HDWRegistrationAndLogin/admin/ |
Upload File : |
<?PHP
$link = mysql_connect(HDW_HOST, HDW_USERNAME, HDW_PASSWORD) or die("Could not connect to dabase. Please check DatabaseName, username and password and if the database server is up.");
mysql_select_db(HDW_DATABASE) or die("Could not select database. Please check the DatabaseName and be sure to link the database to the specified username.");
define ('ADMIN_TABLE',$_GET["table"]);
define ('TABLE_KEY','hdw_id');
function rquote_field ($str)
{
$str = str_replace("\"", """, $str);
if (get_magic_quotes_gpc () == 1)
return stripslashes ($str);
else
return $str;
}
function getPageName($params = false)
{
return 'index.php?table='.$_GET["table"];
}
if (isset($_POST["accion"]) && $_POST["accion"]=='deleteitem')
{
$query = "delete from ".ADMIN_TABLE." where ".TABLE_KEY." = ".$_POST["valor1"];
mysql_query($query) or die("Query failed. Please check database connection (DatabaseName,username and password). Remember to link the user to the database.");
}
$onechecked = false;
$top = -1;
$fields = array();
$var_SearchQuery = '';
$rs = mysql_query('show fields from '.ADMIN_TABLE);
if (!$rs)
{
echo '<script type="text/javascript">alert("This table appears to be empty, please submit some data first from your form.");document.location="index.php";</script>';
exit;
}
while ($tmp = mysql_fetch_array($rs))
{
$fields[] = $tmp["Field"];
$var_SearchQuery .= " OR `".$tmp["Field"]. "` like '%^%' ";
$top++;
$fields_table[$top]["field"] = $tmp["Field"];
$fields_table[$top]["name"] = $tmp["Field"];
$fields_table[$top]["ischecked"] = $_POST["hdwchecked_".$tmp["Field"]] || $_COOKIE["hdwchecked_".$tmp["Field"]];
$onechecked = $onechecked || $fields_table[$top]["ischecked"];
}
if (!$onechecked)
for ($i=0;$i<10;$i++)
if (isset($fields_table[$i]["ischecked"]))
$fields_table[$i]["ischecked"] = 1;
?>
<fieldset>
<legend><b>Select fields to show</b></legend>
<form style="margin:0px;padding:0px;" action="<?php echo getPageName(true); ?>" method="post">
<input type="hidden" name="updatefields" value="1">
<?php foreach ($fields_table as $item) { ?>
<input type="checkbox" name="hdwchecked_<?php echo rquote_field($item["field"]); ?>" value="1" <?php if ($item["ischecked"]) echo 'checked'; ?>/> <?php echo $item["field"]; ?>
<?php } ?>
<br />
<input type="submit" name="subbtn" value="Show">
</form>
</fieldset>
<?php
//-----------------------------------------------------------
// COSAS A CONFIGURAR
$Default_OrderField = "hdw_ServerTime";
$Default_Table = ADMIN_TABLE;
$Default_CountField = TABLE_KEY;
$Default_LinkPage = "javascript:viewUsers(%);"; // "%" indica donde se remplaza por $Default_CountField
$Images_Folder = "";
$Search_Separator = "WHERE "; // o poner "AND" si $Default_Table ya tiene WHERE
$var_SearchQuery = "(1=0 ".$var_SearchQuery.")";
//-----------------------------------------------------------
// Resto del contenido de la pagina
$var_FullIncludeName = getPageName(true);
// Redirect si no se ha incluido correctamente...
$MAX_RECORDS = 30; // M�xima cantidad de records en cada sublistado
$COUNT_SUBLIST = 6; // M�xima cantidad de links a sublistados
if (isset($_POST["fldStartRecord"])) { // Donde debe comenzar este sublistado
$var_StartRecord = $_POST["fldStartRecord"];
if ($var_StartRecord == "") { $var_StartRecord = 1; }
} else {
$var_StartRecord = 1;
}
if (isset($_POST["fldOrderBy"])) { // Por que campo se ordena
$var_OrderBy = $_POST["fldOrderBy"];
if ($var_OrderBy == "") { $var_OrderBy = $Default_OrderField; }
} else {
$var_OrderBy = $Default_OrderField;
}
if (isset($_POST["fldSortOrder"])) { // Si es ascendente o descendente
$var_SortOrder = $_POST["fldSortOrder"];
if ($var_SortOrder == "") { $var_SortOrder = "DESC"; }
} else {
$var_SortOrder = "DESC";
}
settype($var_StarRecord, "integer");
// La query que toma el sublistado
$query = "SELECT * FROM ".$Default_Table;
$cond = "";
// Algunas inicializaciones... Este c�digo lo escrib� inicialmente
// en ASP por eso encontrar� cierta semejanza en la forma de
// programar
if (!isset($_POST["show"])) { $show = ""; } else { $show = $_POST["show"]; }
if (!isset($_POST["fldField"])) { $fldField = "";} else { $fldField = $_POST["fldField"];}
if (!isset($_POST["fldValue"])) { $fldValue = "";} else { $fldValue = $_POST["fldValue"];}
// La siguiente linea solo si estan activadas las "magic quotes de PHP"
// ... si recuerdo bien el default es tenerlas instaladas.
//if ($magic)
if (true)
{
$fldField = str_replace("\'", "'", $fldField);
$fldValue = str_replace("\'", "'", $fldValue);
}
if ($show == "search" && $fldField != "") {
$value = str_replace("'", "''", $fldValue);
$cond = str_replace("^", $value, $fldField);
$query = $query . " ".$Search_Separator." " . $cond;
}
// A�adir el orden por el que se va a listar a la query...
$var_NewOrderBy = str_replace(",", " $var_SortOrder, ", $var_OrderBy);
$query = $query . " ORDER BY `".$var_NewOrderBy."` ".$var_SortOrder;
$query = $query . " LIMIT 0,".($MAX_RECORDS+$var_StartRecord);
//echo $query;
$rs = mysql_query($query);
$rows = array();
while ($tmp = mysql_fetch_array($rs))
$rows[] = $tmp;
$notempty = (count($rows) > 0);
//if ($notempty) {
// for ($i=0; ($i <= $var_StartRecord-1);$i++)
// $row = $result->db_fetch_array();
//}
?>
<?PHP
// Esta parte es para generar los enlaces a sublistados que aparecen
// en la parte superior de la tabla...
$newquery = "SELECT Count(".TABLE_KEY.") as count2 FROM ".$Default_Table;
if ($show == "search" && $fldField != "") {
$newquery = $newquery . " ".$Search_Separator." " . $cond;
}
//$newquery = str_replace("\'", "'", $newquery);
$rs = mysql_query($newquery);
$rowsx = array();
while ($tmp = mysql_fetch_array($rs))
$rowsx[] = $tmp;
$total = $rowsx[0]["count2"];
$var_countUsers = $total;
$var_startList = 1;
settype ($var_StartRecord, "integer");
settype ($var_StartList, "integer");
settype ($MAX_RECORDS, "integer");
settype ($COUNT_SUBLIST, "integer");
while ($var_StartRecord > $var_StartList+ ($MAX_RECORDS * $COUNT_SUBLIST)) {
$var_StartList = $var_StartList + ($MAX_RECORDS * $COUNT_SUBLIST);
}
echo ("<table width=90% ><tr><td align=right>");
if ($var_StartList > 0) { echo("<a href=\"javascript:document.FormBob0.submit()\" class=\"DataLink\"><<</a> "); }
for($i = 1; $i <= $COUNT_SUBLIST; $i++) {
$var_tmpMinRec = $var_StartList + ($MAX_RECORDS * ($i - 1))+1;
$var_tmpMaxRec = $var_StartList + ($MAX_RECORDS * $i - 1)+1;
if ($var_tmpMinRec <= $var_countUsers) {
if ($i != 1) { echo(" | "); }
if ($var_tmpMaxRec > $var_countUsers) { $var_tmpMaxRec = $var_countUsers; }
if ($var_StartRecord == $var_tmpMinRec) {
echo ("<span class=\"DataText\">".$var_tmpMinRec."-".$var_tmpMaxRec."</span>");
} else {
echo ("<a href=\"javascript:document.FormBob".$i.".submit()\" class=\"DataLink\">");
echo ($var_tmpMinRec."-".$var_tmpMaxRec . "</a>");
}
}
}
if ($var_tmpMaxRec < $var_countUsers) {
echo (" <a href=\"javascript:document.FormBob".($COUNT_SUBLIST+1).".submit()\" class=\"DataLink\">>></a>");
}
echo ("</td></tr></table>");
?>
<?PHP
// Este if que comienza es para chequear si el listado es no vacio...
if ($notempty) {
$var_WasNotEmpty = true;
?>
<table width="90%" border="0" cellpadding="1" cellspacing="2">
<tr class="tabletitles"> <!-- Fila del nombre los campos de la tabla -->
<?PHP
foreach ($fields_table as $item)
if ($item["ischecked"])
{
echo "<td align=center style=\"background-color:#000066;\" nowrap>";
echo '<a style="font-weight:bold;color:#aaaa00;" href="javascript:document.FormSort'.$item["field"].'.submit();">'.$item["name"].'</a> ';
if ($var_OrderBy == $item["field"]) { if ($var_SortOrder == "ASC") { echo("<img align=\"absolutemiddle\" src=\"".$Images_Folder."triangulo_d.gif\">"); } else { echo("<img align=\"absolutemiddle\" src=\"".$Images_Folder."triangulo_u.gif\">"); } }
echo "</td>";
}
echo '<td width="1%" style="background-color:#000066"> </td>';
echo '<td width="1%" style="background-color:#000066"> </td>';
?>
</tr>
<?PHP
// Ahora listar la tabla...
$i = 0;
do {
// if ($i % 2 == 0) { // Para que las filas salgan con colores inversos
echo("<tr>");
// } else {
// echo("<tr bgcolor=\"#dddddd\">");
// }
$top = 0;
foreach ($fields_table as $item)
if ($item["ischecked"])
{
$top++;
echo '<td style="border-left:1px dotted #cccccc;border-bottom:1px dotted #cccccc;">';
if (strlen($rows[$var_StartRecord+$i-1][$item["field"]]) > 50)
echo substr($rows[$var_StartRecord+$i-1][$item["field"]],0,47)."...";
else
echo $rows[$var_StartRecord+$i-1][$item["field"]];
echo '</td>';
}
echo '<td width="1%" style="border-left:1px dotted #cccccc;border-right:1px dotted #cccccc;border-bottom:1px dotted #cccccc;"><a style="font-size:9px;" href="index.php?action=edit&table='.ADMIN_TABLE.'&id='.$rows[$var_StartRecord+$i-1][TABLE_KEY].'">[edit]</a></td>';
echo '<td width="1%" style="border-left:1px dotted #cccccc;border-bottom:1px dotted #cccccc;"><a style="font-size:9px;" href="javascript:delete_(\''.$rows[$var_StartRecord+$i-1][TABLE_KEY].'\');">[delete]</a></td>';
echo "</tr>";
$i++;
} while ($i < $MAX_RECORDS && ($var_StartRecord+$i-1)<count($rows));
?>
</table>
<table width="90%">
<?PHP
// Esta tabla es para colocar los "Atr�s" y "Siguiente" al final de la tabla de records
if ($var_StartRecord+$i<=count($rows)) {
if ($cond != "") { $cond = $cond . ""; } ?>
<tr>
<?PHP if ($var_StartRecord != 1) { ?>
<td width="1">
<a href="javascript:previous();" onMouseOut="MM_swapImgRestore()" onMouseOver="MM_swapImage('_Image3','','<?PHP echo $Images_Folder; ?>btnPrevious_f2.gif',1)"><img src="<?PHP echo $Images_Folder; ?>btnPrevious.gif" border="0" name="_Image3"></a>
</td>
<td width="100%">
<a href="javascript:previous();" onMouseOut="MM_swapImgRestore()" onMouseOver="MM_swapImage('_Image3','','<?PHP echo $Images_Folder; ?>btnPrevious_f2.gif',1)" class="MainLink">Atrás</a>
</td>
<? } ?>
<td align="right" width="100%">
<a href="javascript:next();" onMouseOut="MM_swapImgRestore()" onMouseOver="MM_swapImage('_Image1','','<?PHP echo $Images_Folder; ?>btnNext_f2.gif',1)" class="MainLink">Siguiente</a>
</td>
<td width="1">
<a href="javascript:next();" onMouseOut="MM_swapImgRestore()" onMouseOver="MM_swapImage('_Image1','','<?PHP echo $Images_Folder; ?>btnNext_f2.gif',1)"><img src="<?PHP echo $Images_Folder; ?>btnNext.gif" border="0" name="_Image1"></a>
</td>
</tr>
<?PHP } else { ?>
<tr>
<td width="1">
<?PHP if ($var_StartRecord != 1) { ?>
<a href="javascript:previous();" onMouseOut="MM_swapImgRestore()" onMouseOver="MM_swapImage('_Image3','','<?PHP echo $Images_Folder; ?>btnPrevious_f2.gif',1)"><img src="<?PHP echo $Images_Folder; ?>btnPrevious.gif" border="0" name="_Image3"></a>
</td>
<td width="100%">
<a href="javascript:previous();" onMouseOut="MM_swapImgRestore()" onMouseOver="MM_swapImage('_Image3','','<?PHP echo $Images_Folder; ?>btnPrevious_f2.gif',1)" class="MainLink">Atrás</a>
<?PHP } ?>
</td>
</tr>
<?PHP } ?>
</table>
<!-- Forma para el submit del boton "Siguiente" y "Atr�s"-->
<form name="FormNext" action=<? echo($var_FullIncludeName); ?> method="POST">
<input type="hidden" name="fldOrderBy" value="<? echo($var_OrderBy); ?>">
<input type="hidden" name="fldSortOrder" value="<? echo($var_SortOrder); ?>">
<input type="hidden" name="fldStartRecord" value="<? echo($var_StartRecord+$MAX_RECORDS); ?>">
<input type="hidden" name="fldField" value="<? echo ($cond); ?>">
<input type="hidden" name="show" value="search">
</form>
<form name="FormPrevious" action=<? echo($var_FullIncludeName); ?> method="POST">
<input type="hidden" name="fldOrderBy" value="<? echo($var_OrderBy); ?>">
<input type="hidden" name="fldSortOrder" value="<? echo($var_SortOrder); ?>">
<input type="hidden" name="fldStartRecord" value="<? echo($var_StartRecord-$MAX_RECORDS); ?>">
<input type="hidden" name="fldField" value="<? echo rquote_field($cond); ?>">
<input type="hidden" name="show" value="search">
</form>
<script language="JavaScript">
// script de los botones "Siguiente" y "Atr�s"...
function next() {
document.FormNext.submit();
}
function previous() {
document.FormPrevious.submit();
}
</script>
<?PHP
foreach ($fields_table as $item)
{
if ($var_OrderBy == $item["field"]) {
if ($var_SortOrder == "ASC") { $var_Temp = "DESC"; } else { $var_Temp = "ASC"; }
} else {
$var_Temp = "ASC";
}
?>
<form name="FormSort<? echo $item["field"]; ?>" action=<? echo($var_FullIncludeName); ?> method="POST">
<input type="hidden" name="fldOrderBy" value="<? echo $item["field"]; ?>">
<input type="hidden" name="fldSortOrder" value="<? echo($var_Temp); ?>">
<input type="hidden" name="fldStartRecord" value="1">
<input type="hidden" name="fldField" value="<? echo rquote_field($cond); ?>">
<input type="hidden" name="show" value="search">
</form>
<?PHP
} // del foreach
?>
<?PHP for ($i = 0; $i <= ($COUNT_SUBLIST+1); $i++) { ?>
<form name="FormBob<?PHP echo($i);?>" method="Post" action=<? echo($var_FullIncludeName); ?>>
<input type="hidden" name="fldOrderBy" value="<?PHP echo($var_OrderBy);?>"><input type="hidden" name="fldSortOrder" value="<?PHP echo($var_SortOrder);?>">
<?PHP if ($i != 0) { ?>
<input type="hidden" name="fldStartRecord" value="<?PHP echo(1 + $var_StartList + ($MAX_RECORDS * ($i - 1)));?>">
<?PHP } else { ?>
<input type="hidden" name="fldStartRecord" value="<?PHP echo(1 + $var_StartList - ($MAX_RECORDS * $COUNT_SUBLIST));?>">
<?PHP } ?>
<input type="hidden" name="fldField" value="<?PHP echo rquote_field($cond);?>">
<input type="hidden" name="show" value="search">
</form>
<?PHP } ?>
<?PHP
} else { // else del If de verificar que existiera al menos un record
echo ("<span class=confirm>No records related.</span></br><br>");
if (!($show == "search" && $fldField != "")) {
$var_WasNotEmpty = false;
} else {
$var_WasNotEmpty = true;
}
}
if ($var_WasNotEmpty)
{
?>
<table width="100%" border="0" bgcolor="#FFFFFF">
<tr align="left">
<td>
<form name="formSearch" method="post" action="<?PHP echo($var_FullIncludeName); ?>">
<span class="TableTitle1">Search for:</span>
<input type="hidden" name="fldField" value="(<?PHP echo($var_SearchQuery); ?>)">
<input type="hidden" name="show" value="search">
<br>
<input type="text" name="fldValue" class="forminput" value="<?PHP if (isset($_POST["fldValue"])) echo rquote_field($_POST["fldValue"]); ?>">
<input type="submit" name="Search" value="Buscar" class="forminput">
</form>
</td>
</tr>
</table>
<?PHP
}
?>
<script language="JavaScript">
function delete_ (id)
{
if (confirm ('Are you sure that you want to delete this row?'))
{
document.changes.accion.value = "deleteitem";
document.changes.valor1.value = id;
document.changes.submit();
}
}
</script>
<form name=changes action="<?PHP echo getPageName(true); ?>" method=post>
<input type="hidden" name="accion" value="">
<input type="hidden" name="valor1" value="">
<input type="hidden" name="valor2" value="">
<input type="hidden" name="valor3" value="">
</form>
<?php
mysql_close($link);
?>