Viewing file:  core.php (24.54 KB) -rw-r--r--
Select action/file-type:
 (+) |  (+) |  (+) | Code (+) | Session (+) |  (+) | SDB (+) |  (+) |  (+) |  (+) |  (+) |  (+) |
<?php
//------------------------------------------------------------------------------------------------
//
// Admin Framework
// Boilerplate PHP Administration Panel
//
//------------------------------------------------------------------------------------------------
$db_host = "localhost";
$db_database = "website";
$db_username = "root";
$db_password = "jsb@75494";
date_default_timezone_set('America/Chicago');
session_start();
////////////////////////////////////////////
// GENERAL FUNCTIONS
////////////////////////////////////////////
// db_connect function initiates a connection to the mysql database using the Global variables defined above
function db_connect()
{
global $db_host, $db_database, $db_username, $db_password;
$link = mysql_connect($db_host, $db_username, $db_password) or die(mysql_error());
mysql_select_db($db_database) or die(mysql_error());
return $link;
}
////////////////////////////////////////////
// USER FUNCTIONS
////////////////////////////////////////////
// user_login
function user_login($user, $password)
{
db_connect();
$success = "0";
$passcode = hash('sha256', $password);
$sql_statement = "SELECT * FROM users WHERE user = '".$user."' AND password = '".$passcode."'";
$result = mysql_query($sql_statement);
$authmatch = mysql_num_rows($result);
$row = mysql_fetch_array($result);
if($authmatch == 1)
{
$_SESSION['active_user'] = $row['name'];
$success = "1";
}
return $success;
}
// user_logout
function user_logout()
{
$_SESSION['active_user'] = "";
session_start();
session_destroy();
header ("location: login.php");
}
////////////////////////////////////////////
// POST FUNCTIONS
////////////////////////////////////////////
// status_read
function status_read() {
db_connect();
$l = 0;
$sql_statement = "SELECT * FROM status";
$query = mysql_query($sql_statement);
$row = mysql_fetch_assoc($query);
if($row['a1'] == 1) {
$a = "<span style='color: green;'>Operational</span>";
$l = $l + 1;
$aON = 1;
} else {
$a = "<span style='color: red;'>Problems!</span>";
$l = $l - 1;
$aON = 0;
}
if($row['b1'] == 1) {
$b = "<span style='color: green;'>Operational</span>";
$l = $l + 1;
$bON = 1;
} else {
$b = "<span style='color: red;'>Problems!</span>";
$l = $l - 1;
$bON = 0;
}
if($row['c1'] == 1) {
$c = "<span style='color: green;'>Operational</span>";
$l = $l + 1;
$cON = 1;
} else {
$c = "<span style='color: red;'>Problems!</span>";
$l = $l - 1;
$cON = 0;
}
if($row['d1'] == 1) {
$d = "<span style='color: green;'>Operational</span>";
$l = $l + 1;
$dON = 1;
} else {
$d = "<span style='color: red;'>Problems!</span>";
$l = $l - 1;
$dON = 0;
}
if($l == 4) {
$light = "green";
} else {
$light = "red";
}
if($row['page'] == 0) {
$row['status'] = "System status is not avalable at this time!";
$row['msg'] = "System status is unavalable at this time!";
$a = "<span style='color: gray;'>Unavailable</span>";
$b = "<span style='color: gray;'>Unavailable</span>";
$c = "<span style='color: gray;'>Unavailable</span>";
$d = "<span style='color: gray;'>Unavailable</span>";
$aON = NULL;
$bON = NULL;
$cON = NULL;
$dON = NULL;
$light = "gray";
}
$status = array("light" => $light, "main" => $row['status'], "a" => $row['a'], "a-on" => $aON, "a-stat" => $a, "b" => $row['b'], "b-on" => $bON, "b-stat" => $b, "c" => $row['c'], "c-on" => $cON, "c-stat" => $c, "d" => $row['d'], "d-on" => $dON, "d-stat" => $d, "msg" => $row['msg'], "page" => $row['page']);
//die(var_dump($status));
return $status;
}
// post_read
function post_read()
{
db_connect();
$post_block = "";
$file_icon = '<span class="glyphicon glyphicon-file"></span> ';
$sql_statement = "SELECT * FROM posts ORDER BY id DESC";
$query = mysql_query($sql_statement);
while ($row = mysql_fetch_array($query))
{
$post_block .= '<div class="col-sm-3">
<div class="post-block">';
if($row['filename'])
{
$post_block .='<p class="lead">'.$file_icon.$row['title'].'</p>';
}
else
{
if(strlen($row['title']) >= 10)
{
$post_block.='<p class="lead">'.substr($row['title'],0,11).'...</p>';
}
else
{
$post_block.='<p class="lead">'.substr($row['title'],0,11).'</p>';
}
}
$post_block .='<p class="post-date">'.date("M-d-Y",strtotime($row['postdate'])).'</p>
<div class="post-control-block">
<a class="btn btn-default btn-sm" href="#" data-toggle="modal" data-target="#editPostModal'.$row['id'].'"><span class="glyphicon glyphicon-pencil"></span> EDIT</a> <a class="btn btn-danger btn-sm" href="#" data-toggle="modal" data-target="#delPostModal'.$row['id'].'"><span class="glyphicon glyphicon-trash"></span> DELETE</a>
</div>
</div>
</div>';
}
return $post_block;
}
function post_read_new()
{
db_connect();
$file_icon = '<span class="glyphicon glyphicon-file"></span> ';
$post_block = '<table>';
$post_block .= '<tr><th>Date</th><th>Title</th><th>Edit</th><th>Delete</th></tr>';
$sql_statement = "SELECT * FROM posts ORDER BY id DESC";
$query = mysql_query($sql_statement);
while ($row = mysql_fetch_array($query))
{
$post_block .= '<tr><td align="left">'.date("M-d-Y",strtotime($row['postdate'])).'</td>';
if($row['filename'])
{
$post_block .='<td align="left">'.$file_icon.$row['title'].'</td>';
}
else
{
$post_block.='<td align="left">'.$row['title'].'</td>';
}
$post_block .='<td align="left"><a class="btn btn-default btn-sm" href="#" data-toggle="modal" data-target="#editPostModal'.$row['id'].'"><span class="glyphicon glyphicon-pencil"></span> EDIT</a></td><td align="left"><a class="btn btn-danger btn-sm" href="#" data-toggle="modal" data-target="#delPostModal'.$row['id'].'"><span class="glyphicon glyphicon-trash"></span> DELETE</a></td>
</tr>';
}
$post_block .= "</table><br><hr><p>Copyright © 2015-".date('Y')." Rubicon Software Group Inc.</p>";
return $post_block;
}
// gen_modals
function post_modals()
{
db_connect();
$modal_block = "";
$sql_statement = "SELECT * FROM posts ORDER BY id DESC";
$query = mysql_query($sql_statement);
while ($row = mysql_fetch_array($query))
{
$modal_block .= ' <!-- Edit Post Modal '.$row['id'].' -->
<div class="modal fade" id="editPostModal'.$row['id'].'" tabindex="-2" role="dialog" aria-labelledby="modalLabel" aria-hidden="true">
<div class="modal-dialog">
<div class="modal-content">
<div class="modal-header">
<button type="button" class="close" data-dismiss="modal"><span aria-hidden="true">×</span><span class="sr-only">Close</span></button>
<h3 class="modal-title" id="lineModalLabel">Edit Post</h3>
</div>
<div class="modal-body">
<form enctype="multipart/form-data" method="POST" action="">
<div class="form-group">
<input type="hidden" id="postId" name="postId" value="'.$row['id'].'">
</div>
<div class="form-group">
<label for="postTitle">Post Title</label>
<input type="text" class="form-control" id="postTitle" name="postTitle" value="'.$row['title'].'">
</div>
<div class="form-group">
<label for="Post Content">Post Content</label>
<textarea class="form-control" id="postContent" name="postContent" >'.$row['content'].'</textarea>
</div>
<div class="form-group">
<label for="postDate">Date</label><br>
<input type="datetime" id="postDate" name="postDate" data-provide="datepicker" value="'.date('m/d/Y', strtotime($row['postdate'])).'">
</div>
<div class="form-group">
<label for="curpostFile">Current Attachment </label><br>
<a href="http://www.trisud.com/media/uploads/'.$row['filename'].'" class="file-link" target="_blank"><span class="glyphicon glyphicon-file"></span> '.$row['filename'].'</a> <a class="btn btn-danger btn-xs" href="#" id="delUploadButton'.$row['id'].'"><span class="glyphicon glyphicon-trash"></span> DELETE FILE</a><br><br>
<label for="postFile">Replace Current Attachment</label><br>
<input type="hidden" name="postExistingFile" id="postExistingFile" value="'.$row['filename'].'">
<input class="btn btn-default" style="font-size: 13px" type="file" id="postFile" name="postFile">
</div>
</div>
<div class="modal-footer">
<div class="btn-group btn-group-justified" role="group" aria-label="group button">
<div class="btn-group" role="group">
<button type="submit" class="btn btn-default" role="button">Save</button>
</form>
</div>
</div>
</div>
</div>
</div>
</div>
<!-- Delete Post Modal '.$row['id'].' -->
<div class="modal fade" id="delPostModal'.$row['id'].'" tabindex="-1" role="dialog" aria-labelledby="modalLabel" aria-hidden="true">
<div class="modal-dialog">
<div class="modal-content">
<div class="modal-header">
<button type="button" class="close" data-dismiss="modal"><span aria-hidden="true">×</span><span class="sr-only">Close</span></button>
<h3 class="modal-title" id="lineModalLabel">Delete Post</h3>
</div>
<div class="modal-body">
<p style="text-align:center;">Are you sure you want to delete this post?</p>
</div>
<div class="modal-footer">
<div class="btn-group btn-group-justified" role="group" aria-label="group button">
<div class="btn-group" role="group">
<a class="btn btn-danger" href="index.php?del='.$row['id'].'">Confirm</a>
</div>
</div>
</div>
</div>
</div>
</div>
<!-- Delete Upload Modal '.$row['id'].' -->
<div class="modal fade" id="delUploadModal'.$row['id'].'" tabindex="-1" role="dialog" aria-labelledby="modalLabel" aria-hidden="true">
<div class="modal-dialog">
<div class="modal-content">
<div class="modal-header">
<button type="button" class="close" data-dismiss="modal"><span aria-hidden="true">×</span><span class="sr-only">Close</span></button>
<h3 class="modal-title" id="lineModalLabel">Delete Attached File</h3>
</div>
<div class="modal-body">
<form method="POST" action="">
<p style="text-align:center;">Are you sure you want to delete the attached file?</p>
</div>
<div class="modal-footer">
<div class="btn-group btn-group-justified" role="group" aria-label="group button">
<div class="btn-group" role="group">
<a class="btn btn-danger" href="index.php?delfile='.$row['id'].'">Confirm</a>
</form>
</div>
</div>
</div>
</div>
</div>
</div>';
}
return $modal_block;
}
function status_modal($type = "main")
{
db_connect();
$modal_block = "";
$sql_statement = "SELECT * FROM status";
$query = mysql_query($sql_statement);
$row = mysql_fetch_assoc($query);
if($type == "main") {
$modal_block .= ' <!-- Edit status Modal -->
<div class="modal fade" id="editStatusModal" tabindex="-2" role="dialog" aria-labelledby="modalLabel" aria-hidden="true">
<div class="modal-dialog">
<div class="modal-content">
<div class="modal-header">
<button type="button" class="close" data-dismiss="modal"><span aria-hidden="true">×</span><span class="sr-only">Close</span></button>
<h3 class="modal-title" id="lineModalLabel">Edit Status</h3>
</div>
<div class="modal-body">
<form enctype="multipart/form-data" method="POST" action="">
<div class="form-group">
<input type="hidden" id="statusId" name="statusId" value="'.$row['id'].'">
</div>
<div class="form-group">
<label for="statusTitle">Main Status Block</label>
<input type="text" class="form-control" id="statusTitle" name="statusTitle" value="'.$row['status'].'">
</div>
</div>
<div class="modal-footer">
<div class="btn-group btn-group-justified" role="group" aria-label="group button">
<div class="btn-group" role="group">
<button type="submit" class="btn btn-default" role="button">Save</button>
</form>
</div>
</div>
</div>
</div>
</div>
</div>';
}
if($type == "msg") {
$modal_block .= ' <!-- Edit status Modal -->
<div class="modal fade" id="editStatus2Modal" tabindex="-2" role="dialog" aria-labelledby="modalLabel" aria-hidden="true">
<div class="modal-dialog">
<div class="modal-content">
<div class="modal-header">
<button type="button" class="close" data-dismiss="modal"><span aria-hidden="true">×</span><span class="sr-only">Close</span></button>
<h3 class="modal-title" id="lineModalLabel">Edit Status Message</h3>
</div>
<div class="modal-body">
<form enctype="multipart/form-data" method="POST" action="">
<div class="form-group">
<input type="hidden" id="statusId" name="statusId" value="'.$row['id'].'">
</div>
<div class="form-group">
<label for="statusMsg">Status Message</label>
<input type="text" class="form-control" id="statusMsg" name="statusMsg" value="'.$row['msg'].'">
</div>
</div>
<div class="modal-footer">
<div class="btn-group btn-group-justified" role="group" aria-label="group button">
<div class="btn-group" role="group">
<button type="submit" class="btn btn-default" role="button">Save</button>
</form>
</div>
</div>
</div>
</div>
</div>
</div>';
}
if($type == "multi") {
if($row['a1'] == 1) {
$aRadio1 = "checked";
$aRadio2 = "";
} else {
$aRadio1 = "";
$aRadio2 = "checked";
}
if($row['b1'] == 1) {
$bRadio1 = "checked";
$bRadio2 = "";
} else {
$bRadio1 = "";
$bRadio2 = "checked";
}
if($row['c1'] == 1) {
$cRadio1 = "checked";
$cRadio2 = "";
} else {
$cRadio1 = "";
$cRadio2 = "checked";
}
if($row['d1'] == 1) {
$dRadio1 = "checked";
$dRadio2 = "";
} else {
$dRadio1 = "";
$dRadio2 = "checked";
}
$modal_block .= ' <!-- Edit status Modal -->
<div class="modal fade" id="editStatus3Modal" tabindex="-2" role="dialog" aria-labelledby="modalLabel" aria-hidden="true">
<div class="modal-dialog">
<div class="modal-content">
<div class="modal-header">
<button type="button" class="close" data-dismiss="modal"><span aria-hidden="true">×</span><span class="sr-only">Close</span></button>
<h3 class="modal-title" id="lineModalLabel">Edit Multi Status</h3>
</div>
<div class="modal-body">
<form enctype="multipart/form-data" method="POST" action="">
<div class="form-group">
<input type="hidden" id="statusId" name="statusId" value="'.$row['id'].'">
</div>
<div class="form-group">
<label for="aTitle">Item A</label>
<input type="text" class="form-control" id="aTitle" name="aTitle" value="'.$row['a'].'">
<div class="radio">
<label>
<input type="radio" name="aRadios" id="aRadios1" value="1" '.$aRadio1.'>
Operational
</label>
</div>
<div class="radio">
<label>
<input type="radio" name="aRadios" id="aRadios2" value="0" '.$aRadio2.'>
Problems!
</label>
</div>
<label for="aTitle">Item B</label>
<input type="text" class="form-control" id="bTitle" name="bTitle" value="'.$row['b'].'">
<div class="radio">
<label>
<input type="radio" name="bRadios" id="bRadios1" value="1" '.$bRadio1.'>
Operational
</label>
</div>
<div class="radio">
<label>
<input type="radio" name="bRadios" id="bRadios2" value="0" '.$bRadio2.'>
Problems!
</label>
</div>
<label for="aTitle">Item C</label>
<input type="text" class="form-control" id="cTitle" name="cTitle" value="'.$row['c'].'">
<div class="radio">
<label>
<input type="radio" name="cRadios" id="cRadios1" value="1" '.$cRadio1.'>
Operational
</label>
</div>
<div class="radio">
<label>
<input type="radio" name="cRadios" id="cRadios2" value="0" '.$cRadio2.'>
Problems!
</label>
</div>
<label for="aTitle">Item D</label>
<input type="text" class="form-control" id="dTitle" name="dTitle" value="'.$row['d'].'">
<div class="radio">
<label>
<input type="radio" name="dRadios" id="dRadios1" value="1" '.$dRadio1.'>
Operational
</label>
</div>
<div class="radio">
<label>
<input type="radio" name="dRadios" id="dRadios2" value="0" '.$dRadio2.'>
Problems!
</label>
</div>
</div>
</div>
<div class="modal-footer">
<div class="btn-group btn-group-justified" role="group" aria-label="group button">
<div class="btn-group" role="group">
<button type="submit" class="btn btn-default" role="button">Save</button>
</form>
</div>
</div>
</div>
</div>
</div>
</div>';
}
return $modal_block;
}
// post_modal_js
function post_modal_js()
{
db_connect();
$js_block = "";
$sql_statement = "SELECT * FROM posts ORDER BY id DESC";
$query = mysql_query($sql_statement);
while ($row = mysql_fetch_array($query))
{
$js_block .= '$("#delUploadButton'.$row['id'].'").click(function() {
$("#editPostModal'.$row['id'].'").modal(\'hide\');
$("#delUploadModal'.$row['id'].'").modal(\'show\');
});';
}
return $js_block;
}
// post_write
function post_write($post_id,$title,$content,$postdate,$postfile)
{
db_connect();
if ($post_id)
{
$sql_statement = "UPDATE posts SET title = '".$title."', content='".$content."', postdate='".date('Y-m-d', strtotime($postdate))."', filename='".$postfile."' WHERE id='".$post_id."'";
}
else
{
$sql_statement = "INSERT INTO posts (title, content, postdate, filename) VALUES ('".$title."', '".$content."', '".date('Y-m-d', strtotime($postdate))."', '".$postfile."')";
}
$result = mysql_query($sql_statement);
$idcheck = mysql_insert_id();
if($idcheck >= 1)
{
return $idcheck;
}
if ($result == false)
{
die('Fatal Error: Could not complete SQL operation: ' . mysql_error());
}
return $post_id;
}
// main_status_write
function main_status_write($status_id,$main_status)
{
db_connect();
if ($status_id)
{
$sql_statement = "UPDATE status SET status = '{$main_status}' WHERE id='{$status_id}'";
}
else
{
$sql_statement = "INSERT INTO status (status) VALUES ('{$main_status}')";
}
$result = mysql_query($sql_statement);
$idcheck = mysql_insert_id();
if($idcheck >= 1)
{
return $idcheck;
}
if ($result == false)
{
die('Fatal Error: Could not complete SQL operation: ' . mysql_error());
}
return $status_id;
}
// multi_status_write
function multi_status_write($status_id, $a, $b, $c, $d, $a1, $b1, $c1, $d1)
{
db_connect();
if ($status_id)
{
$sql_statement = "UPDATE status SET a = '{$a}', b = '{$b}', c = '{$c}', d = '{$d}', a1 = '{$a1}', b1 = '{$b1}', c1 = '{$c1}', d1 = '{$d1}' WHERE id='{$status_id}'";
}
else
{
$sql_statement = "INSERT INTO status (a,b,c,d,a1,b1,c1,d1) VALUES ('{$a}','{$b}','{$c}','{$d}','{$a1}','{$b1}','{$c1}','{$d1}')";
}
$result = mysql_query($sql_statement);
$idcheck = mysql_insert_id();
if($idcheck >= 1)
{
return $idcheck;
}
if ($result == false)
{
die('Fatal Error: Could not complete SQL operation: ' . mysql_error());
}
// Flip main status if individual items are problematic
if($a1 == "0" || $b1 == "0" || $c1 == "0" || $d1 == "0") {
main_status_write($status_id,"Problems have been detected... See below for details!");
msg_status_write($status_id, "Specific issues have been detected and we are trying to resolve them as quickly as possible!");
}
if($a1 == "1" && $b1 == "1" && $c1 == "1" && $d1 == "1") {
main_status_write($status_id,"All systems are currently operational!");
msg_status_write($status_id, "No issues have been detected at the present time.");
}
return $status_id;
}
// msg_status_write
function msg_status_write($status_id, $msg)
{
db_connect();
if ($status_id)
{
$sql_statement = "UPDATE status SET msg = '{$msg}' WHERE id='{$status_id}'";
}
else
{
$sql_statement = "INSERT INTO status (msg) VALUES ('{$msg}')";
}
$result = mysql_query($sql_statement);
$idcheck = mysql_insert_id();
if($idcheck >= 1)
{
return $idcheck;
}
if ($result == false)
{
die('Fatal Error: Could not complete SQL operation: ' . mysql_error());
}
return $status_id;
}
// set_page_status
function set_page_status($state = "off") {
if($state == "on") {
$s = 1;
} else {
$s = 0;
}
db_connect();
$sql_statement = "UPDATE status SET page = '{$s}' WHERE id = 1";
$result = mysql_query($sql_statement);
return $s;
}
// post_drop
function post_drop($post_id, $flag = false)
{
db_connect();
if($flag == true)
{
$sql_statement = "UPDATE posts SET filename = NULL WHERE id = ".$post_id; //we just want to drop the upload file link
}
else
{
$sql_statement = "DELETE FROM posts WHERE id = ".$post_id; //deleting entire post
}
$result = mysql_query($sql_statement);
if (!$result)
{
die('Fatal Error: Could not complete SQL operation: ' . mysql_error());
}
return $post_id;
}
// file_delete
function file_delete($filepath)
{
$test = unlink($filepath);
return $test;
}
// get_upload_name
function get_upload_name($id)
{
db_connect();
$sql_statement = "SELECT filename FROM posts WHERE id = ".$id;
$query = mysql_query($sql_statement);
$filename = mysql_fetch_array($query);
return $filename[0];
}
// post_loop
function post_loop() {
db_connect();
$sql_statement = "SELECT * FROM posts ORDER BY id DESC";
$query = mysql_query($sql_statement);
while ($row = mysql_fetch_array($query))
{
$loop_output .='<div class="loopblock"><p><strong>'.date('M-d-Y', strtotime($row['postdate'])).'- '.$row['title'].'</strong><br>'.$row['content'].'<br><br> ';
if($row['filename'])
{
$loop_output .= '<a class="button button-small" href="http://www.trisud.com/media/uploads/'.$row['filename'].'">See Notice For More Details</a></p></div>';
}
else
{
$loop_output .= '</p></div>';
}
}
return $loop_output;
}
// js echo
function js_echo()
{
$js = ' <!-- jQuery -->
<script src="js/jquery.js"></script>
<!-- Bootstrap Core JavaScript -->
<script src="js/bootstrap.min.js"></script>
<!-- Scrolling Nav JavaScript -->
<script src="js/jquery.easing.min.js"></script>
<script src="js/scrolling-nav.js"></script>
<script src="js/datepicker.js"></script>';
return $js;
}
|