Viewing file: core.php (24.54 KB) -rw-r--r-- Select action/file-type: (+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php
//------------------------------------------------------------------------------------------------ // // Admin Framework // Boilerplate PHP Administration Panel // //------------------------------------------------------------------------------------------------
$db_host = "localhost"; $db_database = "website"; $db_username = "root"; $db_password = "jsb@75494";
date_default_timezone_set('America/Chicago'); session_start();
//////////////////////////////////////////// // GENERAL FUNCTIONS ////////////////////////////////////////////
// db_connect function initiates a connection to the mysql database using the Global variables defined above
function db_connect() { global $db_host, $db_database, $db_username, $db_password; $link = mysql_connect($db_host, $db_username, $db_password) or die(mysql_error()); mysql_select_db($db_database) or die(mysql_error()); return $link; }
//////////////////////////////////////////// // USER FUNCTIONS ////////////////////////////////////////////
// user_login
function user_login($user, $password) { db_connect(); $success = "0"; $passcode = hash('sha256', $password); $sql_statement = "SELECT * FROM users WHERE user = '".$user."' AND password = '".$passcode."'"; $result = mysql_query($sql_statement); $authmatch = mysql_num_rows($result); $row = mysql_fetch_array($result); if($authmatch == 1) { $_SESSION['active_user'] = $row['name']; $success = "1"; } return $success; }
// user_logout
function user_logout() { $_SESSION['active_user'] = ""; session_start(); session_destroy(); header ("location: login.php"); }
//////////////////////////////////////////// // POST FUNCTIONS ////////////////////////////////////////////
// status_read
function status_read() { db_connect(); $l = 0; $sql_statement = "SELECT * FROM status"; $query = mysql_query($sql_statement); $row = mysql_fetch_assoc($query); if($row['a1'] == 1) { $a = "<span style='color: green;'>Operational</span>"; $l = $l + 1; $aON = 1; } else { $a = "<span style='color: red;'>Problems!</span>"; $l = $l - 1; $aON = 0; } if($row['b1'] == 1) { $b = "<span style='color: green;'>Operational</span>"; $l = $l + 1; $bON = 1; } else { $b = "<span style='color: red;'>Problems!</span>"; $l = $l - 1; $bON = 0; } if($row['c1'] == 1) { $c = "<span style='color: green;'>Operational</span>"; $l = $l + 1; $cON = 1; } else { $c = "<span style='color: red;'>Problems!</span>"; $l = $l - 1; $cON = 0; } if($row['d1'] == 1) { $d = "<span style='color: green;'>Operational</span>"; $l = $l + 1; $dON = 1; } else { $d = "<span style='color: red;'>Problems!</span>"; $l = $l - 1; $dON = 0; } if($l == 4) { $light = "green"; } else { $light = "red"; } if($row['page'] == 0) { $row['status'] = "System status is not avalable at this time!"; $row['msg'] = "System status is unavalable at this time!"; $a = "<span style='color: gray;'>Unavailable</span>"; $b = "<span style='color: gray;'>Unavailable</span>"; $c = "<span style='color: gray;'>Unavailable</span>"; $d = "<span style='color: gray;'>Unavailable</span>"; $aON = NULL; $bON = NULL; $cON = NULL; $dON = NULL; $light = "gray"; } $status = array("light" => $light, "main" => $row['status'], "a" => $row['a'], "a-on" => $aON, "a-stat" => $a, "b" => $row['b'], "b-on" => $bON, "b-stat" => $b, "c" => $row['c'], "c-on" => $cON, "c-stat" => $c, "d" => $row['d'], "d-on" => $dON, "d-stat" => $d, "msg" => $row['msg'], "page" => $row['page']); //die(var_dump($status)); return $status; }
// post_read
function post_read() { db_connect(); $post_block = ""; $file_icon = '<span class="glyphicon glyphicon-file"></span> '; $sql_statement = "SELECT * FROM posts ORDER BY id DESC"; $query = mysql_query($sql_statement); while ($row = mysql_fetch_array($query)) { $post_block .= '<div class="col-sm-3"> <div class="post-block">';
if($row['filename']) { $post_block .='<p class="lead">'.$file_icon.$row['title'].'</p>'; } else { if(strlen($row['title']) >= 10) { $post_block.='<p class="lead">'.substr($row['title'],0,11).'...</p>'; } else { $post_block.='<p class="lead">'.substr($row['title'],0,11).'</p>'; } }
$post_block .='<p class="post-date">'.date("M-d-Y",strtotime($row['postdate'])).'</p> <div class="post-control-block"> <a class="btn btn-default btn-sm" href="#" data-toggle="modal" data-target="#editPostModal'.$row['id'].'"><span class="glyphicon glyphicon-pencil"></span> EDIT</a> <a class="btn btn-danger btn-sm" href="#" data-toggle="modal" data-target="#delPostModal'.$row['id'].'"><span class="glyphicon glyphicon-trash"></span> DELETE</a> </div> </div> </div>'; } return $post_block; }
function post_read_new() { db_connect(); $file_icon = '<span class="glyphicon glyphicon-file"></span> '; $post_block = '<table>'; $post_block .= '<tr><th>Date</th><th>Title</th><th>Edit</th><th>Delete</th></tr>'; $sql_statement = "SELECT * FROM posts ORDER BY id DESC"; $query = mysql_query($sql_statement); while ($row = mysql_fetch_array($query)) { $post_block .= '<tr><td align="left">'.date("M-d-Y",strtotime($row['postdate'])).'</td>'; if($row['filename']) { $post_block .='<td align="left">'.$file_icon.$row['title'].'</td>'; } else { $post_block.='<td align="left">'.$row['title'].'</td>'; }
$post_block .='<td align="left"><a class="btn btn-default btn-sm" href="#" data-toggle="modal" data-target="#editPostModal'.$row['id'].'"><span class="glyphicon glyphicon-pencil"></span> EDIT</a></td><td align="left"><a class="btn btn-danger btn-sm" href="#" data-toggle="modal" data-target="#delPostModal'.$row['id'].'"><span class="glyphicon glyphicon-trash"></span> DELETE</a></td> </tr>'; } $post_block .= "</table><br><hr><p>Copyright © 2015-".date('Y')." Rubicon Software Group Inc.</p>"; return $post_block; }
// gen_modals function post_modals() { db_connect(); $modal_block = ""; $sql_statement = "SELECT * FROM posts ORDER BY id DESC"; $query = mysql_query($sql_statement); while ($row = mysql_fetch_array($query)) { $modal_block .= ' <!-- Edit Post Modal '.$row['id'].' --> <div class="modal fade" id="editPostModal'.$row['id'].'" tabindex="-2" role="dialog" aria-labelledby="modalLabel" aria-hidden="true"> <div class="modal-dialog"> <div class="modal-content"> <div class="modal-header"> <button type="button" class="close" data-dismiss="modal"><span aria-hidden="true">×</span><span class="sr-only">Close</span></button> <h3 class="modal-title" id="lineModalLabel">Edit Post</h3> </div> <div class="modal-body"> <form enctype="multipart/form-data" method="POST" action=""> <div class="form-group"> <input type="hidden" id="postId" name="postId" value="'.$row['id'].'"> </div> <div class="form-group"> <label for="postTitle">Post Title</label> <input type="text" class="form-control" id="postTitle" name="postTitle" value="'.$row['title'].'"> </div> <div class="form-group"> <label for="Post Content">Post Content</label> <textarea class="form-control" id="postContent" name="postContent" >'.$row['content'].'</textarea> </div> <div class="form-group"> <label for="postDate">Date</label><br> <input type="datetime" id="postDate" name="postDate" data-provide="datepicker" value="'.date('m/d/Y', strtotime($row['postdate'])).'"> </div> <div class="form-group"> <label for="curpostFile">Current Attachment </label><br> <a href="http://www.trisud.com/media/uploads/'.$row['filename'].'" class="file-link" target="_blank"><span class="glyphicon glyphicon-file"></span> '.$row['filename'].'</a> <a class="btn btn-danger btn-xs" href="#" id="delUploadButton'.$row['id'].'"><span class="glyphicon glyphicon-trash"></span> DELETE FILE</a><br><br> <label for="postFile">Replace Current Attachment</label><br> <input type="hidden" name="postExistingFile" id="postExistingFile" value="'.$row['filename'].'"> <input class="btn btn-default" style="font-size: 13px" type="file" id="postFile" name="postFile"> </div> </div> <div class="modal-footer"> <div class="btn-group btn-group-justified" role="group" aria-label="group button"> <div class="btn-group" role="group"> <button type="submit" class="btn btn-default" role="button">Save</button> </form> </div> </div> </div> </div> </div> </div> <!-- Delete Post Modal '.$row['id'].' --> <div class="modal fade" id="delPostModal'.$row['id'].'" tabindex="-1" role="dialog" aria-labelledby="modalLabel" aria-hidden="true"> <div class="modal-dialog"> <div class="modal-content"> <div class="modal-header"> <button type="button" class="close" data-dismiss="modal"><span aria-hidden="true">×</span><span class="sr-only">Close</span></button> <h3 class="modal-title" id="lineModalLabel">Delete Post</h3> </div> <div class="modal-body"> <p style="text-align:center;">Are you sure you want to delete this post?</p> </div> <div class="modal-footer"> <div class="btn-group btn-group-justified" role="group" aria-label="group button"> <div class="btn-group" role="group"> <a class="btn btn-danger" href="index.php?del='.$row['id'].'">Confirm</a> </div> </div> </div> </div> </div> </div>
<!-- Delete Upload Modal '.$row['id'].' --> <div class="modal fade" id="delUploadModal'.$row['id'].'" tabindex="-1" role="dialog" aria-labelledby="modalLabel" aria-hidden="true"> <div class="modal-dialog"> <div class="modal-content"> <div class="modal-header"> <button type="button" class="close" data-dismiss="modal"><span aria-hidden="true">×</span><span class="sr-only">Close</span></button> <h3 class="modal-title" id="lineModalLabel">Delete Attached File</h3> </div> <div class="modal-body"> <form method="POST" action=""> <p style="text-align:center;">Are you sure you want to delete the attached file?</p> </div> <div class="modal-footer"> <div class="btn-group btn-group-justified" role="group" aria-label="group button"> <div class="btn-group" role="group"> <a class="btn btn-danger" href="index.php?delfile='.$row['id'].'">Confirm</a> </form> </div> </div> </div> </div> </div> </div>'; } return $modal_block; }
function status_modal($type = "main") { db_connect(); $modal_block = ""; $sql_statement = "SELECT * FROM status"; $query = mysql_query($sql_statement); $row = mysql_fetch_assoc($query); if($type == "main") { $modal_block .= ' <!-- Edit status Modal --> <div class="modal fade" id="editStatusModal" tabindex="-2" role="dialog" aria-labelledby="modalLabel" aria-hidden="true"> <div class="modal-dialog"> <div class="modal-content"> <div class="modal-header"> <button type="button" class="close" data-dismiss="modal"><span aria-hidden="true">×</span><span class="sr-only">Close</span></button> <h3 class="modal-title" id="lineModalLabel">Edit Status</h3> </div> <div class="modal-body"> <form enctype="multipart/form-data" method="POST" action=""> <div class="form-group"> <input type="hidden" id="statusId" name="statusId" value="'.$row['id'].'"> </div> <div class="form-group"> <label for="statusTitle">Main Status Block</label> <input type="text" class="form-control" id="statusTitle" name="statusTitle" value="'.$row['status'].'"> </div> </div> <div class="modal-footer"> <div class="btn-group btn-group-justified" role="group" aria-label="group button"> <div class="btn-group" role="group"> <button type="submit" class="btn btn-default" role="button">Save</button> </form> </div> </div> </div> </div> </div> </div>'; } if($type == "msg") { $modal_block .= ' <!-- Edit status Modal --> <div class="modal fade" id="editStatus2Modal" tabindex="-2" role="dialog" aria-labelledby="modalLabel" aria-hidden="true"> <div class="modal-dialog"> <div class="modal-content"> <div class="modal-header"> <button type="button" class="close" data-dismiss="modal"><span aria-hidden="true">×</span><span class="sr-only">Close</span></button> <h3 class="modal-title" id="lineModalLabel">Edit Status Message</h3> </div> <div class="modal-body"> <form enctype="multipart/form-data" method="POST" action=""> <div class="form-group"> <input type="hidden" id="statusId" name="statusId" value="'.$row['id'].'"> </div> <div class="form-group"> <label for="statusMsg">Status Message</label> <input type="text" class="form-control" id="statusMsg" name="statusMsg" value="'.$row['msg'].'"> </div> </div> <div class="modal-footer"> <div class="btn-group btn-group-justified" role="group" aria-label="group button"> <div class="btn-group" role="group"> <button type="submit" class="btn btn-default" role="button">Save</button> </form> </div> </div> </div> </div> </div> </div>'; } if($type == "multi") { if($row['a1'] == 1) { $aRadio1 = "checked"; $aRadio2 = ""; } else { $aRadio1 = ""; $aRadio2 = "checked"; } if($row['b1'] == 1) { $bRadio1 = "checked"; $bRadio2 = ""; } else { $bRadio1 = ""; $bRadio2 = "checked"; } if($row['c1'] == 1) { $cRadio1 = "checked"; $cRadio2 = ""; } else { $cRadio1 = ""; $cRadio2 = "checked"; } if($row['d1'] == 1) { $dRadio1 = "checked"; $dRadio2 = ""; } else { $dRadio1 = ""; $dRadio2 = "checked"; } $modal_block .= ' <!-- Edit status Modal --> <div class="modal fade" id="editStatus3Modal" tabindex="-2" role="dialog" aria-labelledby="modalLabel" aria-hidden="true"> <div class="modal-dialog"> <div class="modal-content"> <div class="modal-header"> <button type="button" class="close" data-dismiss="modal"><span aria-hidden="true">×</span><span class="sr-only">Close</span></button> <h3 class="modal-title" id="lineModalLabel">Edit Multi Status</h3> </div> <div class="modal-body"> <form enctype="multipart/form-data" method="POST" action=""> <div class="form-group"> <input type="hidden" id="statusId" name="statusId" value="'.$row['id'].'"> </div> <div class="form-group"> <label for="aTitle">Item A</label> <input type="text" class="form-control" id="aTitle" name="aTitle" value="'.$row['a'].'"> <div class="radio"> <label> <input type="radio" name="aRadios" id="aRadios1" value="1" '.$aRadio1.'> Operational </label> </div> <div class="radio"> <label> <input type="radio" name="aRadios" id="aRadios2" value="0" '.$aRadio2.'> Problems! </label> </div> <label for="aTitle">Item B</label> <input type="text" class="form-control" id="bTitle" name="bTitle" value="'.$row['b'].'"> <div class="radio"> <label> <input type="radio" name="bRadios" id="bRadios1" value="1" '.$bRadio1.'> Operational </label> </div> <div class="radio"> <label> <input type="radio" name="bRadios" id="bRadios2" value="0" '.$bRadio2.'> Problems! </label> </div> <label for="aTitle">Item C</label> <input type="text" class="form-control" id="cTitle" name="cTitle" value="'.$row['c'].'"> <div class="radio"> <label> <input type="radio" name="cRadios" id="cRadios1" value="1" '.$cRadio1.'> Operational </label> </div> <div class="radio"> <label> <input type="radio" name="cRadios" id="cRadios2" value="0" '.$cRadio2.'> Problems! </label> </div> <label for="aTitle">Item D</label> <input type="text" class="form-control" id="dTitle" name="dTitle" value="'.$row['d'].'"> <div class="radio"> <label> <input type="radio" name="dRadios" id="dRadios1" value="1" '.$dRadio1.'> Operational </label> </div> <div class="radio"> <label> <input type="radio" name="dRadios" id="dRadios2" value="0" '.$dRadio2.'> Problems! </label> </div> </div> </div> <div class="modal-footer"> <div class="btn-group btn-group-justified" role="group" aria-label="group button"> <div class="btn-group" role="group"> <button type="submit" class="btn btn-default" role="button">Save</button> </form> </div> </div> </div> </div> </div> </div>'; } return $modal_block; }
// post_modal_js
function post_modal_js() { db_connect(); $js_block = ""; $sql_statement = "SELECT * FROM posts ORDER BY id DESC"; $query = mysql_query($sql_statement); while ($row = mysql_fetch_array($query)) { $js_block .= '$("#delUploadButton'.$row['id'].'").click(function() { $("#editPostModal'.$row['id'].'").modal(\'hide\'); $("#delUploadModal'.$row['id'].'").modal(\'show\'); });'; } return $js_block; }
// post_write
function post_write($post_id,$title,$content,$postdate,$postfile) { db_connect(); if ($post_id) { $sql_statement = "UPDATE posts SET title = '".$title."', content='".$content."', postdate='".date('Y-m-d', strtotime($postdate))."', filename='".$postfile."' WHERE id='".$post_id."'"; } else { $sql_statement = "INSERT INTO posts (title, content, postdate, filename) VALUES ('".$title."', '".$content."', '".date('Y-m-d', strtotime($postdate))."', '".$postfile."')"; }
$result = mysql_query($sql_statement); $idcheck = mysql_insert_id(); if($idcheck >= 1) { return $idcheck; } if ($result == false) { die('Fatal Error: Could not complete SQL operation: ' . mysql_error()); } return $post_id; }
// main_status_write
function main_status_write($status_id,$main_status) { db_connect(); if ($status_id) { $sql_statement = "UPDATE status SET status = '{$main_status}' WHERE id='{$status_id}'"; } else { $sql_statement = "INSERT INTO status (status) VALUES ('{$main_status}')"; }
$result = mysql_query($sql_statement); $idcheck = mysql_insert_id(); if($idcheck >= 1) { return $idcheck; } if ($result == false) { die('Fatal Error: Could not complete SQL operation: ' . mysql_error()); } return $status_id; }
// multi_status_write
function multi_status_write($status_id, $a, $b, $c, $d, $a1, $b1, $c1, $d1) { db_connect(); if ($status_id) { $sql_statement = "UPDATE status SET a = '{$a}', b = '{$b}', c = '{$c}', d = '{$d}', a1 = '{$a1}', b1 = '{$b1}', c1 = '{$c1}', d1 = '{$d1}' WHERE id='{$status_id}'"; } else { $sql_statement = "INSERT INTO status (a,b,c,d,a1,b1,c1,d1) VALUES ('{$a}','{$b}','{$c}','{$d}','{$a1}','{$b1}','{$c1}','{$d1}')"; }
$result = mysql_query($sql_statement); $idcheck = mysql_insert_id(); if($idcheck >= 1) { return $idcheck; } if ($result == false) { die('Fatal Error: Could not complete SQL operation: ' . mysql_error()); } // Flip main status if individual items are problematic if($a1 == "0" || $b1 == "0" || $c1 == "0" || $d1 == "0") { main_status_write($status_id,"Problems have been detected... See below for details!"); msg_status_write($status_id, "Specific issues have been detected and we are trying to resolve them as quickly as possible!"); } if($a1 == "1" && $b1 == "1" && $c1 == "1" && $d1 == "1") { main_status_write($status_id,"All systems are currently operational!"); msg_status_write($status_id, "No issues have been detected at the present time."); }
return $status_id; }
// msg_status_write
function msg_status_write($status_id, $msg) { db_connect(); if ($status_id) { $sql_statement = "UPDATE status SET msg = '{$msg}' WHERE id='{$status_id}'"; } else { $sql_statement = "INSERT INTO status (msg) VALUES ('{$msg}')"; }
$result = mysql_query($sql_statement); $idcheck = mysql_insert_id(); if($idcheck >= 1) { return $idcheck; } if ($result == false) { die('Fatal Error: Could not complete SQL operation: ' . mysql_error()); } return $status_id; }
// set_page_status
function set_page_status($state = "off") { if($state == "on") { $s = 1; } else { $s = 0; } db_connect(); $sql_statement = "UPDATE status SET page = '{$s}' WHERE id = 1"; $result = mysql_query($sql_statement); return $s; }
// post_drop
function post_drop($post_id, $flag = false) { db_connect(); if($flag == true) { $sql_statement = "UPDATE posts SET filename = NULL WHERE id = ".$post_id; //we just want to drop the upload file link } else { $sql_statement = "DELETE FROM posts WHERE id = ".$post_id; //deleting entire post } $result = mysql_query($sql_statement);
if (!$result) { die('Fatal Error: Could not complete SQL operation: ' . mysql_error()); } return $post_id; }
// file_delete function file_delete($filepath) { $test = unlink($filepath); return $test; }
// get_upload_name function get_upload_name($id) { db_connect(); $sql_statement = "SELECT filename FROM posts WHERE id = ".$id; $query = mysql_query($sql_statement); $filename = mysql_fetch_array($query); return $filename[0]; }
// post_loop
function post_loop() { db_connect(); $sql_statement = "SELECT * FROM posts ORDER BY id DESC"; $query = mysql_query($sql_statement); while ($row = mysql_fetch_array($query)) { $loop_output .='<div class="loopblock"><p><strong>'.date('M-d-Y', strtotime($row['postdate'])).'- '.$row['title'].'</strong><br>'.$row['content'].'<br><br> '; if($row['filename']) { $loop_output .= '<a class="button button-small" href="http://www.trisud.com/media/uploads/'.$row['filename'].'">See Notice For More Details</a></p></div>'; } else { $loop_output .= '</p></div>'; } } return $loop_output;
}
// js echo function js_echo() { $js = ' <!-- jQuery --> <script src="js/jquery.js"></script> <!-- Bootstrap Core JavaScript --> <script src="js/bootstrap.min.js"></script> <!-- Scrolling Nav JavaScript --> <script src="js/jquery.easing.min.js"></script> <script src="js/scrolling-nav.js"></script> <script src="js/datepicker.js"></script>';
return $js; }
|