- Use user_auth_required() for authentication to check for committee access

(needed for multirole users) - Add the top navbar to all pages
2007-11-18 23:50:23 +00:00 · 2007-11-18 23:50:23 +00:00 · 04e70ceb33
commit 04e70ceb33
parent 9882ca09c6
58 changed files with 302 additions and 202 deletions
--- a/admin/award_awardcreatedivisional.php
+++ b/admin/award_awardcreatedivisional.php
@ -23,9 +23,13 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
- send_header("Administration - Create All Divisional Awards");
+ send_header('Create All Divisional Awards',
 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php',
 			'Awards Main' => 'admin/awards.php')
 		);
 if($_GET['award_sponsors_id']) $award_sponsors_id=$_GET['award_sponsors_id'];
 else if($_POST['award_sponsors_id']) $award_sponsors_id=$_POST['award_sponsors_id'];
@ -33,10 +37,6 @@
 if($_GET['award_types_id']) $award_types_id=$_GET['award_types_id'];
 else if($_POST['award_types_id']) $award_types_id=$_POST['award_types_id'];
 	echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>\n";
 	echo "<a href=\"awards.php\">&lt;&lt; ".i18n("Back to Awards Main")."</a>\n";
 	//first, we can only do this if we dont have any type=divisional awards created yet
 	$q=mysql_query("SELECT COUNT(id) AS num FROM award_awards WHERE award_types_id='1' AND year='{$config['FAIRYEAR']}'");
 	$r=mysql_fetch_object($q);
--- a/admin/award_awards.php
+++ b/admin/award_awards.php
@ -23,9 +23,12 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
- send_header("Administration - Awards Awards");
+ send_header("Awards Management",
 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php',
 			'Awards Main' => 'admin/awards.php') );
 if($_GET['award_sponsors_id'] && $_GET['award_sponsors_id']!="all")
 	$_SESSION['award_sponsors_id']=$_GET['award_sponsors_id'];
@ -41,9 +44,6 @@
 $award_types_id=$_SESSION['award_types_id'];
 $award_sponsors_id=$_SESSION['award_sponsors_id'];
 	echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>\n";
 	echo "<a href=\"awards.php\">&lt;&lt; ".i18n("Back to Awards Main")."</a>\n";
 		if($_POST['save']=="edit" || $_POST['save']=="add")
 		{
 			if(!$_POST['award_types_id']) {
--- a/admin/award_contacts.php
+++ b/admin/award_contacts.php
@ -23,9 +23,12 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
- send_header("Administration - Award Contacts");
+ send_header("Award Contacts", 
 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php',
 			'Awards Main' => 'admin/awards.php'));
 if($_GET['award_sponsors_id'])
 	$award_sponsors_id=$_GET['award_sponsors_id'];
@ -34,9 +37,6 @@
 ?>
 <?
 	echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>\n";
 	echo "<a href=\"awards.php\">&lt;&lt; ".i18n("Back to Awards")."</a>\n";
 	$q=mysql_query("SELECT id,organization FROM award_sponsors ORDER BY organization");
 	echo "<form method=\"get\" action=\"award_contacts.php\" name=\"sponsorchange\">";
 	echo "<select name=\"award_sponsors_id\" onchange=\"document.forms.sponsorchange.submit()\">";
--- a/admin/award_prizes.php
+++ b/admin/award_prizes.php
@ -23,9 +23,14 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
- send_header("Administration - Award Prizes");
+ send_header("Award Prizes",
 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php',
 			'Awards Main' => 'admin/awards.php',
 			'Awards Management' => 'admin/award_awards.php')
 		);
 if($_GET['award_awards_id'])
 	$award_awards_id=$_GET['award_awards_id'];
@ -34,10 +39,6 @@
 ?>
 <?
 	echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>\n";
 	echo "<a href=\"awards.php\">&lt;&lt; ".i18n("Back to Awards Main")."</a>\n";
 	echo "<a href=\"award_awards.php\">&lt;&lt; ".i18n("Back to Awards List")."</a>\n";
 	if($award_awards_id)
 	{
 		if($award_awards_id==-1)
--- a/admin/award_sponsors.php
+++ b/admin/award_sponsors.php
@ -23,13 +23,14 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
- send_header("Administration - Award Sponsors");
+ send_header("Award Sponsors",
 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php',
 			'Awards Main' => 'admin/awards.php')
 		);
 	echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>\n";
 	echo "<a href=\"awards.php\">&lt;&lt; ".i18n("Back to Awards")."</a>\n";
 	if($_POST['save']=="edit" || $_POST['save']=="add")
 	{
 		if($_POST['save']=="add")
--- a/admin/awards.php
+++ b/admin/awards.php
@ -23,22 +23,22 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
- send_header("Administration - Awards");
+ send_header("Awards", 
- echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>\n";
+ 	array('Committee Main' => 'committee_main.php',
 		'Administration' => 'admin/index.php') );
 require_once("rerollprizes.php");
 echo "<br />";
 echo "<a href=\"award_sponsors.php\">".i18n('Award Sponsors')."</a><br />";
 echo "<a href=\"award_contacts.php\">".i18n('Award Sponsors Contacts')."</a><br />";
 echo "<a href=\"award_awards.php\">".i18n('Awards Management')."</a><br />";
 echo "<br />";
- echo "<a href=\"award_sponsors.php\">Award Sponsors</a><br />";
+ echo "<a href=\"award_prizes.php?award_awards_id=-1\">".i18n('Edit prizes for the generic prize template')."</a>";
 echo "<a href=\"award_contacts.php\">Award Sponsors Contacts</a><br />";
 echo "<a href=\"award_awards.php\">Awards</a><br />";
 echo "<br />";
- echo "<a href=\"award_prizes.php?award_awards_id=-1\">Edit prizes for the generic prize template</a>";
+ echo "<a href=\"award_awardcreatedivisional.php\">".i18n('Create divisional awards for all divisions & categories')."</a><br />";
 echo "<br />";
 echo "<a href=\"award_awardcreatedivisional.php\">Create divisional awards for all divisions & categories</a><br />";
 send_footer();
--- a/admin/communication.php
+++ b/admin/communication.php
@ -23,11 +23,12 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 include "communication.inc.php";
- send_header("Communication");
+ send_header("Communication",
- echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>";
+ 		array('Committee Main' => 'committee_main.php',
- echo "<br />";
+			'Administration' => 'admin/index.php')
 			);
 echo "<br />";
 if($_POST['action']=="add")
--- a/admin/communication_send_status.php
+++ b/admin/communication_send_status.php
@ -23,13 +23,13 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
- send_header("Communication Sending Status");
+ send_header("Communication Sending Status",
- echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>";
+ 		array('Committee Main' => 'committee_main.php',
- echo "&nbsp;";
+			'Administration' => 'admin/index.php',
- echo "<a href=\"communication.php\">&lt;&lt; ".i18n("Back to Communication")."</a>";
+			'Communication' => 'admin/communication.php')
- echo "<br />";
+			);
 echo "<br />";
 echo "<h3>".i18n("Communication Sending Status")."</h3>\n";
--- a/admin/cwsfregister.php
+++ b/admin/cwsfregister.php
@ -116,10 +116,11 @@ include "xml.inc.php";
 <?
 require("../common.inc.php");
 require("../projects.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
- send_header("Administration - One-Click CWSF Registration");
+ send_header("One-Click CWSF Registration",
- echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>\n";
+ 		array('Committee Main' => 'committee_main.php',
- echo "<br />";
+			'Administration' => 'admin/index.php')
 			);
 echo "<br />";
 if(count($_POST['cwsfdivision']))
--- a/admin/documentdownloader.php
+++ b/admin/documentdownloader.php
@ -22,7 +22,7 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 $q=mysql_query("SELECT * FROM documents WHERE id='".$_GET['id']."'");
 if($r=mysql_fetch_object($q))
 {
--- a/admin/documents.php
+++ b/admin/documents.php
@ -30,8 +30,11 @@
 if(!file_exists("../data/documents/.htaccess"))
 	file_put_contents("../data/documents/.htaccess","Order Deny,Allow\r\nDeny From All\r\n");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
- send_header("Internal Document Manager");
+ send_header("Internal Document Manager",
 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php')
 			);
 $editor=new TableEditor("documents",
 			array("date"=>"Date",
--- a/admin/export_checkin.php
+++ b/admin/export_checkin.php
@ -23,7 +23,7 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 require("../lpdf.php");
 $catq=mysql_query("SELECT * FROM projectcategories WHERE year='".$config['FAIRYEAR']."' AND id='".$_GET['cat']."'");
--- a/admin/gettranslation.php
+++ b/admin/gettranslation.php
@ -23,7 +23,7 @@
 ?>
 <?
 include "../common.inc.php";
-auth_required('admin');
+user_auth_required('committee', 'admin');
 foreach($config['languages'] AS $l=>$ln)
 {
 	if($l=="en") continue;
--- a/admin/judges.php
+++ b/admin/judges.php
@ -23,12 +23,12 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
- send_header("Administration - Judges");
+ send_header("Judges", 
- echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>\n";
+ 		array('Committee Main' => 'committee_main.php',
-
+			'Administration' => 'admin/index.php')
- echo "<br />";
+			);
 echo "<br />";
 if($config['judge_registration_type']=="invite")
 {
--- a/admin/judges_info.php
+++ b/admin/judges_info.php
@ -28,7 +28,7 @@
 require("../questions.inc.php");
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 $preferencechoices=array(
 	-2=>"Very Low",
--- a/admin/judges_invite.php
+++ b/admin/judges_invite.php
@ -23,13 +23,14 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 include "judges.inc.php";
- send_header("Administration - Invite Judges");
+ send_header("Invite Judges",
- echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>\n";
+ 		array('Committee Main' => 'committee_main.php',
- echo "<a href=\"judges.php\">&lt;&lt; ".i18n("Back to Judges")."</a>\n";
+			'Administration' => 'admin/index.php',
- echo "<br />";
+			'Judges' => 'admin/judges.php')
 			);
 echo "<br />";
 if($_POST['action']=="invite" && $_POST['email'])
 {
--- a/admin/judges_jdiv.php
+++ b/admin/judges_jdiv.php
@ -23,10 +23,14 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 include "judges.inc.php";
- send_header("Administration - Judging Division Groupings");
+ send_header("Judging Division Groupings",
 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php',
 			'Judges' => 'admin/judges.php')
 				);
 ?>
 <script language="javascript" type="text/javascript">
 function addbuttonclicked(jdiv)
--- a/admin/judges_judges.php
+++ b/admin/judges_judges.php
@ -23,10 +23,14 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 include "judges.inc.php";
- send_header("Administration - Judges");
+ send_header("Judge List",
 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php',
 			'Judges' => 'admin/judges.php')
 				);
 ?>
 <script language="javascript" type="text/javascript">
@ -44,8 +48,6 @@ function openjudgeinfo(id)
 </script>
 <?
 	echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>\n";
 	echo "<a href=\"judges.php\">&lt;&lt; ".i18n("Back to Judges")."</a>\n";
 	if($_GET['action']=="remove" && $_GET['remove'])
 	{
--- a/admin/judges_manager.php
+++ b/admin/judges_manager.php
@ -23,12 +23,16 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 include "judges.inc.php";
 require("../tableeditor.class.php");
 require("../judge.class.php");
- send_header("Administration - Judges - Manager");
+ send_header("Judge Manager",
 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php',
 			'Judges' => 'admin/judges.php') );
 ?>
 <script language="javascript" type="text/javascript">
@ -46,13 +50,10 @@ function openjudgeinfo(id)
 </script>
 <?
 	echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>\n";
 	echo "<a href=\"judges.php\">&lt;&lt; ".i18n("Back to Judges")."</a>\n";
 	$icon_path = $config['SFIABDIRECTORY']."/images/16/";
 	$icon_exitension = $config['icon_extension'];
-	print("<br /><br />");
+	print("<br />");
 	if(isset($_GET['show_what'])) {
 		$_SESSION['judgesmanager_show_what']=$_GET['show_what'];
 	}
--- a/admin/judges_sa.php
+++ b/admin/judges_sa.php
@ -27,7 +27,7 @@
 require("../projects.inc.php");
 require("judges.inc.php");
 require("anneal.inc.php");
- auth_required('admin');
+ user_auth_required('committee','admin');
 /*
 send_header("Judging teams automatic scheduler");
--- a/admin/judges_scheduler_status.php
+++ b/admin/judges_scheduler_status.php
@ -24,7 +24,11 @@ ogram; see the file COPYING.  If not, write to
 ?>
 <?
 require("../common.inc.php");
- send_header("Judges - Scheduler Status");
+ send_header("Scheduler Status",
 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php',
 			'Judges' => 'admin/judges.php')
 				);
 ?>
 <script type="text/javascript">
--- a/admin/judges_schedulerconfig.php
+++ b/admin/judges_schedulerconfig.php
@ -25,14 +25,15 @@ ogram; see the file COPYING.  If not, write to
 <?
 require("../common.inc.php");
 require("../config_editor.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 require("judges.inc.php");
 require("judges_schedulerconfig_check.inc.php");
- send_header("Administration - Judge Scheduler Configuration");
+ send_header("Judge Scheduler Configuration",
-
+ 		array('Committee Main' => 'committee_main.php',
-	echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>\n";
+			'Administration' => 'admin/index.php',
-	echo "<a href=\"judges.php\">&lt;&lt; ".i18n("Back to Judges")."</a>\n";
+			'Judges' => 'admin/judges.php')
 				);
 	config_editor_require_vars("Judge Scheduler", $config['FAIRYEAR'],
 			array(	"max_projects_per_team", "times_judged",
--- a/admin/judges_teams.php
+++ b/admin/judges_teams.php
@ -23,10 +23,14 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 include "judges.inc.php";
- send_header("Administration - Manage Judging Teams");
+ send_header("Manage Judging Teams",
 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php',
 			'Judges' => 'admin/judges.php')
 				);
 ?>
 <script language="javascript" type="text/javascript">
 function addclicked()
@ -39,9 +43,6 @@ function addclicked()
 </script>
 <?
 	echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>\n";
 	echo "<a href=\"judges.php\">&lt;&lt; ".i18n("Back to Judges")."</a>\n";
 	if($_GET['edit']) $edit=$_GET['edit'];
 	if($_POST['edit']) $edit=$_POST['edit'];
 	if($_GET['action']) $action=$_GET['action'];
@ -356,7 +357,6 @@ function addclicked()
 	else
 	{
 		echo "<br />";
 		echo "<br />";
 		$teams=getJudgingTeams();
 		//print_r($teams);
--- a/admin/judges_teams_members.php
+++ b/admin/judges_teams_members.php
@ -23,10 +23,14 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 include "judges.inc.php";
- send_header("Administration - Judging Teams");
+ send_header("Judging Team Members",
 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php',
 			'Judges' => 'admin/judges.php')
 				);
 ?>
 <script language="javascript" type="text/javascript">
 function addbuttonclicked(team)
@ -69,8 +73,6 @@ function switchjudgeinfo()
 </script>
 <?
 	echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>\n";
 	echo "<a href=\"judges.php\">&lt;&lt; ".i18n("Back to Judges")."</a>\n";
 	if($_POST['action']=="add" && $_POST['team_num'] && count($_POST['judgelist'])>0)
 	{
--- a/admin/judges_teams_projects.php
+++ b/admin/judges_teams_projects.php
@ -23,11 +23,15 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 require("judges.inc.php");
 require("../projects.inc.php");
- send_header("Judging Teams Projects");
+ send_header("Judging Teams Projects",
 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php',
 			'Judges' => 'admin/judges.php')
 				);
 ?>
 <script language="javascript" type="text/javascript">
 function assign(ts)
@ -51,9 +55,6 @@ function eligibleclick()
 <?
 	echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>\n";
 	echo "<a href=\"judges.php\">&lt;&lt; ".i18n("Back to Judges")."</a>\n";
 	echo "<br />";
 	echo "<br />";
 if($_GET['action']) $action=$_GET['action'];
--- a/admin/judges_teams_timeslots.php
+++ b/admin/judges_teams_timeslots.php
@ -23,10 +23,14 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 require("judges.inc.php");
- send_header("Judging Teams Timeslots");
+ send_header("Judging Teams Timeslots",
 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php',
 			'Judges' => 'admin/judges.php')
 				);
 ?>
 <script language="javascript" type="text/javascript">
 function checkall(what)
@ -70,9 +74,6 @@ function checkinvert(what)
 <?
 	echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>\n";
 	echo "<a href=\"judges.php\">&lt;&lt; ".i18n("Back to Judges")."</a>\n";
 	echo "<br />";
 	echo "<br />";
 if($_GET['action']=="delete" && $_GET['delete'])
--- a/admin/judges_timeslots.php
+++ b/admin/judges_timeslots.php
@ -23,11 +23,12 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
- send_header("Judging Timeslots");
+ send_header("Judging Timeslots",
-	echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>\n";
+ 		array('Committee Main' => 'committee_main.php',
-	echo "<a href=\"judges.php\">&lt;&lt; ".i18n("Back to Judges")."</a>\n";
+			'Administration' => 'admin/index.php',
- 	echo "<br />";
+			'Judges' => 'admin/judges.php')
 				);
 	echo "<br />";
 if($_POST['action']=="add" || $_POST['action']=="edit")
--- a/admin/project_editor.php
+++ b/admin/project_editor.php
@ -24,12 +24,16 @@
 <?
 require("../common.inc.php");
 require("../register_participants.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 //send the header
- send_header("Project Editor");
+ send_header("Project Editor",
 	array('Committee Main' => 'committee_main.php',
 		'Administration' => 'admin/index.php',
 		'Participant Registration' => 'admin/registration.php')
 		'Registration List and Statistics' => 'admin/registration_list.php')
 			);
 echo "<a href=\"registration_list.php\">&lt;&lt; ".i18n("Back to Registration List")."</a><br />";
 echo "<br />";
 if($_POST['registration_id']) $registration_id=$_POST['registration_id'];
--- a/admin/registration.php
+++ b/admin/registration.php
@ -23,9 +23,11 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
- send_header("Administration - Participant Registration");
+ send_header("Participant Registration",
- echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a><br />";
+ 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php')
 			);
 echo "<br />";
 echo "<a href=\"registration_receivedforms.php\">".i18n("Input Received Forms")."</a> <br />";
 echo "<a href=\"registration_list.php\">".i18n("Registration List and Statistics")."</a> <br />";
--- a/admin/registration_list.php
+++ b/admin/registration_list.php
@ -23,10 +23,14 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 require("../register_participants.inc.php");
- send_header("Participant Registration - List and Statistics");
+ send_header("Registration List and Statistics",
 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php',
 			'Participant Registration' => 'admin/registration.php')
 				);
 ?>
 <script language="javascript" type="text/javascript">
@ -39,9 +43,6 @@ function openstudentinfo(id)
 }
 </script>
 <?
 echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>";
 echo " &nbsp; ";
 echo "<a href=\"registration.php\">&lt;&lt; ".i18n("Back to Registration")."</a>";
 if($_GET['action']=="delete" && $_GET['delete'])
 {
 	$regid=$_GET['delete'];
@ -56,7 +57,6 @@ function openstudentinfo(id)
 }
 echo "<br />";
 echo "<br />";
 echo i18n("Choose Status").":";
 echo "<form name=\"statuschangerform\" method=\"get\" action=\"registration_list.php\">";
 echo "<select name=\"showstatus\" onchange=\"document.forms.statuschangerform.submit()\">";
--- a/admin/registration_receivedforms.php
+++ b/admin/registration_receivedforms.php
@ -23,14 +23,14 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 require("../register_participants.inc.php");
- send_header("Participant Registration - Received Forms");
+ send_header("Received Forms",
- echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>";
+ 		array('Committee Main' => 'committee_main.php',
- echo " &nbsp; ";
+			'Administration' => 'admin/index.php',
- echo "<a href=\"registration.php\">&lt;&lt; ".i18n("Back to Registration")."</a>";
+			'Participant Registration' => 'admin/registration.php')
- echo "<br />";
+				);
 echo "<br />";
 $showformatbottom=true;
--- a/admin/registration_webconsent.php
+++ b/admin/registration_webconsent.php
@ -23,15 +23,14 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
- send_header("Participant Registration - Web Consent");
+ send_header("Web Consent", 
 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php',
 			'Participant Registration' => 'admin/registration.php')
 				);
 echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>";
 echo " &nbsp; ";
 echo " &nbsp; ";
 echo "<a href=\"registration.php\">&lt;&lt; ".i18n("Back to Registration")."</a>";
 echo "<br />";
 echo "<br />";
 if(is_array($_POST['changed']))
--- a/admin/reports.php
+++ b/admin/reports.php
@ -24,9 +24,11 @@
 <?
 require("../common.inc.php");
 require_once('reports.inc.php');
- auth_required('admin');
+ user_auth_required('committee', 'admin');
- send_header("Administration - Reports");
+ send_header("Reports",
- echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a><br />";
+ 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php')
 			);
 echo "<br />";
 $id = intval($_POST['id']);
--- a/admin/reports_acpresentation.php
+++ b/admin/reports_acpresentation.php
@ -1,6 +1,6 @@
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 require("../lpdf.php");
 require("../lcsv.php");
--- a/admin/reports_acscript.php
+++ b/admin/reports_acscript.php
@ -1,6 +1,6 @@
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 require("../lpdf.php");
 require("../lcsv.php");
--- a/admin/reports_editor.php
+++ b/admin/reports_editor.php
@ -23,7 +23,7 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 require_once('reports_students.inc.php');
 require_once('reports_judges.inc.php');
@ -218,7 +218,10 @@ function reportChange()
 	exit;
 }
- send_header("Administration - Reports > Editor");
+ send_header("Reports Editor",
 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php')
 			);
 if($repaction == 'save') {
 	/* Save the report */
@ -254,7 +257,6 @@ function reportChange()
 case 'volunteer': $fields = $report_volunteers_fields; break;
 }
 echo "<a href=\"reports.php\">&lt;&lt; ".i18n("Back to Reports")."</a><br />";
 echo "<br />";
 echo "<form method=\"post\" name=\"reportload\" action=\"reports_editor.php\" onChange=\"document.reportload.submit()\">";
--- a/admin/reports_gen.php
+++ b/admin/reports_gen.php
@ -23,7 +23,7 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 require_once('reports_students.inc.php');
 require_once('reports.inc.php');
--- a/admin/reports_judges.php
+++ b/admin/reports_judges.php
@ -23,7 +23,7 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 require("../lpdf.php");
 require("../lcsv.php");
 require("../questions.inc.php");
--- a/admin/reports_judges_teams_projects.php
+++ b/admin/reports_judges_teams_projects.php
@ -23,7 +23,7 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 require("../lpdf.php");
 require("../lcsv.php");
 require("judges.inc.php");
--- a/admin/reports_mailinglabels.php
+++ b/admin/reports_mailinglabels.php
@ -23,8 +23,13 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
- send_header("Administration - Reports > Mailing Labels");
+ send_header("Mailing Label Generator",
 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php',
 			'Reports' => 'admin/reports.php')
 			);
 ?>
 <script type="text/javascript">
@ -52,7 +57,6 @@ function reportChange()
 </script>
 <?
 echo "<a href=\"reports.php\">&lt;&lt; ".i18n("Back to Reports")."</a><br />";
 echo "<br />";
 echo "<form method=\"get\" name=\"mailinglabels\" action=\"reports_mailinglabels_generator.php\">";
--- a/admin/reports_mailinglabels_generator.php
+++ b/admin/reports_mailinglabels_generator.php
@ -23,7 +23,7 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 require("../lpdf.php");
 require("../lcsv.php");
--- a/admin/reports_program_awards.php
+++ b/admin/reports_program_awards.php
@ -1,6 +1,6 @@
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 require("../lpdf.php");
 require("../lcsv.php");
--- a/admin/reports_projects_details.php
+++ b/admin/reports_projects_details.php
@ -23,7 +23,7 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 require("../lpdf.php");
 require("../lcsv.php");
 require("judges.inc.php");
--- a/admin/reports_projects_judges_teams.php
+++ b/admin/reports_projects_judges_teams.php
@ -23,7 +23,7 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 require("../lpdf.php");
 require("../lcsv.php");
 require("judges.inc.php");
--- a/admin/reports_schoolaccesscodes.php
+++ b/admin/reports_schoolaccesscodes.php
@ -23,7 +23,7 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 require("../lpdf.php");
 require("../lcsv.php");
--- a/admin/reports_students.inc.php
+++ b/admin/reports_students.inc.php
@ -72,7 +72,7 @@ $report_students_fields = array(
 	'email' => array(
 		'name' => 'Student -- Email',
 		'header' => 'Email',
-		'width' => 1.5,
+		'width' => 1.75,
 		'table' => 'students.email'),
 	'phone' => array(
@ -321,7 +321,7 @@ $report_students_fields = array(
 		'header' => 'Prize Name',
 		'width' => 4,
 		'table' => "CONCAT(award_prizes.prize,' in ',projectcategories.category,' ', projectdivisions.division)",
-		'table_sort' => 'award_awards.category',
+		'table_sort' => 'award_prizes.order',
 		'components' => array('awards')),
 	'nom_awards' => array(
--- a/admin/reports_tour_selection.php
+++ b/admin/reports_tour_selection.php
@ -23,7 +23,7 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 require("../lpdf.php");
 require("../lcsv.php");
--- a/admin/reports_tours.php
+++ b/admin/reports_tours.php
@ -23,7 +23,7 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 require("../lpdf.php");
 require("../lcsv.php");
--- a/admin/schools.php
+++ b/admin/schools.php
@ -23,13 +23,8 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 send_header("Administration - Schools");
 ?>
 <?
 	echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>\n";
 	if($_POST['save']=="edit" || $_POST['save']=="add")
 	{
@ -69,21 +64,21 @@
 		echo mysql_error();
 		if($_POST['save']=="add")
-			echo happy("School successfully added");
+			$notice = 'added';
 		else
-			echo happy("Successfully saved changes to school");
+			$notice = 'saved';
 	}
 	if($_GET['action']=="delete" && $_GET['delete'])
 	{
 		mysql_query("DELETE FROM schools WHERE id='".$_GET['delete']."'");
-		echo happy("School successfully deleted");
+		$notice = 'deleted';
 	}
 	if($_GET['action']=="clearaccesscodes")
 	{
 		mysql_query("UPDATE schools SET accesscode=NULL WHERE year='{$config['FAIRYEAR']}'");
-		echo happy("Access Codes successfully cleared from all schools");
+		$notice = 'clearaccess';
 	}
 	if($_GET['action']=="makeaccesscodes")
@ -95,23 +90,25 @@
 			mysql_query("UPDATE schools SET accesscode='$ac' WHERE id='$r->id' AND year='{$config['FAIRYEAR']}'");
 		}
-		echo happy("Access Codes successfully set for schools that didn't have one");
+		$notice = 'makeaccess';
 	}
 	if($_GET['action']=="edit" || $_GET['action']=="add")
 	{
-		echo "<a href=\"schools.php\">&lt;&lt; ".i18n("Back to Schools")."</a>\n";
+ 		send_header(($_GET['action']=='edit') ? "Edit School" : "Add New School",
 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php',
 			'School Management' => 'admin/schools.php')
 				);
 		if($_GET['action']=="edit")
 		{
 			echo "<h3>".i18n("Edit School")."</h3>\n";
 			$buttontext="Save School";
 			$q=mysql_query("SELECT * FROM schools WHERE id='".$_GET['edit']."'");
 			$r=mysql_fetch_object($q);
 		}
 		else if($_GET['action']=="add")
 		{
 			echo "<h3>".i18n("Add New School")."</h3>\n";
 			$buttontext="Add School";
 		}
 		$buttontext=i18n($buttontext);
@ -193,7 +190,28 @@
 	}
 	else
 	{
-		
+ 		send_header("School Management",
 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php')
 				);
 		switch($notice) {
 		case 'added':
 			echo happy("School successfully added");
 			break;
 		case 'saved':
 			echo happy("Successfully saved changes to school");
 			break;
 		case 'deleted':
 			echo happy("School successfully deleted");
 			break;
 		case 'clearaccess':
 			echo happy("Access Codes successfully cleared from all schools");
 			break;
 		case 'makeaccess':
 			echo happy("Access Codes successfully set for schools that didn't have one");
 			break;
 		}
 		echo "<br />";
 		echo "<a href=\"schools.php?action=add\">Add New School</a>\n";
--- a/admin/schoolsimport.php
+++ b/admin/schoolsimport.php
@ -25,11 +25,14 @@
 require("../common.inc.php");
 require("../csvimport.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
- send_header("Administration - Schools Import");
+ send_header("Schools Import",
 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php',
 			'School Management' => 'admin/schools.php')
 			);
 	echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>\n";
 	$showform=true;
 	if($_POST['action']=="import")
--- a/admin/settranslation.php
+++ b/admin/settranslation.php
@ -23,7 +23,7 @@
 ?>
 <?
 include "../common.inc.php";
-auth_required('admin');
+user_auth_required('committee', 'admin');
 foreach($config['languages'] AS $l=>$ln)
 {
 	if($l=="en") continue;
--- a/admin/student_editor.php
+++ b/admin/student_editor.php
@ -23,10 +23,14 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required("admin");
+ user_auth_required('committee', 'admin');
- send_header("Student Editor");
+ send_header("Student Editor",
- echo "<a href=\"registration_list.php\">&lt;&lt; ".i18n("Back to Registration List")."</a><br />";
+ 	array('Committee Main' => 'committee_main.php',
 		'Administration' => 'admin/index.php',
 		'Participant Registration' => 'admin/registration.php',
 		'Registration List and Statistics' => 'admin/registration_list.php')
 			);
 echo "<br />";
 if($_POST['registration_id']) $registration_id=$_POST['registration_id'];
--- a/admin/students_info.php
+++ b/admin/students_info.php
@ -27,7 +27,7 @@
 //it needs the student ID passed into it.
 //thus, we do not need the normal header and footer
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 if($_GET['id'])
 {
--- a/admin/tours_manager.php
+++ b/admin/tours_manager.php
@ -23,11 +23,14 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 require("../tours.class.php");
 require("../tableeditor.class.php");
- send_header("Administration - Tours - Manager");
+ send_header("Tour Management",
 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php')
 			);
 ?>
 <script language="javascript" type="text/javascript">
@ -45,12 +48,10 @@ function opentoursinfo(id)
 </script>
 <?
 	echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>\n";
 	$icon_path = $config['SFIABDIRECTORY']."/images/16/";
 	$icon_exitension = $config['icon_extension'];
 	print("<br />");
 	$editor = new TableEditor('tours');
--- a/admin/translations.php
+++ b/admin/translations.php
@ -23,10 +23,12 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
-send_header("Translations");
+ send_header("Translations",
- echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>\n";
+ 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php')
 			);
 //by default, we will edit the french translations
 if($_GET['translang']) $_SESSION['translang']=$_GET['translang'];
--- a/admin/volunteer_positions_manager.php
+++ b/admin/volunteer_positions_manager.php
@ -25,7 +25,7 @@
 require("../common.inc.php");
 require("../tableeditor.class.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 send_header("Volunteer Positions Manager",
 		 array("Administration" => "admin/") 
 		                 );
--- a/admin/winners.php
+++ b/admin/winners.php
@ -24,9 +24,8 @@
 <?
 require("../common.inc.php");
 require("../projects.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 send_header("Administration - Award Winners");
 if($_GET['award_sponsors_id']) $award_sponsors_id=$_GET['award_sponsors_id'];
 else if($_POST['award_sponsors_id']) $award_sponsors_id=$_POST['award_sponsors_id'];
@ -36,10 +35,9 @@
 echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>\n";
-if($_GET['edit']) $edit=$_GET['edit'];
+if($_GET['edit']) $edit=intval($_GET['edit']);
-if($_POST['edit']) $edit=$_POST['edit'];
+if($_POST['edit']) $edit=intval($_POST['edit']);
 if($_GET['action']) $action=$_GET['action'];
 if($_POST['action']) $action=$_POST['action'];
@ -62,14 +60,15 @@ if($action=="addwinner")
 		if($count<$number)
 		{
 			mysql_query("INSERT INTO winners (awards_prizes_id,projects_id,year) VALUES ('".$_POST['prize_id']."','".$_POST['winner']."','".$config['FAIRYEAR']."')");
-			echo happy(i18n("Winning project added"));
+			$notice = 'added';
 		}
 		else
 		{
-			echo error(i18n("This prize cannot accept any more winners.  Maximum: %1",array($number)));
+			$notice = 'nomore';
 			$notice_data = array($number);
 		}
 	}
-		$action="edit";
+	$action="edit";
 }
 if($action=="delete")
@ -77,14 +76,31 @@ if($action=="delete")
 	if($_GET['prize_id'] && $_GET['project_id'])
 	{
 		mysql_query("DELETE FROM winners WHERE awards_prizes_id='".$_GET['prize_id']."' AND projects_id='".$_GET['project_id']."'");
-		echo happy(i18n("Winning project removed"));
+		$notice = 'removed';
 	}
 	$action="edit";
 }
 if($action=="edit" && $edit)
 {
-	echo "<a href=\"winners.php\">&lt;&lt; Back to Winners List</a><br />";
+ 	send_header("Choose Projects",
 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php',
 			'Enter Winning Projects' => 'admin/winners.php')
 			);
 	switch($notice) {
 	case 'removed':
 		echo happy(i18n("Winning project removed"));
 		break;
 	case 'nomore':
 		echo error(i18n("This prize cannot accept any more winners.  Maximum: %1",$notice_data));
 		break;
 	case 'added':
 		echo happy(i18n("Winning project added"));
 		break;
 	}
 	$q=mysql_query("SELECT 
 				award_awards.id,
 				award_awards.name,
@ -234,6 +250,22 @@ if($action=="edit" && $edit)
 }
 else
 {
 	send_header("Enter Winning Projects",
 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php')
 			);
 	switch($notice) {
 	case 'removed':
 		echo happy(i18n("Winning project removed"));
 		break;
 	case 'nomore':
 		echo error(i18n("This prize cannot accept any more winners.  Maximum: %1",$notice_data));
 		break;
 	case 'added':
 		echo happy(i18n("Winning project added"));
 		break;
 	}
 	$q=mysql_query("SELECT 
 				award_awards.id,
--- a/admin/ysfstats.php
+++ b/admin/ysfstats.php
@ -22,11 +22,13 @@
 ?>
 <?
 require("../common.inc.php");
- auth_required('admin');
+ user_auth_required('committee', 'admin');
 include "xml.inc.php";
- send_header("YSF Regional Affiliation Stats");
+ send_header("YSF Regional Affiliation Stats",
- echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>\n";
+ 		array('Committee Main' => 'committee_main.php',
 			'Administration' => 'admin/index.php')
 			);
 echo "<br />";
 if($_POST['action']=="register" && $_POST['xml'])