forked from science-ation/science-ation
Don't allow any changes to any forms once the forms have been received by the fair
Also, update the CSS to make teh h1-h4's smaller and reduce the margin-bottom size for them
This commit is contained in:
james
parent
54098a8aab
commit
afdc22a2b2
@ -1,4 +1,16 @@
|
|||||||
<?
|
<?
|
||||||
|
function registrationFormsReceived($reg_id="")
|
||||||
|
{
|
||||||
|
if($reg_id) $rid=$reg_id;
|
||||||
|
else $rid=$_SESSION['registration_id'];
|
||||||
|
$q=mysql_query("SELECT status FROM registrations WHERE id='$rid'");
|
||||||
|
$r=mysql_fetch_object($q);
|
||||||
|
if($r->status=="complete" || $r->status=="paymentpending")
|
||||||
|
return true;
|
||||||
|
else
|
||||||
|
return false;
|
||||||
|
|
||||||
|
}
|
||||||
|
|
||||||
function studentStatus($reg_id="")
|
function studentStatus($reg_id="")
|
||||||
{
|
{
|
||||||
|
|||||||
@ -48,28 +48,35 @@ echo mysql_error();
|
|||||||
|
|
||||||
if($_POST['action']=="save")
|
if($_POST['action']=="save")
|
||||||
{
|
{
|
||||||
//first, lets make sure this emergency contact really does belong to them
|
if(registrationFormsReceived())
|
||||||
foreach($_POST['ids'] AS $id)
|
|
||||||
{
|
{
|
||||||
$q=mysql_query("SELECT * FROM emergencycontact WHERE id='$id' AND registrations_id='".$_SESSION['registration_id']."' AND year='".$config['FAIRYEAR']."'");
|
echo error(i18n("Cannot make changes to forms once they have been received by the fair"));
|
||||||
if(mysql_num_rows($q)==1)
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
//first, lets make sure this emergency contact really does belong to them
|
||||||
|
foreach($_POST['ids'] AS $id)
|
||||||
{
|
{
|
||||||
mysql_query("UPDATE emergencycontact SET ".
|
$q=mysql_query("SELECT * FROM emergencycontact WHERE id='$id' AND registrations_id='".$_SESSION['registration_id']."' AND year='".$config['FAIRYEAR']."'");
|
||||||
"firstname='".mysql_escape_string(stripslashes($_POST['firstname'][$id]))."', ".
|
if(mysql_num_rows($q)==1)
|
||||||
"lastname='".mysql_escape_string(stripslashes($_POST['lastname'][$id]))."', ".
|
{
|
||||||
"relation='".mysql_escape_string(stripslashes($_POST['relation'][$id]))."', ".
|
mysql_query("UPDATE emergencycontact SET ".
|
||||||
"phone1='".mysql_escape_string(stripslashes($_POST['phone1'][$id]))."', ".
|
"firstname='".mysql_escape_string(stripslashes($_POST['firstname'][$id]))."', ".
|
||||||
"phone2='".mysql_escape_string(stripslashes($_POST['phone2'][$id]))."', ".
|
"lastname='".mysql_escape_string(stripslashes($_POST['lastname'][$id]))."', ".
|
||||||
"phone3='".mysql_escape_string(stripslashes($_POST['phone3'][$id]))."', ".
|
"relation='".mysql_escape_string(stripslashes($_POST['relation'][$id]))."', ".
|
||||||
"phone4='".mysql_escape_string(stripslashes($_POST['phone4'][$id]))."', ".
|
"phone1='".mysql_escape_string(stripslashes($_POST['phone1'][$id]))."', ".
|
||||||
"email='".mysql_escape_string(stripslashes($_POST['email'][$id]))."' ".
|
"phone2='".mysql_escape_string(stripslashes($_POST['phone2'][$id]))."', ".
|
||||||
"WHERE id='$id'");
|
"phone3='".mysql_escape_string(stripslashes($_POST['phone3'][$id]))."', ".
|
||||||
echo mysql_error();
|
"phone4='".mysql_escape_string(stripslashes($_POST['phone4'][$id]))."', ".
|
||||||
echo notice(i18n("Emergency contact information successfully updated"));
|
"email='".mysql_escape_string(stripslashes($_POST['email'][$id]))."' ".
|
||||||
}
|
"WHERE id='$id'");
|
||||||
else
|
echo mysql_error();
|
||||||
{
|
echo notice(i18n("Emergency contact information successfully updated"));
|
||||||
echo error(i18n("Invalid emergency contact to update (%1)"),array($id));
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
echo error(i18n("Invalid emergency contact to update (%1)"),array($id));
|
||||||
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|||||||
@ -14,7 +14,7 @@
|
|||||||
exit;
|
exit;
|
||||||
}
|
}
|
||||||
|
|
||||||
$q=mysql_query("SELECT registrations.id AS regid, students.id AS studentid, students.firstname FROM registrations,students ".
|
$q=mysql_query("SELECT registrations.status AS status, registrations.id AS regid, students.id AS studentid, students.firstname FROM registrations,students ".
|
||||||
"WHERE students.email='".$_SESSION['email']."' ".
|
"WHERE students.email='".$_SESSION['email']."' ".
|
||||||
"AND registrations.num='".$_SESSION['registration_number']."' ".
|
"AND registrations.num='".$_SESSION['registration_number']."' ".
|
||||||
"AND registrations.id='".$_SESSION['registration_id']."' ".
|
"AND registrations.id='".$_SESSION['registration_id']."' ".
|
||||||
@ -39,7 +39,25 @@ echo mysql_error();
|
|||||||
echo "<br />";
|
echo "<br />";
|
||||||
}
|
}
|
||||||
echo "<br />";
|
echo "<br />";
|
||||||
echo i18n("Please use the checklist below to complete your registration. Click on an item in the table to edit that information. When you have entered all information, the <b>Status</b> field will change to <b>Complete</b>");
|
|
||||||
|
if(registrationFormsReceived())
|
||||||
|
{
|
||||||
|
if($r->status=="complete")
|
||||||
|
{
|
||||||
|
echo i18n("Congratulations, You are successfully registered for the %1",array($config['fairname']));
|
||||||
|
|
||||||
|
}
|
||||||
|
else if($r->status=="paymentpending")
|
||||||
|
{
|
||||||
|
echo i18n("We have received your forms but are missing your registration fee. You are NOT registered for the fair until your registration fee has been received");
|
||||||
|
|
||||||
|
}
|
||||||
|
|
||||||
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
echo i18n("Please use the checklist below to complete your registration. Click on an item in the table to edit that information. When you have entered all information, the <b>Status</b> field will change to <b>Complete</b>");
|
||||||
|
}
|
||||||
echo "<br />";
|
echo "<br />";
|
||||||
echo "<br />";
|
echo "<br />";
|
||||||
|
|
||||||
@ -119,6 +137,11 @@ echo "</td></tr>";
|
|||||||
|
|
||||||
//received information
|
//received information
|
||||||
echo "<tr><td>".i18n("Signature Page Received")."</td><td>";
|
echo "<tr><td>".i18n("Signature Page Received")."</td><td>";
|
||||||
|
if(registrationFormsReceived())
|
||||||
|
echo outputStatus("complete");
|
||||||
|
else
|
||||||
|
echo outputStatus("incomplete");
|
||||||
|
|
||||||
//check to see if its complete
|
//check to see if its complete
|
||||||
echo "</td></tr>";
|
echo "</td></tr>";
|
||||||
|
|
||||||
|
|||||||
@ -40,63 +40,77 @@ echo mysql_error();
|
|||||||
|
|
||||||
if($_POST['action']=="save")
|
if($_POST['action']=="save")
|
||||||
{
|
{
|
||||||
$x=1;
|
if(registrationFormsReceived())
|
||||||
while($_POST["num"][$x])
|
|
||||||
{
|
{
|
||||||
if($_POST['id'][$x]==0)
|
echo error(i18n("Cannot make changes to forms once they have been received by the fair"));
|
||||||
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
$x=1;
|
||||||
|
while($_POST["num"][$x])
|
||||||
{
|
{
|
||||||
//only insert if we have a name
|
if($_POST['id'][$x]==0)
|
||||||
if($_POST['firstname'][$x] && $_POST['lastname'][$x])
|
|
||||||
{
|
{
|
||||||
//INSERT new record
|
//only insert if we have a name
|
||||||
mysql_query("INSERT INTO mentors (registrations_id,firstname,lastname,email,phone,organization,position,description,year) VALUES (".
|
if($_POST['firstname'][$x] && $_POST['lastname'][$x])
|
||||||
"'".$_SESSION['registration_id']."', ".
|
{
|
||||||
"'".mysql_escape_string(stripslashes($_POST['firstname'][$x]))."', ".
|
//INSERT new record
|
||||||
"'".mysql_escape_string(stripslashes($_POST['lastname'][$x]))."', ".
|
mysql_query("INSERT INTO mentors (registrations_id,firstname,lastname,email,phone,organization,position,description,year) VALUES (".
|
||||||
"'".mysql_escape_string(stripslashes($_POST['email'][$x]))."', ".
|
"'".$_SESSION['registration_id']."', ".
|
||||||
"'".mysql_escape_string(stripslashes($_POST['phone'][$x]))."', ".
|
"'".mysql_escape_string(stripslashes($_POST['firstname'][$x]))."', ".
|
||||||
"'".mysql_escape_string(stripslashes($_POST['organization'][$x]))."', ".
|
"'".mysql_escape_string(stripslashes($_POST['lastname'][$x]))."', ".
|
||||||
"'".mysql_escape_string(stripslashes($_POST['position'][$x]))."', ".
|
"'".mysql_escape_string(stripslashes($_POST['email'][$x]))."', ".
|
||||||
"'".mysql_escape_string(stripslashes($_POST['description'][$x]))."', ".
|
"'".mysql_escape_string(stripslashes($_POST['phone'][$x]))."', ".
|
||||||
"'".$config['FAIRYEAR']."')");
|
"'".mysql_escape_string(stripslashes($_POST['organization'][$x]))."', ".
|
||||||
echo mysql_error();
|
"'".mysql_escape_string(stripslashes($_POST['position'][$x]))."', ".
|
||||||
|
"'".mysql_escape_string(stripslashes($_POST['description'][$x]))."', ".
|
||||||
|
"'".$config['FAIRYEAR']."')");
|
||||||
|
echo mysql_error();
|
||||||
|
|
||||||
|
echo notice(i18n("%1 %2 successfully added",array($_POST['firstname'][$x],$_POST['lastname'][$x])));
|
||||||
|
}
|
||||||
|
|
||||||
echo notice(i18n("%1 %2 successfully added",array($_POST['firstname'][$x],$_POST['lastname'][$x])));
|
|
||||||
}
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
//UPDATE existing record
|
||||||
|
mysql_query("UPDATE mentors SET ".
|
||||||
|
"firstname='".mysql_escape_string(stripslashes($_POST['firstname'][$x]))."', ".
|
||||||
|
"lastname='".mysql_escape_string(stripslashes($_POST['lastname'][$x]))."', ".
|
||||||
|
"email='".mysql_escape_string(stripslashes($_POST['email'][$x]))."', ".
|
||||||
|
"phone='".mysql_escape_string(stripslashes($_POST['phone'][$x]))."', ".
|
||||||
|
"organization='".mysql_escape_string(stripslashes($_POST['organization'][$x]))."', ".
|
||||||
|
"position='".mysql_escape_string(stripslashes($_POST['position'][$x]))."', ".
|
||||||
|
"description='".mysql_escape_string(stripslashes($_POST['description'][$x]))."' ".
|
||||||
|
"WHERE id='".$_POST['id'][$x]."'");
|
||||||
|
echo notice(i18n("%1 %2 successfully updated",array($_POST['firstname'][$x],$_POST['lastname'][$x])));
|
||||||
|
|
||||||
|
}
|
||||||
|
$x++;
|
||||||
}
|
}
|
||||||
else
|
|
||||||
{
|
|
||||||
//UPDATE existing record
|
|
||||||
mysql_query("UPDATE mentors SET ".
|
|
||||||
"firstname='".mysql_escape_string(stripslashes($_POST['firstname'][$x]))."', ".
|
|
||||||
"lastname='".mysql_escape_string(stripslashes($_POST['lastname'][$x]))."', ".
|
|
||||||
"email='".mysql_escape_string(stripslashes($_POST['email'][$x]))."', ".
|
|
||||||
"phone='".mysql_escape_string(stripslashes($_POST['phone'][$x]))."', ".
|
|
||||||
"organization='".mysql_escape_string(stripslashes($_POST['organization'][$x]))."', ".
|
|
||||||
"position='".mysql_escape_string(stripslashes($_POST['position'][$x]))."', ".
|
|
||||||
"description='".mysql_escape_string(stripslashes($_POST['description'][$x]))."' ".
|
|
||||||
"WHERE id='".$_POST['id'][$x]."'");
|
|
||||||
echo notice(i18n("%1 %2 successfully updated",array($_POST['firstname'][$x],$_POST['lastname'][$x])));
|
|
||||||
|
|
||||||
}
|
|
||||||
$x++;
|
|
||||||
}
|
}
|
||||||
|
|
||||||
}
|
}
|
||||||
|
|
||||||
if($_GET['action']=="removementor")
|
if($_GET['action']=="removementor")
|
||||||
{
|
{
|
||||||
//first make sure this is one belonging to this registration id
|
if(registrationFormsReceived())
|
||||||
$q=mysql_query("SELECT id FROM mentors WHERE id='".$_GET['removementor']."' AND registrations_id='".$_SESSION['registration_id']."'");
|
|
||||||
if(mysql_num_rows($q)==1)
|
|
||||||
{
|
{
|
||||||
mysql_query("DELETE FROM mentors WHERE id='".$_GET['removementor']."' AND registrations_id='".$_SESSION['registration_id']."'");
|
echo error(i18n("Cannot make changes to forms once they have been received by the fair"));
|
||||||
echo notice(i18n("Mentor successfully removed"));
|
|
||||||
}
|
}
|
||||||
else
|
else
|
||||||
{
|
{
|
||||||
echo error(i18n("Invalid mentor to remove"));
|
//first make sure this is one belonging to this registration id
|
||||||
|
$q=mysql_query("SELECT id FROM mentors WHERE id='".$_GET['removementor']."' AND registrations_id='".$_SESSION['registration_id']."'");
|
||||||
|
if(mysql_num_rows($q)==1)
|
||||||
|
{
|
||||||
|
mysql_query("DELETE FROM mentors WHERE id='".$_GET['removementor']."' AND registrations_id='".$_SESSION['registration_id']."'");
|
||||||
|
echo notice(i18n("Mentor successfully removed"));
|
||||||
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
echo error(i18n("Invalid mentor to remove"));
|
||||||
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|||||||
@ -48,25 +48,32 @@ echo mysql_error();
|
|||||||
|
|
||||||
if($_POST['action']=="save")
|
if($_POST['action']=="save")
|
||||||
{
|
{
|
||||||
//first, lets make sure this project really does belong to them
|
if(registrationFormsReceived())
|
||||||
$q=mysql_query("SELECT * FROM projects WHERE id='".$_POST['id']."' AND registrations_id='".$_SESSION['registration_id']."' AND year='".$config['FAIRYEAR']."'");
|
|
||||||
if(mysql_num_rows($q)==1)
|
|
||||||
{
|
{
|
||||||
mysql_query("UPDATE projects SET ".
|
echo error(i18n("Cannot make changes to forms once they have been received by the fair"));
|
||||||
"title='".mysql_escape_string(stripslashes($_POST['title']))."', ".
|
|
||||||
"projectdivisions_id='".$_POST['projectdivisions_id']."', ".
|
|
||||||
"language='".mysql_escape_string(stripslashes($_POST['language']))."', ".
|
|
||||||
"req_table='".mysql_escape_string(stripslashes($_POST['req_table']))."', ".
|
|
||||||
"req_electricity='".mysql_escape_string(stripslashes($_POST['req_electricity']))."', ".
|
|
||||||
"req_special='".mysql_escape_string(stripslashes($_POST['req_special']))."', ".
|
|
||||||
"summary='".mysql_escape_string(stripslashes($_POST['summary']))."' ".
|
|
||||||
"WHERE id='".$_POST['id']."'");
|
|
||||||
echo mysql_error();
|
|
||||||
echo notice(i18n("Project information successfully updated"));
|
|
||||||
}
|
}
|
||||||
else
|
else
|
||||||
{
|
{
|
||||||
echo error(i18n("Invalid project to update"));
|
//first, lets make sure this project really does belong to them
|
||||||
|
$q=mysql_query("SELECT * FROM projects WHERE id='".$_POST['id']."' AND registrations_id='".$_SESSION['registration_id']."' AND year='".$config['FAIRYEAR']."'");
|
||||||
|
if(mysql_num_rows($q)==1)
|
||||||
|
{
|
||||||
|
mysql_query("UPDATE projects SET ".
|
||||||
|
"title='".mysql_escape_string(stripslashes($_POST['title']))."', ".
|
||||||
|
"projectdivisions_id='".$_POST['projectdivisions_id']."', ".
|
||||||
|
"language='".mysql_escape_string(stripslashes($_POST['language']))."', ".
|
||||||
|
"req_table='".mysql_escape_string(stripslashes($_POST['req_table']))."', ".
|
||||||
|
"req_electricity='".mysql_escape_string(stripslashes($_POST['req_electricity']))."', ".
|
||||||
|
"req_special='".mysql_escape_string(stripslashes($_POST['req_special']))."', ".
|
||||||
|
"summary='".mysql_escape_string(stripslashes($_POST['summary']))."' ".
|
||||||
|
"WHERE id='".$_POST['id']."'");
|
||||||
|
echo mysql_error();
|
||||||
|
echo notice(i18n("Project information successfully updated"));
|
||||||
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
echo error(i18n("Invalid project to update"));
|
||||||
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|||||||
@ -39,22 +39,30 @@ echo mysql_error();
|
|||||||
|
|
||||||
if($_POST['action']=="save")
|
if($_POST['action']=="save")
|
||||||
{
|
{
|
||||||
//first we will delete all their old answer, its easier to delete and re-insert in this case then it would be to find the corresponding answers and update them
|
if(registrationFormsReceived())
|
||||||
mysql_query("DELETE FROM safety WHERE registrations_id='".$_SESSION['registration_id']."' AND year='".$config['FAIRYEAR']."'");
|
|
||||||
$safetyids=array_keys($_POST['safety']);
|
|
||||||
foreach($safetyids AS $key=>$val)
|
|
||||||
{
|
{
|
||||||
mysql_query("INSERT INTO safety (registrations_id,safetyquestions_id,year,answer) VALUES (".
|
echo error(i18n("Cannot make changes to forms once they have been received by the fair"));
|
||||||
"'".$_SESSION['registration_id']."', ".
|
|
||||||
"'$val', ".
|
|
||||||
"'".$config['FAIRYEAR']."', ".
|
|
||||||
"'".mysql_escape_string(stripslashes($_POST['safety'][$val]))."')");
|
|
||||||
echo mysql_error();
|
|
||||||
|
|
||||||
}
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
//first we will delete all their old answer, its easier to delete and re-insert in this case then it would be to find the corresponding answers and update them
|
||||||
|
mysql_query("DELETE FROM safety WHERE registrations_id='".$_SESSION['registration_id']."' AND year='".$config['FAIRYEAR']."'");
|
||||||
|
$safetyids=array_keys($_POST['safety']);
|
||||||
|
foreach($safetyids AS $key=>$val)
|
||||||
|
{
|
||||||
|
mysql_query("INSERT INTO safety (registrations_id,safetyquestions_id,year,answer) VALUES (".
|
||||||
|
"'".$_SESSION['registration_id']."', ".
|
||||||
|
"'$val', ".
|
||||||
|
"'".$config['FAIRYEAR']."', ".
|
||||||
|
"'".mysql_escape_string(stripslashes($_POST['safety'][$val]))."')");
|
||||||
|
echo mysql_error();
|
||||||
|
|
||||||
|
}
|
||||||
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
//output the current status
|
//output the current status
|
||||||
$newstatus=safetyStatus();
|
$newstatus=safetyStatus();
|
||||||
if($newstatus!="complete")
|
if($newstatus!="complete")
|
||||||
|
|||||||
@ -40,88 +40,101 @@ echo mysql_error();
|
|||||||
|
|
||||||
if($_POST['action']=="save")
|
if($_POST['action']=="save")
|
||||||
{
|
{
|
||||||
$x=1;
|
if(registrationFormsReceived())
|
||||||
while($_POST["num"][$x])
|
|
||||||
{
|
{
|
||||||
if($_POST['id'][$x]==0)
|
echo error(i18n("Cannot make changes to forms once they have been received by the fair"));
|
||||||
{
|
|
||||||
//INSERT new record
|
|
||||||
$dob=$_POST['year'][$x]."-".$_POST['month'][$x]."-".$_POST['day'][$x];
|
|
||||||
mysql_query("INSERT INTO students (registrations_id,firstname,lastname,sex,email,address,city,province,postalcode,phone,dateofbirth,grade,schools_id,tshirt,medicalalert,foodreq,teachername,teacheremail,year) VALUES (".
|
|
||||||
"'".$_SESSION['registration_id']."', ".
|
|
||||||
"'".mysql_escape_string(stripslashes($_POST['firstname'][$x]))."', ".
|
|
||||||
"'".mysql_escape_string(stripslashes($_POST['lastname'][$x]))."', ".
|
|
||||||
"'".mysql_escape_string(stripslashes($_POST['sex'][$x]))."', ".
|
|
||||||
"'".mysql_escape_string(stripslashes($_POST['email'][$x]))."', ".
|
|
||||||
"'".mysql_escape_string(stripslashes($_POST['address'][$x]))."', ".
|
|
||||||
"'".mysql_escape_string(stripslashes($_POST['city'][$x]))."', ".
|
|
||||||
"'".mysql_escape_string(stripslashes($_POST['province'][$x]))."', ".
|
|
||||||
"'".mysql_escape_string(stripslashes($_POST['postalcode'][$x]))."', ".
|
|
||||||
"'".mysql_escape_string(stripslashes($_POST['phone'][$x]))."', ".
|
|
||||||
"'$dob', ".
|
|
||||||
"'".mysql_escape_string(stripslashes($_POST['grade'][$x]))."', ".
|
|
||||||
"'".mysql_escape_string(stripslashes($_POST['schools_id'][$x]))."', ".
|
|
||||||
"'".mysql_escape_string(stripslashes($_POST['tshirt'][$x]))."', ".
|
|
||||||
"'".mysql_escape_string(stripslashes($_POST['medicalalert'][$x]))."', ".
|
|
||||||
"'".mysql_escape_string(stripslashes($_POST['foodreq'][$x]))."', ".
|
|
||||||
"'".mysql_escape_string(stripslashes($_POST['teachername'][$x]))."', ".
|
|
||||||
"'".mysql_escape_string(stripslashes($_POST['teacheremail'][$x]))."', ".
|
|
||||||
"'".$config['FAIRYEAR']."')");
|
|
||||||
|
|
||||||
echo notice(i18n("%1 %2 successfully added",array($_POST['firstname'][$x],$_POST['lastname'][$x])));
|
|
||||||
|
|
||||||
}
|
|
||||||
else
|
|
||||||
{
|
|
||||||
//UPDATE existing record
|
|
||||||
$dob=$_POST['year'][$x]."-".$_POST['month'][$x]."-".$_POST['day'][$x];
|
|
||||||
mysql_query("UPDATE students SET ".
|
|
||||||
"firstname='".mysql_escape_string(stripslashes($_POST['firstname'][$x]))."', ".
|
|
||||||
"lastname='".mysql_escape_string(stripslashes($_POST['lastname'][$x]))."', ".
|
|
||||||
"sex='".mysql_escape_string(stripslashes($_POST['sex'][$x]))."', ".
|
|
||||||
"email='".mysql_escape_string(stripslashes($_POST['email'][$x]))."', ".
|
|
||||||
"address='".mysql_escape_string(stripslashes($_POST['address'][$x]))."', ".
|
|
||||||
"city='".mysql_escape_string(stripslashes($_POST['city'][$x]))."', ".
|
|
||||||
"province='".mysql_escape_string(stripslashes($_POST['province'][$x]))."', ".
|
|
||||||
"postalcode='".mysql_escape_string(stripslashes($_POST['postalcode'][$x]))."', ".
|
|
||||||
"phone='".mysql_escape_string(stripslashes($_POST['phone'][$x]))."', ".
|
|
||||||
"dateofbirth='$dob', ".
|
|
||||||
"grade='".mysql_escape_string(stripslashes($_POST['grade'][$x]))."', ".
|
|
||||||
"schools_id='".mysql_escape_string(stripslashes($_POST['schools_id'][$x]))."', ".
|
|
||||||
"medicalalert='".mysql_escape_string(stripslashes($_POST['medicalalert'][$x]))."', ".
|
|
||||||
"foodreq='".mysql_escape_string(stripslashes($_POST['foodreq'][$x]))."', ".
|
|
||||||
"teachername='".mysql_escape_string(stripslashes($_POST['teachername'][$x]))."', ".
|
|
||||||
"teacheremail='".mysql_escape_string(stripslashes($_POST['teacheremail'][$x]))."', ".
|
|
||||||
"tshirt='".mysql_escape_string(stripslashes($_POST['tshirt'][$x]))."' ".
|
|
||||||
"WHERE id='".$_POST['id'][$x]."'");
|
|
||||||
echo notice(i18n("%1 %2 successfully updated",array($_POST['firstname'][$x],$_POST['lastname'][$x])));
|
|
||||||
|
|
||||||
}
|
|
||||||
$x++;
|
|
||||||
}
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
$x=1;
|
||||||
|
while($_POST["num"][$x])
|
||||||
|
{
|
||||||
|
if($_POST['id'][$x]==0)
|
||||||
|
{
|
||||||
|
//INSERT new record
|
||||||
|
$dob=$_POST['year'][$x]."-".$_POST['month'][$x]."-".$_POST['day'][$x];
|
||||||
|
mysql_query("INSERT INTO students (registrations_id,firstname,lastname,sex,email,address,city,province,postalcode,phone,dateofbirth,grade,schools_id,tshirt,medicalalert,foodreq,teachername,teacheremail,year) VALUES (".
|
||||||
|
"'".$_SESSION['registration_id']."', ".
|
||||||
|
"'".mysql_escape_string(stripslashes($_POST['firstname'][$x]))."', ".
|
||||||
|
"'".mysql_escape_string(stripslashes($_POST['lastname'][$x]))."', ".
|
||||||
|
"'".mysql_escape_string(stripslashes($_POST['sex'][$x]))."', ".
|
||||||
|
"'".mysql_escape_string(stripslashes($_POST['email'][$x]))."', ".
|
||||||
|
"'".mysql_escape_string(stripslashes($_POST['address'][$x]))."', ".
|
||||||
|
"'".mysql_escape_string(stripslashes($_POST['city'][$x]))."', ".
|
||||||
|
"'".mysql_escape_string(stripslashes($_POST['province'][$x]))."', ".
|
||||||
|
"'".mysql_escape_string(stripslashes($_POST['postalcode'][$x]))."', ".
|
||||||
|
"'".mysql_escape_string(stripslashes($_POST['phone'][$x]))."', ".
|
||||||
|
"'$dob', ".
|
||||||
|
"'".mysql_escape_string(stripslashes($_POST['grade'][$x]))."', ".
|
||||||
|
"'".mysql_escape_string(stripslashes($_POST['schools_id'][$x]))."', ".
|
||||||
|
"'".mysql_escape_string(stripslashes($_POST['tshirt'][$x]))."', ".
|
||||||
|
"'".mysql_escape_string(stripslashes($_POST['medicalalert'][$x]))."', ".
|
||||||
|
"'".mysql_escape_string(stripslashes($_POST['foodreq'][$x]))."', ".
|
||||||
|
"'".mysql_escape_string(stripslashes($_POST['teachername'][$x]))."', ".
|
||||||
|
"'".mysql_escape_string(stripslashes($_POST['teacheremail'][$x]))."', ".
|
||||||
|
"'".$config['FAIRYEAR']."')");
|
||||||
|
|
||||||
|
echo notice(i18n("%1 %2 successfully added",array($_POST['firstname'][$x],$_POST['lastname'][$x])));
|
||||||
|
|
||||||
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
//UPDATE existing record
|
||||||
|
$dob=$_POST['year'][$x]."-".$_POST['month'][$x]."-".$_POST['day'][$x];
|
||||||
|
mysql_query("UPDATE students SET ".
|
||||||
|
"firstname='".mysql_escape_string(stripslashes($_POST['firstname'][$x]))."', ".
|
||||||
|
"lastname='".mysql_escape_string(stripslashes($_POST['lastname'][$x]))."', ".
|
||||||
|
"sex='".mysql_escape_string(stripslashes($_POST['sex'][$x]))."', ".
|
||||||
|
"email='".mysql_escape_string(stripslashes($_POST['email'][$x]))."', ".
|
||||||
|
"address='".mysql_escape_string(stripslashes($_POST['address'][$x]))."', ".
|
||||||
|
"city='".mysql_escape_string(stripslashes($_POST['city'][$x]))."', ".
|
||||||
|
"province='".mysql_escape_string(stripslashes($_POST['province'][$x]))."', ".
|
||||||
|
"postalcode='".mysql_escape_string(stripslashes($_POST['postalcode'][$x]))."', ".
|
||||||
|
"phone='".mysql_escape_string(stripslashes($_POST['phone'][$x]))."', ".
|
||||||
|
"dateofbirth='$dob', ".
|
||||||
|
"grade='".mysql_escape_string(stripslashes($_POST['grade'][$x]))."', ".
|
||||||
|
"schools_id='".mysql_escape_string(stripslashes($_POST['schools_id'][$x]))."', ".
|
||||||
|
"medicalalert='".mysql_escape_string(stripslashes($_POST['medicalalert'][$x]))."', ".
|
||||||
|
"foodreq='".mysql_escape_string(stripslashes($_POST['foodreq'][$x]))."', ".
|
||||||
|
"teachername='".mysql_escape_string(stripslashes($_POST['teachername'][$x]))."', ".
|
||||||
|
"teacheremail='".mysql_escape_string(stripslashes($_POST['teacheremail'][$x]))."', ".
|
||||||
|
"tshirt='".mysql_escape_string(stripslashes($_POST['tshirt'][$x]))."' ".
|
||||||
|
"WHERE id='".$_POST['id'][$x]."'");
|
||||||
|
echo notice(i18n("%1 %2 successfully updated",array($_POST['firstname'][$x],$_POST['lastname'][$x])));
|
||||||
|
|
||||||
|
}
|
||||||
|
$x++;
|
||||||
|
}
|
||||||
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
if($_GET['action']=="removestudent")
|
if($_GET['action']=="removestudent")
|
||||||
{
|
{
|
||||||
//first make sure this is one belonging to this registration id
|
if(registrationFormsReceived())
|
||||||
$q=mysql_query("SELECT id FROM students WHERE id='".$_GET['removestudent']."' AND registrations_id='".$_SESSION['registration_id']."'");
|
|
||||||
if(mysql_num_rows($q)==1)
|
|
||||||
{
|
{
|
||||||
mysql_query("DELETE FROM students WHERE id='".$_GET['removestudent']."' AND registrations_id='".$_SESSION['registration_id']."'");
|
echo error(i18n("Cannot make changes to forms once they have been received by the fair"));
|
||||||
|
|
||||||
//now see if they have an emergency contact that also needs to be removed
|
|
||||||
|
|
||||||
$q=mysql_query("SELECT id FROM emergencycontact WHERE students_id='".$_GET['removestudent']."' AND registrations_id='".$_SESSION['registration_id']."' AND year='".$config['FAIRYEAR']."'");
|
|
||||||
//no need to error message if this doesnt exist
|
|
||||||
if(mysql_num_rows($q)==1)
|
|
||||||
mysql_query("DELETE FROM emergencycontact WHERE students_id='".$_GET['removestudent']."' AND registrations_id='".$_SESSION['registration_id']."' AND year='".$config['FAIRYEAR']."'");
|
|
||||||
|
|
||||||
echo notice(i18n("Student successfully removed"));
|
|
||||||
}
|
}
|
||||||
else
|
else
|
||||||
{
|
{
|
||||||
echo error(i18n("Invalid student to remove"));
|
//first make sure this is one belonging to this registration id
|
||||||
|
$q=mysql_query("SELECT id FROM students WHERE id='".$_GET['removestudent']."' AND registrations_id='".$_SESSION['registration_id']."'");
|
||||||
|
if(mysql_num_rows($q)==1)
|
||||||
|
{
|
||||||
|
mysql_query("DELETE FROM students WHERE id='".$_GET['removestudent']."' AND registrations_id='".$_SESSION['registration_id']."'");
|
||||||
|
|
||||||
|
//now see if they have an emergency contact that also needs to be removed
|
||||||
|
|
||||||
|
$q=mysql_query("SELECT id FROM emergencycontact WHERE students_id='".$_GET['removestudent']."' AND registrations_id='".$_SESSION['registration_id']."' AND year='".$config['FAIRYEAR']."'");
|
||||||
|
//no need to error message if this doesnt exist
|
||||||
|
if(mysql_num_rows($q)==1)
|
||||||
|
mysql_query("DELETE FROM emergencycontact WHERE students_id='".$_GET['removestudent']."' AND registrations_id='".$_SESSION['registration_id']."' AND year='".$config['FAIRYEAR']."'");
|
||||||
|
|
||||||
|
echo notice(i18n("Student successfully removed"));
|
||||||
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
echo error(i18n("Invalid student to remove"));
|
||||||
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|||||||
11
sfiab.css
11
sfiab.css
@ -72,24 +72,27 @@ td {
|
|||||||
}
|
}
|
||||||
|
|
||||||
h1 {
|
h1 {
|
||||||
font-size: 2.2em;
|
font-size: 2.1em;
|
||||||
font-weight: bold;
|
font-weight: bold;
|
||||||
margin-top: 0;
|
margin-top: 0;
|
||||||
}
|
}
|
||||||
h2 {
|
h2 {
|
||||||
font-size: 1.8em;
|
font-size: 1.6em;
|
||||||
font-weight: bold;
|
font-weight: bold;
|
||||||
margin-top: 0;
|
margin-top: 0;
|
||||||
|
margin-bottom: .3em;
|
||||||
}
|
}
|
||||||
h3 {
|
h3 {
|
||||||
font-size: 1.5em;
|
font-size: 1.4em;
|
||||||
font-weight: bold;
|
font-weight: bold;
|
||||||
margin-top: 0;
|
margin-top: 0;
|
||||||
|
margin-bottom: .2em;
|
||||||
}
|
}
|
||||||
h4 {
|
h4 {
|
||||||
font-size: 1.3em;
|
font-size: 1.2em;
|
||||||
font-weight: bold;
|
font-weight: bold;
|
||||||
margin-top: 0;
|
margin-top: 0;
|
||||||
|
margin-bottom: .1em;
|
||||||
}
|
}
|
||||||
|
|
||||||
ul.mainnav {
|
ul.mainnav {
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user