<< ".i18n("Back to Participant Registration Summary")."
"; echo "
"; //now do any data saves if($_POST['action']=="save") { $x=1; while($_POST["num"][$x]) { //FIXME: move required field checking up here if($_POST['id'][$x]==0) { //INSERT new record //FIXME: check for required fields before allowing INSERT $dob=$_POST['year'][$x]."-".$_POST['month'][$x]."-".$_POST['day'][$x]; mysql_query("INSERT INTO students (registrations_id,firstname,lastname,email,address,city,province,postalcode,phone,dateofbirth,grade,year) VALUES (". "'".$_SESSION['registration_id']."', ". "'".mysql_escape_string(stripslashes($_POST['firstname'][$x]))."', ". "'".mysql_escape_string(stripslashes($_POST['lastname'][$x]))."', ". "'".mysql_escape_string(stripslashes($_POST['email'][$x]))."', ". "'".mysql_escape_string(stripslashes($_POST['address'][$x]))."', ". "'".mysql_escape_string(stripslashes($_POST['city'][$x]))."', ". "'".mysql_escape_string(stripslashes($_POST['province'][$x]))."', ". "'".mysql_escape_string(stripslashes($_POST['postalcode'][$x]))."', ". "'".mysql_escape_string(stripslashes($_POST['phone'][$x]))."', ". "'$dob', ". "'".mysql_escape_string(stripslashes($_POST['grade'][$x]))."', ". "'".$config['FAIRYEAR']."')"); echo mysql_error(); echo notice(i18n("%1 %2 successfully added",array($_POST['firstname'][$x],$_POST['lastname'][$x]))); } else { //UPDATE existing record //FIXME: check for required fields before allowing UPDATE $dob=$_POST['year'][$x]."-".$_POST['month'][$x]."-".$_POST['day'][$x]; mysql_query("UPDATE students SET ". "firstname='".mysql_escape_string(stripslashes($_POST['firstname'][$x]))."', ". "lastname='".mysql_escape_string(stripslashes($_POST['lastname'][$x]))."', ". "email='".mysql_escape_string(stripslashes($_POST['email'][$x]))."', ". "address='".mysql_escape_string(stripslashes($_POST['address'][$x]))."', ". "city='".mysql_escape_string(stripslashes($_POST['city'][$x]))."', ". "province='".mysql_escape_string(stripslashes($_POST['province'][$x]))."', ". "postalcode='".mysql_escape_string(stripslashes($_POST['postalcode'][$x]))."', ". "phone='".mysql_escape_string(stripslashes($_POST['phone'][$x]))."', ". "dateofbirth='$dob', ". "grade='".mysql_escape_string(stripslashes($_POST['grade'][$x]))."' ". "WHERE id='".$_POST['id'][$x]."'"); echo notice(i18n("%1 %2 successfully updated",array($_POST['firstname'][$x],$_POST['lastname'][$x]))); } $x++; } } if($_GET['action']=="removestudent") { //first make sure this is one belonging to this registration id $q=mysql_query("SELECT id FROM students WHERE id='".$_GET['removestudent']."' AND registrations_id='".$_SESSION['registration_id']."'"); if(mysql_num_rows($q)==1) { mysql_query("DELETE FROM students WHERE id='".$_GET['removestudent']."' AND registrations_id='".$_SESSION['registration_id']."'"); echo notice(i18n("Student successfully removed")); } else { echo error(i18n("Invalid student to remove")); } } //now query and display $q=mysql_query("SELECT * FROM students WHERE registrations_id='".$_SESSION['registration_id']."' AND year='".$config['FAIRYEAR']."'"); if(mysql_num_rows($q)==0) { //uhh oh, we didnt find any, this isnt possible! lets insert one using the logged in persons email address //although... this can never really happen, since the above queries only allow the page to view if the student //is found in the students table... soo... well, lets leave it here as a fallback anyways, just incase mysql_query("INSERT INTO students (registrations_id,email,year) VALUES ('".$_SESSION['registration_id']."','".mysql_escape_string($_SESSION['email'])."','".$config['FAIRYEAR']."')"); //if we just inserted it, then we will obviously find 1 $numfound=1; } else { $numfound=mysql_num_rows($q); } if($_GET['numstudents']) $numtoshow=$_GET['numstudents']; else $numtoshow=$numfound; echo "
"; echo i18n("Number of students that worked on the project: "); echo ""; echo "
"; echo "
"; echo ""; for($x=1;$x<=$numtoshow;$x++) { $studentinfo=mysql_fetch_object($q); echo "

".i18n("Student %1 Details",array($x))."

"; //if we have a valid student, set their ID, so we can UPDATE when we submit //if there is no record for this student, then set the ID to 0, so we will INSERT when we submit if($studentinfo->id) $id=$studentinfo->id; else $id=0; //true should work here, it just has to be set to _something_ for it to work. echo ""; //save the ID, or 0 if it doesnt exist echo ""; echo ""; echo "\n"; echo " \n"; echo " \n"; echo "\n"; echo "\n"; echo " \n"; echo " \n"; echo "\n"; echo "\n"; echo " \n"; echo " \n"; echo "\n"; echo "\n"; echo " \n"; echo " \n"; echo "\n"; echo "\n"; echo " \n"; echo " "; echo ""; /*
".i18n("First Name")."firstname\">".i18n("Last Name")."lastname\">
".i18n("Email Address")."email\">".i18n("Province")."province\">
".i18n("Address")."address\">".i18n("City")."city\">
".i18n("Postal Code")."postalcode\">".i18n("Phone")."phone\">
".i18n("Date of Birth")."\n"; list($year,$month,$day)=split("-",$studentinfo->dateofbirth); echo "
"; emit_day_selector("day[$x]",$day); echo "\n"; emit_month_selector("month[$x]",$month); echo "\n"; emit_year_selector("year[$x]",$year,date("Y")-19,date("Y")-10); echo "
\n"; echo " 		".i18n("Grade")."\n"; echo "\n"; echo "
echo "".i18n("Name").": name\">"; */ echo ""; if($x>$config['minstudentsperproject'] && $studentinfo->id) { echo "
id\">".i18n("Remove this student from project")."
"; } echo "
"; echo "
"; } echo "\n"; echo "
"; send_footer(); ?>