<?
/* 
   This file is part of the 'Science Fair In A Box' project
   SFIAB Website: http://www.sfiab.ca

   Copyright (C) 2005 Sci-Tech Ontario Inc <info@scitechontario.org>
   Copyright (C) 2005 James Grant <james@lightbox.org>

   This program is free software; you can redistribute it and/or
   modify it under the terms of the GNU General Public
   License as published by the Free Software Foundation, version 2.

   This program is distributed in the hope that it will be useful,
   but WITHOUT ANY WARRANTY; without even the implied warranty of
   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
    General Public License for more details.

   You should have received a copy of the GNU General Public License
   along with this program; see the file COPYING.  If not, write to
   the Free Software Foundation, Inc., 59 Temple Place - Suite 330,
   Boston, MA 02111-1307, USA.
*/
?>
<?
 require("../common.inc.php");
 auth_required('admin');

 send_header("Administration - Award Prizes");

 if($_GET['award_awards_id'])
 	$award_awards_id=$_GET['award_awards_id'];
 else if($_POST['award_awards_id'])
 	$award_awards_id=$_POST['award_awards_id'];
?>

<?
	echo "<a href=\"index.php\">&lt;&lt; ".i18n("Back to Administration")."</a>\n";
	echo "<a href=\"awards.php\">&lt;&lt; ".i18n("Back to Awards Main")."</a>\n";
	echo "<a href=\"award_awards.php\">&lt;&lt; ".i18n("Back to Awards List")."</a>\n";

	if($award_awards_id)
	{
		$q=mysql_query("SELECT * FROM award_awards WHERE id='".$award_awards_id."'");
		$award=mysql_fetch_object($q);

		if($_POST['save']=="edit" || $_POST['save']=="add")
		{
			if($_POST['save']=="add")
			{
				$q=mysql_query("INSERT INTO award_prizes (award_awards_id,year) VALUES ('$award_awards_id','".$config['FAIRYEAR']."')");
				$id=mysql_insert_id();
			}
			else
				$id=$_POST['id'];


			$exec="UPDATE award_prizes SET ".
				"prize='".mysql_escape_string(stripslashes($_POST['prize']))."', ".
				"cash='".mysql_escape_string(stripslashes($_POST['cash']))."', ".
				"scholarship='".mysql_escape_string(stripslashes($_POST['scholarship']))."', ".
				"number='".mysql_escape_string(stripslashes($_POST['number']))."', ".
				"`order`='".mysql_escape_string(stripslashes($_POST['order']))."' ".
				"WHERE id='$id'";
			mysql_query($exec);

			if($_POST['save']=="add")
				echo happy("Prize successfully added");
			else
				echo happy("Successfully saved changes to prize");
		}

		if($_POST['action']=="reorder")
		{
			if(is_array($_POST['reorder']))
			{
				foreach($_POST['reorder'] AS $key=>$val)
				{
					mysql_query("UPDATE award_prizes SET `order`='$val' WHERE id='$key'");
				}
				echo happy("Award Prizes successfully reordered");
			}
		}


		if($_GET['action']=="delete" && $_GET['delete'])
		{
			mysql_query("DELETE FROM award_prizes WHERE id='".$_GET['delete']."'");
			echo happy("Contact successfully deleted");
		}

		if($_GET['action']=="edit" || $action=="add")
		{

			echo "<a href=\"award_prizes.php?award_awards_id=$award_awards_id\">&lt;&lt; ".i18n("Back to Prizes for %1",array($award->name))."</a>\n";
			echo "<br />";
			echo "<br />";
			if($_GET['action']=="edit")
			{
				echo "<h3>".i18n("Edit Prize for %1",array($award->name))."</h3>\n";
				$buttontext="Save Prize";
				$q=mysql_query("SELECT * FROM award_prizes WHERE id='".$_GET['edit']."'");
				$r=mysql_fetch_object($q);
			}
			else if($action=="add")
			{
				echo "<h3>".i18n("Add Prize for %1",array($award->name))."</h3>\n";
				$buttontext="Add Prize";
			}
			$buttontext=i18n($buttontext);

			echo "<form method=\"post\" action=\"award_prizes.php\">\n";
			echo "<input type=\"hidden\" name=\"award_awards_id\" value=\"$award_awards_id\">\n";
			echo "<input type=\"hidden\" name=\"save\" value=\"".$_GET['action']."\">\n";

			if($_GET['action']=="edit")
				echo "<input type=\"hidden\" name=\"id\" value=\"".$_GET['edit']."\">\n";

			echo "<table>\n";
			echo "<tr><td>".i18n("Prize Description")."</td><td></td><td><input type=\"text\" name=\"prize\" value=\"".htmlspecialchars($r->prize)."\" size=\"40\" maxlength=\"128\" /></td></tr>\n";
			echo "<tr><td>".i18n("Cash Amount")."</td><td>\$</td><td><input type=\"text\" name=\"cash\" value=\"".htmlspecialchars($r->cash)."\" size=\"10\" maxlength=\"10\" /></td></tr>\n";
			echo "<tr><td>".i18n("Scholarship Amount")."</td><td>\$</td><td><input type=\"text\" name=\"scholarship\" value=\"".htmlspecialchars($r->scholarship)."\" size=\"10\" maxlength=\"10\" /></td></tr>\n";
			echo "<tr><td>".i18n("Number")."</td><td></td><td><input type=\"text\" name=\"number\" value=\"".htmlspecialchars($r->number)."\" size=\"3\" maxlength=\"5\" /></td></tr>\n";
			echo "<tr><td>".i18n("Order")."</td><td></td><td><input type=\"text\" name=\"order\" value=\"".htmlspecialchars($r->order)."\" size=\"3\" maxlength=\"5\" /></td></tr>\n";

			echo "<tr><td colspan=\"3\" align=\"center\"><input type=\"submit\" value=\"$buttontext\" /></td></tr>\n";

			echo "</table>\n";
			echo "</form>\n";
		}
		else
		{

			echo "<br />";
			echo "<a href=\"award_prizes.php?award_awards_id=$award_awards_id&action=add\">".i18n("Add New Prize to %1",array($award->name))."</a>\n";
			echo "<br />";

			$q=mysql_query("SELECT * FROM award_prizes WHERE year='".$config['FAIRYEAR']."' AND award_awards_id='$award_awards_id' ORDER BY `order`");

			if(mysql_num_rows($q))
			{
				echo "<form method=\"post\" action=\"award_prizes.php\">";
				echo "<input type=\"hidden\" name=\"action\" value=\"reorder\">";
				echo "<input type=\"hidden\" name=\"award_awards_id\" value=\"$award_awards_id\">";

				echo "<table class=\"summarytable\">";
				echo "<tr>";
				echo " <th>".i18n("Order")."</th>";
				echo " <th>".i18n("Prize Description")."</th>";
				echo " <th>".i18n("Cash Amount")."</th>";
				echo " <th>".i18n("Scholarship Amount")."</th>";
				echo " <th>".i18n("# of Prizes")."</th>";
				echo " <th>Actions</th>";
				echo "</tr>\n";


				while($r=mysql_fetch_object($q))
				{
					echo "<tr>\n";
					echo " <td><input type=\"text\" name=\"reorder[$r->id]\" value=\"$r->order\" size=\"3\" /></td>\n";
					echo " <td>$r->prize</td>\n";
					echo " <td align=\"right\">";
					if($r->cash) echo "\$$r->cash";
					else echo "&nbsp;";
					echo " </td>";
					echo " <td align=\"right\">";
					if($r->scholarship) echo "\$$r->scholarship";
					else echo "&nbsp;";
					echo " </td>";
					echo " <td align=\"center\">$r->number</td>\n";
					echo " <td align=\"center\">";
					echo "<a href=\"award_prizes.php?award_awards_id=$award_awards_id&action=edit&edit=$r->id\"><img border=\"0\" src=\"".$config['SFIABDIRECTORY']."/images/16/edit.".$config['icon_extension']."\"></a>";
					echo "&nbsp;";
					echo "<a onclick=\"return confirmClick('Are you sure you want to remove this prize?')\" href=\"award_prizes.php?award_awards_id=$award_awards_id&action=delete&delete=$r->id\"><img border=0 src=\"".$config['SFIABDIRECTORY']."/images/16/button_cancel.".$config['icon_extension']."\"></a>";


					echo " </td>\n";
					echo "</tr>\n";
				}

				echo "</table>\n";
				echo "<input type=\"submit\" value=\"".i18n("Re-order prizes")."\" />";
				echo "</form>";
			}

		}


	}
	else
	{
		echo error(i18n("No Award ID specified"));
		echo "<a href=\"award_awards.php\">".i18n("Choose an award")."</a>";
	}

	send_footer();

?>