forked from science-ation/science-ation
3ba0d061f7
committee_auth_has_access($access) now. - Remove unused committee_login and committee_auth.php - Simplify the left bar logic for the committee links
1055 lines
28 KiB
PHP
1055 lines
28 KiB
PHP
<?
|
|
/*
|
|
This file is part of the 'Science Fair In A Box' project
|
|
SFIAB Website: http://www.sfiab.ca
|
|
|
|
Copyright (C) 2005 Sci-Tech Ontario Inc <info@scitechontario.org>
|
|
Copyright (C) 2005 James Grant <james@lightbox.org>
|
|
|
|
This program is free software; you can redistribute it and/or
|
|
modify it under the terms of the GNU General Public
|
|
License as published by the Free Software Foundation, version 2.
|
|
|
|
This program is distributed in the hope that it will be useful,
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
General Public License for more details.
|
|
|
|
You should have received a copy of the GNU General Public License
|
|
along with this program; see the file COPYING. If not, write to
|
|
the Free Software Foundation, Inc., 59 Temple Place - Suite 330,
|
|
Boston, MA 02111-1307, USA.
|
|
*/
|
|
?>
|
|
<?
|
|
//set error reporting to not show notices, for some reason some people's installation dont set this by default
|
|
//so we will set it in the code instead just to make sure
|
|
error_reporting(E_ALL ^ E_NOTICE);
|
|
|
|
define('REQUIREDFIELD','<span class="requiredfield">*</span>');
|
|
|
|
//figure out the directory to prepend to directoroy names, depending on if we are in a subdirectory or not
|
|
if(substr(getcwd(),-6)=="/admin")
|
|
$prependdir="../";
|
|
else if(substr(getcwd(),-7)=="/config")
|
|
$prependdir="../";
|
|
else if(substr(getcwd(),-3)=="/db")
|
|
$prependdir="../";
|
|
else if(substr(getcwd(),-8)=="/scripts")
|
|
$prependdir="../";
|
|
else
|
|
$prependdir="";
|
|
|
|
$sfiabversion=@file($prependdir."version.txt");
|
|
$config['version']=trim($sfiabversion[0]);
|
|
|
|
|
|
//make sure the data subdirectory is writable, if its not, then we're screwed, so make sure it is!
|
|
if(!is_writable($prependdir."data"))
|
|
{
|
|
echo "<html><head><title>SFIAB ERROR</title></head><body>";
|
|
echo "<h1>Science Fair In A Box - ERROR</h1>";
|
|
echo "data/ subdirectory is not writable by the web server";
|
|
echo "<br>";
|
|
echo "<h2>Details</h2>";
|
|
echo "The data/ subdirectory is used to store files uploaded through the SFIAB software. The web server must have write access to this directory in order to function properly. Please contact your system administrator (if you are the system administrator, chown/chmod the data directory appropriately).";
|
|
echo "<br>";
|
|
echo "</body></html>";
|
|
exit;
|
|
}
|
|
|
|
if(file_exists($prependdir."data/config.inc.php"))
|
|
{
|
|
require_once($prependdir."data/config.inc.php");
|
|
}
|
|
else
|
|
{
|
|
echo "<html><head><title>SFIAB</title></head><body>";
|
|
echo "<h1>Science Fair In A Box - Installation</h1>";
|
|
echo "It looks like this is a new installation of SFIAB, and the database has not yet been configured. Please choose from the following options: <br />";
|
|
echo "<br />";
|
|
echo "<a href=\"install.php\">Proceed with Fresh SFIAB Installation</a>";
|
|
echo "<br />";
|
|
echo "</body></html>";
|
|
exit;
|
|
}
|
|
|
|
if(!mysql_connect($DBHOST,$DBUSER,$DBPASS))
|
|
{
|
|
echo "<html><head><title>SFIAB ERROR</title></head><body>";
|
|
echo "<h1>Science Fair In A Box - ERROR</h1>";
|
|
echo "Cannot connect to database!";
|
|
echo "</body></html>";
|
|
exit;
|
|
}
|
|
|
|
if(!mysql_select_db($DBNAME))
|
|
{
|
|
echo "<html><head><title>SFIAB ERROR</title></head><body>";
|
|
echo "<h1>Science Fair In A Box - ERROR</h1>";
|
|
echo "Cannot select database!";
|
|
echo "</body></html>";
|
|
exit;
|
|
}
|
|
|
|
//this will silently fail on mysql 4.x, but is needed on mysql5.x to ensure we're only using iso-8859-1 (/latin1) encodings
|
|
@mysql_query("SET NAMES latin1");
|
|
|
|
//find out the fair year and any other 'year=0' configuration parameters (things that dont change as the years go on)
|
|
$q=@mysql_query("SELECT * FROM config WHERE year='0'");
|
|
|
|
//we might get an error if installation step 2 is not done (ie, the config table doesnt even exist)
|
|
if(mysql_error())
|
|
{
|
|
echo "<html><head><title>SFIAB ERROR</title></head><body>";
|
|
echo "<h1>Science Fair In A Box - ERROR</h1>";
|
|
echo "SFIAB installation is not complete. Please go to <A href=\"install2.php\">Installer Step 2</a> to complete the installation process";
|
|
echo "<br>";
|
|
echo "</body></html>";
|
|
exit;
|
|
}
|
|
//if we have 0 (<1) then install2 is not done, which would get caught above,
|
|
//if we have 1 (<2) then insatll3 is not done (no entries for FAIRYEAR and SFIABDIRECTORY)
|
|
if(mysql_num_rows($q)<2)
|
|
{
|
|
echo "<html><head><title>SFIAB ERROR</title></head><body>";
|
|
echo "<h1>Science Fair In A Box - ERROR</h1>";
|
|
echo "SFIAB installation is not complete. Please go to <A href=\"install3.php\">Installer Step 3</a> to complete the installation process";
|
|
echo "<br>";
|
|
echo "</body></html>";
|
|
exit;
|
|
|
|
}
|
|
else
|
|
{
|
|
while($r=mysql_fetch_object($q))
|
|
{
|
|
$config[$r->var]=$r->val;
|
|
}
|
|
}
|
|
|
|
$dbdbversion=$config['DBVERSION'];
|
|
$dbcodeversion=@file($prependdir."db/db.code.version.txt");
|
|
$dbcodeversion=trim($dbcodeversion[0]);
|
|
|
|
if(!$dbdbversion)
|
|
{
|
|
echo "<html><head><title>SFIAB ERROR</title></head><body>";
|
|
echo "<h1>Science Fair In A Box - ERROR</h1>";
|
|
echo "SFIAB installation is not complete. Please go to <A href=\"install2.php\">Installer Step 2</a> to complete the installation process";
|
|
echo "<br>";
|
|
echo "</body></html>";
|
|
exit;
|
|
}
|
|
|
|
if($dbcodeversion!=$dbdbversion)
|
|
{
|
|
echo "<html><head><title>SFIAB ERROR</title></head><body>";
|
|
echo "<h1>Science Fair In A Box - ERROR</h1>";
|
|
echo "SFIAB database and code are mismatched";
|
|
echo "<br>";
|
|
echo "Please run the db_update.php script in order to update";
|
|
echo "<br>";
|
|
echo "your database to the same version as the code";
|
|
echo "<br>";
|
|
echo "<br>";
|
|
echo "<br>";
|
|
echo "<h2>Details</h2>";
|
|
echo "Current SFIAB codebase requires DB version: ".$dbcodeversion;
|
|
echo "<br>";
|
|
echo "Current SFIAB database is detected as version: ".$dbdbversion;
|
|
echo "<br>";
|
|
echo "</body></html>";
|
|
exit;
|
|
}
|
|
|
|
|
|
//now pull the rest of the configuration
|
|
$q=mysql_query("SELECT * FROM config WHERE year='".$config['FAIRYEAR']."'");
|
|
while($r=mysql_fetch_object($q))
|
|
{
|
|
$config[$r->var]=$r->val;
|
|
}
|
|
|
|
//now pull the dates
|
|
$q=mysql_query("SELECT * FROM dates WHERE year='".$config['FAIRYEAR']."'");
|
|
while($r=mysql_fetch_object($q))
|
|
{
|
|
$config['dates'][$r->name]=$r->date;
|
|
}
|
|
|
|
require_once("committee.inc.php");
|
|
|
|
session_name("SFIABSESSID".ereg_replace("[^A-Za-z]","_",$config['SFIABDIRECTORY']));
|
|
session_set_cookie_params(0,$config['SFIABDIRECTORY']);
|
|
session_start();
|
|
|
|
//detect the browser first, so we know what icons to use - we store this in the config array as well
|
|
//even though its not configurable by the fair
|
|
if(stristr($_SERVER['HTTP_USER_AGENT'],"MSIE"))
|
|
$config['icon_extension']="gif";
|
|
else
|
|
$config['icon_extension']="png";
|
|
|
|
|
|
|
|
//now get the languages, and make sure we have at least one active language
|
|
$q=mysql_query("SELECT * FROM languages WHERE active='Y' ORDER BY langname");
|
|
if(mysql_num_rows($q)==0)
|
|
{
|
|
echo "No active languages defined, defaulting to English";
|
|
$config['languages']['en']="English";
|
|
}
|
|
else
|
|
{
|
|
while($r=mysql_fetch_object($q))
|
|
{
|
|
$config['languages'][$r->lang]=$r->langname;
|
|
}
|
|
}
|
|
//now if no language has been set yet, lets set it to the default language
|
|
if(!$_SESSION['lang'])
|
|
{
|
|
//first try the default language, if that doesnt work, use "en"
|
|
if($config['default_language'])
|
|
$_SESSION['lang']=$config['default_language'];
|
|
else
|
|
$_SESSION['lang']="en";
|
|
}
|
|
|
|
|
|
//if the user has switched languages, go ahead and switch the session variable
|
|
if($_GET['switchlanguage'])
|
|
{
|
|
//first, make sure its a valid language:
|
|
if($config['languages'][$_GET['switchlanguage']])
|
|
{
|
|
$_SESSION['lang']=$_GET['switchlanguage'];
|
|
|
|
}
|
|
else
|
|
{
|
|
//invalid language, dont do anything
|
|
}
|
|
}
|
|
|
|
|
|
function i18n($str,$args=array(),$argsdesc=array(),$forcelang="")
|
|
{
|
|
if(!$str)
|
|
return "";
|
|
|
|
if($forcelang)
|
|
{
|
|
$savelang=$_SESSION['lang'];
|
|
$_SESSION['lang']=$forcelang;
|
|
}
|
|
|
|
if($_SESSION['lang'])
|
|
{
|
|
if($_SESSION['lang']=="en")
|
|
{
|
|
for($x=1;$x<=count($args);$x++)
|
|
{
|
|
$str=str_replace("%$x",$args[$x-1],$str);
|
|
}
|
|
if($forcelang) $_SESSION['lang']=$savelang;
|
|
return $str;
|
|
}
|
|
else
|
|
{
|
|
$q=mysql_query("SELECT * FROM translations WHERE lang='".$_SESSION['lang']."' AND strmd5='".md5($str)."'");
|
|
if($r=@mysql_fetch_object($q))
|
|
{
|
|
if($r->val)
|
|
{
|
|
$ret=$r->val;
|
|
|
|
for($x=1;$x<=count($args);$x++)
|
|
{
|
|
$ret=str_replace("%$x",$args[$x-1],$ret);
|
|
}
|
|
if($forcelang) $_SESSION['lang']=$savelang;
|
|
return $ret;
|
|
}
|
|
else
|
|
{
|
|
for($x=1;$x<=count($args);$x++)
|
|
{
|
|
$str=str_replace("%$x",$args[$x-1],$str);
|
|
}
|
|
if($forcelang) $_SESSION['lang']=$savelang;
|
|
return "{{".$str."}}";
|
|
}
|
|
|
|
}
|
|
else
|
|
{
|
|
if(count($argsdesc))
|
|
{
|
|
$argsdescstring="";
|
|
$n=1;
|
|
foreach($argsdesc AS $ad)
|
|
{
|
|
$argsdescstring.="%$n=$ad, ";
|
|
$n++;
|
|
}
|
|
$argsdescstring=substr($argsdescstring,0,-2);
|
|
$argsdescstring="'".mysql_escape_string($argsdescstring)."'";
|
|
}
|
|
else
|
|
$argsdescstring="null";
|
|
|
|
mysql_query("INSERT INTO translations (lang,strmd5,str,argsdesc) VALUES ('".$_SESSION['lang']."','".md5($str)."','".mysql_escape_string($str)."',$argsdescstring)");
|
|
for($x=1;$x<=count($args);$x++)
|
|
{
|
|
$str=str_replace("%$x",$args[$x-1],$str);
|
|
}
|
|
if($forcelang) $_SESSION['lang']=$savelang;
|
|
return "{{".$str."}}";
|
|
}
|
|
}
|
|
}
|
|
else
|
|
{
|
|
//no language set, assume english
|
|
if($forcelang) $_SESSION['lang']=$savelang;
|
|
return $str;
|
|
}
|
|
}
|
|
|
|
function error($str,$type="normal")
|
|
{
|
|
if($type=="normal")
|
|
return "<div class=\"error\">$str</div><br />";
|
|
else if($type=="inline")
|
|
return "<span class=\"error\">$str</span><br />";
|
|
|
|
}
|
|
|
|
function notice($str,$type="normal")
|
|
{
|
|
if($type=="normal")
|
|
return "<div class=\"notice\">$str</div><br />";
|
|
else if($type=="inline")
|
|
return "<span class=\"notice\">$str</span><br />";
|
|
}
|
|
|
|
function happy($str,$type="normal")
|
|
{
|
|
if($type=="normal")
|
|
return "<div class=\"happy\">$str</div><br />";
|
|
else if($type=="inline")
|
|
return "<span class=\"happy\">$str</span><br />";
|
|
}
|
|
|
|
$HEADER_SENT=false;
|
|
function send_header($title="", $nav=null)
|
|
{
|
|
global $HEADER_SENT;
|
|
global $config;
|
|
global $prependdir;
|
|
|
|
//do this so we can use send_header() a little more loosly and not worry about it being sent more than once.
|
|
if($HEADER_SENT) return;
|
|
else $HEADER_SENT=true;
|
|
|
|
header("Content-Type: text/html; charset=iso-8859-1");
|
|
echo "<?xml version=\"1.0\" encoding=\"iso-8859-1\" ?>\n";
|
|
?>
|
|
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
|
|
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
|
|
<head><title><?=i18n($title)?></title>
|
|
<link rel="stylesheet" href="<?=$config['SFIABDIRECTORY']?>/sfiab.css" type="text/css" />
|
|
<link media=all href="<?=$config['SFIABDIRECTORY']?>/tableeditor.css" type=text/css rel=stylesheet>
|
|
</head>
|
|
<body>
|
|
<script language="javascript" type="text/javascript">
|
|
<!--
|
|
//useful function that we'll be using throughout
|
|
function confirmClick(msg)
|
|
{
|
|
var okay=confirm(msg);
|
|
if(okay)
|
|
return true;
|
|
else
|
|
return false;
|
|
}
|
|
|
|
function el(str,domain,name)
|
|
{
|
|
document.write('<a href="ma'+'il'+'to:' + str + '@' + domain + '">' + name + '</a>');
|
|
}
|
|
|
|
function em(str,domain)
|
|
{
|
|
document.write('<a href="ma'+'il'+'to:' + str + '@' + domain + '">' + str + '@' + domain + '</a>');
|
|
}
|
|
|
|
var anyFieldHasBeenChanged=false;
|
|
|
|
function fieldChanged()
|
|
{
|
|
anyFieldHasBeenChanged=true;
|
|
}
|
|
|
|
function confirmChanges()
|
|
{
|
|
if(anyFieldHasBeenChanged)
|
|
{
|
|
var okay=confirm('<?=i18n("You have unsaved changes. Click \"Cancel\" to return so you can save your changes, or press \"OK\" to discard your changes and continue")?>');
|
|
if(okay)
|
|
return true;
|
|
else
|
|
return false;
|
|
}
|
|
else
|
|
return true;
|
|
}
|
|
|
|
-->
|
|
</script>
|
|
|
|
<?
|
|
//if we're under /admin or /config we also want the translationDropdown javascript stuff
|
|
if(substr(getcwd(),-6)=="/admin" || substr(getcwd(),-7)=="/config")
|
|
require_once("../translationsdropdown.inc.php");
|
|
|
|
?>
|
|
|
|
<div id="header">
|
|
<?
|
|
if(file_exists($prependdir."data/logo-100.gif"))
|
|
echo "<img align=\"left\" height=\"50\" src=\"".$config['SFIABDIRECTORY']."/data/logo-100.gif\">";
|
|
|
|
echo "<h1>".i18n($config['fairname'])."</h1>";
|
|
echo "<div align=\"right\" style=\"font-size: 0.75em;\">";
|
|
if(isset($_SESSION['users_type'])) {
|
|
$types = array('volunteer' => 'Volunteer', 'judge' => 'Judge',
|
|
'student'=>'Participant','committee'=>'Committee Member',
|
|
'region'=>'Region');
|
|
if($_SESSION['users_type'] != false) {
|
|
echo i18n($types[$_SESSION['users_type']]);
|
|
}
|
|
echo " {$_SESSION['email']}: ";
|
|
if($_SESSION['multirole'] == true) {
|
|
echo "<a href=\"{$config['SFIABDIRECTORY']}/user_multirole.php\">[".i18n('Switch Roles')."]</a> ";
|
|
}
|
|
echo "<a href=\"{$config['SFIABDIRECTORY']}/user_login.php?action=logout\">[".i18n("Logout")."]</a>";
|
|
|
|
} else if(isset($_SESSION['email'])) {
|
|
/* Backwards compatible login settings */
|
|
if(isset($_SESSION['judges_id'])) {
|
|
echo i18n('Judge');
|
|
echo " {$_SESSION['email']}: ";
|
|
echo "<a href=\"{$config['SFIABDIRECTORY']}/register_judges.php?action=logout\">[".i18n("Logout")."]</a>";
|
|
} else if(isset($_SESSION['registration_id'])) {
|
|
echo i18n('Participant');
|
|
echo " {$_SESSION['email']}: ";
|
|
echo "<a href=\"{$config['SFIABDIRECTORY']}/register_participants.php?action=logout\">[".i18n("Logout")."]</a>";
|
|
} else {
|
|
echo " ";
|
|
}
|
|
|
|
} else {
|
|
echo i18n('Not Logged In');
|
|
}
|
|
echo "</div>";
|
|
?>
|
|
<hr />
|
|
</div>
|
|
<table cellpadding="5" width="100%">
|
|
<tr><td width="175">
|
|
<?
|
|
//if the date is greater than the date/time that the confirmed participants gets posted,
|
|
//then we will show the registration confirmation page as a link in the menu,
|
|
$registrationconfirmationlink="";
|
|
|
|
//only display it if a date is set to begin with.
|
|
if($config['dates']['postparticipants'] && $config['dates']['postparticipants']!="0000-00-00 00:00:00")
|
|
{
|
|
$q=mysql_query("SELECT (NOW()>'".$config['dates']['regclose']."') AS test");
|
|
$r=mysql_fetch_object($q);
|
|
if($r->test==1)
|
|
{
|
|
$registrationconfirmationlink="<li><a href=\"".$config['SFIABDIRECTORY']."/confirmed_participants.php\">".i18n("Confirmed Participants")."</a></li>";
|
|
}
|
|
}
|
|
?>
|
|
|
|
<div id="left">
|
|
<ul class="mainnav">
|
|
<?
|
|
echo "<li><a href=\"{$config['SFIABDIRECTORY']}/index.php\">".i18n("Home Page").'</a></li>';
|
|
echo "<li><a href=\"{$config['SFIABDIRECTORY']}/important_dates.php\">".i18n("Important Dates").'</a></li>';
|
|
echo "<li><a href=\"{$config['SFIABDIRECTORY']}/register_participants.php\">".i18n("Participant Registration").'</a></li>';
|
|
echo $registrationconfirmationlink;
|
|
echo "<li><a href=\"{$config['SFIABDIRECTORY']}/register_judges.php\">".i18n("Judges Registration").'</a></li>';
|
|
if($config['volunteer_enable'] == 'yes') {
|
|
echo "<li><a href=\"{$config['SFIABDIRECTORY']}/user_login.php?type=volunteer\">".i18n("Volunteer Registration").'</a></li>';
|
|
}
|
|
echo "<li><a href=\"{$config['SFIABDIRECTORY']}/committees.php\">".i18n("Committee").'</a></li>';
|
|
echo "<li><a href=\"{$config['SFIABDIRECTORY']}/winners.php\">".i18n("Winners").'</a></li>';
|
|
echo '</ul>';
|
|
?>
|
|
<br />
|
|
<ul class="mainnav">
|
|
<?
|
|
if($_SESSION['users_type'] == 'committee')
|
|
{
|
|
if(committee_auth_has_access("admin")){ ?>
|
|
<li><a href="<?=$config['SFIABDIRECTORY']?>/user_personal.php"><?=i18n("My Profile")?></a></li>
|
|
<li><a href="<?=$config['SFIABDIRECTORY']?>/admin/"><?=i18n("Fair Administration")?></a></li>
|
|
<? }
|
|
if(committee_auth_has_access("config")){ ?>
|
|
<li><a href="<?=$config['SFIABDIRECTORY']?>/config/"><?=i18n("SFIAB Configuration")?></a></li>
|
|
<? }
|
|
|
|
?><li><a href="<?=$config['SFIABDIRECTORY']?>/user_login.php?action=logout"><?=i18n("Committee Logout")?></a></li><?
|
|
|
|
}
|
|
else
|
|
{
|
|
?><li><a href="<?=$config['SFIABDIRECTORY']?>/user_login.php?type=committee"><?=i18n("Committee Login")?></a></li><?
|
|
}
|
|
?></ul>
|
|
<br />
|
|
<ul class="mainnav">
|
|
<?
|
|
if($_SESSION['schoolid'] && $_SESSION['schoolaccesscode'])
|
|
{
|
|
?>
|
|
<li><a href="<?=$config['SFIABDIRECTORY']?>/schoolaccess.php"><?=i18n("School Access")?></a></li>
|
|
<li><a href="<?=$config['SFIABDIRECTORY']?>/schoolaccess.php?action=logout"><?=i18n("School Logout")?></a></li>
|
|
<?
|
|
}
|
|
else
|
|
{
|
|
?>
|
|
<li><a href="<?=$config['SFIABDIRECTORY']?>/schoolaccess.php"><?=i18n("School Login")?></a></li><?
|
|
}
|
|
?>
|
|
</ul>
|
|
<br />
|
|
<ul class="mainnav">
|
|
<?
|
|
if($_SESSION['registration_number'] && $_SESSION['registration_id'])
|
|
{
|
|
?>
|
|
<li><a href="<?=$config['SFIABDIRECTORY']?>/register_participants.php?action=logout"><?=i18n("Registration Logout")?></a></li><?
|
|
}
|
|
?>
|
|
|
|
|
|
</ul>
|
|
|
|
<div class="aligncenter">
|
|
|
|
<?
|
|
|
|
if(count($config['languages'])>1)
|
|
{
|
|
echo "<br />";
|
|
echo "<form name=\"languageselect\" method=\"get\" action=\"".$_SERVER['PHP_SELF']."\">";
|
|
echo "<select name=\"switchlanguage\" onchange=\"document.forms.languageselect.submit()\">\n";
|
|
foreach($config['languages'] AS $key=>$val)
|
|
{
|
|
if($_SESSION['lang']==$key) $selected="selected=\"selected\""; else $selected="";
|
|
|
|
echo "<option $selected value=\"$key\">$val</option>";
|
|
}
|
|
echo "</select>";
|
|
echo "</form>";
|
|
}
|
|
|
|
|
|
?>
|
|
</div>
|
|
|
|
</div>
|
|
</td><td>
|
|
<?
|
|
|
|
if(is_array($nav)) {
|
|
$first_item = true;
|
|
$nav = array_merge(array('Home' => 'index.php'), $nav);
|
|
echo "<div id=\"mainwhere\">You are here: ";
|
|
foreach($nav as $t=>$l) {
|
|
if($first_item == false) echo " >> ";
|
|
echo "<a href=\"{$config['SFIABDIRECTORY']}/$l\">".i18n($t).'</a>';
|
|
$first_item = false;
|
|
}
|
|
echo " >> $title";
|
|
echo '</div>';
|
|
}
|
|
?>
|
|
|
|
<div id="main">
|
|
<?
|
|
|
|
if(committee_auth_has_access("config") || committee_auth_has_access("admin"))
|
|
committee_warnings();
|
|
if(committee_auth_has_access("config"))
|
|
config_warnings();
|
|
if(committee_auth_has_access("admin"))
|
|
admin_warnings();
|
|
|
|
echo "<table cellspacing=\"0\" cellpadding=\"0\" width=\"100%\"><tr><td>";
|
|
if($title)
|
|
echo "<h2>".i18n($title)."</h2>";
|
|
|
|
//if we're under /admin or /config then we want to show the ? help icon
|
|
if(substr(getcwd(),-6)=="/admin" || substr(getcwd(),-7)=="/config")
|
|
{
|
|
$fname=substr($_SERVER['PHP_SELF'],strlen($config['SFIABDIRECTORY'])+1);
|
|
echo "</td><td align=\"right\"><a target=\"_sfiabhelp\" href=\"http://www.sfiab.ca/wiki/index.php/Help_$fname\"><img border=\"0\" src=\"".$config['SFIABDIRECTORY']."/images/32/help.".$config['icon_extension']."\"></a>";
|
|
}
|
|
"</td></tr>";
|
|
echo "</table>";
|
|
}
|
|
|
|
function send_footer()
|
|
{
|
|
global $config;
|
|
?>
|
|
</td></tr></table>
|
|
</div>
|
|
<div id="footer">
|
|
<?
|
|
//we only show the debug session variables if we have an ODD numbered version.
|
|
if(substr($config['version'], -1) % 2 != 0)
|
|
{
|
|
echo "DEBUG:";
|
|
print_r($_SESSION);
|
|
}
|
|
echo "<a target=\"blank\" href=\"http://www.sfiab.ca\">SFIAB Version ".$config['version']."</a>";
|
|
?>
|
|
</div>
|
|
|
|
</body>
|
|
</html>
|
|
|
|
<?
|
|
}
|
|
|
|
function send_popup_header($title="")
|
|
{
|
|
global $HEADER_SENT;
|
|
global $config;
|
|
|
|
//do this so we can use send_header() a little more loosly and not worry about it being sent more than once.
|
|
if($HEADER_SENT) return;
|
|
else $HEADER_SENT=true;
|
|
|
|
echo "<?xml version=\"1.0\" encoding=\"iso-8859-1\" ?>\n";
|
|
?>
|
|
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
|
|
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
|
|
<head><title><?=i18n($title)?></title>
|
|
<link rel="stylesheet" href="<?=$config['SFIABDIRECTORY']?>/sfiab.css" type="text/css" />
|
|
<link media=all href="<?=$config['SFIABDIRECTORY']?>/tableeditor.css" type=text/css rel=stylesheet>
|
|
</head>
|
|
<body onload="window.focus()">
|
|
<?
|
|
if($title)
|
|
echo "<h2>".i18n($title)."</h2>";
|
|
}
|
|
|
|
function send_popup_footer()
|
|
{
|
|
?>
|
|
<br />
|
|
<br />
|
|
<div id="footer">
|
|
<?
|
|
global $config;
|
|
$lastdigit=$config['version'][strlen($config['version'])-1];
|
|
if($lastdigit%2!=0)
|
|
{
|
|
echo "DEBUG:";
|
|
print_r($_SESSION);
|
|
}
|
|
echo "SFIAB Version ".$config['version'];
|
|
?>
|
|
</div>
|
|
|
|
</body>
|
|
</html>
|
|
<?
|
|
}
|
|
|
|
|
|
function emit_month_selector($name,$selected="")
|
|
{
|
|
echo "<select name=\"$name\">\n";
|
|
$months=array("","Jan","Feb","Mar","Apr","May","Jun","Jul","Aug","Sep","Oct","Nov","Dec");
|
|
echo "<option value=\"\">".i18n("Month")."</option>\n";
|
|
for($x=1;$x<=12;$x++)
|
|
{
|
|
if($x==$selected)
|
|
$s="selected=\"selected\"";
|
|
else
|
|
$s="";
|
|
echo "<option $s value=\"$x\">".$months[$x]."</option>\n";
|
|
}
|
|
|
|
echo "</select>\n";
|
|
|
|
}
|
|
|
|
|
|
function emit_day_selector($name,$selected="")
|
|
{
|
|
echo "<select name=\"$name\">\n";
|
|
echo "<option value=\"\">".i18n("Day")."</option>\n";
|
|
|
|
for($x=1;$x<=31;$x++)
|
|
echo "<option value=\"".($x<10?"0":"")."$x\" ".($selected==$x?"selected=\"selected\"":"").">$x</option>\n";
|
|
|
|
echo "</select>\n";
|
|
|
|
}
|
|
|
|
function emit_year_selector($name,$selected="",$min=0,$max=0)
|
|
{
|
|
$curyear=date("Y");
|
|
echo "<select name=\"$name\">\n";
|
|
echo "<option value=\"\">".i18n("Year")."</option>\n";
|
|
|
|
if($min&&$max)
|
|
{
|
|
for($x=$min;$x<=$max;$x++)
|
|
echo "<option value=\"$x\" ".($selected==$x?"selected=\"selected\"":"").">$x</option>\n";
|
|
|
|
}
|
|
else
|
|
{
|
|
//if we arent given a min and max, lets show current year + 5
|
|
for($x=$curyear;$x<$curyear+5;$x++)
|
|
echo "<option value=\"$x\" ".($selected==$x?"selected=\"selected\"":"").">$x</option>\n";
|
|
}
|
|
echo "</select>\n";
|
|
}
|
|
|
|
function emit_date_selector($name,$selected="")
|
|
{
|
|
if($selected)
|
|
{
|
|
list($year,$month,$day)=split("-",$selected);
|
|
}
|
|
echo "<table cellpadding=0>";
|
|
echo "<tr><td>";
|
|
emit_year_selector($name."_year",$year);
|
|
echo "</td><td>";
|
|
emit_month_selector($name."_month",$month);
|
|
echo "</td><td>";
|
|
emit_day_selector($name."_day",$day);
|
|
echo "</td></tr>";
|
|
echo "</table>";
|
|
}
|
|
|
|
function emit_hour_selector($name,$selected="")
|
|
{
|
|
if($selected!="") $selected=(int)$selected;
|
|
echo "<select name=\"$name\">\n";
|
|
echo "<option value=\"\">HH</option>\n";
|
|
|
|
|
|
for($x=0;$x<=23;$x++)
|
|
{
|
|
if($x===$selected)
|
|
$sel="selected";
|
|
else
|
|
$sel="";
|
|
echo "<option value=\"$x\" $sel>".sprintf("%02d",$x)."</option>\n";
|
|
}
|
|
|
|
echo "</select>\n";
|
|
|
|
|
|
}
|
|
function emit_minute_selector($name,$selected="")
|
|
{
|
|
$mins=array("00","05","10","15","20","25","30","35","40","45","50","55");
|
|
echo "<select name=\"$name\">\n";
|
|
echo "<option value=\"\">MM</option>\n";
|
|
|
|
for($x=0;$x<count($mins);$x++)
|
|
echo "<option value=\"".$mins[$x]."\" ".($selected==$mins[$x]?"selected":"").">$mins[$x]</option>\n";
|
|
|
|
echo "</select>\n";
|
|
|
|
|
|
}
|
|
|
|
function emit_time_selector($name,$selected="")
|
|
{
|
|
|
|
if($selected)
|
|
{
|
|
list($hour,$minute,$second)=split(":",$selected);
|
|
}
|
|
echo "<table cellpadding=0>";
|
|
echo "<tr><td>";
|
|
emit_hour_selector($name."_hour",$hour);
|
|
echo "</td><td>";
|
|
emit_minute_selector($name."_minute",$minute);
|
|
echo "</td></tr>";
|
|
echo "</table>";
|
|
|
|
}
|
|
|
|
function emit_province_selector($name,$selected="",$extra="")
|
|
{
|
|
$q=mysql_query("SELECT * FROM provinces ORDER BY province");
|
|
if(mysql_num_rows($q)==1)
|
|
{
|
|
$r=mysql_fetch_object($q);
|
|
echo "<input type=\"hidden\" name=\"$name\" value=\"$r-code\">";
|
|
echo i18n($r->province);
|
|
}
|
|
else
|
|
{
|
|
echo "<select name=\"$name\" $extra>\n";
|
|
echo "<option value=\"\">".i18n("Select a Province")."</option>\n";
|
|
while($r=mysql_fetch_object($q))
|
|
{
|
|
if($r->code == $selected) $sel="selected=\"selected\""; else $sel="";
|
|
|
|
echo "<option $sel value=\"$r->code\">".i18n($r->province);
|
|
echo "</option>\n";
|
|
}
|
|
|
|
echo "</select>\n";
|
|
}
|
|
|
|
}
|
|
|
|
|
|
function outputStatus($status)
|
|
{
|
|
$ret="";
|
|
switch($status)
|
|
{
|
|
case 'incomplete':
|
|
$ret.="<div class=\"incomplete\">";
|
|
$ret.= i18n("Incomplete");
|
|
$ret.= "</div>";
|
|
break;
|
|
case 'complete':
|
|
$ret.= "<div class=\"complete\">";
|
|
$ret.= i18n("Complete");
|
|
$ret.= "</div>";
|
|
break;
|
|
case 'empty':
|
|
$ret.="<div class=\"incomplete\">";
|
|
$ret.= i18n("Empty");
|
|
$ret.= "</div>";
|
|
break;
|
|
|
|
default:
|
|
$ret.=i18n("Unknown");
|
|
break;
|
|
}
|
|
return $ret;
|
|
}
|
|
|
|
//returns true if its a valid email address, false if its not
|
|
function isEmailAddress($str) {
|
|
if(eregi('^[a-zA-Z0-9._-]+@[a-zA-Z0-9._-]+\.([a-zA-Z]{2,4})$', $str))
|
|
return true;
|
|
else
|
|
return false;
|
|
}
|
|
|
|
function email_send($val,$to,$sub_subject=array(),$sub_body=array())
|
|
{
|
|
global $config;
|
|
|
|
//if our "to" doesnt look like a valid email, then forget about sending it.
|
|
if(!isEmailAddress($to))
|
|
return false;
|
|
|
|
$q=mysql_query("SELECT * FROM emails WHERE val='$val'");
|
|
if($r=mysql_fetch_object($q))
|
|
{
|
|
$subject=i18n($r->subject);
|
|
$body=i18n($r->body);
|
|
|
|
if(count($sub_subject))
|
|
{
|
|
foreach($sub_subject AS $sub_k=>$sub_v)
|
|
{
|
|
$subject=ereg_replace("\[$sub_k\]","$sub_v",$subject);
|
|
}
|
|
}
|
|
if(count($sub_body))
|
|
{
|
|
foreach($sub_body AS $sub_k=>$sub_v)
|
|
{
|
|
$body=ereg_replace("\[$sub_k\]","$sub_v",$body);
|
|
}
|
|
}
|
|
|
|
//now word-wrap the body to 79 chars
|
|
//hmm forget the wordwrap for now, its not really needed, but could be done later if need be.
|
|
//i'll leave in the start of the function, but its not nearly complete
|
|
/*
|
|
$MAXCHARS=79;
|
|
$c=0;
|
|
$lastspace=0;
|
|
for($x=0;$x<strlen($body);$x++)
|
|
{
|
|
if($body[$x]==" ")
|
|
$lastspace=$x;
|
|
$c++;
|
|
if($c>$MAXCHARS)
|
|
{
|
|
|
|
}
|
|
}
|
|
*/
|
|
|
|
if($r->from)
|
|
$fr=$r->from;
|
|
else if ($config['fairmanageremail'])
|
|
$fr=$config['fairmanageremail'];
|
|
else
|
|
$fr="";
|
|
|
|
//only send the email if we have a from
|
|
if($fr) {
|
|
$extraheaders="From: $fr\r\nReply-To: $fr\r\nReturn-Path: $fr";
|
|
mail($to,$subject,$body,$extraheaders);
|
|
}
|
|
else
|
|
echo error(i18n("CRITICAL ERROR: email '%1' does not have a 'From' and the Fair Manager Email is not configured",array($val),array("email key name")));
|
|
}
|
|
else
|
|
{
|
|
echo error(i18n("CRITICAL ERROR: email '%1' not found",array($val),array("email key name")));
|
|
}
|
|
}
|
|
|
|
/*
|
|
returns an array of arrays
|
|
[ 0 ] = array ( to, firstname, lastname, email )
|
|
[ 1 ] = array ( to, firstname, lastname, email )
|
|
...etc
|
|
|
|
*/
|
|
function getEmailRecipientsForRegistration($reg_id)
|
|
{
|
|
global $config;
|
|
//okay first grab the registration record, to see if we should email the kids, the teacher, and/or the parents
|
|
$q=mysql_query("SELECT * FROM registrations WHERE id='$reg_id' AND year='{$config['FAIRYEAR']}'");
|
|
$registration=mysql_fetch_object($q);
|
|
|
|
if($registration->emailcontact && isEmailAddress($registration->emailcontact)) {
|
|
$ret[]=array("to"=>$registration->emailcontact,
|
|
"firstname"=>"",
|
|
"lastname"=>"",
|
|
"email"=>$registration->emailcontact,
|
|
);
|
|
}
|
|
|
|
$sq=mysql_query("SELECT * FROM students WHERE registrations_id='$reg_id' AND year='{$config['FAIRYEAR']}'");
|
|
$ret=array();
|
|
while($sr=mysql_fetch_object($sq)) {
|
|
if($sr->email && isEmailAddress($sr->email)) {
|
|
if($sr->firstname && $sr->lastname)
|
|
$to=$sr->firstname." ".$sr->lastname." <".$sr->email.">";
|
|
else if($sr->firstname)
|
|
$to=$sr->firstname." <".$sr->email.">";
|
|
else if($sr->lastname)
|
|
$to=$sr->lastname." <".$sr->email.">";
|
|
else
|
|
$to=$sr->email;
|
|
|
|
$ret[]=array("to"=>$to,
|
|
"firstname"=>$sr->firstname,
|
|
"lastname"=>$sr->lastname,
|
|
"email"=>$sr->email,
|
|
);
|
|
}
|
|
}
|
|
return $ret;
|
|
}
|
|
|
|
function output_page_text($textname)
|
|
{
|
|
global $config;
|
|
$q=mysql_query("SELECT * FROM pagetext WHERE textname='$textname' AND year='".$config['FAIRYEAR']."'");
|
|
if(mysql_num_rows($q))
|
|
$r=mysql_fetch_object($q);
|
|
else
|
|
{
|
|
//not defined, lets grab the default text
|
|
$q=mysql_query("SELECT * FROM pagetext WHERE textname='$textname' AND year='-1'");
|
|
$r=mysql_fetch_object($q);
|
|
}
|
|
|
|
//if it looks like we have HTML content, dont do a nl2br, if there's no html, then do the nl2br
|
|
if(strlen($r->text)==strlen(strip_tags($r->text)))
|
|
echo nl2br(i18n($r->text));
|
|
else
|
|
echo i18n($r->text);
|
|
}
|
|
|
|
function generatePassword($pwlen=8)
|
|
{
|
|
//these are good characters that are not easily confused with other characters :)
|
|
$available="ABCDEFGHJKLMNPQRSTUVWXYZabcdefghjkmnpqrstuvwxyz23456789";
|
|
$len=strlen($available);
|
|
|
|
$key="";
|
|
for($x=0;$x<$pwlen;$x++)
|
|
{
|
|
$key.=$available[rand(0,$len)];
|
|
}
|
|
return $key;
|
|
}
|
|
|
|
|
|
//config specific warning
|
|
function config_warnings()
|
|
{
|
|
|
|
}
|
|
|
|
//admin specific warnings
|
|
function admin_warnings()
|
|
{
|
|
|
|
}
|
|
|
|
//warnings to show to both config and/or admin people
|
|
function committee_warnings()
|
|
{
|
|
global $config;
|
|
//it is vital that each year the system be rolled over before we start it again
|
|
//we should do this, say, 4 months after the FAIRDATE, so its soon enough that they should see
|
|
//the message as soon as they login to start preparing for hte new year, but not too late to do it
|
|
//properly :)
|
|
|
|
$q=mysql_query("SELECT DATE_ADD('".$config['dates']['fairdate']."', INTERVAL 4 MONTH) < NOW() AS rollovercheck");
|
|
$r=mysql_fetch_object($q);
|
|
if($r->rollovercheck)
|
|
{
|
|
echo error(i18n("It has been more than 4 months since your fair. In order to prepare the system for the next year's fair, you should go to the SFIAB Configuration page, and click on 'Rollover Fair Year'. Do not start updating the system with new information until the year has been properly rolled over."));
|
|
|
|
}
|
|
}
|
|
|
|
$CWSFDivisions=array(
|
|
1=>"Biotechnology & Pharmaceutical Sciences",
|
|
2=>"Computing & Information Technology",
|
|
3=>"Earth & Environmental Sciences",
|
|
4=>"Engineering",
|
|
5=>"Health Sciences",
|
|
6=>"Life Sciences",
|
|
7=>"Physical & Mathematical Sciences"
|
|
);
|
|
|
|
?>
|