ohctech/ESH
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
main
ESH/manage_users.php
raj_mehra a9984aa9aa first commit
2024-10-23 18:28:06 +05:30

504 lines
8.0 KiB
PHP
Raw Permalink Blame History

<?php
include('pop_up_top.php');
$TABLENAME='tbl_users';
//$this_script='manage_users.php';
?>
<?php
if(isset($acn) && $acn=='delete')
{
if($txt_user_id)
mysqli_query($conn,"DELETE FROM $TABLENAME WHERE user_id='".$_REQUEST['txt_user_id']."'");
}
if(isset($hid) && $hid=='1')
{
$query_main=" SET user_password='".addslashes($user_password)."',email='".addslashes($email)."',landing_page='".$landing_page."',remarks='".addslashes($remarks)."',role_id ='".$role_id."', access='".$sel."',access1='".$sel1."',modified_by='".$_SESSION['user_id']."'";
$query_prefix='';
$query_suffix="";
$query_additional="";
if($frmacn=="Update")
{
$query_prefix='UPDATE ';
$query_suffix=" WHERE user_id='".$_REQUEST['txt_user_id']."'";
$query_additional="";
$msg="User Updated Successfully";
}
elseif($frmacn=="Add")
{
$query_prefix='INSERT INTO ';
$query_suffix="";
$query_additional=", user_name='".addslashes($txt_user_name)."'";
$msg="User Added Successfully";
}
if($user_password==$conf_password)
{
$sql=$query_prefix.$TABLENAME.$query_main.$query_additional.$query_suffix;
$res=@mysqli_query($conn,$sql);
if($res){
//get the newly added userid
if($frmacn=="Add"){
$sql_userId="select max(user_id) as txt_user_id from tbl_users";
//echo $sql_userId;
$rs_userId =@mysqli_query($conn,$sql_userId);
if($row_userId= mysqli_fetch_array($rs_userId)){
$txt_user_id = $row_userId['txt_user_id'];
}
//echo $txt_user_id;
}
@mysqli_query($conn,"DELETE FROM user_firms WHERE user_id='".$txt_user_id."'");
$sql_firms="select firm_id from tbl_firms";
$rs_firms=@mysqli_query($conn,$sql_firms);
while($row_firms= mysqli_fetch_array($rs_firms)){
$var1 = 'firm_'.$row_firms['firm_id'];
if(${$var1}){
$sql_firm="insert into user_firms(user_id,firm_id) values('".$txt_user_id."','".$row_firms['firm_id']."')";
$rs_firm=@mysqli_query($conn,$sql_firm);
}
}
}
echo "<script>location.replace('$this_script?msg=$msg')</script>";
}
else
{
$msg="Password and Confirm Password must be same";
echo "<script>location.replace('$this_script?acn=add&msg=$msg')</script>";
}
}
if(isset($hid) && $hid=='2')
{
if($chk=='1')
{
mysqli_query($conn,"UPDATE tbl_users SET status = '0', last_modified = NOW() WHERE user_id ='".$txt_user_id."'");
$msg="User disabled";
} elseif($chk=='0')
{
mysqli_query($conn,"UPDATE tbl_users SET status = '1', last_modified = NOW() WHERE user_id ='".$txt_user_id."'");
$msg="User enabled";
}
echo "<script>location.replace('$this_script?msg=$msg')</script>";
}
?>
<link href="includes/css-js/admin.css" rel="stylesheet" type="text/css" />
<tr>
<td height="350" valign="top" style="padding:10px;"><table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr>
<td><fieldset class="bdr1" >
<center>
<?php if($acn=='add' || $acn=='update' || $acn=='view') { ?>
<?php
if($acn=='update' || $acn=='view')
{
$sql="SELECT user_id as txt_user_id, user_name as txt_user_name,email,role_id, user_password,access,access1,landing_page, remarks FROM $TABLENAME WHERE user_id='".$_REQUEST['txt_user_id']."'";
$res=@mysqli_query($conn,$sql);
$row=@mysqli_fetch_array($res);
@extract($row);
}
?>
<form name="f1" method="post" action="<?php echo $this_script?>">
<table width="100%" border="0" cellspacing="0" cellpadding="4" class="bdr_table">
<tr>
<td colspan="2" align="center" class="bg2">&nbsp;
<span class="txt">
<?php
if($msg)
echo $msg;
?>
</span></td>
</tr>
<tr>
<!-- <td align="right" class="bg3">User Name:</td> -->
<td align="left" class="bdr_td"><input placeholder="USER NAME" type="text" class="textbox1" <?php if($acn!='add'){?>readOnly=true<?php }?> name="txt_user_name" size="45" value="<?php echo $txt_user_name?>" style="width:200px;"></td>
</tr>
<tr>
<!-- <td align="right" class="bg3">Password:</td>-->
<td align="left" class="bdr_td"><input placeholder="PASSWORD" type="password" name="user_password" class="textbox1" size="45" value="<?php echo $user_password?>" style="width:200px;"></td>
</tr>
<tr>
<!-- <td align="right" class="bg3">Confirm Password:</td>-->
<td align="left" class="bdr_td"><input placeholder="CONFIRM PASSWORD" type="password" name="conf_password" class="textbox1" size="45" value="<?php echo stripslashes($row['user_password'])?>" style="width:200px;"></td>
</tr>
<tr>
<!-- <td align="right" class="bg3">Email:</td>-->
<td align="left" class="bdr_td"><input placeholder="E MAIL" type="text" name="email" class="textbox2" size="45" value="<?php echo stripslashes($email)?>" style="width:200px;"></td>
</tr>
<tr>
<td align="left" class="bg3" valign="top">Parent Firm:</td></tr>
<tr>
<td align="left" class="bdr_td">
<?php
$sql_user_firms="SELECT firm_id FROM user_firms where user_id='".$txt_user_id."'";
$rs_user_firms = @mysqli_query($conn,$sql_user_firms);
$count=0;
while($row_user_firms=@mysqli_fetch_array($rs_user_firms)){
$firmIds[$count++]=$row_user_firms['firm_id'];
}
if ($count>=0){
?>
<?php
$sql_firms="select firm_id,firm_name from tbl_firms";
$rs_firms=@mysqli_query($conn,$sql_firms);
while($row_firms=@mysqli_fetch_array($rs_firms)){
?>
<span class="bdr_td"><input type="checkbox" name="firm_<?php echo $row_firms['firm_id']?>" value="true" <?php if($firmIds && in_array($row_firms['firm_id'],$firmIds)){?>checked<?php }?> > <?php echo $row_firms['firm_name']?></input></span><BR />
<?php
}
}
?> </td>
</tr>
<tr>
<td align="left" class="bdr_td">
Role:
<select class="selectbox"name="role_id" >
<?php echo generateOption('role_master','role_name','role_id',$role_id); ?>
</select></td>
</tr>
<tr>
<td align="left" class="bg3">Landing Page :
<select class="selectbox" name="landing_page"><option>Landing Page</option>
<?php echo generateOptionforlandingpage('assign_menu','menu_name','menu_id',$role_id,$landing_page); ?>
</select></td></tr>
<tr>
<!-- <td align="right" class="bg3">Remarks:</td>-->
<td align="left" class="bdr_td"><textarea placeholder="REMARK" name="remarks" cols="30" rows="6"><?php echo stripslashes($remarks)?></textarea></td>
</tr>
<tr>
<td align="right" class="bg3">
<input type="hidden" name="txt_user_id" value="<?php echo $txt_user_id?>">
<input type="hidden" name="hid" value="0"> </td>
</tr><tr>
<td align="left" class="bdr_td">
<?php if($acn=='update') { ?>
<input type="submit" name="frmacn" value="Update" onclick="document.forms[0].hid.value=1" class="submitbutton" style="background-color:#CCFF33;">
<?php } else if($acn=='add') { ?>
<input type="submit" name="frmacn" value="Add"onclick="document.forms[0].hid.value=1" class="submitbutton" style="background-color:#CCFF33;">
<?php } ?>
<input type="button" value="Close" onclick="window.close();" class="submitbutton" style="background-color:#FF5C33;">
</td>
</tr>
</table>
</form>
<?php } else echo "<script>location.href='user_list.php'</script>"; ?>
<script>
function CheckAll(chk)
{for(var i=0;i<document.f1.elements.length;i++)
{var e=document.f1.elements[i];if(e.type=="checkbox" && e.id=="client")
{e.checked=chk.checked;}}}
function Checkit(chk)
{for(var i=0;i<document.f1.elements.length;i++)
{
var e=document.f1.elements[i];
if(e.type=="checkbox" && e.id=="sel")
{
if(e.checked)
{
e.checked=chk.checked;}}}}
function CheckAll1(chk)
{for(var i=0;i<document.f1.elements.length;i++)
{var e=document.f1.elements[i];if(e.type=="checkbox" && e.id=="role")
{e.checked=chk.checked;}}}
function Checkit1(chk)
{for(var i=0;i<document.f1.elements.length;i++)
{
var e=document.f1.elements[i];
if(e.type=="checkbox" && e.id=="sel1")
{
if(e.checked)
{
e.checked=chk.checked;}}}}
</script>
Reference in New Issue View Git Blame Copy Permalink