<?php 

include('pop_up_top.php');

$TABLENAME='tbl_users';

//$this_script='manage_users.php';

?>

<?php 

if(isset($acn) && $acn=='delete')

{

	if($txt_user_id)

	mysqli_query($conn,"DELETE FROM $TABLENAME WHERE user_id='".$_REQUEST['txt_user_id']."'");

}

if(isset($hid) && $hid=='1')

{



	$query_main=" SET user_password='".addslashes($user_password)."',email='".addslashes($email)."',landing_page='".$landing_page."',remarks='".addslashes($remarks)."',role_id ='".$role_id."', access='".$sel."',access1='".$sel1."',modified_by='".$_SESSION['user_id']."'";

	$query_prefix='';

	$query_suffix="";

	$query_additional="";

	if($frmacn=="Update")

	{

		$query_prefix='UPDATE ';

		$query_suffix=" WHERE user_id='".$_REQUEST['txt_user_id']."'";

		$query_additional="";

		$msg="User Updated Successfully";

	}

	elseif($frmacn=="Add")

	{

		$query_prefix='INSERT INTO ';

		$query_suffix="";

		$query_additional=", user_name='".addslashes($txt_user_name)."'";

		$msg="User Added Successfully";

	}

	if($user_password==$conf_password)

	{

		$sql=$query_prefix.$TABLENAME.$query_main.$query_additional.$query_suffix;

		$res=@mysqli_query($conn,$sql);



		if($res){



		//get the newly added userid

		if($frmacn=="Add"){

		$sql_userId="select max(user_id) as txt_user_id from tbl_users";

		//echo $sql_userId;

		$rs_userId =@mysqli_query($conn,$sql_userId);

		if($row_userId= mysqli_fetch_array($rs_userId)){

		$txt_user_id = $row_userId['txt_user_id'];

		}

		//echo $txt_user_id;

		}

		


	@mysqli_query($conn,"DELETE FROM user_firms WHERE user_id='".$txt_user_id."'");

	$sql_firms="select firm_id from tbl_firms";

	$rs_firms=@mysqli_query($conn,$sql_firms);

	while($row_firms= mysqli_fetch_array($rs_firms)){

 $var1 = 'firm_'.$row_firms['firm_id'];

	if(${$var1}){

 $sql_firm="insert into user_firms(user_id,firm_id) values('".$txt_user_id."','".$row_firms['firm_id']."')";

	$rs_firm=@mysqli_query($conn,$sql_firm);



			}

		}





		}



		echo "<script>location.replace('$this_script?msg=$msg')</script>";

	}

	else

	{

		$msg="Password and Confirm Password must be same";

		echo "<script>location.replace('$this_script?acn=add&msg=$msg')</script>";

	}





}

if(isset($hid) && $hid=='2')

{

	if($chk=='1')

	{

		mysqli_query($conn,"UPDATE tbl_users SET status = '0', last_modified = NOW() WHERE user_id ='".$txt_user_id."'");

		$msg="User disabled";

	} elseif($chk=='0') 

	{

		mysqli_query($conn,"UPDATE tbl_users SET status = '1', last_modified = NOW() WHERE user_id ='".$txt_user_id."'");

		$msg="User enabled";

	}



echo "<script>location.replace('$this_script?msg=$msg')</script>";

}

 ?>

<link href="includes/css-js/admin.css" rel="stylesheet" type="text/css" />





  <tr>

    <td height="350" valign="top" style="padding:10px;"><table width="100%" border="0" cellspacing="0" cellpadding="0">

      <tr>

        <td><fieldset class="bdr1" >



	<center>

	<?php  if($acn=='add' || $acn=='update' || $acn=='view') { ?>



	<?php 

	if($acn=='update' || $acn=='view')

	{

		$sql="SELECT user_id as txt_user_id, user_name as txt_user_name,email,role_id, user_password,access,access1,landing_page, remarks FROM $TABLENAME WHERE user_id='".$_REQUEST['txt_user_id']."'";

		$res=@mysqli_query($conn,$sql);

		$row=@mysqli_fetch_array($res);

		@extract($row);

	}

	?>

	<form name="f1" method="post" action="<?php  echo $this_script?>">

	<table width="100%" border="0" cellspacing="0" cellpadding="4" class="bdr_table">

		<tr>

			<td colspan="2" align="center" class="bg2">&nbsp;

			<span class="txt">

			<?php 

			if($msg)

			echo $msg;

			?>

			</span></td>

		 </tr>

		<tr>

		  <!--  <td align="right" class="bg3">User Name:</td> -->



		   <td align="left" class="bdr_td"><input placeholder="USER NAME" type="text" class="textbox1" <?php if($acn!='add'){?>readOnly=true<?php }?> name="txt_user_name" size="45" value="<?php  echo $txt_user_name?>" style="width:200px;"></td>

		</tr>

		<tr>

		    <!--  <td align="right" class="bg3">Password:</td>-->



		   <td align="left" class="bdr_td"><input placeholder="PASSWORD" type="password" name="user_password" class="textbox1" size="45" value="<?php  echo $user_password?>" style="width:200px;"></td>

		</tr>

		<tr>

		     <!-- <td align="right" class="bg3">Confirm Password:</td>-->



		   <td align="left" class="bdr_td"><input placeholder="CONFIRM PASSWORD" type="password" name="conf_password" class="textbox1" size="45" value="<?php  echo stripslashes($row['user_password'])?>" style="width:200px;"></td>

		</tr>

		<tr>

		    <!--  <td align="right" class="bg3">Email:</td>-->



		   <td align="left" class="bdr_td"><input placeholder="E MAIL" type="text" name="email" class="textbox2" size="45" value="<?php  echo stripslashes($email)?>" style="width:200px;"></td>

		</tr>

		<tr>

		      <td align="left" class="bg3" valign="top">Parent Firm:</td></tr>

			  <tr>



		   <td align="left" class="bdr_td">



		    <?php 

	  	$sql_user_firms="SELECT firm_id FROM user_firms where user_id='".$txt_user_id."'";

				$rs_user_firms = @mysqli_query($conn,$sql_user_firms);

				$count=0;

				while($row_user_firms=@mysqli_fetch_array($rs_user_firms)){



				$firmIds[$count++]=$row_user_firms['firm_id'];



				}

				if ($count>=0){

				

?>

<?php 



				$sql_firms="select firm_id,firm_name from tbl_firms";

				$rs_firms=@mysqli_query($conn,$sql_firms);



				while($row_firms=@mysqli_fetch_array($rs_firms)){



				?>

				<span class="bdr_td"><input type="checkbox" name="firm_<?php  echo $row_firms['firm_id']?>" value="true" <?php if($firmIds && in_array($row_firms['firm_id'],$firmIds)){?>checked<?php }?> > <?php  echo $row_firms['firm_name']?></input></span><BR />

				<?php 

				}



}

			?>			</td>

		</tr>

        

    



	<tr>

		


		   <td align="left" class="bdr_td">
Role:
		    <select class="selectbox"name="role_id" >





				<?php  echo generateOption('role_master','role_name','role_id',$role_id); ?>

			</select></td>

		</tr>

        

        <tr>

	 <td align="left" class="bg3">Landing Page :

		 

		  <select class="selectbox" name="landing_page"><option>Landing Page</option>

		     <?php  echo generateOptionforlandingpage('assign_menu','menu_name','menu_id',$role_id,$landing_page); ?>

		 </select></td></tr>

		<tr>

		   <!-- <td align="right" class="bg3">Remarks:</td>-->

		   <td align="left" class="bdr_td"><textarea placeholder="REMARK" name="remarks" cols="30" rows="6"><?php  echo stripslashes($remarks)?></textarea></td>

		</tr>

		<tr>

		   <td align="right" class="bg3">

			   <input type="hidden" name="txt_user_id" value="<?php  echo $txt_user_id?>">

			   <input type="hidden" name="hid" value="0">		   </td>

			   </tr><tr>

		   <td align="left" class="bdr_td">

		  	<?php  if($acn=='update') { ?>

			   <input type="submit" name="frmacn" value="Update" onclick="document.forms[0].hid.value=1" class="submitbutton" style="background-color:#CCFF33;">

			<?php  }  else if($acn=='add')   { ?>

			   <input type="submit" name="frmacn" value="Add"onclick="document.forms[0].hid.value=1" class="submitbutton" style="background-color:#CCFF33;">

			<?php  } ?>

				<input type="button" value="Close" onclick="window.close();" class="submitbutton" style="background-color:#FF5C33;">

			</td>

		</tr>

	</table>



	</form>

<?php  } else  echo "<script>location.href='user_list.php'</script>";  ?>






<script>

function CheckAll(chk)

{for(var i=0;i<document.f1.elements.length;i++)

{var e=document.f1.elements[i];if(e.type=="checkbox" && e.id=="client")

{e.checked=chk.checked;}}}



function Checkit(chk)

{for(var i=0;i<document.f1.elements.length;i++)

{

var e=document.f1.elements[i];

if(e.type=="checkbox" && e.id=="sel")

{

	if(e.checked)

	{

	e.checked=chk.checked;}}}}

	





function CheckAll1(chk)

{for(var i=0;i<document.f1.elements.length;i++)

{var e=document.f1.elements[i];if(e.type=="checkbox" && e.id=="role")

{e.checked=chk.checked;}}}



function Checkit1(chk)

{for(var i=0;i<document.f1.elements.length;i++)

{

var e=document.f1.elements[i];

if(e.type=="checkbox" && e.id=="sel1")

{

	if(e.checked)

	{

	e.checked=chk.checked;}}}}	

	

</script>