engelsystem/www-ssl/nonpublic/schichtplan_add.php

<?php
require_once ('../bootstrap.php');

$title = "Himmel";
$header = "Schichtpl&auml;ne";
include "includes/header.php";
include "includes/funktion_schichtplan.php";
include "includes/funktion_schichtplan_aray.php";
include "includes/funktionen.php";

if (isset ($_POST["newtext"]) && isset ($_POST["SID"]) && isset ($_POST["TID"])) {
	SetHeaderGo2Back();

	// datum der einzutragenden Schicht heraussuhen...
	$ShiftSQL = "SELECT `DateS`, `DateE` FROM `Shifts` WHERE `SID`='" . $_POST["SID"] . ".'";
	$ShiftErg = mysql_query($ShiftSQL, $con);
	$beginSchicht = mysql_result($ShiftErg, 0, "DateS");
	$endSchicht = mysql_result($ShiftErg, 0, "DateE");

	// wenn keien rechte definiert sind
	if (!isset ($_SESSION['CVS'][$TID2Name[$_POST["TID"]]]))
		$_SESSION['CVS'][$TID2Name[$_POST["TID"]]] = "Y";

	if ($_SESSION['CVS'][$TID2Name[$_POST["TID"]]] == "Y") {
		// Ueberpruefung, ob der Engel bereits fuer eine Schicht zu dieser Zeit eingetragen ist
		$SSQL = "SELECT * FROM `Shifts`" .
		" INNER JOIN `ShiftEntry` ON `ShiftEntry`.`SID` = `Shifts`.`SID`" .
		" WHERE ((" .
		" ((`Shifts`.`DateS` >= '$beginSchicht') and " .
		"  (`Shifts`.`DateS` < '$endSchicht'))" .
		" OR " .
		" ((`Shifts`.`DateE` > '$beginSchicht') and " .
		"  (`Shifts`.`DateE` <= '$endSchicht')) " .
		") and " .
		"(`ShiftEntry`.`UID` = '" . $_SESSION['UID'] . "'));";
		$bErg = mysql_query($SSQL, $con);

		if (mysql_num_rows($bErg) != 0)
			echo Get_Text("pub_schichtplan_add_AllreadyinShift");
		else {
			// ermitteln der noch gesuchten
			$SQL3 = "SELECT * FROM `ShiftEntry`" .
			" WHERE ((`SID` = '" . $_POST["SID"] . "') AND (`TID` = '" . $_POST["TID"] . "') AND (`UID` = '0'));";
			$Erg3 = mysql_query($SQL3, $con);

			if (mysql_num_rows($Erg3) <= 0)
				echo Get_Text("pub_schichtplan_add_ToManyYousers");
			else {
				//write shift
				$SQL = "UPDATE `ShiftEntry` SET " .
				"`UID` = '" . $_SESSION['UID'] . "', " .
				"`Comment` = '" . $_POST["newtext"] . "' " .
				"WHERE ( (`SID` = '" . $_POST["SID"] . "') and " .
				"(`TID` = '" . $_POST["TID"] . "') and " .
				"(`UID` = '0')) LIMIT 1;";
				$Erg = mysql_query($SQL, $con);

				if ($Erg != 1)
					echo Get_Text("pub_schichtplan_add_Error");
				else
					echo Get_Text("pub_schichtplan_add_WriteOK");
			}
		}
	} else {
		echo "<h1>:-(</h1>";
		array_push($error_messages, "Hack atteck\n");
	}
}
elseif (isset ($_GET["SID"]) && isset ($_GET["TID"])) {
	//wenn keine Rechte definiert sind
	if (!isset ($_SESSION['CVS'][$TID2Name[$_GET["TID"]]]))
		$_SESSION['CVS'][$TID2Name[$_GET["TID"]]] = "Y";

	if ($_SESSION['CVS'][$TID2Name[$_GET["TID"]]] == "Y") {
		echo Get_Text("pub_schichtplan_add_Text1") . "<br /><br />\n\n" .
		"<form action=\"./schichtplan_add.php\" method=\"post\">\n" .
		"<table border=\"0\">\n";

		$SQL = "SELECT * FROM `Shifts` WHERE ";
		$SQL .= "(`SID` = '" . $_GET["SID"] . "')";
		$Erg = mysql_query($SQL, $con);

		echo "<tr><td>" . Get_Text("pub_schichtplan_add_Date") . ":</td> <td>" .
		mysql_result($Erg, 0, "DateS") . "</td></tr>\n";

		echo "<tr><td>" . Get_Text("pub_schichtplan_add_Place") . ":</td> <td>" .
		$RoomID[mysql_result($Erg, 0, "RID")] . "</td></tr>\n";

		echo "<tr><td>" . Get_Text("pub_schichtplan_add_Job") . ":</td> <td>" .
		$EngelTypeID[$_GET["TID"]] . "</td></tr>\n";

		echo "<tr><td>" . Get_Text("pub_schichtplan_add_Len") . ":</td> <td>" .
		mysql_result($Erg, 0, "Len") . "h</td></tr>\n";

		echo "<tr><td>" . Get_Text("pub_schichtplan_add_TextFor") . ":</td> <td>" .
		mysql_result($Erg, 0, "Man") . "</td></tr>\n";

		echo "<tr><td valign='top'>" . Get_Text("pub_schichtplan_add_Comment") . ":</td>\n <td>" .
		"<textarea name='newtext' cols='50' rows='10'></textarea> </td></tr>\n";

		echo "<tr><td>&nbsp;</td>\n" .
		"<td><input type=\"submit\" value=\"" . Get_Text("pub_schichtplan_add_submit") . "\"> </td></tr>\n" .
		"</table>\n" .
		"<input type=\"hidden\" name=\"SID\" value=\"" . $_GET["SID"] . "\">\n" .
		"<input type=\"hidden\" name=\"TID\" value=\"" . $_GET["TID"] . "\">\n" .
		"</form>";
	} else {
		echo "<h1>:-(</h1>";
		array_push($error_messages, "Hack atteck\n");
	}
}

include "includes/footer.php";
?>
add total system git-svn-id: svn://svn.cccv.de/engel-system@1 29ba0400-6e00-0410-a75a-ca02368028f8 2005-09-10 19:25:43 +02:00			`<?php`
bootstrapping 2011-06-01 14:48:31 +02:00			`require_once ('../bootstrap.php');`

			`$title = "Himmel";`
			`$header = "Schichtpläne";`
			`include "includes/header.php";`
			`include "includes/funktion_schichtplan.php";`
			`include "includes/funktion_schichtplan_aray.php";`
			`include "includes/funktionen.php";`

			`if (isset ($_POST["newtext"]) && isset ($_POST["SID"]) && isset ($_POST["TID"])) {`
			`SetHeaderGo2Back();`

			`// datum der einzutragenden Schicht heraussuhen...`
			$ShiftSQL = "SELECT `DateS`, `DateE` FROM `Shifts` WHERE `SID`='" . $_POST["SID"] . ".'";
			`$ShiftErg = mysql_query($ShiftSQL, $con);`
			`$beginSchicht = mysql_result($ShiftErg, 0, "DateS");`
			`$endSchicht = mysql_result($ShiftErg, 0, "DateE");`

			`// wenn keien rechte definiert sind`
			`if (!isset ($_SESSION['CVS'][$TID2Name[$_POST["TID"]]]))`
			`$_SESSION['CVS'][$TID2Name[$_POST["TID"]]] = "Y";`

			`if ($_SESSION['CVS'][$TID2Name[$_POST["TID"]]] == "Y") {`
			`// Ueberpruefung, ob der Engel bereits fuer eine Schicht zu dieser Zeit eingetragen ist`
			$SSQL = "SELECT * FROM `Shifts`" .
			" INNER JOIN `ShiftEntry` ON `ShiftEntry`.`SID` = `Shifts`.`SID`" .
			`" WHERE ((" .`
			" ((`Shifts`.`DateS` >= '$beginSchicht') and " .
			" (`Shifts`.`DateS` < '$endSchicht'))" .
			`" OR " .`
			" ((`Shifts`.`DateE` > '$beginSchicht') and " .
			" (`Shifts`.`DateE` <= '$endSchicht')) " .
			`") and " .`
			"(`ShiftEntry`.`UID` = '" . $_SESSION['UID'] . "'));";
			`$bErg = mysql_query($SSQL, $con);`

			`if (mysql_num_rows($bErg) != 0)`
			`echo Get_Text("pub_schichtplan_add_AllreadyinShift");`
			`else {`
			`// ermitteln der noch gesuchten`
			$SQL3 = "SELECT * FROM `ShiftEntry`" .
			" WHERE ((`SID` = '" . $_POST["SID"] . "') AND (`TID` = '" . $_POST["TID"] . "') AND (`UID` = '0'));";
			`$Erg3 = mysql_query($SQL3, $con);`

			`if (mysql_num_rows($Erg3) <= 0)`
			`echo Get_Text("pub_schichtplan_add_ToManyYousers");`
			`else {`
			`//write shift`
			$SQL = "UPDATE `ShiftEntry` SET " .
			"`UID` = '" . $_SESSION['UID'] . "', " .
			"`Comment` = '" . $_POST["newtext"] . "' " .
			"WHERE ( (`SID` = '" . $_POST["SID"] . "') and " .
			"(`TID` = '" . $_POST["TID"] . "') and " .
			"(`UID` = '0')) LIMIT 1;";
			`$Erg = mysql_query($SQL, $con);`

			`if ($Erg != 1)`
			`echo Get_Text("pub_schichtplan_add_Error");`
			`else`
			`echo Get_Text("pub_schichtplan_add_WriteOK");`
			`}`
			`}`
			`} else {`
			`echo "<h1>:-(</h1>";`
			`array_push($error_messages, "Hack atteck\n");`
			`}`
			`}`
			`elseif (isset ($_GET["SID"]) && isset ($_GET["TID"])) {`
			`//wenn keine Rechte definiert sind`
			`if (!isset ($_SESSION['CVS'][$TID2Name[$_GET["TID"]]]))`
			`$_SESSION['CVS'][$TID2Name[$_GET["TID"]]] = "Y";`

			`if ($_SESSION['CVS'][$TID2Name[$_GET["TID"]]] == "Y") {`
			`echo Get_Text("pub_schichtplan_add_Text1") . "<br /><br />\n\n" .`
			`"<form action=\"./schichtplan_add.php\" method=\"post\">\n" .`
			`"<table border=\"0\">\n";`

			$SQL = "SELECT * FROM `Shifts` WHERE ";
			$SQL .= "(`SID` = '" . $_GET["SID"] . "')";
			`$Erg = mysql_query($SQL, $con);`

			`echo "<tr><td>" . Get_Text("pub_schichtplan_add_Date") . ":</td> <td>" .`
			`mysql_result($Erg, 0, "DateS") . "</td></tr>\n";`

			`echo "<tr><td>" . Get_Text("pub_schichtplan_add_Place") . ":</td> <td>" .`
			`$RoomID[mysql_result($Erg, 0, "RID")] . "</td></tr>\n";`

			`echo "<tr><td>" . Get_Text("pub_schichtplan_add_Job") . ":</td> <td>" .`
			`$EngelTypeID[$_GET["TID"]] . "</td></tr>\n";`

			`echo "<tr><td>" . Get_Text("pub_schichtplan_add_Len") . ":</td> <td>" .`
			`mysql_result($Erg, 0, "Len") . "h</td></tr>\n";`

			`echo "<tr><td>" . Get_Text("pub_schichtplan_add_TextFor") . ":</td> <td>" .`
			`mysql_result($Erg, 0, "Man") . "</td></tr>\n";`

			`echo "<tr><td valign='top'>" . Get_Text("pub_schichtplan_add_Comment") . ":</td>\n <td>" .`
			`"<textarea name='newtext' cols='50' rows='10'></textarea> </td></tr>\n";`

			`echo "<tr><td> </td>\n" .`
			`"<td><input type=\"submit\" value=\"" . Get_Text("pub_schichtplan_add_submit") . "\"> </td></tr>\n" .`
			`"</table>\n" .`
			`"<input type=\"hidden\" name=\"SID\" value=\"" . $_GET["SID"] . "\">\n" .`
			`"<input type=\"hidden\" name=\"TID\" value=\"" . $_GET["TID"] . "\">\n" .`
			`"</form>";`
			`} else {`
			`echo "<h1>:-(</h1>";`
			`array_push($error_messages, "Hack atteck\n");`
			`}`
			`}`

			`include "includes/footer.php";`
add total system git-svn-id: svn://svn.cccv.de/engel-system@1 29ba0400-6e00-0410-a75a-ca02368028f8 2005-09-10 19:25:43 +02:00			`?>`