engelsystem/www-ssl/nonpublic/schichtplan_add.php

127 lines
4.1 KiB
PHP
Raw Normal View History

<?php
$title = "Himmel";
$header = "Schichtpl&auml;ne";
2010-11-10 21:03:28 +01:00
include ("../../../27c3/includes/header.php");
include ("../../../27c3/includes/funktion_schichtplan.php");
include ("../../../27c3/includes/funktion_schichtplan_aray.php");
include ("../../../27c3/includes/funktionen.php");
if (isset($_POST["newtext"]) && isset($_POST["SID"]) && isset($_POST["TID"])) {
SetHeaderGo2Back();
// datum der einzutragenden schicht heraussuhen...
$ShiftSQL = "SELECT `DateS`, `DateE` FROM `Shifts` WHERE `SID`='". $_POST["SID"]. ".'";
$ShiftErg = mysql_query ($ShiftSQL, $con);
$beginSchicht = mysql_result($ShiftErg, 0, "DateS");
$endSchicht = mysql_result($ShiftErg, 0, "DateE");
//wenn keien rechte definiert sind
if( !isset($_SESSION['CVS'][ $TID2Name[$_POST["TID"]] ]))
$_SESSION['CVS'][ $TID2Name[$_POST["TID"]] ] = "Y";
if( $_SESSION['CVS'][ $TID2Name[$_POST["TID"]] ] == "Y")
{
// Ueberpruefung, ob der Engel bereits f<>r eine Schicht zu dieser Zeit eingetragen ist
$SSQL="SELECT * FROM `Shifts`".
" INNER JOIN `ShiftEntry` ON `ShiftEntry`.`SID` = `Shifts`.`SID`".
" WHERE ((".
" ((`Shifts`.`DateS` >= '$beginSchicht') and ".
" (`Shifts`.`DateS` < '$endSchicht'))".
" OR ".
" ((`Shifts`.`DateE` > '$beginSchicht') and ".
" (`Shifts`.`DateE` <= '$endSchicht')) ".
") and ".
"(`ShiftEntry`.`UID` = '". $_SESSION['UID']. "'));";
$bErg = mysql_query($SSQL, $con);
if( mysql_num_rows($bErg) != 0 )
echo Get_Text("pub_schichtplan_add_AllreadyinShift");
else
{
//ermitteln der noch gesuchten
$SQL3 = "SELECT * FROM `ShiftEntry`".
" WHERE ((`SID` = '". $_POST["SID"]. "') AND (`TID` = '". $_POST["TID"]. "') AND (`UID` = '0'));";
$Erg3 = mysql_query($SQL3, $con);
if( mysql_num_rows($Erg3) <= 0 )
echo Get_Text("pub_schichtplan_add_ToManyYousers");
else
{
//write shift
$SQL = "UPDATE `ShiftEntry` SET ".
"`UID` = '". $_SESSION['UID']. "', ".
"`Comment` = '". $_POST["newtext"]. "' ".
"WHERE ( (`SID` = '". $_POST["SID"]. "') and ".
"(`TID` = '". $_POST["TID"]. "') and ".
"(`UID` = '0')) LIMIT 1;";
$Erg = mysql_query($SQL, $con);
if ($Erg != 1)
echo Get_Text("pub_schichtplan_add_Error");
else
echo Get_Text("pub_schichtplan_add_WriteOK");
}//TO Many USERS
}//Allready in Shift
}
else
{
echo "<h1>:-(</h1>";
array_push($error_messages, "Hack atteck\n");
}
}
elseif (isset($_GET["SID"]) && isset($_GET["TID"]))
{
//wenn keien rechte definiert sind
if( !isset($_SESSION['CVS'][ $TID2Name[$_GET["TID"]] ]))
$_SESSION['CVS'][ $TID2Name[$_GET["TID"]] ] = "Y";
if( $_SESSION['CVS'][ $TID2Name[$_GET["TID"]] ] == "Y")
{
echo Get_Text("pub_schichtplan_add_Text1"). "<br><br>\n\n".
"<form action=\"./schichtplan_add.php\" method=\"post\">\n".
"<table border=\"0\">\n";
$SQL = "SELECT * FROM `Shifts` WHERE ";
$SQL .="(`SID` = '". $_GET["SID"]. "')";
$Erg = mysql_query($SQL, $con);
echo "<tr><td>". Get_Text("pub_schichtplan_add_Date"). ":</td> <td>".
mysql_result($Erg, 0, "DateS"). "</td></tr>\n";
echo "<tr><td>". Get_Text("pub_schichtplan_add_Place"). ":</td> <td>".
$RoomID[ mysql_result($Erg, 0, "RID") ]. "</td></tr>\n";
echo "<tr><td>". Get_Text("pub_schichtplan_add_Job"). ":</td> <td>".
$EngelTypeID[$_GET["TID"]]. "</td></tr>\n";
echo "<tr><td>". Get_Text("pub_schichtplan_add_Len"). ":</td> <td>".
mysql_result($Erg, 0, "Len"). "h</td></tr>\n";
echo "<tr><td>". Get_Text("pub_schichtplan_add_TextFor"). ":</td> <td>".
mysql_result($Erg, 0, "Man"). "</td></tr>\n";
echo "<tr><td valign='top'>". Get_Text("pub_schichtplan_add_Comment"). ":</td>\n <td>".
"<textarea name='newtext' cols='50' rows='10'></textarea> </td></tr>\n";
echo "<tr><td>&nbsp;</td>\n".
"<td><input type=\"submit\" value=\"". Get_Text("pub_schichtplan_add_submit"). "\"> </td></tr>\n".
"</table>\n".
"<input type=\"hidden\" name=\"SID\" value=\"". $_GET["SID"]. "\">\n".
"<input type=\"hidden\" name=\"TID\" value=\"". $_GET["TID"]. "\">\n".
"</form>";
}
else
{
echo "<h1>:-(</h1>";
array_push($error_messages, "Hack atteck\n");
}
}
2010-11-10 21:03:28 +01:00
include ("../../../27c3/includes/footer.php");
?>