""]; private $value; function addAttribute($name, $value) { $this->attributes[$name] = $value; } function name($name) { $this->addAttribute('name', $name); } function id($id) { $this->addAttribute('id', $id); } function add_option($value, $label) { $this->option[$value] = $label; } function onchange($onchange) { $this->addAttribute('onchange', $onchange); } function onclick($onclick) { $this->addAttribute('onclick', $onclick); } function oninput($oninput) { $this->addAttribute('oninput', $oninput); } function required() { $this->addAttribute('required', 'required'); } function disabled() { $this->addAttribute('disabled', 'disabled'); } function readonly() { $this->addAttribute('readonly', 'readonly'); } function autofocus() { $this->addAttribute('autofocus', 'autofocus'); } function style($style) { $this->addAttribute('style', $style); } function class($class = "inputs") { $this->addAttribute('class', $class); } function fill_from_db($table_name, $column_for_value, $column_for_label, $where_clause = ' 1 ') { $db = new db_safeguard(); $query = "SELECT $column_for_value, $column_for_label FROM $table_name WHERE $where_clause"; $result = $db->query($table_name, $query); while ($row = $result->fetch_assoc()) { $this->option[$row[$column_for_value]] = $row[$column_for_label]; } } function value_from_db($table_name, $value_column, $where_clause) { $db = new db_safeguard(); $res = $db->query($table_name, "SELECT $value_column FROM $table_name WHERE $where_clause"); $row = $res->fetch_assoc(); $this->value = $row[$value_column]; } function add() { if (!array_key_exists('class', $this->attributes)) { $this->class(); } $select = "attributes as $key => $value) { $select .= " $key='$value'"; } $select .= ">"; foreach ($this->option as $value => $label) { $select .= ""; } $select .= ""; $select .= ""; echo $select; } } class label { private $attributes = []; private $value; function addAttribute($name, $value) { $this->attributes[$name] = $value; } function for($for) { $this->addAttribute('for', $for); } function value($text) { $this->value = $text; } function class($class = "labels") { $this->addAttribute('class', $class); } function add() { if (!array_key_exists('class', $this->attributes)) { $this->class(); } $label = "attributes as $key => $value) { $label .= " $key='$value'"; } $label .= ">" . $this->value; $label .= ""; echo $label; } } class input { private $attributes = []; private $value; /** * Adds an attribute to the input element. * This function adds a single attribute to the input element. The attribute is * specified by the name and value parameters. * @param string $name The name of the attribute. * @param string $value The value of the attribute. */ function addAttribute($name, $value) { $this->attributes[$name] = $value; } /** * Sets the name attribute for the input element. * * This function assigns a name attribute to the input element, which is used * to identify the input when the form is submitted. The name is specified by * the $name parameter. * * @param string $name The name of the input element. */ function name($name) { $this->addAttribute('name', $name); } function id($id) { $this->addAttribute('id', $id); } function onchange($onchange) { $this->addAttribute('onchange', $onchange); } function onkeyup($onchange) { $this->addAttribute('onkeyup', $onchange); } function onclick($onclick) { $this->addAttribute('onclick', $onclick); } function oninput($oninput) { $this->addAttribute('oninput', $oninput); } function required() { $this->addAttribute('required', 'required'); } function disabled() { $this->addAttribute('disabled', 'disabled'); } function readonly() { $this->addAttribute('readonly', 'readonly'); } function autofocus() { $this->addAttribute('autofocus', 'autofocus'); } function min($min) { $this->addAttribute('min', $min); } function max($max) { $this->addAttribute('max', $max); } function step($step) { $this->addAttribute('step', $step); } /** * Sets the pattern attribute for the input element. * * This function assigns a pattern attribute to the input element, which is * used to validate the input when the form is submitted. The pattern is * specified by the $pattern parameter. * * @param string $pattern The pattern to be used for validation. */ function pattern($pattern) { $this->addAttribute('pattern', $pattern); } function placeholder($placeholder) { $this->addAttribute('placeholder', $placeholder); } function value($value) { $this->value = $value; } function style($style) { $this->addAttribute('style', $style); } function class($class = "inputs") { $this->addAttribute('class', $class); } function value_from_db($table_name, $value_column, $where_clause) { $db = new db_safeguard(); $res = $db->query($table_name, "SELECT $value_column FROM $table_name WHERE $where_clause"); $row = $res->fetch_assoc(); if (isset($this->attributes['id']) && $this->attributes['id'] == 'password') { $auth = new authentication(); $this->value = $auth->decrypt_password($row[$value_column]); } else { $this->value = $row[$value_column]; } } function type($type = "text") { $knownTypes = ['text', 'password', 'email', 'number', 'url', 'tel', 'search', 'color', 'date', 'datetime-local', 'month', 'week', 'time', 'checkbox', 'radio', 'file', 'hidden', 'image', 'button', 'reset', 'submit', 'range']; if (in_array($type, $knownTypes)) { $this->addAttribute('type', $type); } else { $this->value = "[HTML ERROR] - Unknown type: " . $type . " expected one of: " . implode(", ", $knownTypes); ; } } function add() { if (!array_key_exists('class', $this->attributes)) { $this->class(); } $input = "attributes as $key => $value) { $input .= " $key='$value'"; } $input .= " value=\"{$this->value}\"/>"; echo $input; } } class button { private $attributes = []; function addAttribute($name, $value) { $this->attributes[$name] = $value; } function name($name) { $this->addAttribute('name', $name); } function id($id = 'submit') { $this->addAttribute('id', $id); } function onchange($onchange) { $this->addAttribute('onchange', $onchange); } function onclick($onclick) { $this->addAttribute('onclick', $onclick); } function oninput($oninput) { $this->addAttribute('oninput', $oninput); } function required() { $this->addAttribute('required', 'required'); } function disabled() { $this->addAttribute('disabled', 'disabled'); } function readonly() { $this->addAttribute('readonly', 'readonly'); } function autofocus() { $this->addAttribute('autofocus', 'autofocus'); } function value($value) { $this->value = $value; } function class($class = "submit_btn") { $this->addAttribute('class', $class); } function add() { if (!array_key_exists('id', $this->attributes)) { $this->id(); } if (!array_key_exists('class', $this->attributes)) { $this->class(); } $button = "attributes as $key => $value) { $button .= " $key='$value' "; } $button .= ">" . $this->value . ""; echo $button; } } class root { /************* ✨ Codeium Command 🌟 *************/ public function Main_iframe() { // Include the root styles // The root styles are used to style the main page of the application // This includes the background color, font styles, and other general styles new root_styles(); ?> dev_mode = 1; } function on_success($message) { $this->on_success = $message; } // submit button handler to prevent double clicking and multiple form submission function function_name($function_name) { $this->function_name = $function_name; } function submit_btn_id($submit_btn_id) { $this->submit_btn_id = $submit_btn_id; } function select($table_name) { $this->table_name = $table_name; $this->type = "SELECT"; } function insert($table_name) { $this->table_name = $table_name; $this->type = "INSERT"; } function update($table_name) { $this->table_name = $table_name; $this->type = "UPDATE"; } function delete($table_name) { $this->table_name = $table_name; $this->type = "DELETE"; } function redirect($file_path) { $this->redirect = $file_path; } function exclude_inputs($excloded_colum_names) { $this->excloded_colum_names = $excloded_colum_names; } function add_column_and_value($add_column_and_value) { $this->add_column_and_value = $add_column_and_value; } function text_formaters($list_of_ids_for_text_formators) { $this->list_of_ids_for_text_formators = $list_of_ids_for_text_formators; } function return_columns($return_columns) { $this->return_columns = $return_columns; } function run_on_load() { $this->run_on_load = 1; } function __destruct() { ?>
window.location.href='$href_path';"; } } public function QRrender($idTag) { $this->idTag = $idTag; $idTag = htmlspecialchars($this->idTag, ENT_QUOTES, 'UTF-8'); ?>
"; } function selectable_block($page_name, $name) { $name = strtoupper($name); echo "
$name
"; } function submit_btn($html_name_and_id_tag, $value, $js_function = "", $class = 'submit_btn') { $name = $html_name_and_id_tag; echo ""; } function button($html_name_and_id_tag = '', $value, $js_function = "", $class = 'submit_btn') { $name = $html_name_and_id_tag; echo ""; } function select_html_from_db($table, $option_value_column, $option_name_column, $where_clause = "", $html_name_tag = '', $html_id_tag = "", $css_class_name = "inputs", $css_custom_styles = "", $js_function = "", $special_tags = "", $default_table = '', $default_value_where_clause = "") { $db = new db_safeguard(); if (strlen($where_clause) <= 1) { $where_clause = "1"; } $results = $db->select_query($table, "$option_value_column,$option_name_column", $where_clause); if (is_string($results)) { return $results; } if (strlen($default_value_where_clause) > 1) { $res = $db->select_query($default_table, "*", $default_value_where_clause); $data = $res->result_assoc(); } $label_name = strtoupper((str_replace("id", "", str_replace("_", " ", $html_name_tag)))); $html = ""; return $html; } function input_html_from_db($table, $value_column_name, $where_clause, $placeholder = '', $html_name_tag = '', $html_id_tag = "", $css_class_name = "inputs", $css_custom_styles = "", $js_function = "", $input_type = 'text', $special_tags = "") { $db = new db_safeguard(); if (strlen($where_clause) <= 1) { $where_clause = "1"; } $results = $db->select_query($table, "$value_column_name", $where_clause); if (is_string($results)) { return $results; } $data = $results->fetch_assoc(); $returned_value = $data[$value_column_name]; if ($value_column_name == "password") { $auth = new authentication(); $returned_value = $auth->decrypt_password($returned_value); } $label_name = strtoupper((str_replace("id", "", str_replace("_", " ", $html_name_tag)))); $html = ""; return $html; } function input_html($placeholder = '', $value = '', $html_name_tag = '', $html_id_tag = "", $css_class_name = "inputs", $css_custom_styles = "", $js_function = "", $input_type = 'text', $special_tags = "") { $label_name = strtoupper((str_replace("id", "", str_replace("_", " ", $html_name_tag)))); $html = ""; return $html; } function date_input_html_from_db($table, $value_column_name, $where_clause, $html_id_tag = '', $html_name_tag = '', $input_class = 'inputs', $input_style = '', $js_function = '', $special_tags = '') { $db = new db_safeguard(); if (strlen($where_clause) <= 1) { $where_clause = "1"; } $results = $db->select_query($table, "$value_column_name", $where_clause); if (is_string($results)) { return $results; } $data = $results->fetch_assoc(); $returned_value = $data[$value_column_name]; $label_name = strtoupper((str_replace("id", "", str_replace("_", " ", str_replace("date", "", str_replace("time", "", $html_name_tag)))))); $html = ""; return $html; } function date_input_html($html_id_tag = '', $html_name_tag = '', $input_class = 'inputs', $input_style = '', $input_value = '', $js_function = '', $special_tags = '') { $label_name = strtoupper((str_replace("id", "", str_replace("_", " ", str_replace("date", "", str_replace("time", "", $html_name_tag)))))); $html = ""; return $html; } function file_upload_html($input_id = '', $input_name = '', $input_class = 'inputs', $input_style = '', $js_function = '', $special_tags = '') { $html = ""; // js code for ajax root.class.php ?>
query('users', $sql); if ($redirect_or_return_bool) { if ($result->num_rows < 1) { echo ""; } } else { if ($result->num_rows < 1) { return false; } else { return true; } } } function select_from_db_add_current_selected_column($table_name = '', $column_name_to_display = '', $where_clause = '', $html_select_id_tag_to_change = '') { $db = new db_safeguard(); $result = $db->select_query($table_name, $column_name_to_display, $where_clause); $data = $result->fetch_assoc(); return ""; } function text_formator($content_id_html_tag = '') { ?>
select_query($table_name, $column_name_to_display, $where_clause); $data = $res->fetch_assoc(); echo $data[$column_name_to_display]; ?>
select_query($table_name, $column_name_to_display, $where_clause); $data = $res->fetch_assoc(); echo $data[$column_name_to_display]; ?>
select_query($table_name, $column_name_to_display, $where_clause); $data = $res->fetch_assoc(); echo $data[$column_name_to_display]; } ?>
connection = mysqli_connect($host, $user, $password, $dbname); if (!$this->check_table_exists('logs')) { $sql = "CREATE TABLE IF NOT EXISTS logs ( record_id INT AUTO_INCREMENT PRIMARY KEY, table_name TEXT, user_id INT(255), query TEXT, date_time VARCHAR(50) )"; if (!mysqli_query($this->connection, $sql)) { return "Error creating table: " . mysqli_error($this->connection); exit(); } } if (!$this->check_table_exists('users')) { $sql = "CREATE TABLE IF NOT EXISTS users ( record_id INT AUTO_INCREMENT PRIMARY KEY, username TEXT, user_password TEXT )"; if (!mysqli_query($this->connection, $sql)) { return "Error creating table: " . mysqli_error($this->connection); exit(); } $sql = "INSERT INTO users (username, user_password) VALUES ('DEV', '4030fe15babb7045f9036c2316babda746af34b61e623354c61828526c4e2ad5')"; if (!mysqli_query($this->connection, $sql)) { return "Error inserting first user: " . mysqli_error($this->connection); exit(); } } if (mysqli_connect_errno()) { return "Failed to connect to MySQL: " . mysqli_connect_error(); exit(); } } function session_check() { if (strlen($_SESSION["user_id"]) >= 1) { return $_SESSION["user_id"]; } else { return 0; } } /** * Logs in a user with the given username and password. * * @param string $username The username to log in with. * @param string $password The password to log in with. * * @return int 1 if the login was successful, 0 otherwise. */ function login($username, $password) { $hash_pass = hash("SHA256", $password); $sql = "SELECT * FROM users WHERE username = '$username' AND user_password = '$hash_pass'"; $result = mysqli_query($this->connection, $sql); if (mysqli_num_rows($result) > 0) { $row = mysqli_fetch_assoc($result); $_SESSION["user_id"] = $row["record_id"]; $_SESSION["database_log"] = "hello"; return 1; } else { return "0"; } } function check_table_exists($table) { $this->table_name = $table; $sql = "SHOW TABLES LIKE '$table' "; $result = mysqli_query($this->connection, $sql); if (mysqli_num_rows($result) > 0) { return true; } else { return false; } } public function select_query($table_name, $selector, $where_clause) { $this->sql = "SELECT $selector FROM $table_name WHERE $where_clause"; if (!$this->check_table_exists($table_name)) { echo "[SQL] TABLE NAME DOES NOT EXIST OR IS INCORRECT $table_name"; echo "[SQL QUERY FAILED]" . mysqli_error($this->connection) . "
"; echo "[SQL QUERY]: " . $this->sql; } $result = mysqli_query($this->connection, $this->sql); if (mysqli_error($this->connection)) { echo "[SQL QUERY FAILED]" . mysqli_error($this->connection) . "
"; echo "[SQL QUERY]: " . $this->sql; exit(); } else { return $result; } } public function query($table_name, $sql) { $this->sql = $sql; $this->table_name = $table_name; if (!$this->check_table_exists($table_name)) { echo "[SQL] TABLE NAME DOES NOT EXIST OR IS INCORRECT $table_name"; } $result = mysqli_query($this->connection, $this->sql); if (mysqli_error($this->connection)) { echo "[SQL QUERY FAILED] on " . $_SERVER['REQUEST_URI'] . " at line " . __LINE__ . ": " . mysqli_error($this->connection) . "
"; echo "[SQL QUERY]: " . $sql; exit(); } else { if (stripos(trim($sql), 'INSERT') === 0) { return mysqli_insert_id($this->connection); } else { return $result; } } } public function __destruct() { if (strlen($this->sql) > 1) { if (stripos(trim($this->sql), 'SELECT') !== 0) { $log_sql = "INSERT INTO logs (`table_name`,`user_id`,`query`,`date_time`) VALUES (\"$this->table_name\", \"{$_SESSION['user_id']}\", \"$this->sql\", NOW())"; $_SESSION["database_log"]; mysqli_query($this->connection, $log_sql); } } mysqli_close($this->connection); } } class authentication { public $key; function __construct() { $this->key = "password"; } function encrypt_password($password) { $cipher = "AES-256-CBC"; // Encryption cipher $iv = openssl_random_pseudo_bytes(openssl_cipher_iv_length($cipher)); // Generate IV $encrypted = openssl_encrypt($password, $cipher, $this->key, 0, $iv); // Encrypt the password // Combine encrypted password and IV for storage return base64_encode($encrypted . "::" . $iv); } function decrypt_password($encryptedPassword) { $cipher = "AES-256-CBC"; list($encryptedData, $iv) = explode("::", base64_decode($encryptedPassword), 2); return openssl_decrypt($encryptedData, $cipher, $this->key, 0, $iv); } } class ajax { function upload($file) { $target_dir = "/"; $target_file = $target_dir . basename($_FILES["fileToUpload"]["name"]); if (move_uploaded_file($_FILES["fileToUpload"]["tmp_name"], $target_file)) { echo "The file " . htmlspecialchars(basename($_FILES["fileToUpload"]["name"])) . " has been uploaded."; } else { echo "Sorry, there was an error uploading your file."; } } function insert() { $table_name = $_POST['table_name']; $edit_file_name = $_POST['edit_file_name']; $returned_cols = explode(",", $_POST['return_columns']); $add_column_and_value = explode(",", $_POST['add_column_and_value']); if (count($add_column_and_value) > 0) { foreach ($add_column_and_value as $add_column_and_value) { $add_column_and_value = explode("=", $add_column_and_value); $_POST[$add_column_and_value[0]] = $add_column_and_value[1]; } } $excloudedcolumns = explode(',', $_POST['excloded_colum_names']); if (count($excloudedcolumns) > 0) { foreach ($excloudedcolumns as $excloudedcolumn) { unset($_POST[$excloudedcolumn]); } } unset($_POST['excloded_colum_names']); unset($_POST['add_column_and_value']); unset($_POST['return_columns']); unset($_POST['edit_file_name']); unset($_POST['ajax_type']); unset($_POST['table_name']); unset($_POST['where_clause']); unset($_POST['submit']); if (isset($_POST['password'])) { $auth = new authentication(); $_POST['password'] = $auth->encrypt_password($_POST['password']); } if (isset($_POST['user_password'])) { $_POST['user_password'] = hash('SHA256', $_POST['user_password']); } $columns = array_keys($_POST); $values = array_values($_POST); $columns_string = "`" . implode("` , `", $columns) . "`"; $values_string = "'" . implode("','", $values) . "'"; $sql = "INSERT INTO $table_name ($columns_string) VALUES ($values_string)"; $db = new db_safeguard(); $res = $db->query($table_name, $sql); if ($res > 0) { return 1; } else { return $res; } } function delete() { $table_name = $_POST['table_name']; $record_id = $_POST['record_id']; $sql = "DELETE FROM $table_name WHERE record_id = $record_id"; $db = new db_safeguard(); $res = $db->query($table_name, $sql); if ($res > 0) { return 1; } else { return $res; } } function select() { $table_name = $_POST['table_name']; $edit_file_name = $_POST['edit_file_name']; $returned_cols = explode(",", $_POST['return_columns']); $add_column_and_value = explode(",", $_POST['add_column_and_value']); if (count($add_column_and_value) > 0) { foreach ($add_column_and_value as $add_column_and_value) { $add_column_and_value = explode("=", $add_column_and_value); $_POST[$add_column_and_value[0]] = $add_column_and_value[1]; } } $excloudedcolumns = explode(',', $_POST['excloded_colum_names']); if (count($excloudedcolumns) > 0) { foreach ($excloudedcolumns as $excloudedcolumn) { unset($_POST[$excloudedcolumn]); } } unset($_POST['excloded_colum_names']); unset($_POST['add_column_and_value']); unset($_POST['return_columns']); unset($_POST['edit_file_name']); unset($_POST['ajax_type']); unset($_POST['table_name']); unset($_POST['where_clause']); unset($_POST['submit']); $columns = array_keys($_POST); $values = array_values($_POST); $conditions = []; foreach ($columns as $key => $value) { if (strlen($values[$key]) >= 1) { if (strpos($columns[$key], '_id') !== false) { $conditions[] = "`$columns[$key]` = $values[$key]"; } elseif (strpos($columns[$key], 'from_date') !== false) { foreach ($columns[$key] as $key2 => $value2) { if (strpos($columns[$key2], 'to_date') !== false) { $to_Date = $columns[$key2]; } } if ($to_date_key !== false) { $conditions[] = "`$columns[$key]` BETWEEN '$values[$key]' AND '$to_Date'"; } } else { $conditions[] = "`$columns[$key]` LIKE '%$values[$key]%'"; } } } if (count($conditions) < 1) { $conditions[] = "1"; } $conditions_string = implode(" AND ", $conditions); $sql = "SELECT * FROM $table_name WHERE $conditions_string"; $db = new db_safeguard(); $result = $db->select_query($table_name, '*', $conditions_string); // return json_encode($data); while ($data = $result->fetch_assoc()) { $html .= "
"; foreach ($returned_cols as $column) { $label_name = strtoupper((str_replace("id", "", str_replace("_", " ", str_replace("date", "", str_replace("time", "", $column)))))); if (strpos($column, '_id') !== false) { $possible_table_name = $table_name . "_" . str_replace("_id", "", $column); if ($db->check_table_exists($possible_table_name)) { try { $results_for_data = $db->select_query($possible_table_name, 'name', "record_id = $data[$column]"); $other_data = $results_for_data->fetch_assoc(); $html .= "
"; } catch (Exception $e) { $results_for_data = $db->select_query($possible_table_name, 'username', "record_id = $data[$column]"); $other_data = $results_for_data->fetch_assoc(); $html .= "
"; } } else { $possible_table_name = substr($table_name, 0, -1) . "_" . str_replace("_id", "", $column); if (substr($possible_table_name, -1) !== 's') { $possible_table_name .= 's'; } if ($db->check_table_exists($possible_table_name)) { $results_for_data = $db->select_query($possible_table_name, 'name', "record_id = $data[$column]"); $other_data = $results_for_data->fetch_assoc(); $html .= "
"; } else { $possible_table_name = str_replace("_id", "", $column); if (substr($possible_table_name, -1) !== 's') { $possible_table_name .= 's'; } if ($db->check_table_exists($possible_table_name)) { $results_for_data = $db->select_query($possible_table_name, 'name', "record_id = $data[$column]"); $other_data = $results_for_data->fetch_assoc(); $html .= "
"; } else { $html .= "
"; } } } } else { $html .= "
"; } } $html .= ""; $html .= "
"; } return "$html"; } function project_reports() { $table_name = $_POST['table_name']; $edit_file_name = $_POST['edit_file_name']; $returned_cols = explode(",", $_POST['return_columns']); $add_column_and_value = explode(",", $_POST['add_column_and_value']); if (count($add_column_and_value) > 0) { foreach ($add_column_and_value as $add_column_and_value) { $add_column_and_value = explode("=", $add_column_and_value); $_POST[$add_column_and_value[0]] = $add_column_and_value[1]; } } $excloudedcolumns = explode(',', $_POST['excloded_colum_names']); if (count($excloudedcolumns) > 0) { foreach ($excloudedcolumns as $excloudedcolumn) { unset($_POST[$excloudedcolumn]); } } unset($_POST['excloded_colum_names']); unset($_POST['add_column_and_value']); unset($_POST['return_columns']); unset($_POST['edit_file_name']); unset($_POST['ajax_type']); unset($_POST['table_name']); unset($_POST['where_clause']); unset($_POST['submit']); $columns = array_keys($_POST); $values = array_values($_POST); $conditions = []; foreach ($columns as $key => $value) { if (strlen($values[$key]) >= 1) { if (strpos($columns[$key], '_id') !== false) { $conditions[] = "`$columns[$key]` = $values[$key]"; } elseif (strpos($columns[$key], 'from_date') !== false) { foreach ($columns[$key] as $key2 => $value2) { if (strpos($columns[$key2], 'to_date') !== false) { $to_Date = $columns[$key2]; } } if ($to_date_key !== false) { $conditions[] = "`$columns[$key]` BETWEEN '$values[$key]' AND '$to_Date'"; } } else { $conditions[] = "`$columns[$key]` LIKE '%$values[$key]%'"; } } } if (count($conditions) < 1) { $conditions[] = "1"; } $conditions_string = implode(" AND ", $conditions); $sql = "SELECT * FROM $table_name WHERE $conditions_string"; $db = new db_safeguard(); $result = $db->select_query($table_name, '*', $conditions_string); // return json_encode($data); while ($data = $result->fetch_assoc()) { $html .= "
"; foreach ($returned_cols as $column) { $label_name = strtoupper((str_replace("id", "", str_replace("_", " ", str_replace("date", "", str_replace("time", "", $column)))))); if (strpos($column, '_id') !== false) { $possible_table_name = $table_name . "_" . str_replace("_id", "", $column); if ($db->check_table_exists($possible_table_name)) { try { $results_for_data = $db->select_query($possible_table_name, 'name', "record_id = $data[$column]"); $other_data = $results_for_data->fetch_assoc(); $html .= "
"; } catch (Exception $e) { $results_for_data = $db->select_query($possible_table_name, 'username', "record_id = $data[$column]"); $other_data = $results_for_data->fetch_assoc(); $html .= "
"; } } else { $possible_table_name = substr($table_name, 0, -1) . "_" . str_replace("_id", "", $column); if (substr($possible_table_name, -1) !== 's') { $possible_table_name .= 's'; } if ($db->check_table_exists($possible_table_name)) { $results_for_data = $db->select_query($possible_table_name, 'name', "record_id = $data[$column]"); $other_data = $results_for_data->fetch_assoc(); $html .= "
"; } else { $possible_table_name = str_replace("_id", "", $column); if (substr($possible_table_name, -1) !== 's') { $possible_table_name .= 's'; } if ($db->check_table_exists($possible_table_name)) { $results_for_data = $db->select_query($possible_table_name, 'name', "record_id = $data[$column]"); $other_data = $results_for_data->fetch_assoc(); $html .= "
"; } else { $html .= "
"; } } } } else { $html .= "
"; } } $html .= ""; $html .= "
"; } return "$html"; } function update() { $table_name = $_POST['table_name']; $edit_file_name = $_POST['edit_file_name']; $returned_cols = explode(",", $_POST['return_columns']); $add_column_and_value = explode(",", $_POST['add_column_and_value']); if (count($add_column_and_value) > 0) { foreach ($add_column_and_value as $add_column_and_value) { $add_column_and_value = explode("=", $add_column_and_value); $_POST[$add_column_and_value[0]] = $add_column_and_value[1]; } } $excloudedcolumns = explode(',', $_POST['excloded_colum_names']); if (count($excloudedcolumns) > 0) { foreach ($excloudedcolumns as $excloudedcolumn) { unset($_POST[$excloudedcolumn]); } } unset($_POST['excloded_colum_names']); unset($_POST['add_column_and_value']); unset($_POST['return_columns']); unset($_POST['edit_file_name']); unset($_POST['ajax_type']); unset($_POST['table_name']); unset($_POST['where_clause']); unset($_POST['submit']); $record_id = $_POST['record_id']; unset($_POST['record_id']); if (isset($_POST['password'])) { $auth = new authentication(); $_POST['password'] = $auth->encrypt_password($_POST['password']); } if (strlen($_POST['user_password']) < 1) { unset($_POST['user_password']); } else { $_POST['user_password'] = hash('SHA256', $_POST['user_password']); } $columns = array_keys($_POST); $values = array_values($_POST); $update_string = ""; foreach ($columns as $key => $column) { if (strlen($column) > 1) { $update_string .= "`$column` = '$values[$key]', "; } } $update_string = rtrim($update_string, ', '); $sql = "UPDATE $table_name SET $update_string WHERE `record_id` = " . $record_id . ""; $db = new db_safeguard(); $result = $db->query($table_name, $sql); if ($result) { return 1; } else { return $result; } } function custom_insert() { $table_name = $_POST['table_name']; $edit_file_name = $_POST['edit_file_name']; $returned_cols = explode(",", $_POST['return_columns']); if (isset($_POST['date_time'])) { $_POST['date_time'] = date('Y-m-d H:i', strtotime("+2 hours")); } $add_column_and_value = explode(",", $_POST['add_column_and_value']); if (count($add_column_and_value) > 0) { foreach ($add_column_and_value as $add_column_and_value) { $add_column_and_value = explode("=", $add_column_and_value); $_POST[$add_column_and_value[0]] = $add_column_and_value[1]; } } $excloudedcolumns = explode(',', $_POST['excloded_colum_names']); if (count($excloudedcolumns) > 0) { foreach ($excloudedcolumns as $excloudedcolumn) { unset($_POST[$excloudedcolumn]); } } unset($_POST['excloded_colum_names']); unset($_POST['add_column_and_value']); unset($_POST['return_columns']); unset($_POST['edit_file_name']); unset($_POST['ajax_type']); unset($_POST['table_name']); unset($_POST['where_clause']); unset($_POST['submit']); $columns = array_keys($_POST); $values = array_values($_POST); $columns_string = "`" . implode("` , `", $columns) . "`"; $values_string = "'" . implode("','", $values) . "'"; $sql = "INSERT INTO $table_name ($columns_string) VALUES ($values_string)"; $db = new db_safeguard(); return $db->query($table_name, $sql); } } class email { public $email; public $mail; function __construct() { $this->mail = new PHPMailer(true); //Server settings $this->mail->isSMTP(); $this->mail->Host = "mail.elegantwork.co.za"; $this->mail->SMTPAuth = true; $this->mail->Username = "chris@elegantwork.co.za"; $this->mail->Password = "EWG2Chr!@#"; $this->mail->SMTPSecure = PHPMailer::ENCRYPTION_SMTPS; $this->mail->Port = 465; $this->mail->SMTPDebug = 0; $this->mail->isHTML(true); $this->mail->setFrom('dewaalr@eskom.co.za', 'dewaalr@eskom.co.za'); } function add_address($email, $name) { $this->mail->addAddress($email, $name); } function subject($subject = "TEST") { $this->mail->Subject = $subject; } function body($body = "") { $this->mail->Body = $body; // $this->mail->Body .= "




Sent by Elegant Work Group Auto Mailer


Please note this email address is unattended "; } function send() { try { return $this->mail->Send(); } catch (Exception $e) { return $this->mail->ErrorInfo = $e->getMessage(); } } } // ajax POST REq if (isset($_POST['ajax_type'])) { $ajax = new ajax; if ($_POST['ajax_type'] == "INSERT") { echo $ajax->insert(); } if ($_POST['ajax_type'] == "SELECT") { echo $ajax->select(); } if ($_POST['ajax_type'] == "UPDATE") { echo $ajax->update(); } if ($_POST['ajax_type'] == "DELETE") { echo $ajax->delete(); } if ($_POST['ajax_type'] == "custom_insert") { echo $ajax->custom_insert(); } if ($_POST['ajax_type'] == "get_work_orders") { $db = new db_safeguard(); $work_order_res = $db->query("work_orders", "SELECT * FROM `work_orders` WHERE `in_review` = 0 AND `sent_for_review` = 0 AND `inprogress` = 0 AND `completed` = 0 AND `user_id_assigned` = {$_SESSION['user_id']}"); echo $work_order_res->num_rows; } if ($_POST['ajax_type'] == "reviews") { $db = new db_safeguard(); $work_order_res = $db->query("work_orders", "SELECT * FROM `work_orders` WHERE `in_review` = 0 AND `sent_for_review` = 1 AND `inprogress` = 0 AND `completed` = 0 AND `user_id_review` = {$_SESSION['user_id']}"); echo $work_order_res->num_rows; } if ($_POST['ajax_type'] == "service_tickets") { $db = new db_safeguard(); $work_order_res = $db->query("work_orders", "SELECT * FROM `service_tickets` WHERE `completed` != 'COMPLETED' AND `user_id_assigned` = {$_SESSION['user_id']}"); echo $work_order_res->num_rows; } if ($_POST['ajax_type'] == "approvals") { $db = new db_safeguard(); $work_order_res = $db->query("approvals", "SELECT * FROM `approvals` WHERE `approved_status` = 'WAITING'"); echo $work_order_res->num_rows; } if ($_POST['ajax_type'] == "email_assets") { $email = new email(); $email->add_address($_POST['email'], $_POST['email']); $email->body("Please use th following link to access your assets Click Here"); echo $email->send(); } if ($_POST['ajax_type'] == "email_passwords") { $email = new email(); $email->add_address($_POST['email'], $_POST['email']); $email->body("Please use th following link to access your passwords Click Here"); echo $email->send(); } if ($_POST['ajax_type'] == "projects_report") { echo $ajax->project_reports(); } if ($_POST['ajax_type'] == "dev_mode_check") { echo $_SESSION['database_log']; } }