Skip to content
Permalink
master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?

timerec3public/resp.php

Go to file
 
 
Cannot retrieve contributors at this time
177 lines (161 sloc) 6.7 KB
Raw Blame
Open in GitHub Desktop
<!DOCTYPE html>
<html>
<head>
<meta charset="utf-8">
<title>timerec</title>
<link rel="stylesheet" type="text/css" href="style.css">
<link rel="shortcut icon" href="favicon.ico">
</head>
<body>
<?php
session_start();
if(!$_SESSION['userid']){
session_destroy();
include('login.php');
exit;
}
if(!$_SESSION['userarray']['admin'] && empty($_SESSION['userarray']['ag_array'])){
echo "<h3>keine Rechte, diese Seite einzusehen!</h3>";
exit;
}
//print_r($_SESSION);
include('dbconnect.php');
$infoarray = $_SESSION['infoarray'];
$userarray = $_SESSION['userarray'];
$maID = $infoarray['maID'];
$admin = $userarray['admin'];
//submit Bearbeiten
if($_POST['eintragen'] === 'true'){
$query = "update ag set ";
if($_POST['disabled'] !== 'disabled'){
!empty($_POST['gn']) ? $query .= "gn=".$_POST['gn'].", " : $query .= "gn=NULL, ";
!empty($_POST['gnv']) ? $query .= "gnv=".$_POST['gnv'].", " : $query .= "gnv=NULL, ";
}
!empty($_POST['pr']) ? $query .= "pr=".$_POST['pr'].", " : $query .= "pr=NULL, ";
!empty($_POST['prv']) ? $query .= "prv=".$_POST['prv'].", " : $query .= "prv=NULL, ";
$query = substr($query, 0, -2);
$query .= " where ag_ID = ".$_POST['ag'].";";
$dbc->query($query);
if($dbc->error){
echo "Fehler beim Eintragen!:<br>";
echo $dbc->error;
exit;
}
header("Location: resp.php?ag=$_POST[ag]");
}
if(isset($_GET['ag'])){
//AG laden, die ausgewählt wurde
//gegen unerwünschtes Laden anderer AGs sichern per prüfung,
//ob GET wert in userarray->ag_array vorhanden ist
if(in_array($_GET['ag'], $userarray['ag_array']) || $userarray['admin']) $agtoload = $_GET['ag'];
}else{
//AG aus infoarray laden (-> AG des vorher gewählten MA wird geöffnet)
if($userarray['admin'] || in_array($infoarray['agID'], $userarray['ag_array'])){
$agtoload = $infoarray['agID'];
}
}
if(empty($agtoload) && !empty($_GET['ag'])){
echo "<h3>keine Rechte, um auf diese AG zuzugreifen!</h3>";
exit;
}elseif(empty($agtoload)){
$agtoload = current($userarray['ag_array']);
}
$getAG = $dbc->query("select * from ag where ag_ID = $agtoload;");
$ag = $getAG->fetch_array();
switch ($maID){
case $ag['gn']:
case $ag['gnv']:
break;
case $ag['pr']:
case $ag['prv']:
$disable = "disabled";
break;
}
$getnames = "select maID, concat(nachname, ', ', vorname) as name from mitarbeiter order by name;";
$names = $dbc->query($getnames);
echo "<div id='content'>";
echo "<div id='home'>
<a href='index.php?ma=".$infoarray['maID']."'><button><< Menü</button></a>
</div>";
$optionsgn = "<select class='auswahl' name='gn' $disable onmousedown='this.size=10' onblur='this.size=1'>";
$optionsgnv = "<select class='auswahl' name='gnv' $disable onmousedown='this.size=10' onblur='this.size=1'>";
$optionspr = "<select class='auswahl' name='pr' onmousedown='this.size=10' onblur='this.size=1'>";
$optionsprv = "<select class='auswahl' name='prv' onmousedown='this.size=10' onblur='this.size=1'>";
$optionsgn .= "<option value=''> - </option>";
$optionsgnv .= "<option value=''> - </option>";
$optionspr .= "<option value=''> - </option>";
$optionsprv .= "<option value=''> - </option>";
if(!empty($ag)){
foreach($names as $ma){
if($ma['maID'] == $ag['leiter']) $leiter = $ma['name'];
$ma['maID'] == $ag['gn'] ? $selectedgn = 'selected' : $selectedgn = '';
$optionsgn .= "<option value='".$ma['maID']."' $selectedgn>".$ma['name']."</option>";
$ma['maID'] == $ag['gnv'] ? $selectedgnv = 'selected' : $selectedgnv = '';
$optionsgnv .= "<option value='".$ma['maID']."' $selectedgnv>".$ma['name']."</option>";
$ma['maID'] == $ag['pr'] ? $selectedpr = 'selected' : $selectedpr = '';
$optionspr .= "<option value='".$ma['maID']."' $selectedpr>".$ma['name']."</option>";
$ma['maID'] == $ag['prv'] ? $selectedprv = 'selected' : $selectedprv = '';
$optionsprv .= "<option value='".$ma['maID']."' $selectedprv>".$ma['name']."</option>";
}
}
$optionsgn .= "</select>";
$optionsgnv .= "</select>";
$optionspr .= "</select>";
$optionsprv .= "</select>";
$selectag = "<select class='select' form='agwahl' name='ag' onchange='this.form.submit()'>";
if($userarray['admin']){
$getallag = $dbc->query("select * from ag order by name;");
}else{
$getallag = "select * from ag where ag_ID in( ";
foreach($userarray['ag_array'] as $allowedag){
$getallag .= "$allowedag, ";
}
$getallag = substr($getallag, 0, -2);
$getallag .= ") ";
$getallag .= "order by name;";
$getallag = $dbc->query($getallag);
}
foreach($getallag as $allag){
$selected = $agtoload == $allag['ag_ID'] ? "selected" : "";
$selectag .= "<option $selected value='$allag[ag_ID]'>$allag[name]</option>";
}
$selectag .= "</select>";
echo "<form id='agwahl' action='' method='get'></form>
<form id='centered_form' action='#' method='post'>
<input type='hidden' name='ag' value='".$ag['ag_ID']."'>
<input type='hidden' name='disabled' value='$disable'>
<h3>Verantwortlichenwechsel: [ $selectag ]</h3>
<table>
<tr>
<th class='rechts'>AG-Leiter: </th>
<td class='links'>$leiter</td>
</tr>
<tr>
<th class='rechts'>Genehmiger: </th>
<td class='links'>$optionsgn</td>
</tr>
<tr>
<th class='rechts'>Genehmiger Vertreter: </th>
<td class='links'>$optionsgnv</td>
</tr>
<tr>
<th class='rechts'>Prüfer: </th>
<td class='links'>$optionspr</td>
</tr>
<tr>
<th class='rechts'>Prüfer Vertreter: </th>
<td class='links'>$optionsprv</td>
</tr>
<tr>
<th></th>
<td id='knopf'>
<button type='submit' name='eintragen' value='true' onclick='return confirm(\"Wirklich?\")'>OK</button>
<a href='resp.php'><button>abbrechen</button></a>
</td>
</tr>
</table>
</form>";
echo "</div>";
?>
</body>
</html>