DNA Bank Network


Logged in as: "; $log = $_SESSION['log']; echo $log; echo ".	"; if(isset($_COOKIE['test']) or $_COOKIE['test']) { include ("shop.php"); } echo "

";} ?>

'; } if($formSubmitSearch and $_SESSION['admin'] == "true") { if(empty($_POST['formAccount'])) { echo '

Sorry, but you have no permission for this site!

Bitte geben Sie einen Code ein!'; } else { $test = md5($_POST['formAccount']); $sql = "SELECT * FROM tableuser WHERE Coding = '$test' AND Accepted IS NULL"; $result = mysql_query($sql); if(!mysql_num_rows($result)) { echo '

Bitte überprüfen Sie Ihre Angaben! Kein Eintrag gefunden für Code: '.$_POST['formAccount'].' Möglicherweise ist die Freischaltung schon erfolgt und der Kunde hat sich bereits einmal eingeloggt!'; $test = 'true';} while($row = mysql_fetch_object($result)) { $Username = $row->Username; $Surname = $row->Surname; $Forename = $row->Forename; $Email = $row->Email; $FormOfAddress = $row->FormOfAddress; $Title = $row->Title; $Institut = $row->Institut; $Division = $row->Division; $Street = $row->Street; $City = $row->City; $Postal_Code = $row->Postal_Code; $Country = $row->Country; $Phone = $row->Phone; $Institut_Delivery = $row->Institut_Delivery; $Division_Delivery = $row->Division_Delivery; $Street_Delivery = $row->Street_Delivery; $City_Delivery = $row->City_Delivery; $Postal_Code_Delivery = $row->Postal_Code_Delivery; $Country_Delivery = $row->Country_Delivery; $ID = $row->User_ID; } if(mysql_num_rows($result)) { echo 'Um den Account freizuschalten, aktiviere bitte dieses Kästchen.

Folgende Daten sind hinterlegt:

Form of Address	'.$FormOfAddress.'
Title	'.$Title.'
Family name	'.$Surname.'
First name	'.$Forename.'
Email	'.$Email.'
Billing Address
Institution	'.$Institut.'
Division	'.$Division.'
Street/P.O. Box	'.$Street.'
Postal Code	'.$Postal_Code.'
Location/City	'.$City.'
Country	'.$Country.'
Address for delivery (if other than the billing address)
Institution	'.$Institut_Delivery.'
Division	'.$Division_Delivery.'
Street	'.$Street_Delivery.'
Postal Code	'.$Postal_Code_Delivery.'
Location/City	'.$City_Delivery.'
Country	'.$Country_Delivery.'
Asked user name	'.$Username.'
Bitte überprüfe die angegebenen Daten!

Der Aktivierungscode bleibt erhalten, bis der Kunde sich das erste Mal eingeloggt hat. Danach wird er automatisch gelöscht! Der Kunde erhält bei der Aktivierung eine Email mit einem zufällig generierten Passwort.

'; } } } //if($formSubmitSearch) if($formSubmitSave and $_SESSION['admin'] == "true") { function RandPass() { $randomPassword = ""; srand((double)microtime()*1000000); for($i=0;$i<10;$i++) { $randnumber = rand(48,120); while (($randnumber >= 58 && $randnumber <= 64) || ($randnumber >= 91 && $randnumber <= 96)) { $randnumber = rand(48,120); } $randomPassword .= chr($randnumber); } return $randomPassword; } $string = RandPass(); $string1 = md5($string); $test = $_POST['notes']; $sql1 = "UPDATE tableuser SET Password = '$string1', Accepted = 'Yes' WHERE User_ID = '$test'"; $result1 = mysql_query($sql1); $sql2 = "SELECT Username, Surname, Forename, Email FROM tableuser WHERE User_ID = '$test'"; $result2 = mysql_query($sql2); while($row = mysql_fetch_object($result2)) { $Username = $row->Username; $Surname = $row->Surname; $Forename = $row->Forename; $Email = $row->Email;} $msg = "

Dear ".$Forename." ".$Surname.": We welcome you at the DNA Bank Network. Your account has been successfully opened. As of now you can order DNA samples using your user name and your password.
Username: ".$Username." Password: ".$string."
Your data have been saved for processing your order and to customers support only. You can modify your data at any time to change your password. Please note that your account will be deactivated automatically if you don’t use it longer than 24 months. To order DNA material validly, please search and choose DNA samples of your interest (Search), complete the order form and sign the Material Transfer Agreement (MTA). The MTA has to be signed every for every order of DNA samples separately. Don't hesitate to contact the DNA Bank Network if you have further questions. We look forward to your order. Sincerely, The DNA Bank Network Team
--------------------------------------
Website www.dnabank-network.org Email contact@dnabank-network.org

"; $from1 = "From: contact@dnabank-network.org\n"; $from1 .= "Content-Type: text/html\n"; $msg2 = "

Kunde ".$Forename." ".$Surname." wurde soeben freigeschaltet. Der Freischaltcode bleibt so lange erhalten, bis er sich das erste Mal eingeloggt hat.
Username: ".$Username."

"; $from2 = "From: contact@dnabank-network.org\n"; $from2 .= "Content-Type: text/html\n"; //email to the customer "Account activated"; mail($Email, "DNA Bank Network - Account successfully opened", htmlspecialchars_decode($msg), $from1); //email to the DNA Bank Network "Account for xy activated"; mail("contact@dnabank-network.org", "Account für ".htmlspecialchars_decode($Forename)." ".htmlspecialchars_decode($Surname)." freigeschaltet", htmlspecialchars_decode($msg2), $from2); echo '

Der Account wurde aktiviert. Eine Email wurde an den Kunden sowie an das DNA Bank Team geschickt.

'; } if($formSubmitShow and $_SESSION['admin'] == "true") { echo ''; if($checkNull == "Yes") echo ''; $tr = "="; $no = "!="; $bt = ">="; $st = "<="; $parr = $_POST; array($parr); foreach ($parr as $var) { $i ++; if(!empty($var)) { switch (key($parr)) { case 'checkNull': $str = "Resultcount ".$tr." '0' AND "; break; case 'MonatStart': $str = "Created_When ".$bt." '2009".$var."' AND "; break; case 'MonatEnde': $str = "Created_When ".$st." '2009".$var."' AND "; break; case 'formSubmitShow': $str = "Created_When ".$no." '' AND "; break; } $where[$i] = $str; } next($parr); } if(!empty($str)) { foreach($where AS $a) $string .= $a; $l=strlen ($string); $max = $l-4; $where_str = substr($string, 0, $max); $wherestr = ' WHERE ' . $where_str; $sql = "SELECT count(Query) as anzahl, Query, Resultcount, Created_When FROM tablelog " . $wherestr." GROUP BY Query ORDER BY anzahl DESC LIMIT 50"; $result = mysql_query($sql); $count = mysql_num_rows($result); } echo ''; echo ''; echo ''; echo ''; echo ''; echo ''; while($row = mysql_fetch_object($result)) { echo ''; echo ''; } echo '

Anfrage	Häufigkeit	Treffer	Zeit
Suchanfragen
Suchabfragen, die keinen Treffer ergaben.
Insgesamt wurden '.$count.' verschiedene Suchanfragen gefunden.
Zeitraum einschränken von: bis:
Zeige alle, die keinen Treffer erzielt haben:


'.$row->Query.'	'.$row->anzahl.'	'.$row->Resultcount.'	'.DatumsWandler($row->Created_When).'

'; } if($_SESSION['admin'] == "true" and !$formSubmitShow and (!$formSubmitSearch or empty($_POST['formAccount']) or $test = 'true')) { ?>

Folgende Daten sind hinterlegt:

Der Account wurde aktiviert. Eine Email wurde an den Kunden sowie an das DNA Bank Team geschickt.

Suchanfragen

Bitte geben Sie den Aktivierungscode aus der Email ein:

Zeige eine Übersicht der Suchanfragen: