File Source for new

<?php
/**
* Input new people (lab staff, customers, providers)
* <br/><br/>
* Access to all user except of guests
* @author Gabriele Droege, DNA Bank Network <contact@dnabank-network.org>
* @version 2.0
* @package Input
* @copyright Copyright © 2011 DNA Bank Network http://www.dnabank-network.org<br>The contents of this file are subject to the Mozilla Public License Version 1.1
* @filesource
* @license http://www.mozilla.org/MPL/ MPL
*/
/**
* calling connection to database
*/
include ("../config/head.php");
/**
* calling authorisation script
*/
include ("../auth.php");
?>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<title>DNA Module - Staff and Customer Administration</title>
<link rel="stylesheet" type="text/css" href="../format.css">
<SCRIPT LANGUAGE="JavaScript1.1" src="../Functions.js"></SCRIPT>
<NOSCRIPT>Please enable Javascript!</NOSCRIPT>
</head>
<body>
<div align="center">
<?php
/**
* including navigation menu
*/
include("../tablenavi.php"); ?>
<form name="formular" method="POST" action="new_People.php">
<table id="tablemain" class="main">
<tr>
<td id="tdLogo"><a href="<?php echo $Path_Wiki."/Features#Input"; ?>" target="_blank"><img border="0" src="../images/Logo-Wiki.png" height="78"></a></td>
<td>
<h1>Staff and Customer Administration</h1></td>
<td id="tdLogo2"><?php echo $Path_Logo; ?></td>
</tr>
<tr>
<td colspan="3"><?php
echo "Logged in as: ";
$log = $_SESSION["log"];
echo $log;
?></td>
</tr>
<?php if (isset($_SESSION['guest']) || $_SESSION['guest']) {
/********************************************************************************************
* Guests don't have permission for entering new DNA data *
*********************************************************************************************/
echo "<tr><td colspan='3'><span class='error'>Sorry, as a guest you don't have permission for entering new data! If you want to search for existing DNA data please use the Search function!</span></td></tr>"; }
else { ?>
<tr><td colspan="3" valign="top">
<table border="0" id="table2"><tr><td colspan="2"><b>Please make use of search function before entering new person.</b></td></tr>
<tr><td id="DescriptionBlack">Person</td><td>
<?php build_select_list("formPeople",
"SELECT DISTINCT ID_People, Name_All FROM people
ORDER BY Name_All", $formPeople); ?></td></tr>
<tr><td id="DescriptionBlack"></td><td id="tdbutton"><input type="submit" value="Show details" name="formSubmitPreview" class="button"/></td> </tr>
<?php
$Current_Date = date('Y-m-d H:i:s');
if($formSubmitSave2) {
$sqltest = "SELECT * from people where Email = '$formEmail'";
$resulttest = mysql_query($sqltest);
$Name_All = $formSurname;
if($formForename != "") { $Name_All .= ", ".$formForename; }
if(mysql_num_rows($resulttest) > 0) {
$sqlupdate = "UPDATE people SET FormOfAddress = '$formFormOfAddress', Title = '$formTitle', Forename = '$formForename', Surname = '$formSurname', Name_All = '$Name_All', Phone = '$formPhone', Email = '$formEmail', Remarks = '$formNotes', Institut = '$formInstitut', Division = '$formDivision', Street = '$formStreet', City = '$formCity', Postal_Code = '$formPostal_Code', Country = '$formCountry', Institut_Delivery = '$formInstitut2', Division_Delivery = '$formDivision2', Street_Delivery = '$formStreet2', City_Delivery = '$formCity2', Postal_Code_Delivery = '$formPostal_Code2', Country_Delivery = '$formCountry2', ExtractionStaff = '$formExtraction', Provider = '$formProvider', Customer = '$formCustomer2', Updated_When = '$Current_Date', Updated_Who = '$log' WHERE Email = '$formEmail'";
$resultupdate = mysql_query($sqlupdate);
###############################################Error resultupdate####################################################
if(!$resultupdate)
{
$msg = $sqlupdate."\n";
$msg .= "####Error resultupdate####";
trigger_error($msg, E_USER_ERROR);
include ("../config/Errorreport.php");
$error = "true"; }
#########################################################################################################
if($resultupdate) { echo "<tr><td colspan='2' align='right'><div class='search'><span class='fine'>Data have been saved.</span></div></td></tr>"; }
}
else {
$sqlinsert = "INSERT INTO people (FormOfAddress, Title, Forename, Surname, Phone, Email, Remarks, Name_All, Institut, Division, Street, City, Postal_Code, Country, Institut_Delivery, Division_Delivery, Street_Delivery, City_Delivery, Postal_Code_Delivery, Country_Delivery, ExtractionStaff, Provider, Customer, Created_Who) VALUES ('$formFormOfAddress','$formTitle','$formForename','$formSurname','$formPhone','$formEmail','$formNotes','$Name_All','$formInstitut','$formDivision','$formStreet','$formCity','$formPostal_Code','$formCountry','$formInstitut2','$formDivision2','$formStreet2','$formCity2','$formPostal_Code2','$formCountry2','$formExtraction','$formProvider','$formCustomer2','$log')";
$resultinsert = mysql_query($sqlinsert);
###############################################Error insert2####################################################
if(!$resultinsert)
{
$msg = $sqlinsert."\n";
$msg .= "####Error insert2####";
trigger_error($msg, E_USER_ERROR);
include ("../config/Errorreport.php");
$error = "true"; }
#########################################################################################################
}
if($resultinsert) { echo "<tr><td colspan='2' align='right'><div class='search'><span class='fine'>Data have been saved.</span></div></td></tr>"; }
}
if($formSubmitPreview or $formSubmitEditView or $formSubmitSave2) {
$sql = "SELECT * from people WHERE ID_People = '$formPeople'";
$result = mysql_query($sql);
while($row = mysql_fetch_object($result)) {
echo '<tr><td colspan="2">';
if($formSubmitEditView) { echo '<div class="geography2">'; }
echo '<table width="90%"><tr><td colspan="4"><hr /></td></tr>
<tr><td id="DescriptionGreen">Form of address</td><td>';
if($formSubmitEditView) { echo '<select name="formFormOfAddress" id="InputLong"><option value="">------</option>
<option value="Mr"'; if($row->FormOfAddress == "Mr") { echo ' selected'; }
echo '>Mr</option><option value="Mrs"'; if($row->FormOfAddress == "Mrs") { echo ' selected'; }
echo '>Mrs</option><option value="Ms"'; if($row->FormOfAddress == "Ms") { echo ' selected'; }
echo '>Ms</option></select>'; }
else { echo $row->FormOfAddress; }
echo '</td><td id="DescriptionGreen">Title</td><td>';
if($formSubmitEditView) { echo '<input type="text" name="formTitle" id="InputLong" value="'.$row->Title.'">'; }
else { echo $row->Title; }
echo '</td></tr>
<tr><td id="DescriptionGreen">Family name</td><td>';
if($formSubmitEditView) { echo '<input type="text" name="formSurname" id="InputLong" value="'.$row->Surname.'">'; }
else { echo $row->Surname; }
echo '</td><td id="DescriptionGreen">First name</td><td>';
if($formSubmitEditView) { echo '<input type="text" name="formForename" id="InputLong" value="'.$row->Forename.'">'; }
else { echo $row->Forename; }
echo '</td></tr>
<tr><td id="DescriptionGreen">Email</td><td>';
if($formSubmitEditView) { echo '<input type="text" name="formEmail" id="InputLong" value="'.$row->Email.'">'; }
else { echo $row->Email; }
echo '</td><td id="DescriptionGreen">Phone</td><td>';
if($formSubmitEditView) { echo '<input type="text" name="formPhone" id="InputLong" value="'.$row->Phone.'">'; }
else { echo $row->Phone; }
echo '</td></tr>
<tr><td><b>Billing Address *</b></td><td></td><td colspan="2"><b>Address for delivery (if other than the billing address)</b></td></tr>
<tr><td id="DescriptionGreen">Institution</td><td>';
if($formSubmitEditView) { echo '<input type="text" name="formInstitut" id="InputLong" value="'.$row->Institut.'">'; }
else { echo $row->Institut; }
echo '</td><td id="DescriptionGreen">Institution</td><td>';
if($formSubmitEditView) { echo '<input type="text" name="formInstitut2" id="InputLong" value="'.$row->Institut_Delivery.'">'; }
else { echo $row->Institut_Delivery; }
echo '</td></tr>
<tr><td id="DescriptionGreen">Division</td><td>';
if($formSubmitEditView) { echo '<input type="text" name="formDivision" id="InputLong" value="'.$row->Division.'">'; }
else { echo $row->Division; }
echo '</td><td id="DescriptionGreen">Division</td><td>';
if($formSubmitEditView) { echo '<input type="text" name="formDivision2" id="InputLong" value="'.$row->Division_Delivery.'">'; }
else { echo $row->Division_Delivery; }
echo '</td></tr>
<tr><td id="DescriptionGreen">Street/P.O. Box</td><td>';
if($formSubmitEditView) { echo '<input type="text" name="formStreet" id="InputLong" value="'.$row->Street.'">'; }
else { echo $row->Street; }
echo '</td><td id="DescriptionGreen">Street/P.O. Box</td><td>';
if($formSubmitEditView) { echo '<input type="text" name="formStreet2" id="InputLong" value="'.$row->Street_Delivery.'">'; }
else { echo $row->Street_Delivery; }
echo '</td></tr>
<tr><td id="DescriptionGreen">Postal Code</td><td>';
if($formSubmitEditView) { echo '<input type="text" name="formPostal_Code" id="InputLong" value="'.$row->Postal_Code.'">'; }
else { echo $row->Postal_Code; }
echo '</td><td id="DescriptionGreen">Postal Code</td><td>';
if($formSubmitEditView) { echo '<input type="text" name="formPostal_Code2" id="InputLong" value="'.$row->Postal_Code_Delivery.'">'; }
else { echo $row->Postal_Code_Delivery; }
echo '</td></tr>
<tr><td id="DescriptionGreen">Location/City</td><td>';
if($formSubmitEditView) { echo '<input type="text" name="formCity" id="InputLong" value="'.$row->City.'">'; }
else { echo $row->City; }
echo '</td><td id="DescriptionGreen">Location/City</td><td>';
if($formSubmitEditView) { echo '<input type="text" name="formCity2" id="InputLong" value="'.$row->City_Delivery.'">'; }
else { echo $row->City_Delivery; }
echo '</td></tr>
<tr><td id="DescriptionGreen">Country</td><td>';
if($formSubmitEditView) { echo '<input type="text" name="formCountry" id="InputLong" value="'.$row->Country.'">'; }
else { echo $row->Country; }
echo '</td><td id="DescriptionGreen">Country</td><td>';
if($formSubmitEditView) { echo '<input type="text" name="formCountry2" id="InputLong" value="'.$row->Country_Delivery.'">'; }
else { echo $row->Country_Delivery; }
echo '</td></tr>
<tr><td id="DescriptionGreen">Notes</td><td>';
if($formSubmitEditView) { echo '<textarea name="formNotes" id="InputLong">'.$row->Remarks.'</textarea>'; }
else { echo $row->Remarks; }
echo '</td><td colspan="2"><b>Extraction Staff <input type="checkbox" name="formExtraction" value="yes" ';
if($row->ExtractionStaff == "yes") { echo "checked"; }
if(!$formSubmitEditView) { echo ' disabled'; }
echo '/> Provider <input type="checkbox" name="formProvider" value="yes" ';
if($row->Provider == "yes") { echo "checked"; }
if(!$formSubmitEditView) { echo ' disabled'; }
echo '/> Customer <input type="checkbox" name="formCustomer2" value="yes" ';
if($row->Customer == "yes") { echo "checked"; }
if(!$formSubmitEditView) { echo ' disabled'; }
echo '/></b></td></tr>
<tr><td></td><td id="tdbutton">';
if($formSubmitEditView) { echo '<input type="submit" name="formSubmitSave2" else value="Save" class="button">'; }
else { echo '<input type="submit" name="formSubmitEditView" else value="Edit" class="button">'; }
echo '</td><td colspan="2"></td></tr>
<tr><td colspan="4"><hr /></td></tr></table>';
if($formSubmitEditView) { echo '</div>'; }
echo '</td></tr>';
}
}
if(!$formSubmitEditView) { ?>
<tr><td id="DescriptionBlack"><b>Add new Person</b></td><td><input type="checkbox" id="checkbox" name="NewPerson" onclick="document.getElementById('hiddenPerson').style.display = this.checked == true ? 'none':'block';document.getElementById('hiddenPerson').style.display = this.checked == true ? 'block':'none';" value="NewPerson"
<?php if($formSubmitSave) { echo " checked"; }?>> </td></tr>
<?php } // if(!$formSubmitEditView)
?>
<tr><td colspan="2">
<div class="geography2" <?php if($formSubmitSave) { echo 'style="display:true;"'; } else { echo 'style="display:none;"'; } ?> id="hiddenPerson">
<table border="0" width="90%">
<tr><td colspan="4" align="center">
<?php
if($formSubmitSave and $_POST['importcustomerdata'] != "") {
$Explode = explode(";", $_POST['importcustomerdata']);
$sqltest = "SELECT * from people where Email = '$Explode[4]'";
$resulttest = mysql_query($sqltest);
if(mysql_num_rows($resulttest) > 0)
{ echo "<span class='error'>Person already exist in database (Email: ".$Explode[4]."). You can edit details and group membership.</span>";
while($row = mysql_fetch_object($resulttest))
{
$ImportFormOfAddress = $row->FormOfAddress;
$ImportTitle = $row->Title;
$ImportSurname = $row->Surname;
$ImportForename = $row->Forename;
$ImportEmail = $row->Email;
$ImportInstitut = $row->Institut;
$ImportDivision = $row->Division;
$ImportStreet = $row->Street;
$ImportCity = $row->City;
$ImportPostal_Code = $row->Postal_Code;
$ImportCountry = $row->Country;
$ImportInstitut_Delivery = $row->Institut_Delivery;
$ImportDivision_Delivery = $row->Division_Delivery;
$ImportStreet_Delivery = $row->Street_Delivery;
$ImportCity_Delivery = $row->City_Delivery;
$ImportPostal_Code_Delivery = $row->Postal_Code_Delivery;
$ImportCountry_Delivery = $row->Country_Delivery;
$ImportRemarks = $row->Remarks;
$ImportExtractionStaff = $row->ExtractionStaff;
$ImportProvider = $row->Provider;
$ImportCustomer = $row->Customer; } }
else {
$ImportFormOfAddress = $Explode[0];
$ImportTitle = $Explode[1];
$ImportSurname = $Explode[2];
$ImportForename = $Explode[3];
$ImportEmail = $Explode[4];
$ImportInstitut = $Explode[5];
$ImportDivision = $Explode[6];
$ImportStreet = $Explode[7];
$ImportCity = $Explode[8];
$ImportPostal_Code = $Explode[9];
$ImportCountry = $Explode[10];
$ImportInstitut_Delivery = $Explode[11];
$ImportDivision_Delivery = $Explode[12];
$ImportStreet_Delivery = $Explode[13];
$ImportCity_Delivery = $Explode[14];
$ImportPostal_Code_Delivery = $Explode[15];
$ImportCountry_Delivery = $Explode[16];
$ImportRemarks = $Explode[17];
$ImportCustomer = 'yes'; }
}
if($formSubmitSave and $_POST['importcustomerdata'] == "") {
$sqltest = "SELECT * from people where Email = '$formEmail'";
$resulttest = mysql_query($sqltest);
if(mysql_num_rows($resulttest) > 0)
{ echo "<span class='error'>Person already exist in database (Email: ".$formEmail."). You can edit details and group membership.</span>"; }
else {
$Name_All = $formSurname;
if($formForename != "") { $Name_All .= ", ".$formForename; }
$sql = "INSERT INTO people (FormOfAddress, Title, Forename, Surname, Phone, Email, Remarks, Name_All, Institut, Division, Street, City, Postal_Code, Country, Institut_Delivery, Division_Delivery, Street_Delivery, City_Delivery, Postal_Code_Delivery, Country_Delivery, ExtractionStaff, Provider, Customer, Created_Who) VALUES ('$formFormOfAddress','$formTitle','$formForename','$formSurname','$formPhone','$formEmail','$formNotes','$Name_All','$formInstitut','$formDivision','$formStreet','$formCity','$formPostal_Code','$formCountry','$formInstitut2','$formDivision2','$formStreet2','$formCity2','$formPostal_Code2','$formCountry2','$formExtraction','$formProvider','$formCustomer2','$log')";
echo $sql;
$result = mysql_query($sql);
###############################################Error insert1####################################################
if(!$result)
{
$msg = $sql."\n";
$msg .= "####Error insert####";
trigger_error($msg, E_USER_ERROR);
include ("../config/Errorreport.php");
$error = "true"; }
#########################################################################################################
if($result) { echo "<div class='search'><span class='fine'>Data have been saved.</span></div>"; }
}
}
?>
</td></tr>
<?php if(!$formSubmitEditView) { ?>
<tr><td colspan="4"><hr /></td></tr>
<tr><td id="DescriptionBlack">Form of address</td><td><select name="formFormOfAddress" id="InputLong"><option value="">------</option>
<option value="Mr" <?php if($formSubmitSave and $ImportFormOfAddress == "Mr") { echo ' selected'; }?>>Mr</option><option value="Mrs" <?php if($formSubmitSave and $ImportFormOfAddress == "Mrs") { echo ' selected'; }?>>Mrs</option><option value="Ms" <?php if($formSubmitSave and $ImportFormOfAddress == "Ms") { echo ' selected'; }?>>Ms</option></select>
</td><td id="DescriptionBlack">Title</td><td><input type="text" name="formTitle" id="InputLong" value="<?php if($formSubmitSave and $ImportTitle != "") { echo $ImportTitle; }?>"/></td></tr>
<tr><td id="DescriptionBlack">Family name</td><td><input type="text" name="formSurname" id="InputLong" value="<?php if($formSubmitSave and $ImportSurname != "") { echo $ImportSurname; }?>"></td><td id="DescriptionBlack">First name</td><td><input type="text" name="formForename" id="InputLong" value="<?php if($formSubmitSave and $ImportForename != "") { echo $ImportForename; }?>"></td></tr>
<tr><td id="DescriptionBlack">Email</td><td><input type="text" name="formEmail" id="InputLong" value="<?php if($formSubmitSave and $ImportEmail != "") { echo $ImportEmail; }?>"></td><td id="DescriptionBlack">Phone</td><td><input type="text" name="formPhone" id="InputLong"/></td></tr>
<tr><td id="DescriptionBlack"><b>Billing Address *</b></td><td></td><td colspan="2"><b>Address for delivery (if other than the billing address)</b></td></tr>
<tr><td id="DescriptionBlack">Institution</td><td><input type="text" name="formInstitut" id="InputLong" value="<?php if($formSubmitSave and $ImportInstitut != "") { echo $ImportInstitut; }?>"></td><td id="DescriptionBlack">Institution</td><td><input type="text" name="formInstitut2" id="InputLong" value="<?php if($formSubmitSave and $ImportInstitut_Delivery != "") { echo $ImportInstitut_Delivery; }?>"></td></tr>
<tr><td id="DescriptionBlack">Division</td><td><input type="text" name="formDivision" id="InputLong" value="<?php if($formSubmitSave and $ImportDivision != "") { echo $ImportDivision; }?>"></td><td id="DescriptionBlack">Division</td><td><input type="text" name="formDivision2" id="InputLong" value="<?php if($formSubmitSave and $ImportDivision_Delivery != "") { echo $ImportDivision_Delivery; }?>"></td></tr>
<tr><td id="DescriptionBlack">Street/P.O. Box</td><td><input type="text" name="formStreet" id="InputLong" value="<?php if($formSubmitSave and $ImportStreet != "") { echo $ImportStreet; }?>"></td><td id="DescriptionBlack">Street/P.O. Box</td><td><input type="text" name="formStreet2" id="InputLong" value="<?php if($formSubmitSave and $ImportStreet_Delivery != "") { echo $ImportStreet_Delivery; }?>"></td></tr>
<tr><td id="DescriptionBlack">Postal Code</td><td><input type="text" name="formPostal_Code" id="InputLong" value="<?php if($formSubmitSave and $ImportPostal_Code != "") { echo $ImportPostal_Code; }?>"></td><td id="DescriptionBlack">Postal Code</td><td><input type="text" name="formPostal_Code2" id="InputLong" value="<?php if($formSubmitSave and $ImportPostal_Code_Delivery != "") { echo $ImportPostal_Code_Delivery; }?>"></td></tr>
<tr><td id="DescriptionBlack">Location/City</td><td><input type="text" name="formCity" id="InputLong" value="<?php if($formSubmitSave and $ImportCity != "") { echo $ImportCity; }?>"></td><td id="DescriptionBlack">Location/City</td><td><input type="text" name="formCity2" id="InputLong" value="<?php if($formSubmitSave and $ImportCity_Delivery != "") { echo $ImportCity_Delivery; }?>"></td></tr>
<tr><td id="DescriptionBlack">Country</td><td><input type="text" name="formCountry" id="InputLong" value="<?php if($formSubmitSave and $ImportCountry != "") { echo $ImportCountry; }?>"></td><td id="DescriptionBlack">Country</td><td><input type="text" name="formCountry2" id="InputLong" value="<?php if($formSubmitSave and $ImportCountry_Delivery != "") { echo $ImportCountry_Delivery; }?>"></td></tr>
<tr><td id="DescriptionBlack">Notes</td><td><textarea name="formNotes" id="InputLong"><?php if($formSubmitSave and $ImportRemarks != "") { echo $ImportRemarks; }?></textarea></td><td colspan="2"><b>Extraction Staff <input type='checkbox' name='formExtraction' value='yes' <?php if($formSubmitSave and $ImportExtractionStaff == "yes") { echo "checked"; }?>> Provider <input type='checkbox' name='formProvider' value='yes' <?php if($formSubmitSave and $ImportProvider == "yes") { echo "checked"; }?>> Customer <input type='checkbox' name='formCustomer2' value='yes' <?php if($formSubmitSave and $ImportCustomer == "yes") { echo "checked"; }?>></b></td></tr>
<tr><td id="DescriptionBlack"><span class="fine">Import customer data from Preorder Email</span></td><td><input type="text" name="importcustomerdata" id="InputLong"></td><td><span title="Preorder Emails via the Webportal of the DNA Bank Network contain two txt-attachments, one with DNA numbers and another with Customer data. Please open the PreorderCustomer-txt file and copy first line completely into the text field adjacent. Further information is available in the Wiki."><b>Help</b></span></td></tr>
<tr><td></td><td id="tdbutton"><input type="submit" <?php if($formSubmitSave) { echo 'name="formSubmitSave2" value="Save"'; } else { echo 'name="formSubmitSave" value="Check database"'; } ?> class="button"></td><td colspan="2"></td></tr>
<?php } ?>
</table>
</div>
</td></tr>
</table>
</td></tr>
<tr><td colspan="2" height="15" align="right">After finishing close this window and reload the other site.</td><td><input type="submit" id="button" name="formSubmitClose" value="Close Form" style="float:right" onclick="window.close();"></td></tr>
<?php } ?>
</table>
<?php
/**
* including footer
*/
include("../footer.php"); ?>
</form>
</div>
</body>
</html>

Documentation generated on Tue, 29 Nov 2011 10:44:57 +0100 by phpDocumentor 1.4.3

Source for file new_People.php