pliva-si/inc/common.inc

<?

global $smarty,$dbh,$user_authed;

// fetch menu

if (!isset($m)) {
        $m=$section;
} else {
        $smarty->assign("m_session","m=$m&");
        $smarty->assign("m_session_urlend","&m=$m");
        $smarty->assign("m_form_session","<input type=\"hidden\" name=\"m\" value=\"$m\">");
}

$sth = $dbh->prepare("select item,url,file,w,h from menu where section='$m' and $visible_is_true order by num");
$sth->execute();
while ($row=$sth->fetchrow_hash()) {
        $menu[]=$row;
}

$smarty->assign("menu",$menu);


// link na otroke sa slatkorne stran
if ($m == "sladkorna") $smarty->assign("link_otroci",1);


$sql_where=" and substr(type,3,1)<>'x'" ; // don't show locked records


// auth... based on m

$cookie_data=md5(strftime("%w%Y").$PHP_AUTH_USER.$PHP_AUTH_PW);

if ($m == "za_zdravnike") {


        if ($cookie_data != $pliva_si_user) {

                $sth = $dbh->prepare("select login as user,geslo as pw from people where login = '$PHP_AUTH_USER'");
                $sth->execute();
                if (! $row=$sth->fetchrow_hash() || $PHP_AUTH_PW != $row[pw]) {
                        header("WWW-authenticate: basic realm=\"$HTTP_HOST\"") ;
                        header("HTTP/1.0 401 Unauthorized") ;
                        print "<html>Unauthorized</html>";
                        exit;
                } else {
                        setcookie("pliva_si_user",$cookie_data);
                }
        }

        $user_authed++;

        $sql_where="";  // don't limit output to authed users
} else {
        if ($cookie_data == $pliva_si_user) $user_authed++;
}
$smarty->assign("user_authed",$user_authed);


// fetch news

$sth = $dbh->prepare("select id,title from news where substr(type,1,1)='n' $sql_where and $visible_is_true order by date desc limit 5");
$sth->execute();
while ($row=$sth->fetchrow_hash()) {
        $news[]=$row;
}
$smarty->assign("news",$news);

$sth = $dbh->prepare("select id,title from news where substr(type,1,1)='e' $sql_where and $visible_is_true order by priority desc,date desc limit 5");
$sth->execute();
while ($row=$sth->fetchrow_hash()) {
        $events[]=$row;
}
$smarty->assign("events",$events);

$smarty->assign("self",$PHP_SELF);

#include("debug.inc");

function check_required() {
        global $inputs_required;
        global $inputs_required_type;
        $ok=1;
        if (isset($inputs_required)) {
                foreach ($inputs_required as $i) {
                        if (! isset($GLOBALS[$i]) || $GLOBALS[$i] == "") $ok=0;
                        switch (strtolower($inputs_required_type[$i])) {
                                case 'email':
                                        if (!strstr($GLOBALS[$i],'@')) $ok=0;
                        }
#                       print "$i: $GLOBALS[$i] type: $inputs_required_type[$i] $ok --<br>\n ";

                }
        } else {
                print "<!-- no inputs required -->";
        }
        return $ok;
}

?>
1	<?
2
3	global $smarty,$dbh,$user_authed;
4
5	// fetch menu
6
7	if (!isset($m)) {
8	$m=$section;
9	} else {
10	$smarty->assign("m_session","m=$m&");
11	$smarty->assign("m_session_urlend","&m=$m");
12	$smarty->assign("m_form_session","<input type=\"hidden\" name=\"m\" value=\"$m\">");
13	}
14
15	$sth = $dbh->prepare("select item,url,file,w,h from menu where section='$m' and $visible_is_true order by num");
16	$sth->execute();
17	while ($row=$sth->fetchrow_hash()) {
18	$menu[]=$row;
19	}
20
21	$smarty->assign("menu",$menu);
22
23
24	// link na otroke sa slatkorne stran
25	if ($m == "sladkorna") $smarty->assign("link_otroci",1);
26
27
28	$sql_where=" and substr(type,3,1)<>'x'" ; // don't show locked records
29
30
31	// auth... based on m
32
33	$cookie_data=md5(strftime("%w%Y").$PHP_AUTH_USER.$PHP_AUTH_PW);
34
35	if ($m == "za_zdravnike") {
36
37
38	if ($cookie_data != $pliva_si_user) {
39
40	$sth = $dbh->prepare("select login as user,geslo as pw from people where login = '$PHP_AUTH_USER'");
41	$sth->execute();
42	if (! $row=$sth->fetchrow_hash() \|\| $PHP_AUTH_PW != $row[pw]) {
43	header("WWW-authenticate: basic realm=\"$HTTP_HOST\"") ;
44	header("HTTP/1.0 401 Unauthorized") ;
45	print "<html>Unauthorized</html>";
46	exit;
47	} else {
48	setcookie("pliva_si_user",$cookie_data);
49	}
50	}
51
52	$user_authed++;
53
54	$sql_where=""; // don't limit output to authed users
55	} else {
56	if ($cookie_data == $pliva_si_user) $user_authed++;
57	}
58	$smarty->assign("user_authed",$user_authed);
59
60
61	// fetch news
62
63	$sth = $dbh->prepare("select id,title from news where substr(type,1,1)='n' $sql_where and $visible_is_true order by date desc limit 5");
64	$sth->execute();
65	while ($row=$sth->fetchrow_hash()) {
66	$news[]=$row;
67	}
68	$smarty->assign("news",$news);
69
70	$sth = $dbh->prepare("select id,title from news where substr(type,1,1)='e' $sql_where and $visible_is_true order by priority desc,date desc limit 5");
71	$sth->execute();
72	while ($row=$sth->fetchrow_hash()) {
73	$events[]=$row;
74	}
75	$smarty->assign("events",$events);
76
77	$smarty->assign("self",$PHP_SELF);
78
79	#include("debug.inc");
80
81	function check_required() {
82	global $inputs_required;
83	global $inputs_required_type;
84	$ok=1;
85	if (isset($inputs_required)) {
86	foreach ($inputs_required as $i) {
87	if (! isset($GLOBALS[$i]) \|\| $GLOBALS[$i] == "") $ok=0;
88	switch (strtolower($inputs_required_type[$i])) {
89	case 'email':
90	if (!strstr($GLOBALS[$i],'@')) $ok=0;
91	}
92	# print "$i: $GLOBALS[$i] type: $inputs_required_type[$i] $ok --<br>\n ";
93
94	}
95	} else {
96	print "<!-- no inputs required -->";
97	}
98	return $ok;
99	}
100
101	?>