Tiny File Manager

Back Back Up Advanced Editor

<?php

session_start ();
	if (!isset($_SESSION['nom']) && !isset($_SESSION['password']))
	{  
			header("Location: login.php");   
	}

include('database.php');
	include('fonctions.php');
	DB_connexion(); 
	header( 'content-type: text/html; charset=utf-8' );

$tab_mois = array("janvier","fevrier","mars","avril","mai","juin","juillet","aout","septembre","octobre","novembre","decembre");
	$seance_choix = "";
	
	if(isset($_GET['mois']) && isset($_GET['jour']))
	{
		$mois = $_GET['mois'];
		$jour = $_GET['jour'];
	}	
	
	if(isset($_POST['submit']))
	{
		if(isset($_POST['verrou']) && $_POST['verrou'] == "ok")
		{	
				$annee = date('Y');
				$table = "reservation" .$annee;
				
				if( $_SESSION['nom'] == "admin")
				{	$client = $_POST['client'];	
					$sql = "SELECT * FROM client WHERE nom ='admin' ";	
					$result = mysqli_query($connexion, $sql );	
					$data = mysqli_fetch_assoc($result);
					$msg = "";
				}
		
				if( $_SESSION['nom'] != "admin")
				{	$nom = $_SESSION['nom'];	
					$prenom = $_SESSION['prenom'];	
					$client = $nom .' ' .$prenom; 				
					$sql = "SELECT * FROM client WHERE nom ='$nom' and prenom ='$prenom' ";	
					$result = mysqli_query($connexion, $sql );	
					$data = mysqli_fetch_assoc($result);
					$msg = "";
				}
				
				$sql = "SELECT * FROM " .$table  ." WHERE rendezvous ='$jour'";	
				$result = mysqli_query($connexion, $sql );
				$data = mysqli_fetch_assoc($result);
				$indice = $data['indice'] ;
				//echo $indice;
			
				$options_text = implode(', ',$_POST['options']);
				//echo $options_text;
				
				$tab_horaire = array();
				
				// 3 4 5 6
				//   4 5 6 7
				$reponse = strpos($options_text,"seance1");
				if(strlen($reponse) != 0)
				{
					mysqli_query($connexion, "SET NAMES 'utf8'");	
					$sql = "UPDATE " .$table ." SET seance1 = '$client' WHERE rendezvous ='$jour' ";
					//echo $sql;
					$result = mysqli_query($connexion, $sql );	
					$msg .= "12H20 ";
					$tab_horaire[] = "12H20";
					if($indice == "1" || $indice == "2")
					{	mode_normal($jour);
					}
					if($indice == "3" || $indice == "4")
					{	mode_etendu($jour);
					}
					$seance_choix = "1";
					//// 	mise à jour de la table gestion
					sauvegarde_table_gestion($annee,$mois,$jour,$client,$seance_choix);
				}
				
				// 3 4 5 6
				//   4 5 6 7 
				$reponse = strpos($options_text,"seance2");
				if(strlen($reponse) != 0)
				{
					mysqli_query($connexion, "SET NAMES 'utf8'");	
					$sql = "UPDATE " .$table ." SET seance2 = '$client' WHERE rendezvous ='$jour' ";
					//echo $sql;
					$result = mysqli_query($connexion, $sql );	
					$msg .= "12H40 ";
					$tab_horaire[] = "12H40";
					if($indice == "1" || $indice == "2")
					{	mode_normal($jour);
					}
					if($indice == "3" || $indice == "4")
					{	mode_etendu($jour);
					}
					$seance_choix = "2";
					//// 	mise à jour de la table gestion
					sauvegarde_table_gestion($annee,$mois,$jour,$client,$seance_choix);
				}
					
				// 3 4 5 6
				//   4 5 6 7	
				$reponse = strpos($options_text,"seance3");
				if(strlen($reponse) != 0)
				{
					mysqli_query($connexion, "SET NAMES 'utf8'");	
					$sql = "UPDATE " .$table ." SET seance3 = '$client' WHERE rendezvous ='$jour' ";
					//echo $sql;
					$result = mysqli_query($connexion, $sql );	
					$msg .= "13H ";
					$tab_horaire[] = "13H";
					if($indice == "1" || $indice == "2")
					{	mode_normal($jour);
					}
					if($indice == "3" || $indice == "4")
					{	mode_etendu($jour);
					}
					$seance_choix = "3";
					//// 	mise à jour de la table gestion
					sauvegarde_table_gestion($annee,$mois,$jour,$client,$seance_choix);
				}
				
				// 3 4 5 6
				//   4 5 6 7
				$reponse = strpos($options_text,"seance4");
				if(strlen($reponse) != 0)
				{
					mysqli_query($connexion, "SET NAMES 'utf8'");	
					$sql = "UPDATE " .$table ." SET seance4 = '$client' WHERE rendezvous ='$jour' ";
					//echo $sql;
					$result = mysqli_query($connexion, $sql );	
					$msg .= "13H20 ";
					$tab_horaire[] = "13H20";
					mode_normal($jour);
					$seance_choix = "4";		
					//// 	mise à jour de la table gestion
					sauvegarde_table_gestion($annee,$mois,$jour,$client,$seance_choix);
				}
				
				// 3 4 5 6
				//   4 5 6 7
				$reponse = strpos($options_text,"seance5");
				if(strlen($reponse) != 0)
				{
					mysqli_query($connexion, "SET NAMES 'utf8'");	
					$sql = "UPDATE " .$table ." SET seance5 = '$client' WHERE rendezvous ='$jour' ";
					//echo $sql;
					$result = mysqli_query($connexion, $sql );	
					$msg .= "13H40 ";
					$tab_horaire[] = "13H40";
					mode_normal($jour);
					$seance_choix = "5";
					//// 	mise à jour de la table gestion
					sauvegarde_table_gestion($annee,$mois,$jour,$client,$seance_choix);
					
				}
				
				// 3 4 5 6
				//   4 5 6 7
				$reponse = strpos($options_text,"seance6");
				if(strlen($reponse) != 0)
				{
					mysqli_query($connexion, "SET NAMES 'utf8'");	
					$sql = "UPDATE " .$table ." SET seance6 = '$client' WHERE rendezvous ='$jour' ";
					//echo $sql;
					$result = mysqli_query($connexion, $sql );	
					$msg .= "14H ";
					$tab_horaire[] = "14H";
					mode_normal($jour);
					$seance_choix = "6";
					//// 	mise à jour de la table gestion
					sauvegarde_table_gestion($annee,$mois,$jour,$client,$seance_choix);
				}
				
				// 3 4 5 6
				//   4 5 6 7
				$reponse = strpos($options_text,"seance7");
				if(strlen($reponse) != 0)
				{
					$sql = "UPDATE ".$table ." SET	seance7 = '$client' WHERE rendezvous ='$jour' ";
					//echo $sql;
					mysqli_query($connexion, "SET NAMES 'utf8'");	
					$result = mysqli_query($connexion, $sql );	
					$msg .= "14H20 ";
					$tab_horaire[] = "14H20";
					if($indice == "1" || $indice == "2")
					{	mode_etendu($jour);
					}
					if($indice == "3" || $indice == "4")
					{	mode_normal($jour);
					}
					$seance_choix = "7";
					//// 	mise à jour de la table gestion
					sauvegarde_table_gestion($annee,$mois,$jour,$client,$seance_choix);
				}
			
				// 3 4 5 6
				//   4 5 6 7
				$reponse = strpos($options_text,"seance8");
				if(strlen($reponse) != 0)
				{
					$sql = "UPDATE ".$table ." SET	seance8 = '$client' WHERE rendezvous ='$jour' ";
					//echo $sql;
					mysqli_query($connexion, "SET NAMES 'utf8'");	
					$result = mysqli_query($connexion, $sql );	
					$msg .= "14H20 ";
					$tab_horaire[] = "14H20";
					mode_etendu($jour);
					$seance_choix = "8";
					//// 	mise à jour de la table gestion
					sauvegarde_table_gestion($annee,$mois,$jour,$client,$seance_choix);
				}
			
				// recherche l'adresse email du client
				$decompose = explode(" ", $client);
				$nom = $decompose[0]; 
				$prenom = $decompose[1]; 
				
				$sql = "SELECT * FROM client WHERE nom ='$nom' AND prenom ='$prenom' ";	
				//echo $sql;
				$result = mysqli_query($connexion, $sql );	
				$data = mysqli_fetch_assoc($result);
				
				nouvelle_allocation($mois);
				
				$str = implode(",", $tab_horaire);
				
				echo "Confirmation: "  .$client ." vient de réserver " .count($_POST['options']) . " crénau(x)" .' - ' .$str;
				
				$site = $_SERVER["SERVER_NAME"];
				if( ($site == "localhost") || ($site == "127.0.0.1") ) 
				{
					$no_active = true;
				}
				else
				{
					email_html( $nom , $prenom, $data['email'] , $jour, $msg);
				}
				
				echo '<br>';
				echo '<br>';
				
				//header("Location: affiche_planning.php?mois=$mois");
				
		}
	}
?>

</head>
<body>

<div id='cssmenu'>
	<ul>
		<li><a href='home.php'><span>Home</span></a></li>
		<li class="active"><a href='selection_planning_mois.php'><span>Planning</span></a></li>
		<li><a href='selection_gestion_mois.php'><span>Gestion</span></a></li>
		<li><a href='selection_statistique_mois.php'><span>Statistiques</span></a></li>
<?php
		if($_SESSION['nom'] == "admin")
		{ echo '<li><a href="configuration.php"><span>Configuration</span></a></li>';
		}
?>
		<li><a href='change_password.php'><span>Changer password</span></a></li>
		<li><a href='logout.php'><span>Déconnexion</span></a></li>
		<li><a href='#'><span><?php echo $_SESSION['nom'] .' ' .$_SESSION['prenom'] .' connecté' ?></span></a></li>
	</ul>
	</div>
	<br>
	<br>

<form action="#" name ="form_inscription" method="post">
	<input type="hidden" name="verrou" id="verrou" value="">
	
<?php
////////////////  affichage de la liste de selection des utilisateurs seulement pour le mode administrateur
	if($_SESSION['nom'] == "admin")
	{	
		echo '<select size = "10" STYLE="width:300" id = "champ_client" name="client">';

$sql = 'SELECT * FROM client';
		mysqli_query($connexion, "SET NAMES 'utf8'");
		$result = mysqli_query($connexion, $sql );
		$tab_nom = array();
		$tab_prenom = array();
	
		$ptr = 0;
			
		while ($data = mysqli_fetch_assoc ($result))
		{
			$tab_nom[$ptr] = $data['nom'];
			$tab_prenom[$ptr] = $data['prenom'];
			$ptr = $ptr + 1;
		}

for( $i=0; $i < count($tab_nom) ; $i++)
		{
			$tmp = $tab_nom[$i] . " " .$tab_prenom[$i];
			echo '<option value="' .$tmp. '">' .$tmp. '</option>';
		}

echo '</select>
			  <br><br>';
			  
	}
///////////////////////////////////////	
	
	echo 'Réservation pour le : ' .$jour .'<br>';
	
	$annee = date('Y');
	$table = "reservation" .$annee;
	$sql = "SELECT * FROM " .$table  ." WHERE rendezvous ='$jour' ";	
	//echo $sql;
	$result = mysqli_query($connexion, $sql );
	$n = mysqli_num_rows($result);	
	$data = mysqli_fetch_assoc($result);
	
	$item1 = "";
	$item2 = "";
	$item3 = "";
	$item4 = "";
	$item5 = "";
	$item6 = "";
	$item7 = "";
	$item8 = "";
	
	echo '<br>';
	
	//if(strlen($data['seance1']) == 0)
	if($data['seance1'] =='' || $data['seance1'] == 'creneau ouvert' )
	{	$item1 = "libre";
		echo '<input type="checkbox" id ="id1" name="options[]" value="seance1">12H20';
	}	
	else
	{  $item1 = "pris";
	}
	
	//if(strlen($data['seance2']) == 0)
	if($data['seance2'] =='' || $data['seance2'] == 'creneau ouvert' )
	{	$item2 = "libre";
		echo '<input type="checkbox" id ="id2" name="options[]" value="seance2">12H40';
	}	
	else
	{  $item2 = "pris";
	}
	
	//if(strlen($data['seance3']) == 0)
	if($data['seance3'] =='' || $data['seance3'] == 'creneau ouvert' )
	{	$item3 = "libre";
		echo '<input type="checkbox" id ="id3" name="options[]" value="seance3">13H';
	}	
	else
	{  $item3 = "pris";
	}

//if(strlen($data['seance4']) == 0)
	if($data['seance4'] =='' || $data['seance4'] == 'creneau ouvert' )
	{	$item4 = "libre";
		echo '<input type="checkbox" id ="id4" name="options[]" value="seance4">13H20';
	}	
	else
	{  $item4 = "pris";
	}	
	
	//if(strlen($data['seance5']) == 0)
	if($data['seance5'] =='' || $data['seance5'] == 'creneau ouvert' )
	{	$item5 = "libre";
		echo '<input type="checkbox" id ="id5" name="options[]" value="seance5">13H40';
	}	
	else
	{  $item5 = "pris";
	}
	
	//if(strlen($data['seance6']) == 0)
	if($data['seance6'] =='' || $data['seance6'] == 'creneau ouvert' )
	{	$item6 = "libre";
		echo '<input type="checkbox" id ="id6" name="options[]" value="seance6">14H';
	}	
	else
	{  $item6 = "pris";
	}
	
	//if(strlen($data['seance7']) == 0)
	if($data['seance7'] =='' || $data['seance7'] == 'creneau ouvert' )
	{	$item7 = "libre";
		echo '<input type="checkbox" id ="id7" name="options[]" value="seance7">14H20';
	}	
	else
	{  $item7 = "pris";
	}

//if(strlen($data['seance8']) == 0)
	if($data['seance8'] =='' || $data['seance8'] == 'creneau ouvert' )
	{	$item8 = "libre";
		echo '<input type="checkbox" id ="id8" name="options[]" value="seance8">14H40';
	}	
	else
	{  $item8 = "pris";
	}	
	
	
	if($item1 == "pris" && $item2 == "pris" && $item3 == "pris" && $item4 == "pris" && $item5 == "pris" && $item6 == "pris" && $item7 == "pris" && $item8 == "pris")
	{ 	echo "Plus de créneaux disponible à cette date !.";
		echo '<br>';
	}
	
	
?>

<?php
	if($_SESSION['nom'] == "admin")
	{	
		echo '<input type="submit" name="submit" value="Validation" onclick="valider_admin()"/>';
	}
	else
	{	
		echo '<input type="submit" name="submit" value="Validation" onclick="valider_utilisateur()"/>';
	}
?>
	</form>

<br>
<?php

//	echo '<a href="selection_mois.php?mois='.$mois .' ">Retour au planning </a>';
						
 ?>

</body>
</html>