require_once 'BaseUser.class.php';
class User extends BaseUser
{
private $DB;
public function __construct() {
$this->DB = new DBCon();
$this->DB->getInstance();
}
public function getUserById($id)
{
$id = Tools::escape($id);
$sqlQuery = "SELECT * FROM `user` u WHERE id='$id'";
$result = $this->DB->sqlQuery($sqlQuery);
if($result)
{
while ($row = mysql_fetch_assoc($result))
{
$this->setId($row['id']);
$this->setUsername($row['username'] );
$this->setPassword($row['password'] );
$this->setCreatedAt($row['created_at'] );
$this->setLastLogin($row['last_login'] );
$this->setIsActive($row['is_active'] );
$this->setIsSuperAdmin($row['is_super_admin'] );
break;
}
return $this;
}else{
return false;
}
}
public function login($uname, $password)
{
$uname = Tools::escape($uname);
$password = Tools::escape($password);
$isUser = 0;
$sqlQuery = "SELECT * FROM user WHERE username = LOWER('".$uname."') AND password = '".md5($password)."' AND is_active='1'";
$result = $this->DB->sqlQuery($sqlQuery);
if($result)
{
while ($row = mysql_fetch_assoc($result))
{
$isUser = 1;
$this->setId( $row['id'] );
$this->setUsername($row['username'] );
break;
}
}
return $isUser;
}
public function checkUserExists($uname)
{
$uname = Tools::escape($uname);
$sqlQuery = "SELECT * FROM user WHERE username = LOWER('".$uname."')";
$result = $this->DB->sqlQuery($sqlQuery);
if(mysql_affected_rows()>0){
return true;
}else{
return false;
}
}
public function addUser($uname, $password)
{
$uname = Tools::escape($uname);
$password = Tools::escape($password);
$this->applyDefaultValues();
$now = date('Y-m-d H:i:s');
$sqlQuery = "INSERT INTO `user` (`username`,`algorithm`,`password`,`created_at`) VALUES('$uname','$this->algorithm','".md5($password)."','$now')";
$result = $this->DB->sqlQuery($sqlQuery);
if(mysql_affected_rows()==1)
{
return true;
}else{
return false;
}
}
public function logout()
{
Tools::unsetSession('user');
Tools::redirect('index','5');
}
public function getUsersByGroup($group_id)
{
$group_id = Tools::escape($group_id);
$sqlQuery = "SELECT * FROM `user` u LEFT JOIN `user_group` ug ON u.id=ug.user_id WHERE ug.group_id='$group_id'";
$result = $this->DB->sqlQuery($sqlQuery);
if(mysql_affected_rows()>0){
$res = array();
while ($row = mysql_fetch_assoc($result))
{
$res[] = $row;
}
return $res;
}else{
return false;
}
}
public function setActive($id,$status)
{
$id = Tools::escape($id);
$status = Tools::escape($status);
$sqlQuery = "UPDATE `user` SET `is_active`='$status' WHERE id='$id'";
$result = $this->DB->sqlQuery($sqlQuery);
if(mysql_affected_rows()==1){
return true;
}else{
return false;
}
}
public function changePassword($id,$new)
{
$id= Tools::escape($id);
$new_password = md5(Tools::escape($new));
$sqlQuery = "UPDATE `user` SET `password`='$new_password' WHERE id='$id'";
$result = $this->DB->sqlQuery($sqlQuery);
if(mysql_affected_rows()==1){
return true;
}else{
return false;
}
}
}
?>
msg cls
class Message{
function getMessage($id){
$msg = "";
switch($id){
case 1: $msg = "Invalid username or password."; break;
case 2: $msg = "User deleted successfully."; break;
case 3: $msg = "User deleting failed."; break;
case 4: $msg = "Successfully logged out."; break;
default: $msg = "";
}
return $msg;
}
}
?>
dbcon class
require_once 'config.php';
class DBCon
{
var $conn;
var $host;
var $port;
var $db_name;
var $db_username;
var $db_password;
var $result;
function __construct($id=0){
$this->host = DB_HOST;
$this->port = DB_PORT;
$this->db_username = DB_USER;
$this->dbpass = DB_PWD;
$this->db_name = DB_NAME;
}
function getInstance()
{
$this->conn = mysql_connect($this->host.':'.$this->port,$this->db_username,$this->dbpass);
if($this->conn)
{
mysql_select_db($this->db_name);
}
else
{
echo "Error connecting to database.".mysql_error();
exit();
}
}
function sqlQuery($sql) {
if( (isset($this -> conn)) && ($sql != '') ){
$this->result = mysql_query($sql);
if ($this->result)
{
return $this->result;
}
else
{
return false;
}
}
}
function getLastInsertId($tableName)
{
$sql = "SELECT LAST_INSERT_ID() AS 'LAST_ID' FROM ".$tableName;
$lastInsertId = -1;
$this->result = mysql_query($sql);
while ($row = mysql_fetch_assoc($this->result))
{
$lastInsertId = $row['LAST_ID'];
break;
}
return $lastInsertId;
}
}
?>
class DBCon
{
var $conn;
var $host;
var $port;
var $db_name;
var $db_username;
var $db_password;
var $result;
function __construct($id=0){
$this->host = DB_HOST;
$this->port = DB_PORT;
$this->db_username = DB_USER;
$this->dbpass = DB_PWD;
$this->db_name = DB_NAME;
}
function getInstance()
{
$this->conn = mysql_connect($this->host.':'.$this->port,$this->db_username,$this->dbpass);
if($this->conn)
{
mysql_select_db($this->db_name);
}
else
{
echo "Error connecting to database.".mysql_error();
exit();
}
}
function sqlQuery($sql) {
if( (isset($this -> conn)) && ($sql != '') ){
$this->result = mysql_query($sql);
if ($this->result)
{
return $this->result;
}
else
{
return false;
}
}
}
function getLastInsertId($tableName)
{
$sql = "SELECT LAST_INSERT_ID() AS 'LAST_ID' FROM ".$tableName;
$lastInsertId = -1;
$this->result = mysql_query($sql);
while ($row = mysql_fetch_assoc($this->result))
{
$lastInsertId = $row['LAST_ID'];
break;
}
return $lastInsertId;
}
}
?>
jq scripts
src="js/jquery.js"
src="http://dev.jquery.com/view/trunk/plugins/validate/jquery.validate.js"
$(document).ready(function(){
$("#loginform").validate();
});
$(document).ready(function(){
$("#delete").click(function(){
var conf = confirm('Do you really want to delete this user?');
if(conf){
return true;
}else{
return false;
}
});
});
$(document).ready(function(){
$("#show").click(function(){
$("#book").slideDown('500', function(){
//alert("Animation Completed");
});
});
$("#hide").click(function(){
$("#book").slideToggle('500', function(){
//alert("Animation Completed");
});
});
});
src="http://dev.jquery.com/view/trunk/plugins/validate/jquery.validate.js"
$(document).ready(function(){
$("#loginform").validate();
});
$(document).ready(function(){
$("#delete").click(function(){
var conf = confirm('Do you really want to delete this user?');
if(conf){
return true;
}else{
return false;
}
});
});
$(document).ready(function(){
$("#show").click(function(){
$("#book").slideDown('500', function(){
//alert("Animation Completed");
});
});
$("#hide").click(function(){
$("#book").slideToggle('500', function(){
//alert("Animation Completed");
});
});
});
Subscribe to:
Posts (Atom)