-
Notifications
You must be signed in to change notification settings - Fork 1
Expand file tree
/
Copy pathindex.php
More file actions
executable file
·204 lines (187 loc) · 7.17 KB
/
index.php
File metadata and controls
executable file
·204 lines (187 loc) · 7.17 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
<?php
session_start();
ob_start();
require_once "inc/database.inc.php";
?>
<!-- Marina Shchukina, 1014481
BEM methodology is behind all the html elements naming conventions
http://bem.info/method/
-->
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML+RDFa 1.0//EN" "http://www.w3.org/MarkUp/DTD/xhtml-rdfa-1.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/schema/" xml:lang="en-GB">
<head>
<link rel="stylesheet" type="text/css" href="css/main.css" />
</head>
<body>
<?php
$loginDetails = 'login_details_encrypted.txt';
$error = array();
$loginRequested = isset( $_POST['login']); //boolean
$logoutRequested = isset( $_GET['logout'] ); //boolean
require_once('inc/get_login_details.inc.php');
if($logoutRequested) {
require_once('inc/logout.inc.php');
}
if( $loginRequested ) {
require_once('inc/login.inc.php');
}
?>
<div id="textbooksApp-main">
<!-- keyword search -->
<form id="search" method="get" action="">
<fieldset class="keywordSearch">
<input class="keywordSearch__input"></input>
<input type="submit" name="search" class="keywordSearch__search btn" value="Search >">
</fieldset>
</form>
<!-- /keyword search -->
<?php
if( !empty($error) ) {
echo '<ul class="loginError">';
foreach ($error as $key => $value) {
echo '<li>' . $value . '</li>';
}
echo '</ul>';
}
?>
<?php
if( !isset( $_SESSION['currentUser']) ) {
include_once('inc/login_form.inc.php');
} else {
include_once('inc/logout_form.inc.php');
}
?>
<div class="innerWrapper">
<h1 class="title">School of Computing Science & Digital Media</h1>
<h2 class="subtitle">Current session: 2013/14</h2>
<p class="description">This paragraph should contain some information about how to use the application <br /> <br /> Lorem ipsum dolor sit amet, consectetuer adipiscing elit, sed diam nonummy nibh euismod tincidunt ut laoreet dolore magna nostrud exerci tation ullamcorper suscipit lobortis nisl ut aliquip ex ea commodo consequat. Duis autem vel eum iriure dolor in hendrerit in vulputate velit esse molestie consequat, vel illum dolore eu feugiat nulla facilisis at vero eros et accumsan et iusto odio dignissim qui blandit praesent luptatum zzril delenit augue duis dolore te.</p>
<!-- choices -->
<?php
$searchSubmitted = isset( $_GET['browseDatabase']); //boolean
if($searchSubmitted) {
// START of Sam Cussons code
if(isset($_SESSION['currentUser']) && $_SESSION['currentAccessLevel'] == 1) {
if ($_GET['courses'] == "select-course" && $_GET['modules'] == "select-module") {
// Nothing set so COURSES.PHP
header('Location: courses.php');
exit;
} else if ($_GET['courses'] != "select-course" && $_GET['years'] != "select-year" && $_GET['modules'] != "select-module"){
// Course, Module and Year SET so BOOKS.PHP
header("Location: books.php?courses=".$_GET['courses']."&years=".$_GET['years']."&modules=".$_GET['modules']);
exit;
} else if ($_GET['courses'] != "select-course" && $_GET['years'] != "select-year" && $_GET['modules'] == "select-module"){
// Course and Year Set MODULES.PHP
header("Location: modules.php?courses=".$_GET['courses']."&years=".$_GET['years']);
exit;
} else if ($_GET['courses'] != "select-course" && $_GET['years'] == "select-year" && $_GET['modules'] == "select-module"){
// Course Set YEARS.PHP
header("Location: years.php?courses=".$_GET['courses']);
exit;
} else if ($_GET['courses'] == "select-course" && $_GET['years'] == "select-year" && $_GET['modules'] != "select-module"){
// Module Set BOOKS.PHP
header("Location: books.php?courses=".$_GET['courses']."&years=".$_GET['years']."&modules=".$_GET['modules']);
exit;
} else if ($_GET['courses'] != "select-course" && $_GET['modules'] != "select-module"){
// Module Set BOOKS.PHP
header("Location: books.php?courses=".$_GET['courses']."&years=".$_GET['years']."&modules=".$_GET['modules']);
exit;
}
} else {
header('Location: books.php');
exit;
}
}
?>
<?php
if(isset($_SESSION['currentUser']) && $_SESSION['currentAccessLevel'] == 1) {
echo "<form id=\"choices\" method=\"get\" action=\"\">";
} else {
echo "<form id=\"choices\" method=\"get\" action=\"books.php\">";
}
?>
<!-- End of Sam Cussons code -->
<fieldset class="choices">
<div class="choices-option">
<label class="choices__course">Course</label>
<div class="choices__select">
<div class="select">
<select id="courses" name="courses" class="choices__course">
<option value="select-course">Select...</option>
<!-- Start of Sam Cussons code -->
<?php
try {
$sql="SELECT * FROM courses";
$results=$conn->query($sql);
if ($results->rowcount()==0){
echo "No results <br/>";
} else {
//generate table of results
foreach ($results as $row){
echo "<option value=\"".$row['CID']."\">".$row['title']."</option>";
}
}
} catch ( PDOException $e ) {
echo "Query failed: " . $e->getMessage();
}
?>
<!-- End of Sam Cussons code -->
</select>
</div>
</div>
</div>
<!-- /course -->
<div class="choices-option">
<label class="choices__year">Course year</label>
<div class="choices__select">
<div class="select">
<select class="choices__year" name="years" id="years" >
<option value="select-year">Select...</option>
<option value="1">1</option>
<option value="2">2</option>
<option value="3">3</option>
<option value="4">4</option>
</select>
</div>
</div>
</div>
<!-- /year -->
<div class="choices-option">
<label class="choices__module">Module</label>
<div class="choices__select">
<div class="select">
<select class="choices__module" name="modules" id="modules">
<option value="select-module">Select...</option>
<!-- Start of Sam Cussons code -->
<?php
try {
$sql="SELECT * FROM modules";
$results=$conn->query($sql);
if ($results->rowcount()==0){
echo "No results <br/>";
} else {
//generate table of results
foreach ($results as $row){
echo "<option value=\"".$row['MID']."\">".$row['title']."</option>";
}
}
} catch ( PDOException $e ) {
echo "Query failed: " . $e->getMessage();
}
$conn = null;
?>
<!-- End of Sam Cussons code -->
</select>
</div>
</div>
</div>
<!-- /module -->
<input type="submit" name="browseDatabase" class="choices__browse btn" value="">
<!-- /submit the form -->
</fieldset>
</form>
<!-- /choices -->
</div>
<?php include_once('inc/footer.inc.php'); ?>
</div>
</body>
</html>