Mini Shell
<?php
session_start();
$rootPath = realpath(dirname(__FILE__) . '/..');
require_once $rootPath . '/Portal/config/config.php'; // Use clean config file
require_once $rootPath . '/Portal/include/auth_validate.php'; // Use clean config file
/////// Code for new access control on header menu /////////////////////////
$User = $_SESSION['id'];
$User = $_SESSION['User_Type'];
$User_Type = "";
$result = mysqli_query( $conn,"SELECT * FROM school_year WHERE Status = 'Active' ");
$num = mysqli_num_rows($result);
if ($num >0){
$rows = mysqli_fetch_array($result);
}
$result = mysqli_query( $conn,"SELECT * FROM admin_accounts WHERE id = '$User' ");
$num = mysqli_num_rows($result);
if ($num >0){
$rows = mysqli_fetch_array($result);
$User_Type = $rows['Access_Level'];
//$UserDepartment = $rows['UserDepartment'];
}
//Code for adding a new subject
if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_POST['Add_Calendar'])) {
// Sanitize and validate input
$Calendar_Name = mysqli_real_escape_string($conn, $_POST['Calendar_Name']);
$Term = mysqli_real_escape_string($conn, $_POST['Term']);
$Description = mysqli_real_escape_string($conn, $_POST['Description']);
// Check if username already exists
$sql = mysqli_query($conn, "SELECT * FROM school_year WHERE Calendar_Name = '$Calendar_Name'");
if (mysqli_num_rows($sql) > 0) {
$_SESSION['failure'] = "Calendar name already exists!";
} else {
$sql = mysqli_query($conn,"UPDATE school_year SET Status = 'Inactive' WHERE Status = 'Active'");
$sql = mysqli_query($conn, "INSERT INTO school_year (Calendar_Name, Term, Description)
VALUES ('$Calendar_Name','$Term','$Description')");
$_SESSION['success'] = "School Calendar Added Successfully!";
header('location: Manager_School_Calendar.php');
exit();
}
}
//Code for updating a subject
if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_POST['Update_Calendar'])) {
// Sanitize and validate input
$Calendar_Name = mysqli_real_escape_string($conn, $_POST['Calendar_Name']);
$Term = mysqli_real_escape_string($conn, $_POST['Term']);
$Description = mysqli_real_escape_string($conn, $_POST['Description']);
$Calendar_ID = mysqli_real_escape_string($conn, $_POST['Calendar_ID']);
$sql = mysqli_query($conn,"UPDATE school_year SET Calendar_Name = '$Calendar_Name', Term = '$Term', Description = '$Description' WHERE id = '$Calendar_ID'");
$_SESSION['success'] = "School Calendar Updated Successfully!";
header('location: Manager_School_Calendar.php');
exit();
}
// import header
require_once $rootPath . '/Portal/include/AdminHeader.php';
?>
<div id="page-wrapper">
<div class="row">
<div class="col-lg-12">
<h4 class="page-header">School Calendar</h4>
</div>
<div class="col-lg-6" style="">
<div class="page-action-links text-right">
<a href="#" data-toggle="modal" data-target="#Adding-Calendar">
<button class="btn btn-success"><span class="glyphicon glyphicon-plus"></span> Add New School Calendar</button>
</a>
<a href=""> <button class="btn btn-success"><span class="glyphicon glyphicon-refresh"></span> Refresh</button></a>
</div>
</div>
</div>
<?php include('include/flash_messages.php') ?>
<div class="modal fade" id="Adding-Calendar" role="dialog">
<div class="modal-dialog">
<form action=" " method="POST">
<div class="modal-content">
<div class="modal-header" style="text-align:center; background-color:#BAC4CC;">
<button type="button" class="close" data-dismiss="modal">×</button>
<h4 class="modal-title" style="text-align:center;"><strong>CURRENT SCHOOL CALENDAR</strong> </h4>
<br><P class="modal-title" style="text-align:center;"><strong>Please Create a New Calendar only at the begining of the year.
When switching from one term to another within the same School Calendar, Just update the Term</strong> </P>
</div>
<div class="modal-body">
<div class="form-group">
<label class="col-md-3 control-label">Calendar_Name</label>
<div class="col-md-8 inputGroupContainer">
<div class="input-group">
<span class="input-group-addon"></span>
<input type="" name="Calendar_Name" class="form-control" value="" Required autocomplete="off">
</div>
</div>
</div>
<br>
<br>
<div class="form-group">
<label class="col-md-3 control-label">School Term</label>
<div class="col-md-8 inputGroupContainer">
<div class="input-group">
<span class="input-group-addon"></span>
<select name="Term" class="form-control" required>
<option value="">Select term Here</option>
<option value="Term 1">Term 1</option>
<option value="Term 2">Term 2</option>
<option value="Term 3">Term 3</option>
</select>
</div>
</div>
</div>
<br>
<br>
<div class="form-group">
<label class="col-md-3 control-label">Desciption</label>
<div class="col-md-8 inputGroupContainer">
<div class="input-group">
<span class="input-group-addon"></span>
<textarea class="form-control" placeholder="" id="Description" name="Description" style="height: 80px"></textarea>
</div>
</div>
</div>
</div><br><hr>
<div class="modal-footer">
<button type="submit" name="Add_Calendar" id="submit" class="btn btn-warning pull-left">Save <span class="glyphicon glyphicon-send"></span></button>
<button type="button" class="btn btn-primary" data-dismiss="modal">Cancel <span class="glyphicon glyphicon-remove"></span></button>
</div>
</div>
</form>
</div>
</div>
<div class="modal-dialog">
<form class="form-horizontal" action=" " method="post" id="contact_form" enctype="multipart/form-data">
<div class="modal-header" style="text-align:center; background-color:#BAC4CC;">
<h4 class="modal-title" style="text-align:center;"><strong>CURRENT SCHOOL CALENDAR</strong> </h4>
<br><P class="modal-title" style="text-align:center;"><strong>Please Create a New Calendar only at the begining of the year.
When switching from one term to another within the same School Calendar, Just update the Term</strong> </P>
</div>
<div class="modal-body" style="text-align:center; background-color:#F6F7FA;">
<div class="form-group">
<label class="col-md-3 control-label">Calendar_Name</label>
<div class="col-md-8 inputGroupContainer">
<div class="input-group">
<span class="input-group-addon"></span>
<input type="text" name="Calendar_Name" class="form-control" value="<?php echo $rows['Calendar_Name']; ?>" readonly autocomplete="off">
<input type="hidden" name="Calendar_ID" class="form-control" value="<?php echo $rows['id']; ?>" readonly autocomplete="off">
</div>
</div>
</div>
<div class="form-group">
<label class="col-md-3 control-label">School Term</label>
<div class="col-md-8 inputGroupContainer">
<div class="input-group">
<span class="input-group-addon"></span>
<select name="Term" class="form-control" required>
<option value="<?php echo $rows['Term']; ?>"><?php echo $rows['Term']; ?></option>
<option value="Term 1">Term 1</option>
<option value="Term 2">Term 2</option>
<option value="Term 3">Term 3</option>
</select>
</div>
</div>
</div>
<div class="form-group">
<label class="col-md-3 control-label">Desciption</label>
<div class="col-md-8 inputGroupContainer">
<div class="input-group">
<span class="input-group-addon"></span>
<textarea class="form-control" placeholder="" id="Description" name="Description" style="height: 80px"><?php echo $rows['Description']; ?></textarea>
</div>
</div>
</div>
<!-- Button -->
<div class="form-group">
<label class="col-md-4 control-label"></label>
<div class="col-md-4">
<button type="submit" name="Update_Calendar" class="btn btn-warning" >Update <span class="glyphicon glyphicon-send"></span></button>
</div>
</div>
</form>
</div>
</div>
<br><br>
</div>
<br>
<?php include_once 'include/footer.php'; ?>