HCoop / clinton / MarylandElectronicPetitionSignature.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Update follow_up_emails.php
[clinton/MarylandElectronicPetitionSignature.git] / admin / managers.php
diff --git a/admin/managers.php b/admin/managers.php
index 84578e2..c74e759 100644 (file)
--- a/admin/managers.php
+++ b/admin/managers.php
@@ -1,19 +1,57 @@
 <?PHP 
-
+include_once('../slack.php');
 include_once('security.php');
-
+if ($_COOKIE['level'] == 'user'){
+  slack_general('ADMIN: Redirect User Home ('.$_COOKIE['name'].') ('.$_COOKIE['level'].')','md-petition');
+  header('Location: user_home.php');
+}
+if ($_COOKIE['level'] == 'manager'){
+  slack_general('ADMIN: Redirect Manager Home ('.$_COOKIE['name'].') ('.$_COOKIE['level'].')','md-petition');
+  header('Location: manager_home.php');
+}
 include_once('header.php');
-slack_general('ADMIN: managers.php ('.$_COOKIE['name'].') ('.$_COOKIE['level'].')','md-petition');
-?>
-
-<h1>manager setup</h1>
-
-
+if(isset($_POST['name']) && isset($_POST['email']) && isset($_POST['group_id']) ){
+  $name = $petition->real_escape_string($_POST['name']);
+  $email = $petition->real_escape_string($_POST['email']);
+  $group_id = $petition->real_escape_string($_POST['group_id']);
+  $petition->query("insert into users (name,email,group_id,sec_level) values ('$name','$email','$group_id','manager') ");
+}
 
-<pre>
-<?PHP print_r($_COOKIE); ?>
-</pre>
 
+slack_general('ADMIN: managers.php ('.$_COOKIE['name'].') ('.$_COOKIE['level'].')','md-petition');
+?>
+<h1>Groups</h1>
+<?PHP
+$q="SELECT * FROM groups order by name";
+$r = $petition->query($q);
+while($d = mysqli_fetch_array($r)){
+ echo "<li><a href='groups.php?edit=$d[id]'>EDIT</a> $d[name]</li>"; 
+}
+?>
+<h1>Managers</h1>
+<?PHP
+$q="SELECT * FROM users where sec_level='manager' order by group_id";
+$r = $petition->query($q);
+while($d = mysqli_fetch_array($r)){
+ echo "<li><a href='managers.php?edit=$d[id]'>EDIT</a> $d[email] $d[name] ".id2group($d['group_id'])."</li>"; 
+}
+?>
+<h1>New Manager</h1>
+<form method='post'>
+  Name <input name='name' required>
+  E-Mail <input name='email' required>
+  Group: <select name='group_id' required>
+  <?PHP
+$q="SELECT * FROM groups";
+$r = $petition->query($q);
+while($d = mysqli_fetch_array($r)){
+ echo "<option value='$d[id]'>$d[name]</option>
+ "; 
+}
+?>
+  </select>
+  <input type='submit'>
+</form>
 
 <?PHP
 include_once('footer.php');
Unnamed repository; edit this file 'description' to name the repository.