-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathtimetable_backend.php
More file actions
114 lines (105 loc) · 6.32 KB
/
timetable_backend.php
File metadata and controls
114 lines (105 loc) · 6.32 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
<?php
session_start();
if ($_SERVER["REQUEST_METHOD"] == "POST") {
//MySQLi Object-oriented(php with mysql) is used in all
$servername = "localhost";
$username = "root";
$password = "";
$dbname = "Attendance";
//first create database in phpmyadmin so that you can connect here
// Create connection
$conn = new mysqli($servername, $username, $password, $dbname);
// Check connection
if ($conn->connect_error) {
die("<br>Connection failed: " . $conn->connect_error);
}
if ("user" == $_POST['au']) {
$id = intval($_POST['unqid']);
$uid = intval("620117104010");
if ($id !== $uid) {
exit("Invalid Unique password");
die();
}
$data = json_decode($_POST['prd']);
$us = preg_replace("/[^a-zA-Z0-9.\s]/", "", $data[0]);
$ps = MD5(strval(trim($data[1])));
$data = preg_replace("/[^a-zA-Z0-9]/", "", $data);
$mp1 = strtolower($data[2]);
$mp2 = strtolower($data[3]);
$mp3 = strtolower($data[4]);
$mp4 = strtolower($data[5]);
$mp5 = strtolower($data[6]);
$mp6 = strtolower($data[7]);
$mp7 = strtolower($data[8]);
$mp8 = strtolower($data[9]);
$tup1 = strtolower($data[10]);
$tup2 = strtolower($data[11]);
$tup3 = strtolower($data[12]);
$tup4 = strtolower($data[13]);
$tup5 = strtolower($data[14]);
$tup6 = strtolower($data[15]);
$tup7 = strtolower($data[16]);
$tup8 = strtolower($data[17]);
$wp1 = strtolower($data[18]);
$wp2 = strtolower($data[19]);
$wp3 = strtolower($data[20]);
$wp4 = strtolower($data[21]);
$wp5 = strtolower($data[22]);
$wp6 = strtolower($data[23]);
$wp7 = strtolower($data[24]);
$wp8 = strtolower($data[25]);
$tp1 = strtolower($data[26]);
$tp2 = strtolower($data[27]);
$tp3 = strtolower($data[28]);
$tp4 = strtolower($data[29]);
$tp5 = strtolower($data[30]);
$tp6 = strtolower($data[31]);
$tp7 = strtolower($data[32]);
$tp8 = strtolower($data[33]);
$fp1 = strtolower($data[34]);
$fp2 = strtolower($data[35]);
$fp3 = strtolower($data[36]);
$fp4 = strtolower($data[37]);
$fp5 = strtolower($data[38]);
$fp6 = strtolower($data[39]);
$fp7 = strtolower($data[40]);
$fp8 = strtolower($data[41]);
$sp1 = strtolower($data[42]);
$sp2 = strtolower($data[43]);
$sp3 = strtolower($data[44]);
$sp4 = strtolower($data[45]);
$sp5 = strtolower($data[46]);
$sp6 = strtolower($data[47]);
$sp7 = strtolower($data[48]);
$sp8 = strtolower($data[49]);
if ("ucreate" == $_POST['ar']) {
$sql = "CREATE TABLE IF NOT EXISTS Staff (id INT NOT NULL AUTO_INCREMENT PRIMARY KEY,username VARCHAR(20) NOT NULL UNIQUE, password VARCHAR(35) NOT NULL UNIQUE,Monp1 VARCHAR(14),Monp2 VARCHAR(14),Monp3 VARCHAR(14),Monp4 VARCHAR(14),Monp5 VARCHAR(14),Monp6 VARCHAR(14),Monp7 VARCHAR(14),Monp8 VARCHAR(14),Tuep1 VARCHAR(14),Tuep2 VARCHAR(14),Tuep3 VARCHAR(14),Tuep4 VARCHAR(14),Tuep5 VARCHAR(14),Tuep6 VARCHAR(14),Tuep7 VARCHAR(14),Tuep8 VARCHAR(14),Wedp1 VARCHAR(14),Wedp2 VARCHAR(14),Wedp3 VARCHAR(14),Wedp4 VARCHAR(14),Wedp5 VARCHAR(14),Wedp6 VARCHAR(14),Wedp7 VARCHAR(14),Wedp8 VARCHAR(14),Thup1 VARCHAR(14),Thup2 VARCHAR(14),Thup3 VARCHAR(14),Thup4 VARCHAR(14),Thup5 VARCHAR(14),Thup6 VARCHAR(14),Thup7 VARCHAR(14),Thup8 VARCHAR(14),Frip1 VARCHAR(14),Frip2 VARCHAR(14),Frip3 VARCHAR(14),Frip4 VARCHAR(14),Frip5 VARCHAR(14),Frip6 VARCHAR(14),Frip7 VARCHAR(14),Frip8 VARCHAR(14),Satp1 VARCHAR(14),Satp2 VARCHAR(14),Satp3 VARCHAR(14),Satp4 VARCHAR(14),Satp5 VARCHAR(14),Satp6 VARCHAR(14),Satp7 VARCHAR(14),Satp8 VARCHAR(14),accessto VARCHAR(20) NULL DEFAULT NULL,accessfrom VARCHAR(12) NULL DEFAULT NULL,otp VARCHAR(12) NULL DEFAULT NULL) ";
if ($conn->query($sql) === FALSE) {
echo "<br>Error creating table: " . $conn->error;
}
$sqlt = $conn->prepare("INSERT INTO Staff (username,password,Monp1,Monp2,Monp3,Monp4,Monp5,Monp6,Monp7,Monp8,Tuep1,Tuep2,Tuep3,Tuep4,Tuep5,Tuep6,Tuep7,Tuep8,Wedp1,Wedp2,Wedp3,Wedp4,Wedp5,Wedp6,Wedp7,Wedp8,Thup1,Thup2,Thup3,Thup4,Thup5,Thup6,Thup7,Thup8,Frip1,Frip2,Frip3,Frip4,Frip5,Frip6,Frip7,Frip8,Satp1,Satp2,Satp3,Satp4,Satp5,Satp6,Satp7,Satp8) VALUES (?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)");
$sqlt->bind_param("ssssssssssssssssssssssssssssssssssssssssssssssssss", $us, $ps, $mp1, $mp2, $mp3, $mp4, $mp5, $mp6, $mp7, $mp8, $tup1, $tup2, $tup3, $tup4, $tup5, $tup6, $tup7, $tup8, $wp1, $wp2, $wp3, $wp4, $wp5, $wp6, $wp7, $wp8, $tp1, $tp2, $tp3, $tp4, $tp5, $tp6, $tp7, $tp8, $fp1, $fp2, $fp3, $fp4, $fp5, $fp6, $fp7, $fp8, $sp1, $sp2, $sp3, $sp4, $sp5, $sp6, $sp7, $sp8);
if ($sqlt->execute()) {
echo "New records created successfully";
}
else {
echo "Something Went Wrong , Please Try Again/Later \n";
echo $sqlt->error;
}
$sqlt->close();
} //crt
if ("ualter" == $_POST['ar']) {
$sqlt = $conn->prepare("UPDATE Staff SET Monp1=?,Monp2=?,Monp3=?,Monp4=?,Monp5=?,Monp6=?,Monp7=?,Monp8=?,Tuep1=?,Tuep2=?,Tuep3=?,Tuep4=?,Tuep5=?,Tuep6=?,Tuep7=?,Tuep8=?,Wedp1=?,Wedp2=?,Wedp3=?,Wedp4=?,Wedp5=?,Wedp6=?,Wedp7=?,Wedp8=?,Thup1=?,Thup2=?,Thup3=?,Thup4=?,Thup5=?,Thup6=?,Thup7=?,Thup8=?,Frip1=?,Frip2=?,Frip3=?,Frip4=?,Frip5=?,Frip6=?,Frip7=?,Frip8=?,Satp1=?,Satp2=?,Satp3=?,Satp4=?,Satp5=?,Satp6=?,Satp7=?,Satp8=? WHERE username=? AND password=?");
$sqlt->bind_param("ssssssssssssssssssssssssssssssssssssssssssssssssss", $mp1, $mp2, $mp3, $mp4, $mp5, $mp6, $mp7, $mp8, $tup1, $tup2, $tup3, $tup4, $tup5, $tup6, $tup7, $tup8, $wp1, $wp2, $wp3, $wp4, $wp5, $wp6, $wp7, $wp8, $tp1, $tp2, $tp3, $tp4, $tp5, $tp6, $tp7, $tp8, $fp1, $fp2, $fp3, $fp4, $fp5, $fp6, $fp7, $fp8, $sp1, $sp2, $sp3, $sp4, $sp5, $sp6, $sp7, $sp8, $us, $ps);
if ($sqlt->execute()) {
echo "Records updated successfully";
}
else {
echo "Something Went Wrong , Please Try Again/Later \n";
}
$sqlt->close();
} //alt
} //user if
$conn->close();
} //post
?>