yaptc/index.php

<?php
session_start();
require_once("config.inc.php");
$yaptc_pagename = "Home";
require_once($yaptc_inc . "header.inc.php");
require_once($yaptc_inc . "menu.inc.php");
// Is user logged in?  If not, they shouldn't be here - kill all variables and redirect to login...
if (!isset($_SESSION['user_id']) || !isset($_SESSION['signature']) || !isset($_SESSION['loggedIn']) || $_SESSION['loggedIn'] != true || $_SESSION['signature'] != md5($_SESSION['user_id'] . $_SERVER['HTTP_USER_AGENT']))
{
session_start();
session_unset();
session_destroy();
header ("Refresh:3; url=login.php", true, 303);
echo "<h2 class=\"content-subhead\">You are not logged in!!!</h2>";
}
else
{
//********** BEGIN CONTENT **********//
$userid = $_SESSION['user_id'];

// This is to get the current user status - in or out - and the notes and times associated for use in the form
$result = $sql->prepare("SELECT punches.id as punchid, users.id as user, punches.intime as intime, punches.outtime as outtime, punches.notes as notes FROM punches INNER JOIN users ON punches.userid = users.id WHERE users.id = $userid ORDER BY punches.id DESC LIMIT 1");
$result->execute();
$last = $result->fetchObject();

// Let's build the page - this is the header with current status
echo "<h2 class=\"content-subhead\">Current Status</h2>";
if(!isset($last->user)) {
  echo "<p>You do not appear to have any punches on record.</p>";
  $status = "Out";
  } else {
  if (!empty($last->outtime)) { $status = "Out"; $statustime = $last->outtime; } else { $status = "In"; $statustime = $last->intime; $punchid = $last->punchid; $notes = $last->notes; }
echo "<p>You have been Punched $status since " . date('g:i a \o\n M jS, Y', strtotime($statustime)) . ".</p>";
}
echo "<h2 class=\"content-subhead\">Quick Punch</h2>";

echo "<p>Clicking the button below will immediately enter a new punch for you depending on your current status.  Any notes you enter will be attached to the punch for your administrator to review.</p>";
echo "<form class=\"pure-form pure-form-stacked\" action=\"index.php\" method=\"post\">";
echo "<fieldset>";
if (isset($notes)) { 
echo "<input class=\"pure-input-1\" type=\"text\" name=\"notes\" placeholder=\"Enter notes if needed\" maxlength=\"255\" value=\"$notes\">";
} else {
echo "<input class=\"pure-input-1\" type=\"text\" name=\"notes\" placeholder=\"Enter notes if needed\" maxlength=\"255\">";
}
echo "<div class=\"pure-controls\">";
if ($status=="In") {
echo "<button type=\"submit\" class=\"pure-button button-xlarge button-success pure-button-disabled\">Punch IN</button>";
echo "<button type=\"submit\" class=\"pure-button button-xlarge button-error\">Punch OUT</button>";
  } else {
echo "<button type=\"submit\" class=\"pure-button button-xlarge button-success\">Punch IN</button>";
echo "<button type=\"submit\" class=\"pure-button button-xlarge button-error pure-button-disabled\">Punch OUT</button>";
}
echo "</div>";

// If the posted variables are not empty, we must be trying to insert a new punch.  Use the form values to insert new record
if (!empty($_POST)) {

// Is the notes field set? If so, use, otherwise set to null
if (isset($_POST['notes'])) { if (!empty($_POST['notes'])) { $p_notes = $_POST['notes']; } else { $p_notes = NULL; } } else { $p_notes = NULL; }

// Is the user currently punched in?  If so, insert the punch out record, otherwise, insert a new punch in
if ($status=="In") {
  $query = "UPDATE punches SET outtime = NOW(), notes = :p_notes WHERE id = :p_punchid";
  $stmt = $sql->prepare($query);
  $stmt->execute(array(
    ':p_punchid'    => $punchid,
    ':p_notes'    => $p_notes,
    ));
  } else {
  $query = "INSERT INTO punches (userid, notes, intime) VALUES (:p_userid, :p_notes, NOW())";
  $stmt = $sql->prepare($query);
  $stmt->execute(array(
    ':p_userid' => $_SESSION['user_id'],
    ':p_notes'    => $p_notes,
    ));
  }

// And then send user back to this page to see the updates
header('Location: '.$_SERVER['PHP_SELF']);
}

// Close out the form...
echo "</fieldset>";
echo "</form>";


//********** END CONTENT **********//
}
require_once($yaptc_inc . "footer.inc.php");
?>
Updated to include pure, major major major overhaul 2015-02-11 23:52:11 -05:00			`<?php`
			`session_start();`
			`require_once("config.inc.php");`
			`$yaptc_pagename = "Home";`
			`require_once($yaptc_inc . "header.inc.php");`
			`require_once($yaptc_inc . "menu.inc.php");`
			`// Is user logged in? If not, they shouldn't be here - kill all variables and redirect to login...`
			`if (!isset($_SESSION['user_id']) \|\| !isset($_SESSION['signature']) \|\| !isset($_SESSION['loggedIn']) \|\| $_SESSION['loggedIn'] != true \|\| $_SESSION['signature'] != md5($_SESSION['user_id'] . $_SERVER['HTTP_USER_AGENT']))`
			`{`
			`session_start();`
			`session_unset();`
			`session_destroy();`
			`header ("Refresh:3; url=login.php", true, 303);`
			`echo "<h2 class=\"content-subhead\">You are not logged in!!!</h2>";`
			`}`
			`else`
			`{`
more major overhaul, restructured db calls, etc 2015-02-12 15:23:08 -05:00			`//******** BEGIN CONTENT ********//`
Updated to include pure, major major major overhaul 2015-02-11 23:52:11 -05:00			`$userid = $_SESSION['user_id'];`
optimization, begin refactor, basic reports 2015-02-18 05:13:53 -05:00
			`// This is to get the current user status - in or out - and the notes and times associated for use in the form`
more major overhaul, restructured db calls, etc 2015-02-12 15:23:08 -05:00			`$result = $sql->prepare("SELECT punches.id as punchid, users.id as user, punches.intime as intime, punches.outtime as outtime, punches.notes as notes FROM punches INNER JOIN users ON punches.userid = users.id WHERE users.id = $userid ORDER BY punches.id DESC LIMIT 1");`
Updated to include pure, major major major overhaul 2015-02-11 23:52:11 -05:00			`$result->execute();`
			`$last = $result->fetchObject();`
optimization, begin refactor, basic reports 2015-02-18 05:13:53 -05:00
			`// Let's build the page - this is the header with current status`
Updated to include pure, major major major overhaul 2015-02-11 23:52:11 -05:00			`echo "<h2 class=\"content-subhead\">Current Status</h2>";`
optimization, begin refactor, basic reports 2015-02-18 05:13:53 -05:00			`if(!isset($last->user)) {`
			`echo "<p>You do not appear to have any punches on record.</p>";`
			`$status = "Out";`
			`} else {`
			`if (!empty($last->outtime)) { $status = "Out"; $statustime = $last->outtime; } else { $status = "In"; $statustime = $last->intime; $punchid = $last->punchid; $notes = $last->notes; }`
more major overhaul, restructured db calls, etc 2015-02-12 15:23:08 -05:00			`echo "<p>You have been Punched $status since " . date('g:i a \o\n M jS, Y', strtotime($statustime)) . ".</p>";`
			`}`
Updated to include pure, major major major overhaul 2015-02-11 23:52:11 -05:00			`echo "<h2 class=\"content-subhead\">Quick Punch</h2>";`
optimization, begin refactor, basic reports 2015-02-18 05:13:53 -05:00
Updated to include pure, major major major overhaul 2015-02-11 23:52:11 -05:00			`echo "<p>Clicking the button below will immediately enter a new punch for you depending on your current status. Any notes you enter will be attached to the punch for your administrator to review.</p>";`
more major overhaul, restructured db calls, etc 2015-02-12 15:23:08 -05:00			`echo "<form class=\"pure-form pure-form-stacked\" action=\"index.php\" method=\"post\">";`
Updated to include pure, major major major overhaul 2015-02-11 23:52:11 -05:00			`echo "<fieldset>";`
optimization, begin refactor, basic reports 2015-02-18 05:13:53 -05:00			`if (isset($notes)) {`
more major overhaul, restructured db calls, etc 2015-02-12 15:23:08 -05:00			`echo "<input class=\"pure-input-1\" type=\"text\" name=\"notes\" placeholder=\"Enter notes if needed\" maxlength=\"255\" value=\"$notes\">";`
optimization, begin refactor, basic reports 2015-02-18 05:13:53 -05:00			`} else {`
			`echo "<input class=\"pure-input-1\" type=\"text\" name=\"notes\" placeholder=\"Enter notes if needed\" maxlength=\"255\">";`
			`}`
Updated to include pure, major major major overhaul 2015-02-11 23:52:11 -05:00			`echo "<div class=\"pure-controls\">";`
more major overhaul, restructured db calls, etc 2015-02-12 15:23:08 -05:00			`if ($status=="In") {`
			`echo "<button type=\"submit\" class=\"pure-button button-xlarge button-success pure-button-disabled\">Punch IN</button>";`
			`echo "<button type=\"submit\" class=\"pure-button button-xlarge button-error\">Punch OUT</button>";`
Updated to include pure, major major major overhaul 2015-02-11 23:52:11 -05:00			`} else {`
			`echo "<button type=\"submit\" class=\"pure-button button-xlarge button-success\">Punch IN</button>";`
more major overhaul, restructured db calls, etc 2015-02-12 15:23:08 -05:00			`echo "<button type=\"submit\" class=\"pure-button button-xlarge button-error pure-button-disabled\">Punch OUT</button>";`
Updated to include pure, major major major overhaul 2015-02-11 23:52:11 -05:00			`}`
			`echo "</div>";`

optimization, begin refactor, basic reports 2015-02-18 05:13:53 -05:00			`// If the posted variables are not empty, we must be trying to insert a new punch. Use the form values to insert new record`
			`if (!empty($_POST)) {`

			`// Is the notes field set? If so, use, otherwise set to null`
			`if (isset($_POST['notes'])) { if (!empty($_POST['notes'])) { $p_notes = $_POST['notes']; } else { $p_notes = NULL; } } else { $p_notes = NULL; }`

			`// Is the user currently punched in? If so, insert the punch out record, otherwise, insert a new punch in`
more major overhaul, restructured db calls, etc 2015-02-12 15:23:08 -05:00			`if ($status=="In") {`
optimization, begin refactor, basic reports 2015-02-18 05:13:53 -05:00			`$query = "UPDATE punches SET outtime = NOW(), notes = :p_notes WHERE id = :p_punchid";`
			`$stmt = $sql->prepare($query);`
			`$stmt->execute(array(`
			`':p_punchid' => $punchid,`
			`':p_notes' => $p_notes,`
more major overhaul, restructured db calls, etc 2015-02-12 15:23:08 -05:00			`));`
			`} else {`
optimization, begin refactor, basic reports 2015-02-18 05:13:53 -05:00			`$query = "INSERT INTO punches (userid, notes, intime) VALUES (:p_userid, :p_notes, NOW())";`
			`$stmt = $sql->prepare($query);`
			`$stmt->execute(array(`
			`':p_userid' => $_SESSION['user_id'],`
			`':p_notes' => $p_notes,`
more major overhaul, restructured db calls, etc 2015-02-12 15:23:08 -05:00			`));`
optimization, begin refactor, basic reports 2015-02-18 05:13:53 -05:00			`}`
Updated to include pure, major major major overhaul 2015-02-11 23:52:11 -05:00
optimization, begin refactor, basic reports 2015-02-18 05:13:53 -05:00			`// And then send user back to this page to see the updates`
more major overhaul, restructured db calls, etc 2015-02-12 15:23:08 -05:00			`header('Location: '.$_SERVER['PHP_SELF']);`
			`}`
Updated to include pure, major major major overhaul 2015-02-11 23:52:11 -05:00
optimization, begin refactor, basic reports 2015-02-18 05:13:53 -05:00			`// Close out the form...`
more major overhaul, restructured db calls, etc 2015-02-12 15:23:08 -05:00			`echo "</fieldset>";`
			`echo "</form>";`
Updated to include pure, major major major overhaul 2015-02-11 23:52:11 -05:00

			`//******** END CONTENT ********//`
more major overhaul, restructured db calls, etc 2015-02-12 15:23:08 -05:00			`}`
Updated to include pure, major major major overhaul 2015-02-11 23:52:11 -05:00			`require_once($yaptc_inc . "footer.inc.php");`
			`?>`