From fe4d056591dffefa7d1ec4b7c9b34c97f8c9372c Mon Sep 17 00:00:00 2001
From: Josh North <josh.north@point808.com>
Date: Thu, 19 Feb 2015 10:56:49 -0500
Subject: [PATCH] Fixed up users page a little, still need editing...

---
 config.inc.php.example | 69 ++++++++++++++++++++++++------------------
 1 file changed, 40 insertions(+), 29 deletions(-)

diff --git a/config.inc.php.example b/config.inc.php.example
index d929c7a..69acf09 100755
--- a/config.inc.php.example
+++ b/config.inc.php.example
@@ -1,42 +1,53 @@
 <?php
 //********** PLEASE EDIT THE FOLLOWING **********//
 // Paths and directories must include a trailing slash!!!
-  $yaptc_dirpath = '/usr/share/nginx/html/yaptc/';   // Absolute directory path to the root of this program
-  $yaptc_webpath = 'http://server-ip/yaptc/';        // Absolute URL to the root of this program
-  $yaptc_appname = 'Timecard System';                // Program name to display in title bar
-  $yaptc_company = 'Widgets, Inc.';                  // Your company name
-  $sql = new PDO('mysql:host=localhost;dbname=your_database;', 'your_user', 'your_password');  // Database connection string
-  $adminmessage = '';                                // Message will display on all pages!
+$yaptc_dirpath = '/usr/share/nginx/html/yaptc/'; // Absolute directory path to the root of this program
+$yaptc_webpath = 'http://server-ip/yaptc/'; // Absolute URL to the root of this program
+$yaptc_appname = 'Timecard System'; // Program name to display in title bar
+$yaptc_company = 'Widgets, Inc.'; // Your company name
+$sql           = new PDO('mysql:host=localhost;dbname=your_database;', 'your_user', 'your_password'); // Database connection string
+$adminmessage  = ''; // Message will display on all pages!
 
 
 //********** NO NEED TO EDIT PAST HERE **********//
-  $_SESSION['yaptc_dir'] = $yaptc_dirpath; 
-  $_SESSION['yaptc_url'] = $yaptc_webpath;
-  $yaptc_inc = $yaptc_dirpath . 'includes/';
-  $yaptc_incweb = $yaptc_webpath . 'includes/';
-  $yaptc_lib = $yaptc_dirpath . 'lib/';
-  $yaptc_libweb = $yaptc_webpath . 'lib/';
+$_SESSION['yaptc_dir'] = $yaptc_dirpath;
+$_SESSION['yaptc_url'] = $yaptc_webpath;
+$yaptc_inc             = $yaptc_dirpath . 'includes/';
+$yaptc_incweb          = $yaptc_webpath . 'includes/';
+$yaptc_lib             = $yaptc_dirpath . 'lib/';
+$yaptc_libweb          = $yaptc_webpath . 'lib/';
 
-function getSessionStatus(){
-  if (!isset($_SESSION['user_id']) || !isset($_SESSION['signature']) || !isset($_SESSION['loggedIn']) || $_SESSION['loggedIn'] != true || $_SESSION['signature'] != md5($_SESSION['user_id'] . $_SERVER['HTTP_USER_AGENT']))
-  {
-    return false;
-  } else {
-    return true;
-  }
+// Get login status - returns true or false
+function getSessionStatus()
+{
+    if (!isset($_SESSION['user_id']) || !isset($_SESSION['signature']) || !isset($_SESSION['loggedIn']) || $_SESSION['loggedIn'] != true || $_SESSION['signature'] != md5($_SESSION['user_id'] . $_SERVER['HTTP_USER_AGENT'])) {
+        return false;
+    } else {
+        return true;
+    }
 }
 
-function getSessionAccess($sql){
-  if (isset($_SESSION['user_id']))
-  {
-    $query3 = "SELECT users.id as userid, usertypes.typename AS usertype FROM users, usertypes WHERE users.id = :id";
-    $stmt3 = $sql->prepare($query3);
-    $stmt3->execute(array(':id' => $_SESSION['user_id']));
-    $user3 = $stmt3->fetchObject();
-    return $user3->usertype;
-  }
+// Kick user and go to login
+function killSession()
+{
+    session_unset();
+    session_destroy();
+    session_write_close();
+    header("Location: login.php");
 }
 
-
+// Get user access level.  Call with $sql passed or it will not work correctly
+function getSessionAccess($sql)
+{
+    if (isset($_SESSION['user_id'])) {
+        $query3 = "SELECT users.id as userid, usertypes.typename AS usertype FROM users, usertypes WHERE users.id = :id";
+        $stmt3  = $sql->prepare($query3);
+        $stmt3->execute(array(
+            ':id' => $_SESSION['user_id']
+        ));
+        $user3 = $stmt3->fetchObject();
+        return $user3->usertype;
+    }
+}
 
 ?>