1052 lines
37 KiB
PHP
1052 lines
37 KiB
PHP
<?php
|
|
require '../config/function.php';
|
|
|
|
if(isset($_POST['createstudent']))
|
|
{
|
|
$firstname = validate($_POST['firstname']);
|
|
$lastname = validate($_POST['lastname']);
|
|
$userid = validate($_POST['user-id']);
|
|
$dateofbirth = validate($_POST['dateofbirth']);
|
|
$password = validate($_POST['password']);
|
|
$gender = validate($_POST['gender']);
|
|
$class = validate($_POST['class']);
|
|
$emailstudent = validate($_POST['email-student']);
|
|
$emailparents1 = validate($_POST['email-parents-1']);
|
|
$emailparents2 = validate($_POST['email-parents-2']);
|
|
$status = validate($_POST['status']);
|
|
|
|
|
|
if($firstname != '' || $lastname != '' || $userid != '' || $dateofbirth != '' || $password != '' || $gender != '' || $class != '' || $emailstudent != '' || $emailparents1 != '')
|
|
{
|
|
$query="SELECT userid FROM tbl_students WHERE userid='$userid';";
|
|
$result=mysqli_query($conn,$query);
|
|
|
|
if (mysqli_num_rows($result) > 0)
|
|
{
|
|
|
|
$row = mysqli_fetch_assoc($result);
|
|
if($userid==isset($row['userid']))
|
|
{
|
|
redirect('students-create.php','Diese Benutzer-ID ist bereits vorhanden');
|
|
}
|
|
}
|
|
else
|
|
{
|
|
$query = "INSERT INTO tbl_students (userid,firstname,lastname,dateofbirth,password,gender,emailstudent,emailparent1,emailparent2,class,status) VALUES ('$userid','$firstname','$lastname','$dateofbirth','$password','$gender','$emailstudent','$emailparents1','$emailparents2','$class','$status')";
|
|
$result = mysqli_query($conn, $query);
|
|
|
|
if($result){
|
|
redirect('students.php','Schüler:in erfolgreich hinzugefügt','success');
|
|
} else{
|
|
redirect('students-create.php','Es ist ein Fehler aufgetreten','danger');
|
|
}
|
|
}
|
|
}
|
|
else
|
|
{
|
|
redirect('students-create.php','Bitte füllen Sie alle Felder aus','alert');
|
|
}
|
|
|
|
}
|
|
|
|
if(isset($_POST['updatestudent']))
|
|
{
|
|
$firstname = validate($_POST['firstname']);
|
|
$lastname = validate($_POST['lastname']);
|
|
$dateofbirth = validate($_POST['dateofbirth']);
|
|
$password = validate($_POST['password']);
|
|
$gender = validate($_POST['gender']);
|
|
$class = validate($_POST['class']);
|
|
$emailstudent = validate($_POST['email-student']);
|
|
$emailparents1 = validate($_POST['email-parents-1']);
|
|
$emailparents2 = validate($_POST['email-parents-2']);
|
|
$status = validate($_POST['status']);
|
|
|
|
$id = validate($_POST['id']);
|
|
$student = getById('tbl_students',$id);
|
|
if($student['status' != 200])
|
|
{
|
|
redirect('students-edit.php?id='.$id,'Keine/n Schüler:in mit dieser ID gefunden','danger');
|
|
}
|
|
|
|
if($firstname != '' || $lastname != '' || $userid != '' || $dateofbirth != '' || $password != '' || $gender != '' || $class != '' || $emailstudent != '' || $emailparents1 != '')
|
|
{
|
|
$query = "UPDATE tbl_students SET
|
|
firstname='$firstname',
|
|
lastname='$lastname',
|
|
dateofbirth='$dateofbirth',
|
|
password='$password',
|
|
gender='$gender',
|
|
emailstudent='$emailstudent',
|
|
emailparent1='$emailparents1',
|
|
emailparent2='$emailparents2',
|
|
class='$class',
|
|
status='$status'
|
|
WHERE id='$id' ";
|
|
$result = mysqli_query($conn, $query);
|
|
|
|
if($result)
|
|
{
|
|
redirect('students-edit.php?id='.$id,'Schüler:in erfolgreich bearbeitet','success');
|
|
}
|
|
else
|
|
{
|
|
redirect('students-create.php','Es ist ein Fehler aufgetreten','danger');
|
|
}
|
|
}
|
|
else
|
|
{
|
|
redirect('students-edit.php','Bitte füllen Sie alle Felder aus','alert');
|
|
}
|
|
}
|
|
|
|
if(isset($_POST['createteacher']))
|
|
{
|
|
$firstname = validate($_POST['firstname']);
|
|
$lastname = validate($_POST['lastname']);
|
|
$email = validate($_POST['email']);
|
|
|
|
if($firstname != '' || $lastname != '' || $email != '')
|
|
{
|
|
$query = "INSERT INTO tbl_teachers (firstname,lastname,email) VALUES ('$firstname','$lastname','$email')";
|
|
$result = mysqli_query($conn, $query);
|
|
|
|
if($result){
|
|
redirect('teachers.php','Lehrperson erfolgreich hinzugefügt','success');
|
|
} else{
|
|
redirect('teachers-create.php','Es ist ein Fehler aufgetreten','danger');
|
|
}
|
|
}
|
|
else
|
|
{
|
|
redirect('teachers-create.php','Bitte füllen Sie alle Felder aus','alert');
|
|
}
|
|
|
|
}
|
|
|
|
if(isset($_POST['updateteacher']))
|
|
{
|
|
$firstname = validate($_POST['firstname']);
|
|
$lastname = validate($_POST['lastname']);
|
|
$email = validate($_POST['email']);
|
|
|
|
$id = validate($_POST['id']);
|
|
$teacher = getById('tbl_teachers',$id);
|
|
if($teacher['status' != 200])
|
|
{
|
|
redirect('teachers-edit.php?id='.$id,'Keinen User mit dieser ID gefunden','danger');
|
|
}
|
|
|
|
if($firstname != '' || $lastname != '' || $email != '')
|
|
{
|
|
$query = "UPDATE tbl_teachers SET
|
|
firstname='$firstname',
|
|
lastname='$lastname',
|
|
email='$email'
|
|
WHERE id='$id'";
|
|
$result = mysqli_query($conn, $query);
|
|
|
|
if($result)
|
|
{
|
|
redirect('teachers-edit.php?id='.$id,'Lehrperson erfolgreich bearbeitet','success');
|
|
}
|
|
else
|
|
{
|
|
redirect('teachers-create.php','Es ist ein Fehler aufgetreten','danger');
|
|
}
|
|
}
|
|
else
|
|
{
|
|
redirect('teachers-edit.php','Bitte füllen Sie alle Felder aus','alert');
|
|
}
|
|
}
|
|
|
|
if(isset($_POST['createadmin']))
|
|
{
|
|
$firstname = validate($_POST['firstname']);
|
|
$lastname = validate($_POST['lastname']);
|
|
$userid = validate($_POST['user-id']);
|
|
$password = validate($_POST['password']);
|
|
$status = validate($_POST['status']);
|
|
|
|
if($firstname != '' || $lastname != '' || $userid != '' || $password != '' || $status != '')
|
|
{
|
|
$query="SELECT userid FROM tbl_admins WHERE userid='$userid';";
|
|
$result=mysqli_query($conn,$query);
|
|
|
|
if (mysqli_num_rows($result) > 0)
|
|
{
|
|
|
|
$row = mysqli_fetch_assoc($result);
|
|
if($userid==isset($row['userid']))
|
|
{
|
|
redirect('admins-create.php','Diese Benutzer-ID ist bereits vorhanden','danger');
|
|
}
|
|
}
|
|
else
|
|
{
|
|
$query = "INSERT INTO tbl_admins (userid,firstname,lastname,password,status) VALUES ('$userid','$firstname','$lastname','$password','$status')";
|
|
$result = mysqli_query($conn, $query);
|
|
|
|
if($result){
|
|
redirect('admins.php','Administrator erfolgreich hinzugefügt','success');
|
|
} else{
|
|
redirect('admins-create.php','Es ist ein Fehler aufgetreten','danger');
|
|
}
|
|
}
|
|
}
|
|
else
|
|
{
|
|
redirect('admins-create.php','Bitte füllen Sie alle Felder aus','alert');
|
|
}
|
|
|
|
}
|
|
|
|
if(isset($_POST['updateadmin']))
|
|
{
|
|
$firstname = validate($_POST['firstname']);
|
|
$lastname = validate($_POST['lastname']);
|
|
$userid = validate($_POST['user-id']);
|
|
$password = validate($_POST['password']);
|
|
$status = validate($_POST['status']);
|
|
|
|
$id = validate($_POST['id']);
|
|
$admin = getById('tbl_admins',$id);
|
|
if($admin['status' != 200])
|
|
{
|
|
redirect('admins-edit.php?id='.$id,'Keinen Administrator mit dieser ID gefunden','danger');
|
|
}
|
|
|
|
if($firstname != '' || $lastname != '' || $userid != '' || $password != '' || $status != '')
|
|
{
|
|
$query = "UPDATE tbl_admins SET
|
|
userid='$userid',
|
|
firstname='$firstname',
|
|
lastname='$lastname',
|
|
password='$password',
|
|
status='$status'
|
|
WHERE id='$id' ";
|
|
$result = mysqli_query($conn, $query);
|
|
|
|
if($result)
|
|
{
|
|
redirect('admins-edit.php?id='.$id,'Administrator erfolgreich bearbeitet','success');
|
|
}
|
|
else
|
|
{
|
|
redirect('admins-create.php','Es ist ein Fehler aufgetreten','danger');
|
|
}
|
|
}
|
|
else
|
|
{
|
|
redirect('admins-edit.php','Bitte füllen Sie alle Felder aus','alert');
|
|
}
|
|
}
|
|
|
|
if(isset($_POST['createclass']))
|
|
{
|
|
$sek = validate($_POST['sek']);
|
|
$type = validate($_POST['type']);
|
|
$name = validate($_POST['name']);
|
|
$status = 'active';
|
|
|
|
|
|
if($sek != '' || $type != '' || $name != '' || $status != '' )
|
|
{
|
|
|
|
$query = "INSERT INTO tbl_classes (name,sek,type,status) VALUES ('$name','$sek','$type','$status')";
|
|
$result = mysqli_query($conn, $query);
|
|
|
|
if($result){
|
|
redirect('classes.php','Klasse erfolgreich hinzugefügt','success');
|
|
} else{
|
|
redirect('classes-create.php','Es ist ein Fehler aufgetreten','danger');
|
|
}
|
|
|
|
}
|
|
else
|
|
{
|
|
redirect('classes-create.php','Bitte füllen Sie alle Felder aus','alert');
|
|
}
|
|
|
|
}
|
|
|
|
if(isset($_POST['updateclass']))
|
|
{
|
|
$sek = validate($_POST['sek']);
|
|
$type = validate($_POST['type']);
|
|
$name = validate($_POST['name']);
|
|
|
|
$id = validate($_POST['id']);
|
|
$class = getById('tbl_classes',$id);
|
|
if($class['status' != 200])
|
|
{
|
|
redirect('classes-edit.php?id='.$id,'Keine Klasse mit dieser ID gefunden','danger');
|
|
}
|
|
|
|
if($sek != '' || $type != '' || $name != '')
|
|
{
|
|
$query = "UPDATE tbl_classes SET
|
|
sek='$sek',
|
|
type='$type',
|
|
name='$name'
|
|
WHERE id='$id' ";
|
|
$result = mysqli_query($conn, $query);
|
|
|
|
if($result)
|
|
{
|
|
redirect('classes-edit.php?id='.$id,'Klasse erfolgreich bearbeitet','success');
|
|
}
|
|
else
|
|
{
|
|
redirect('classes-edit.php','Es ist ein Fehler aufgetreten','danger');
|
|
}
|
|
}
|
|
else
|
|
{
|
|
redirect('classes-edit.php','Bitte füllen Sie alle Felder aus','alert');
|
|
}
|
|
}
|
|
|
|
if(isset($_POST['createcategory']))
|
|
{
|
|
$name = validate($_POST['name']);
|
|
|
|
if($name != '' )
|
|
{
|
|
|
|
$query = "INSERT INTO tbl_categories (name) VALUES ('$name')";
|
|
$result = mysqli_query($conn, $query);
|
|
|
|
if($result){
|
|
$ID = mysqli_insert_id($conn);
|
|
header("Location: categories-edit.php?id=$ID");
|
|
} else{
|
|
redirect('categories-create.php','Es ist ein Fehler aufgetreten','danger');
|
|
}
|
|
|
|
}
|
|
else
|
|
{
|
|
redirect('categories-create.php','Bitte füllen Sie alle Felder aus','alert');
|
|
}
|
|
|
|
}
|
|
|
|
if(isset($_POST['createform']))
|
|
{
|
|
$name = validate($_POST['name']);
|
|
|
|
if($name != '' )
|
|
{
|
|
|
|
$query = "INSERT INTO tbl_forms (name) VALUES ('$name')";
|
|
$result = mysqli_query($conn, $query);
|
|
|
|
if($result){
|
|
$ID = mysqli_insert_id($conn);
|
|
header("Location: forms-edit.php?id=$ID");
|
|
} else{
|
|
redirect('forms-create.php','Es ist ein Fehler aufgetreten','danger');
|
|
}
|
|
|
|
}
|
|
else
|
|
{
|
|
redirect('forms-create.php','Bitte füllen Sie alle Felder aus','alert');
|
|
}
|
|
|
|
}
|
|
|
|
|
|
if(isset($_POST['updatecategory']))
|
|
{
|
|
$name = validate($_POST['name']);
|
|
$deadline = validate($_POST['deadline']);
|
|
$min_courses = validate($_POST['min_courses']);
|
|
$max_courses = validate($_POST['max_courses']);
|
|
$maxassign_courses = validate($_POST['maxassign_courses']);
|
|
$showuntil = validate($_POST['showuntil']);
|
|
|
|
$registration = isset($_POST['regbtnradio']) ? $_POST['regbtnradio'] : '';
|
|
switch($registration){
|
|
case 'registrationyes': $registration = 'yes';
|
|
break;
|
|
case 'registrationno': $registration = 'no';
|
|
break;
|
|
case 'registrationcustom': $registration = 'custom';
|
|
break;
|
|
}
|
|
$confirmation= isset($_POST['confbtnradio']) ? $_POST['confbtnradio'] : '';
|
|
switch($confirmation){
|
|
case 'confirmationyes': $confirmation = 'yes';
|
|
break;
|
|
case 'confirmationno': $confirmation = 'no';
|
|
break;
|
|
case 'confirmationcustom': $confirmation = 'custom';
|
|
break;
|
|
}
|
|
$type= isset($_POST['typebtnradio']) ? $_POST['typebtnradio'] : '';
|
|
switch($type){
|
|
case 'typeyear': $type = 'year';
|
|
break;
|
|
case 'typesemester': $type = 'semester';
|
|
break;
|
|
}
|
|
$priority= isset($_POST['priobtnradio']) ? $_POST['priobtnradio'] : '';
|
|
switch($priority){
|
|
case 'prioyes': $priority = 'yes';
|
|
break;
|
|
case 'priono': $priority = 'no';
|
|
break;
|
|
}
|
|
$showuntil_set= isset($_POST['datebtnradio']) ? $_POST['datebtnradio'] : '';
|
|
switch($showuntil_set){
|
|
case 'showdateyes': $showuntil_set = 'yes';
|
|
break;
|
|
case 'showdatecustom': $showuntil_set = 'custom';
|
|
break;
|
|
}
|
|
$deadline_set= isset($_POST['deadlbtnradio']) ? $_POST['deadlbtnradio'] : '';
|
|
switch($deadline_set){
|
|
case 'showdeadlineyes': $deadline_set = 'yes';
|
|
break;
|
|
case 'showdeadlinecustom': $deadline_set = 'custom';
|
|
break;
|
|
}
|
|
$selectedClasses = isset($_POST['selected_classes']) ? $_POST['selected_classes'] : array();
|
|
$id = validate($_POST['id']);
|
|
$category = getById('tbl_categories',$id);
|
|
if($category['status' != 200])
|
|
{
|
|
redirect('category-edit.php?id='.$id,'Keine Kategorie mit dieser ID gefunden','danger');
|
|
}
|
|
|
|
$deleteQuery = "DELETE FROM tbl_assign_categories_classes WHERE category_id = '$id'";
|
|
mysqli_query($conn, $deleteQuery);
|
|
|
|
foreach ($selectedClasses as $classId) {
|
|
$insertQuery = "INSERT INTO tbl_assign_categories_classes (category_id, class_id) VALUES ('$id', '$classId')";
|
|
mysqli_query($conn, $insertQuery);
|
|
}
|
|
|
|
|
|
if($name != '' || $registration != '')
|
|
{
|
|
$query = "UPDATE tbl_categories SET
|
|
name='$name',
|
|
registration='$registration',
|
|
confirmation='$confirmation',
|
|
type='$type',
|
|
set_priority='$priority',
|
|
deadline='$deadline',
|
|
min_courses='$min_courses',
|
|
max_courses='$max_courses',
|
|
maxassign_courses='$maxassign_courses',
|
|
showuntil='$showuntil',
|
|
deadline_set='$deadline_set',
|
|
showuntil_set='$showuntil_set'
|
|
WHERE id='$id'";
|
|
$result = mysqli_query($conn, $query);
|
|
|
|
if($result)
|
|
{
|
|
redirect('categories-edit.php?id='.$id,'Kategorie erfolgreich bearbeitet','success');
|
|
}
|
|
else
|
|
{
|
|
redirect('categories-edit.php','Es ist ein Fehler aufgetreten','danger');
|
|
}
|
|
}
|
|
else
|
|
{
|
|
redirect('categories-edit.php','Bitte füllen Sie alle Felder aus','alert');
|
|
}
|
|
}
|
|
|
|
|
|
if(isset($_POST['updateform'])) {
|
|
$name = validate($_POST['name']);
|
|
$deadline = validate($_POST['deadline']);
|
|
|
|
// Lektionen für jede Klasse
|
|
$lessonNumbers = isset($_POST['lesson_numbers']) ? $_POST['lesson_numbers'] : array();
|
|
|
|
$selectedClasses = isset($_POST['selected_classes']) ? $_POST['selected_classes'] : array();
|
|
$id = validate($_POST['id']);
|
|
$form = getById('tbl_forms',$id);
|
|
|
|
if($form['status' != 200]) {
|
|
redirect('forms-edit.php?id='.$id,'Kein Formular mit dieser ID gefunden','danger');
|
|
}
|
|
|
|
// Vorhandene Zuweisungen für das Formular löschen
|
|
$deleteQuery = "DELETE FROM tbl_assign_forms_classes WHERE form_id = '$id'";
|
|
mysqli_query($conn, $deleteQuery);
|
|
|
|
// Neue Zuweisungen für jede Klasse eintragen
|
|
foreach ($_POST['selected_classes'] as $classId) {
|
|
$lessonNumber = isset($_POST['lesson_number_' . $classId]) ? validate($_POST['lesson_number_' . $classId]) : NULL;
|
|
|
|
// SQL-Abfrage für das Einfügen der Zuweisungen mit Lektionsnummer
|
|
$insertQuery = "INSERT INTO tbl_assign_forms_classes (form_id, class_id) VALUES ('$id', '$classId')";
|
|
mysqli_query($conn, $insertQuery);
|
|
}
|
|
|
|
// Das Formular aktualisieren, falls Name und Deadline vorhanden sind
|
|
if($name != '' || $deadline != '') {
|
|
$query = "UPDATE tbl_forms SET
|
|
name='$name',
|
|
deadline='$deadline'
|
|
WHERE id='$id'";
|
|
$result = mysqli_query($conn, $query);
|
|
|
|
if($result) {
|
|
redirect('forms-edit.php?id='.$id,'Formular erfolgreich bearbeitet','success');
|
|
} else {
|
|
redirect('forms-edit.php?id='.$id,'Es ist ein Fehler aufgetreten','danger');
|
|
}
|
|
} else {
|
|
redirect('forms-edit.php?id='.$id,'Bitte füllen Sie alle Felder aus','alert');
|
|
}
|
|
}
|
|
|
|
|
|
|
|
if(isset($_POST['createcourse']))
|
|
{
|
|
$category = validate($_POST['category_id']);
|
|
$name = validate($_POST['name']);
|
|
$description = $_POST['description'];
|
|
$slogan = validate($_POST['slogan']);
|
|
$place = validate($_POST['place']);
|
|
$days = $_POST['days'];
|
|
$start_times = $_POST['start_times'];
|
|
$end_times = $_POST['end_times'];
|
|
|
|
$registration= isset($_POST['regbtnradio']) ? $_POST['regbtnradio'] : '';
|
|
switch($registration){
|
|
case 'registrationyes': $registration = 'yes';
|
|
break;
|
|
case 'registrationno': $registration = 'no';
|
|
break;
|
|
}
|
|
$confirmation= isset($_POST['confbtnradio']) ? $_POST['confbtnradio'] : '';
|
|
switch($confirmation){
|
|
case 'confirmationyes': $confirmation = 'yes';
|
|
break;
|
|
case 'confirmationno': $confirmation = 'no';
|
|
break;
|
|
}
|
|
$maxbehavior= isset($_POST['maxbtnradio']) ? $_POST['maxbtnradio'] : '';
|
|
switch($maxbehavior){
|
|
case 'hidecourse': $maxbehavior = 'hide';
|
|
break;
|
|
case 'showcourse': $maxbehavior = 'show';
|
|
break;
|
|
}
|
|
if(array_key_exists('showuntil', $_POST)) {
|
|
$showuntil = $_POST['showuntil'];
|
|
}else{
|
|
$showuntil = "";
|
|
}
|
|
if(array_key_exists('deadline', $_POST)) {
|
|
$deadline = $_POST['deadline'];
|
|
}else{
|
|
$deadline = "";
|
|
}
|
|
if(array_key_exists('minstudentyear', $_POST)) {
|
|
$minstudentyear = $_POST['minstudentyear'];
|
|
}else{
|
|
$minstudentyear = "";
|
|
}
|
|
if(array_key_exists('maxstudentyear', $_POST)) {
|
|
$maxstudentyear = $_POST['maxstudentyear'];
|
|
}else{
|
|
$maxstudentyear = "";
|
|
}
|
|
if(array_key_exists('minstudent1sem', $_POST)) {
|
|
$minstudent1sem = $_POST['minstudent1sem'];
|
|
}else{
|
|
$minstudent1sem = "";
|
|
}
|
|
if(array_key_exists('minstudent2sem', $_POST)) {
|
|
$minstudent2sem = $_POST['minstudent2sem'];
|
|
}else{
|
|
$minstudent2sem = "";
|
|
}
|
|
if(array_key_exists('maxstudent1sem', $_POST)) {
|
|
$maxstudent1sem = $_POST['maxstudent1sem'];
|
|
}else{
|
|
$maxstudent1sem = "";
|
|
}
|
|
if(array_key_exists('maxstudent2sem', $_POST)) {
|
|
$maxstudent2sem = $_POST['maxstudent2sem'];
|
|
}else{
|
|
$maxstudent2sem = "";
|
|
}
|
|
if(array_key_exists('teacheryear', $_POST)) {
|
|
$teacheryear = $_POST['teacheryear'];
|
|
}else{
|
|
$teacheryear = "";
|
|
}
|
|
if(array_key_exists('teacher1sem', $_POST)) {
|
|
$teacher1sem = $_POST['teacher1sem'];
|
|
}else{
|
|
$teacher1sem = "";
|
|
}
|
|
if(array_key_exists('teacher2sem', $_POST)) {
|
|
$teacher2sem = $_POST['teacher2sem'];
|
|
}else{
|
|
$teacher2sem = "";
|
|
}
|
|
|
|
if($name != '' || $place != '')
|
|
{
|
|
if (isset($_FILES['courseImage']) && $_FILES['courseImage']['error'] === UPLOAD_ERR_OK) {
|
|
$uploadDirectory = "../assets/images/courses/";
|
|
$randomFileName = uniqid() . '_' . basename($_FILES['courseImage']['name']);
|
|
|
|
$uploadFilePath = $uploadDirectory . $randomFileName;
|
|
|
|
if (move_uploaded_file($_FILES['courseImage']['tmp_name'], $uploadFilePath)) {
|
|
$imagePath = '../assets/images/courses/' . $randomFileName;
|
|
} else {
|
|
$imagePath = '../assets/images/backgrounds/course.png'; // Standardbild-Pfad
|
|
}
|
|
} else {
|
|
$imagePath = '../assets/images/backgrounds/course.png'; // Standardbild-Pfad
|
|
}
|
|
|
|
|
|
$query = "INSERT INTO tbl_courses
|
|
(name,slogan,description,image,category_id,show_until,deadline,place,teacherid_year,teacherid_1sem,teacherid_2sem,minstudents_year,maxstudents_year,minstudents_1sem,maxstudents_1sem,minstudents_2sem,maxstudents_2sem,registration,confirmation,max_behavior)
|
|
VALUES ('$name','$slogan','$description','$imagePath','$category',NULLIF('$showuntil',''),NULLIF('$deadline',''),'$place',NULLIF('$teacheryear',''),NULLIF('$teacher1sem',''),NULLIF('$teacher2sem',''),NULLIF('$minstudentyear',''),NULLIF('$maxstudentyear',''),NULLIF('$minstudent1sem',''),NULLIF('$maxstudent1sem',''),NULLIF('$minstudent2sem',''),NULLIF('$maxstudent2sem',''),'$registration','$confirmation','$maxbehavior')";
|
|
$result = mysqli_query($conn, $query);
|
|
|
|
if($result){
|
|
$courseID = mysqli_insert_id($conn);
|
|
$selectedClasses = isset($_POST['selected_classes']) ? $_POST['selected_classes'] : array();
|
|
if(!empty($selectedClasses)){
|
|
foreach ($selectedClasses as $classId) {
|
|
$insertQuery = "INSERT INTO tbl_assign_courses_classes (course_id, class_id) VALUES ('$courseID', '$classId')";
|
|
$classresult = mysqli_query($conn, $insertQuery);
|
|
}
|
|
}
|
|
else{
|
|
$classresult = "Keine Klassen ausgewählt";
|
|
}
|
|
|
|
if (!empty($days) && !empty($start_times) && !empty($end_times)) {
|
|
for ($i = 0; $i < count($days); $i++) {
|
|
$day = $days[$i];
|
|
$start_time = $start_times[$i];
|
|
$end_time = $end_times[$i];
|
|
|
|
// SQL-Abfrage zum Einfügen der Daten
|
|
$datequery = "INSERT INTO tbl_coursedates (course_id, day, start_time, end_time) VALUES ('$courseID','$day', '$start_time', '$end_time')";
|
|
$dateresult = mysqli_query($conn, $datequery);
|
|
}
|
|
}
|
|
else{
|
|
$dateresult = "Keine Daten ausgewählt";
|
|
}
|
|
|
|
if(($result && $classresult && $dateresult)){
|
|
redirect('courses-edit.php?id=' . $courseID,'Kurs wurde erfolgreich erstellt','success');
|
|
}
|
|
else{
|
|
redirect('courses-create.php?cat_id=' . $category,'Es ist ein Fehler aufgetreten','danger');
|
|
}
|
|
} else{
|
|
redirect('courses-create.php?cat_id=' . $category,'Es ist ein Fehler aufgetreten','danger');
|
|
}
|
|
|
|
}
|
|
else
|
|
{
|
|
redirect('courses-create.php?cat_id=' . $category,'Bitte füllen Sie alle Felder aus','alert');
|
|
}
|
|
|
|
}
|
|
|
|
if(isset($_POST['createformcontent']))
|
|
{
|
|
$form = validate($_POST['form_id']);
|
|
$name = validate($_POST['name']);
|
|
$min = $_POST['min'];
|
|
$max = $_POST['max'];
|
|
|
|
if($name != '')
|
|
{
|
|
|
|
$query = "INSERT INTO tbl_formcontents
|
|
(name,form_id,min,max)
|
|
VALUES ('$name','$form','$min','$maxs')";
|
|
$result = mysqli_query($conn, $query);
|
|
|
|
if($result){
|
|
$formcontentID = mysqli_insert_id($conn);
|
|
$selectedClasses = isset($_POST['selected_classes']) ? $_POST['selected_classes'] : array();
|
|
if(!empty($selectedClasses)){
|
|
foreach ($selectedClasses as $classId) {
|
|
$insertQuery = "INSERT INTO tbl_assign_formcontents_classes (formcontent_id, class_id) VALUES ('$formcontentID', '$classId')";
|
|
$classresult = mysqli_query($conn, $insertQuery);
|
|
}
|
|
}
|
|
else{
|
|
$classresult = "Keine Klassen ausgewählt";
|
|
}
|
|
|
|
|
|
if(($result && $classresult)){
|
|
redirect('formscontents-edit.php?id=' . $formcontentID,'Formularabschnitt wurde erfolgreich erstellt','success');
|
|
}
|
|
else{
|
|
redirect('formscontents-create.php?form_id=' . $form,'Es ist ein Fehler aufgetreten','danger');
|
|
}
|
|
} else{
|
|
redirect('formscontents-create.php?form_id=' . $form,'Es ist ein Fehler aufgetreten','danger');
|
|
}
|
|
|
|
}
|
|
else
|
|
{
|
|
redirect('formscontents-create.php?form_id=' . $form,'Bitte füllen Sie alle Felder aus','alert');
|
|
}
|
|
|
|
}
|
|
|
|
if(isset($_POST['createformcourse']))
|
|
{
|
|
$formcontent = validate($_POST['formcontent_id']);
|
|
$name = validate($_POST['name']);
|
|
$lessons = $_POST['lessons'];
|
|
|
|
if($name != '' && $lessons != '')
|
|
{
|
|
|
|
$query = "INSERT INTO tbl_formcourses
|
|
(name,lessons,formcontent_id)
|
|
VALUES ('$name','$lessons','$formcontent')";
|
|
$result = mysqli_query($conn, $query);
|
|
|
|
if($result){
|
|
$formcourseID = mysqli_insert_id($conn);
|
|
$selectedClasses = isset($_POST['selected_classes']) ? $_POST['selected_classes'] : array();
|
|
if(!empty($selectedClasses)){
|
|
foreach ($selectedClasses as $classId) {
|
|
$insertQuery = "INSERT INTO tbl_assign_formcourses_classes (formcourses_id, class_id) VALUES ('$formcourseID', '$classId')";
|
|
$classresult = mysqli_query($conn, $insertQuery);
|
|
}
|
|
}
|
|
else{
|
|
$classresult = "Keine Klassen ausgewählt";
|
|
}
|
|
|
|
|
|
if(($result && $classresult)){
|
|
redirect('formscontents-edit.php?id=' . $formcontent,'Kurs wurde erfolgreich erstellt','success');
|
|
}
|
|
else{
|
|
redirect('formscontents-edit.php?id=' . $formcontent,'Es ist ein Fehler aufgetreten','danger');
|
|
}
|
|
} else{
|
|
redirect('formscontents-edit.php?id=' . $formcontent,'Es ist ein Fehler aufgetreten','danger');
|
|
}
|
|
|
|
}
|
|
else
|
|
{
|
|
redirect('formscontents-edit.php?id=' . $formcontent,'Bitte füllen Sie alle Felder aus','alert');
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if (isset($_POST['updatecourse'])) {
|
|
$name = validate($_POST['name']);
|
|
$description = $_POST['description'];
|
|
$slogan = validate($_POST['slogan']);
|
|
$place = validate($_POST['place']);
|
|
$days = $_POST['days'];
|
|
$start_times = $_POST['start_times'];
|
|
$end_times = $_POST['end_times'];
|
|
|
|
$registration = isset($_POST['regbtnradio']) ? $_POST['regbtnradio'] : '';
|
|
switch ($registration) {
|
|
case 'registrationyes':
|
|
$registration = 'yes';
|
|
break;
|
|
case 'registrationno':
|
|
$registration = 'no';
|
|
break;
|
|
}
|
|
|
|
$confirmation = isset($_POST['confbtnradio']) ? $_POST['confbtnradio'] : '';
|
|
switch ($confirmation) {
|
|
case 'confirmationyes':
|
|
$confirmation = 'yes';
|
|
break;
|
|
case 'confirmationno':
|
|
$confirmation = 'no';
|
|
break;
|
|
}
|
|
|
|
$maxbehavior = isset($_POST['maxbtnradio']) ? $_POST['maxbtnradio'] : '';
|
|
switch ($maxbehavior) {
|
|
case 'hidecourse':
|
|
$maxbehavior = 'hide';
|
|
break;
|
|
case 'showcourse':
|
|
$maxbehavior = 'show';
|
|
break;
|
|
}
|
|
|
|
$showuntil = array_key_exists('showuntil', $_POST) ? $_POST['showuntil'] : '';
|
|
$deadline = array_key_exists('deadline', $_POST) ? $_POST['deadline'] : '';
|
|
$minstudentyear = array_key_exists('minstudentyear', $_POST) ? $_POST['minstudentyear'] : '';
|
|
$maxstudentyear = array_key_exists('maxstudentyear', $_POST) ? $_POST['maxstudentyear'] : '';
|
|
$minstudent1sem = array_key_exists('minstudent1sem', $_POST) ? $_POST['minstudent1sem'] : '';
|
|
$maxstudent1sem = array_key_exists('maxstudent1sem', $_POST) ? $_POST['maxstudent1sem'] : '';
|
|
$minstudent2sem = array_key_exists('minstudent2sem', $_POST) ? $_POST['minstudent2sem'] : '';
|
|
$maxstudent2sem = array_key_exists('maxstudent2sem', $_POST) ? $_POST['maxstudent2sem'] : '';
|
|
$teacheryear = array_key_exists('teacheryear', $_POST) ? $_POST['teacheryear'] : '';
|
|
$teacher1sem = array_key_exists('teacher1sem', $_POST) ? $_POST['teacher1sem'] : '';
|
|
$teacher2sem = array_key_exists('teacher2sem', $_POST) ? $_POST['teacher2sem'] : '';
|
|
$course_id = validate($_POST['course_id']);
|
|
|
|
$imagePath = ''; // Pfad für das neue Bild
|
|
|
|
if ($name != '' && $place != '') {
|
|
// Bild hochladen
|
|
if (isset($_FILES['courseImage']) && $_FILES['courseImage']['error'] === UPLOAD_ERR_OK) {
|
|
$uploadDirectory = "../assets/images/courses/";
|
|
$randomFileName = uniqid() . '_' . basename($_FILES['courseImage']['name']);
|
|
$uploadFilePath = $uploadDirectory . $randomFileName;
|
|
|
|
if (move_uploaded_file($_FILES['courseImage']['tmp_name'], $uploadFilePath)) {
|
|
$imagePath = 'image="' . $uploadDirectory . $randomFileName . '",';
|
|
}
|
|
}
|
|
|
|
$query = "UPDATE tbl_courses SET
|
|
name='$name',
|
|
slogan='$slogan',
|
|
description='$description',
|
|
$imagePath
|
|
show_until=NULLIF('$showuntil',''),
|
|
deadline=NULLIF('$deadline',''),
|
|
place='$place',
|
|
teacherid_year=NULLIF('$teacheryear',''),
|
|
teacherid_1sem=NULLIF('$teacher1sem',''),
|
|
teacherid_2sem=NULLIF('$teacher2sem',''),
|
|
minstudents_year=NULLIF('$minstudentyear',''),
|
|
maxstudents_year=NULLIF('$maxstudentyear',''),
|
|
minstudents_1sem=NULLIF('$minstudent1sem',''),
|
|
maxstudents_1sem=NULLIF('$maxstudent1sem',''),
|
|
minstudents_2sem=NULLIF('$minstudent2sem',''),
|
|
maxstudents_2sem=NULLIF('$maxstudent2sem',''),
|
|
registration='$registration',
|
|
confirmation='$confirmation',
|
|
max_behavior='$maxbehavior'
|
|
WHERE id='$course_id'";
|
|
|
|
$result = mysqli_query($conn, $query);
|
|
|
|
// Alte Klassenzuordnungen löschen und neue hinzufügen
|
|
$deleteclassesquery = "DELETE FROM tbl_assign_courses_classes WHERE course_id='$course_id'";
|
|
$deleteclassesresult = mysqli_query($conn, $deleteclassesquery);
|
|
|
|
$selectedClasses = isset($_POST['selected_classes']) ? $_POST['selected_classes'] : array();
|
|
if (!empty($selectedClasses)) {
|
|
foreach ($selectedClasses as $classId) {
|
|
$insertQuery = "INSERT INTO tbl_assign_courses_classes (course_id, class_id) VALUES ('$course_id', '$classId')";
|
|
$classresult = mysqli_query($conn, $insertQuery);
|
|
}
|
|
} else {
|
|
$classresult = true;
|
|
}
|
|
|
|
// Alte Kurszeiten löschen und neue hinzufügen
|
|
$deletetimesquery = "DELETE FROM tbl_coursedates WHERE course_id='$course_id'";
|
|
$deletetimesresult = mysqli_query($conn, $deletetimesquery);
|
|
|
|
if (!empty($days) && !empty($start_times) && !empty($end_times)) {
|
|
for ($i = 0; $i < count($days); $i++) {
|
|
$day = $days[$i];
|
|
$start_time = $start_times[$i];
|
|
$end_time = $end_times[$i];
|
|
|
|
$datequery = "INSERT INTO tbl_coursedates (course_id, day, start_time, end_time) VALUES ('$course_id','$day', '$start_time', '$end_time')";
|
|
$dateresult = mysqli_query($conn, $datequery);
|
|
}
|
|
} else {
|
|
$dateresult = true;
|
|
}
|
|
|
|
if ($result && $classresult && $dateresult) {
|
|
redirect('courses-edit.php?id=' . $course_id, 'Kurs wurde erfolgreich bearbeitet', 'success');
|
|
} else {
|
|
redirect('courses-edit.php?id=' . $course_id, 'Es ist ein Fehler aufgetreten', 'danger');
|
|
}
|
|
} else {
|
|
redirect('courses-edit.php?id=' . $course_id, 'Bitte füllen Sie alle Felder aus', 'alert');
|
|
}
|
|
}
|
|
|
|
|
|
if(isset($_POST['updateformcontent']))
|
|
{
|
|
$name = validate($_POST['name']);
|
|
$min = $_POST['min'];
|
|
$max = $_POST['max'];
|
|
$formcontent_id = validate($_POST['formcontent_id']);
|
|
|
|
if($name != '')
|
|
{
|
|
|
|
$query = "UPDATE tbl_formcontents SET
|
|
name='$name',
|
|
min='$min',
|
|
max='$max'
|
|
WHERE id='$formcontent_id'";
|
|
$result = mysqli_query($conn, $query);
|
|
|
|
$deleteclassesquery = "DELETE FROM tbl_assign_formcontents_classes WHERE formcontent_id='$formcontent_id'";
|
|
$deleteclassesresult = mysqli_query($conn, $deleteclassesquery);
|
|
|
|
$selectedClasses = isset($_POST['selected_classes']) ? $_POST['selected_classes'] : array();
|
|
|
|
if(!empty($selectedClasses)){
|
|
foreach ($selectedClasses as $classId) {
|
|
$insertQuery = "INSERT INTO tbl_assign_formcontents_classes (formcontent_id, class_id) VALUES ('$formcontent_id', '$classId')";
|
|
$classresult = mysqli_query($conn, $insertQuery);
|
|
}
|
|
}
|
|
else{
|
|
$classresult = "Keine Klassen zugewiesen";
|
|
}
|
|
if($result && $classresult){
|
|
redirect('formscontents-edit.php?id=' . $formcontent_id,'Formularabschnitt wurde erfolgreich bearbeitet','success');
|
|
}
|
|
else{
|
|
redirect('formscontents-edit.php?id=' . $formcontent_id,'Es ist ein Fehler aufgetreten','danger');
|
|
}
|
|
}
|
|
else
|
|
{
|
|
redirect('formscontents-edit.php?id=' . $formcontent_id,'Bitte füllen Sie alle Felder aus','alert');
|
|
}
|
|
|
|
}
|
|
|
|
if(isset($_POST['updateformcourse']))
|
|
{
|
|
$name = validate($_POST['name']);
|
|
$lessons = $_POST['lessons'];
|
|
$formcourse_id = validate($_POST['formcourse_id']);
|
|
|
|
if($name != '' && $lessons != '')
|
|
{
|
|
|
|
$query = "UPDATE tbl_formcourses SET
|
|
name='$name',
|
|
lessons='$lessons'
|
|
WHERE id='$formcourse_id'";
|
|
$result = mysqli_query($conn, $query);
|
|
|
|
$deleteclassesquery = "DELETE FROM tbl_assign_formcourses_classes WHERE formcourses_id='$formcourse_id'";
|
|
$deleteclassesresult = mysqli_query($conn, $deleteclassesquery);
|
|
|
|
$selectedClasses = isset($_POST['selected_classes']) ? $_POST['selected_classes'] : array();
|
|
|
|
if(!empty($selectedClasses)){
|
|
foreach ($selectedClasses as $classId) {
|
|
$insertQuery = "INSERT INTO tbl_assign_formcourses_classes (formcourses_id, class_id) VALUES ('$formcourse_id', '$classId')";
|
|
$classresult = mysqli_query($conn, $insertQuery);
|
|
}
|
|
}
|
|
else{
|
|
$classresult = "Keine Klassen zugewiesen";
|
|
}
|
|
if($result && $classresult){
|
|
redirect('formscourses-edit.php?id=' . $formcourse_id,'Kurs wurde erfolgreich bearbeitet','success');
|
|
}
|
|
else{
|
|
redirect('formscourses-edit.php?id=' . $formcourse_id,'Es ist ein Fehler aufgetreten','danger');
|
|
}
|
|
}
|
|
else
|
|
{
|
|
redirect('formscourses-edit.php?id=' . $formcourse_id,'Bitte füllen Sie alle Felder aus','alert');
|
|
}
|
|
|
|
}
|
|
|
|
|
|
if(isset($_POST['registrationStatus'])) {
|
|
// Wert des Registrierungsstatus aus dem POST-Daten erhalten
|
|
$registrationStatus = validate($_POST['registrationStatus']);
|
|
?>
|
|
<script>
|
|
console.log('<?= $registrationStatus; ?>');
|
|
</script>
|
|
<?php
|
|
$query = "INSERT INTO tbl_test (value) VALUES ('$registrationStatus')";
|
|
mysqli_query($conn, $query);
|
|
|
|
// Überprüfen Sie, ob die Operation erfolgreich war
|
|
// Beispiel:
|
|
if ($query) {?>
|
|
<script>
|
|
console.log('Daten erfolgreich eingetragen');
|
|
</script><?php
|
|
echo "Erfolgreich aktualisiert";
|
|
} else {?>
|
|
<script>
|
|
console.log('Daten nicht eingetragen');
|
|
</script><?php
|
|
http_response_code(400);
|
|
echo "Ungültige Anfrage";
|
|
}
|
|
}
|
|
|
|
if (isset($_POST['studentID'], $_POST['courseID'])) {
|
|
// Die übermittelten Daten erhalten und validieren
|
|
$studentID = validate($_POST['studentID']);
|
|
$courseID = validate($_POST['courseID']);
|
|
|
|
// Überprüfen, ob die optionalen POST-Variablen type und semester gesetzt sind
|
|
$status = isset($_POST['status']) ? $_POST['status'] : NULL;
|
|
$semester = isset($_POST['semester']) ? $_POST['semester'] : NULL;
|
|
$prio = isset($_POST['prio']) ? $_POST['prio'] : NULL;
|
|
|
|
// Überprüfen, ob bereits ein Eintrag für diese studentID und courseID existiert
|
|
$existingEntryQuery = "SELECT * FROM tbl_assign_students_courses WHERE student_id = '$studentID' AND course_id = '$courseID'";
|
|
$existingEntryResult = mysqli_query($conn, $existingEntryQuery);
|
|
|
|
// Wenn ein Eintrag gefunden wurde, aktualisieren Sie die vorhandenen Felder
|
|
if (mysqli_num_rows($existingEntryResult) > 0) {
|
|
$updateQuery = "UPDATE tbl_assign_students_courses SET priority = '$prio', status = '$status', semester = '$semester' WHERE student_id = '$studentID' AND course_id = '$courseID'";
|
|
$result = mysqli_query($conn, $updateQuery);
|
|
if ($result) {
|
|
echo "Eintrag erfolgreich aktualisiert";
|
|
} else {
|
|
http_response_code(400);
|
|
echo "Fehler beim Aktualisieren des Eintrags";
|
|
}
|
|
} else {
|
|
// Wenn kein Eintrag gefunden wurde, fügen Sie einen neuen Eintrag hinzu
|
|
$insertQuery = "INSERT INTO tbl_assign_students_courses (student_id, course_id, priority, status, semester) VALUES ('$studentID', '$courseID', '$prio', '$status', '$semester')";
|
|
$result = mysqli_query($conn, $insertQuery);
|
|
if ($result) {
|
|
echo "Neuer Eintrag erfolgreich erstellt";
|
|
} else {
|
|
http_response_code(400);
|
|
echo "Fehler beim Erstellen eines neuen Eintrags";
|
|
}
|
|
}
|
|
}
|
|
?>
|