One Hat Cyber Team
Your IP :
172.16.0.254
Server IP :
58.26.163.33
Server :
Windows NT DGPENSV2LPKMN 10.0 build 14393 (Windows Server 2016) AMD64
Server Software :
Apache/2.4.46 (Win64) OpenSSL/1.1.1h PHP/7.3.25
PHP Version :
7.3.25
Buat File
|
Buat Folder
Eksekusi
Dir :
C:
/
xampp7
/
htdocs
/
edgpens_220424
/
edg_o
/
View File Name :
site.php
<?php if(empty($page)){ include("../access.php"); } ?> <?php $modal_name = str_replace("/", "-", $page); // $sqlx = "SELECT * FROM utiliti_user"; // $rstx = $mysqli->query($sqlx) or die(mysqli_error($mysqli)); $user = get_user_full($_SESSION['session']); $roles = (int)$user['idRoles']; // $roles = (int)$_GET['roles']; $idUser = (int)$user['idUser']; $idPelabuhan = (int)$user['idPelabuhan']; $dgapprove = $user['flagDGApproval']; $comb1 = ""; $comb2 = "a.flagApprove,"; $comb3 = ""; if($roles !== 5){ if($roles == 1){ $comb1 = " AND a.idUserApply = '{$idUser}'"; }else if($roles == 2){ // echo $comb1 = " AND ((a.submit = 'Y' AND a.idApprove = 0) OR (IF(a.idApprove != 0, a.idApprove = {$idUser}, null))) AND a.idMarineFacility = '{$idPelabuhan}'"; $comb1 = " AND if(a.idApproveMFSO = 0 AND a.idApproveDG = 0 AND a.idApproveMTSO = 0, a.submit = 'Y', 1) AND a.idMarineFacility = '{$idPelabuhan}' AND a.idApproveMTSO = 0"; $comb3 = " AND (IF(a.idApproveMFSO != 0 AND a.idApproveDG != 0, IF((a.idApproveMFSO = 0 OR a.idApproveDG = 0) AND a.idApproveMFSO != a.idApproveDG, (IF(a.idApproveMFSO != 0, a.idApproveMFSO = {$idUser}, 1)) OR (IF(a.idApproveDG != 0, a.idApproveDG = {$idUser}, 1)), a.idApproveMFSO = {$idUser} OR a.idapproveDG = {$idUser} ) ,1)) AND IF(a.flagDG = 'T' AND a.idApproveMFSO != 0 , a.idApproveMFSO = {$idUser},1)"; // echo "<br>"; }else if($roles == 3){ $comb1 = " AND IF(a.flagDG = 'Y', a.idApproveMFSO != 0 AND a.idApproveDG != 0 AND a.flagApproveMFSO = 'Y' AND a.flagApproveDG = 'Y', a.idApproveMFSO != 0 AND a.flagApproveMFSO = 'Y') AND IF(a.idApproveMTSO != 0, a.idApproveMTSO = {$idUser},1)"; // echo $comb1 = " AND ((f.idRoles = '2' AND a.flagApprove = 'Y') OR (IF(a.idApprove != 0, a.idApprove = {$idUser}, null)))"; $comb2 = " IF(a.idApproveMTSO != {$idUser}, 'T',a.flagApprove) AS flagApprove,"; } }else{ $comb1 = ""; } $sqlx = " SELECT a.*, DATE_FORMAT(a.tarikhVisit,'%d-%m-%Y') AS tarikhVisit, b.nama AS nama_pelabuhan FROM visit_main a LEFT JOIN kod_marine_facility b on b.idMarineFacility = a.idMarineFacility WHERE idVisitor = '{$idUser}' ORDER BY a.tarikhVisit DESC "; $result2 = $mysqli->query($sqlx) or die(mysqli_error($mysqli)); $rows_app = $result2->num_rows; if($roles !== 5){ // $comb2 = " AND a.idUserApply = '{$idUser}' AND (if(a.submit = 'Y',idApproveMFSO = 0,1))"; $comb2 = " AND a.idUserApply = '{$idUser}' AND a.flagApproveMFSO = 'N'"; }else{ $comb2 = ""; } $sqlx = "SELECT a.idPermohonan, a.idUserApply, a.refID, a.flagDG, a.idApprove, a.flagApprove, a.comments, DATE_FORMAT(a.tarikhApply,'%d-%m-%Y') AS tarikhApply, b.nameUser AS nama_user, c.nama AS nama_pelabuhan, d.nama AS nama_kapal, e.nama AS nama_syarikat FROM permohonan_main a LEFT JOIn user_list b ON b.idUser = a.idUserApply LEFT JOIN kod_marine_facility c on c.idMarineFacility = a.idMarineFacility LEFT JOIN kod_kapal d ON d.idKapal = a.idKapal LEFT JOIN kod_syarikat e ON e.idSyarikat = d.idSyarikat WHERE 1 {$comb2} ORDER BY FIELD(a.flagApprove,'T','Y'), a.tarikhApply DESC "; $result3 = $mysqli->query($sqlx) or die(mysqli_error($mysqli)); $rows_incomplete = $result3->num_rows; if($_POST): if($_POST['val-type'] == 'mfso'): $ext = "MFSO"; elseif($_POST['val-type'] == 'dg'): $ext = "DG"; else: $ext = "MTSO"; endif; $sql = "UPDATE permohonan_main SET submit = IF('{$_POST['flagApprove']}' = 'T','T',submit), flagApprove{$ext} = ?, idApprove{$ext} = ?, comments{$ext} = ?, tarikhApprove{$ext} = NOW() WHERE idPermohonan = ?"; $param_type = "ssss"; $param_data = array( "flagApprove{$ext}" => $_POST['flagApprove'], "idApprove{$ext}" => $idUser, "comments{$ext}" => $_POST['comments'], "idPermohonan" => $_POST['val-id'] ); $data = mysqli_prepare_audit($sql,$param_type,$param_data); $sql = "INSERT INTO permohonan_kelulusan (idPermohonanMain, flagApprove, idApprove, tarikhApprove, type, comments) values (?,?,?,NOW(),?,?)"; $param_type = "sssss"; $param_data = array( "idPermohonanMain" => $_POST['val-id'], "flagApprove" => $_POST['flagApprove'], "idApprove" => $idUser, "type" => $_POST['val-type'], "comments" => $_POST['comments'] ); $data = mysqli_prepare_audit($sql,$param_type,$param_data); echo "<script>window.location.replace('index.php?page=edg/main');</script>"; exit(); endif; ?> <!-- Blank Header --> <div class="content-header"> <div class="row"> <div class="col-sm-6"> <div class="header-section"> <h1>SITE VISIT</h1> </div> </div> <div class="col-sm-6 hidden-xs"> <div class="header-section"> <!-- <ul class="breadcrumb breadcrumb-top"> --> <!-- <li>Extra Pages</li> --> <!-- <li><a href="">Blank</a></li> --> <!-- </ul> --> </div> </div> </div> </div> <!-- END Blank Header --> <!-- Get Started Block --> <div class="block full"> <!-- Get Started Title --> <!-- <div class="block full"> --> <!-- Block Tabs Title --> <div class="block-title"> <div class="block-options pull-left"> <a href="index.php?page=edg/site&np=edg/s_main" class="btn btn-effect-ripple btn-success" data-toggle="tooltip" title="Add New Site Visit"> <i class="gi gi-folder_plus"></i> New </a> </div> <ul class="nav nav-tabs" data-toggle="tabs"> <li class="active"><a href="#block-tabs-home">Site List <span href="javascript:void(0)" class="label label-info"><?php echo $rows_app; ?></span></a></li> </ul> </div> <!-- END Block Tabs Title --> <div id="modal-form" class="modal fade <?php echo $modal_name;?>" tabindex="-1" role="dialog" aria-hidden="true"> <div class="modal-dialog modal-lg"> <div class="modal-content"> <!-- <form class="push form-horizontal" id="form-validation" action="index.php?page=edg/main" method="post"> --> <!-- if delete. check post name delete --> <div class="modal-header"> <button type="button" class="close" data-dismiss="modal" aria-hidden="true"><span aria-hidden="true">×</span></button> <h4 class="modal-title"><strong>SITE VISIT</strong></h4> </div> <div class="modal-body"><!-- modal-body --> <ul class="nav nav-tabs" data-toggle="tabs"> <li class="active tab-click"><a href="#site">Site Visit</a></li> <li class="tab-click"><a href="#details">Detail / Notes & Files Upload</a></li> </ul> <div class="tab-content"> <div class="tab-pane active" id="site"></div> <div class="tab-pane" id="details"></div> </div> <hr> <center> <button type="button" class="btn btn-effect-ripple btn-danger" data-dismiss="modal">Close</button> </center> </div><!-- [end] modal-body --> <input type="hidden" name="type_submit" value="add"> <input type="hidden" name="val-id" value=""> <input type="hidden" name="val-type" value=""> <!-- <div class="modal-footer"> --> <!-- <h4 class="pull-left">$ <strong class="text-primary-dark">689</strong><small>.00</small></h4> --> <!-- </div> --> <!-- </form> --> </div> </div> </div> <!-- Tabs Content --> <div class="tab-content"> <div class="tab-pane active" id="block-tabs-home"> <div class="table-responsive"> <form method="post" data-modal-target="<?php echo $modal_name;?>"> <input name="type_submit" type="hidden" value="delete"> <table id="example-datatable" class="table table-striped table-bordered table-condensed table-vcenter table-hover no_add_delete"> <thead> <tr> <th class="text-center no_sorting" style="width: 40px;">NO</th> <th class="text-left">Terminal Name</th> <th class="text-center">Date</th> <th class="text-center" style="width: 250px;">Status</th> <th class="text-center no_sorting" style="width: 60px;"><i class="fa fa-flash"></i></th> </tr> </thead> <tbody> <?php $i=1; while($aa = $result2->fetch_assoc()){ if($aa['warning'] == 'Y') $tr_class = "danger"; else $tr_class = ""; ?> <tr class="<?php echo $tr_class;?>"> <td class="align-top text-right"><?php echo $i++; ?>.</td> <td class="align-top text-left"><?php echo $aa['nama_pelabuhan']?></td> <td class="align-top text-center"><?php echo $aa['tarikhVisit']?></td> <td class="align-top text-center"><?php echo $aa['flagStatus']?></td> <td class="align-top text-center"> <a href="javascript:void(0)" title="Details" class="btn btn-effect-ripple btn-xs btn-info edit-me" data-modal-target="<?php echo $modal_name;?>" data-myid="<?php echo $aa['idVisitMain'];?>" data-type="mtso"><i class="fa fa-book"></i></a> <a title="Edit Record" class="btn btn-effect-ripple btn-xs btn-success" href="index.php?page=edg/site&np=edg/s_main&ii=<?php echo $aa['idVisitMain']?>"><i class="fa fa-pencil"></i></a> <a href="javascript:void(0)" title="Delete Record" class="btn btn-effect-ripple btn-xs btn-danger del-me" data-val="<?php echo $i;?>"><i class="fa fa-times"></i></a> </td> </tr> <?php } ?> </tbody> </table> </form> </div> </div> </div> <!-- END Tabs Content --> <!-- </div> --> <script src="js/pages/formsValidation.js"></script> <script type="text/javascript"> $(document).ready(function(){ $("#example-datatable").setdatatable().setadddelete(); $("#example-datatable2").setdatatable().setadddelete(); $('thead input:checkbox').click(function() { var checkedStatus = $(this).prop('checked'); var table = $(this).closest('table'); $('tbody input:checkbox', table).each(function() { $(this).prop('checked', checkedStatus); }); }); $(document).on("click", ".add-me", function(){ var modal_name = "."+$(this).closest("form").data("modal-target"); $(modal_name).modal({keyboard:true}); $(modal_name).find("input").not(":button, :submit, :reset").val("").prop("checked",false); $(modal_name).find("select").prop("selected",false); $(modal_name).find('.help-block').remove(); $(modal_name).find('.form-group').removeClass('has-success has-error'); $("#form-validation").setvalidation(''); $("#form-validation > [name='type_submit']").val("add"); // console.log($._data($("#form-validation").get(0), "events")); }); $("#example-datatable tbody").on("click", ".del-me", function(){ if(confirm("Delete This Record! Are You Sure?")){ $(this).closest("table").find("input[type='checkbox']").prop("checked",false); $(this).closest("tr").find("input[type='checkbox']").trigger("click"); $(this).closest("form").submit(); } }) $("#example-datatable tbody").on("click", ".edit-me", function(){ // console.log(1); var modal_name = "."+$(this).data("modal-target"); var myid = $(this).data("myid"); var type = $(this).data("type"); var getthis = 0; $.ajax({url: "edg/s_info.php?ii="+myid+"&target=site", success: function(result){ $(modal_name).find(".tab-pane[id=site]").html(result); }}).done(function(){ $(document).trigger("resize"); }); $.ajax({url: "edg/s_info.php?ii="+myid+"&target=details", success: function(result){ $(modal_name).find(".tab-pane[id=details]").html(result); }}).done(function(){ $(document).trigger("resize"); }); $(modal_name).modal({keyboard:true}); $(modal_name).find("input").not(":button, :submit, :reset").val("").prop("checked",false); $(modal_name).find("select").prop("selected",false); $(modal_name).find('.help-block').remove(); $(modal_name).find('.form-group').removeClass('has-success has-error'); // $("#form-validation").setvalidation(editdata); $("#form-validation > [name='type_submit']").val("edit"); $("#form-validation > [name='val-id']").val(myid); $("#form-validation > [name='val-type']").val(type); }); $(".tab-click").on("click",function(){ console.log(1); $(document).trigger("resize"); }) }); </script> </div> <!-- End Started Block -->