<?php
session_start();
$user_ID=$_SESSION[user_ID];
if (!$user_ID || $user_ID=='0')
{
header('location: index.php');
die('Login failed');
}
require("util.php");
$sql = new MySQL_class;
$sql->Create("generator");
$esql = new MySQL_class;
$esql->Create("generator");
if ($_GET[user]) { $_SESSION[var_user] = $_GET[user]; }
$user=$_SESSION[var_user];
?>
<html>
<head>
<link href="list.css" type="text/css" rel=stylesheet>
<meta content="text/css" http-equiv="Content-Style-Type">
<title>Screen generator Scherm: Users</title>
</head>
<script type="text/javascript" src="handlers.js" language="JavaScript">
alert ("no code");
</script>
<body>
<?php
include 'menu.php';
include 'makemenu.php';
makeMenu(1, 0, '');
?>
<div id="content">
<table class=ruler><tr><td>Users</td></tr></table>
<?php
if ($_GET[order68]<>'') {
$sql->QueryItem("DELETE FROM user_selection WHERE user=$user_ID and field='sort_68'");
$sql->QueryItem("INSERT INTO user_selection VALUES ('$user_ID', 'sort_68','$_GET[order68]'");
}
$lastid=$_SESSION[last_68];
$lastfilter68=$_SESSION[filter68];
$_SESSION[last_68]='';
if ($_GET[filter68]) { $filter68 =$_GET[filter68]; } else { $filter68=$_POST[filter68];}
if ($_GET[page68]) { $page=$_GET[page68]; } else { $page=$_POST[page68]; }
if ($filter68!=$lastfilter68) {
$_SESSION[filter68]=$filter68;
$page=0;
}
if ($_GET[full_68]=='Fullpage') {
$_SESSION[fullpage_68]='f';
}
if ($_GET[full_68]=='Pages') {
$_SESSION[fullpage_68]='';
}
if ($filter68!='')
{
$qfilter68 = quote('%'.$filter68.'%');
$query = ("
FROM `user`
WHERE (user.`username` LIKE $qfilter68
)
");
}
else
{
$query = ("
FROM `user`
WHERE 1
");
}
$lastrec=-1;
$sql->QueryItem("SELECT COUNT(*) AS records$query");
$records=$sql->data[records];
$sortorder=$sql->QueryItem("SELECT value FROM user_selection WHERE user=$user_ID and field='sort_68'");
if ($lastid=='') {$fromrec=20*$page;} else {
$fromrec=0;
$sql->Query("SELECT `user`.`user` AS id $query");
for ($r=0; $r<$sql->rows; $r++) {
$sql->Fetch($r);
if ($sql->data[id]==$lastid) {
$fromrec=$r-10;
if($fromrec<0) $fromrec=0;
$lastrec=$r-$fromrec;
break;
}
}
}
$sql->Query("SELECT user.user as F496, user.username as F497$query".
($_SESSION[fullpage_68]==''?"LIMIT $fromrec, 20":''));
if (($part_rights['27/nofilter']==0)) {
echo "<form action=\"\" method=get name=Filter68>";
echo "<p class=filter>";
echo "Records: $records ";
$maxpage=(int) (($records+19)/20);
if ($maxpage>1) {
if ($_SESSION[fullpage_68]=='') {
echo "Page: ";
echo "<select name=\"page68\" OnChange=\"Filter68.submit();\">\n";
for ($i = 0; $i < $maxpage; $i++)
{
$nr=$i+1;
if ($i==$page) {$sel=" selected";} else {$sel="";}
echo "<option value=$i$sel>$nr van $maxpage</option>\n";
}
echo "</select>\n";
echo "<input type=submit name=full_68 value=\"Fullpage\">";
} else {
echo "<input type=submit name=full_68 value=\"Pages\">";
}
}
echo "<input type=text name=\"filter68\" size=25 value=\"$filter68\">";
echo "<input type=submit value=\"Search\">";
echo "<input type=button value=\"Add User\" onClick=\"javascript: window.open('adduser.php?user=$user','','width=500,height=300,location=no,menubar=no,scrollbars=yes,status=no,resizable=yes'); return false;\">";
echo "</p>";
echo "</form>";
}
?>
<table class=list>
<tr>
<th width=280px>Username</th>
</tr>
<?php
for ($i = 0; $i < $sql->rows; $i++)
{
$sql->Fetch($i);
$user = $sql->data['F496'];
$username = htmlspecialchars($sql->data['F497']);
if ($lastrec==$i) {$color="style=\"background-color: #aaaaff;\"";} else {$color="";}
echo ("
<tr $color onMouseOver=\"ChangeColor(this)\" onMouseOut=\"ChangeColorBack(this)\" onClick=\"location='user.php?user=$user'\">
<td>$username</td>
</tr>");
}
?>
</table>
</div></body>
</html>
