/lenasys/trunk

To get this branch, use:
bzr branch http://gegoxaren.bato24.eu/bzr/lenasys/trunk
1 by Henrik G.
First seed of Lenasys ... Needs to be Organized Further 
1
 
<?php

2
 
	$PASSWORDLENGTH=8;

3
 
	

4
 
	/*if(isset($_POST['scrolly'])){

5
 
		

6
 
	}*/

7
 
	

8
 
	//Change password for a student

9
 
	if(isset($_POST['generateNewPassWordForStudent']) && isset($_POST['studentSSN']) && isset($_POST['studentLoginName'])){

10
 
		$newPassword=generatePassword($PASSWORDLENGTH);

11
 
		

12
 
		$updateQuery="UPDATE Student SET Student.passw=:PASSW WHERE Student.ssn=:SSN;";

13
 
		$updateStmt = $pdo->prepare($updateQuery);

14
 
		$updateStmt->bindParam(':SSN', $_POST['studentSSN']);

15
 
		$hashedPassw= md5($newPassword);

16
 
		$updateStmt->bindParam(':PASSW',$hashedPassw);

17
 
		$newPasswordForSSN=$_POST['studentSSN'];

18
 
		if($updateStmt->execute()){

19
 
			$userMsg.="New password for SSN: ".$_POST['studentSSN']." Login:".$_POST['studentLoginName']." Password:".$newPassword; 

20
 
		} else {

21
 
			$errorMsg.="ERROR: Failed to generate new password for SSN: ".$_POST['studentSSN']." Login:".$_POST['studentLoginName']." Password:".$newPassword; 

22
 
		}

23
 
	}

24
 
	

25
 
	//Unregister selected student from a specific course occasion

26
 
	if(isset($_POST['unregisterStudentSubmit'])){

27
 
		// $deleteQuery = "DELETE FROM StudentCourseRegistration 

28
 
		                // WHERE StudentCourseRegistration.studentSsn=:SSN 

29
 
							// AND StudentCourseRegistration.courseName=:CNAME 

30
 
							// AND StudentCourseRegistration.courseOccasion=:COCCASION;";

31
 
		// $deleteStmt = $pdo->prepare($deleteQuery);

32
 
		// $deleteStmt->bindParam(':SSN', $_POST['studentSSN']);

33
 
		// $deleteStmt->bindParam(':CNAME', $_POST['courseName']);

34
 
		// $deleteStmt->bindParam(':COCCASION', $_POST['courseOccasion']);

35
 
		

36
 
		// if($deleteStmt->execute()){

37
 
			// $userMsg.="Student with SSN: ".$_POST['studentSSN']." successfully unregistered from ".$_POST['courseName']." ".$_POST['courseOccasion']; 

38
 
		// } else {

39
 
			// $errorMsg.="Student with SSN: ".$_POST['studentSSN']." WAS NOT unregistered from ".$_POST['courseName']." ".$_POST['courseOccasion']; 

40
 
		// }

41
 
		 $errorMsg.="Student with SSN: ".$_POST['studentSSN']." WAS NOT unregistered from ".$_POST['courseName']." ".$_POST['courseOccasion']." - FUNCTION DISABLED"; 

42
 
		

43
 
	}

44
 
	

45
 
	//Fetch list of students registered to selected course

46
 
	if(isset($_POST['listStudentsSubmit'])){

47
 
		$querystring = "SELECT Student.ssn,Student.name,Student.loginName 

48
 
		                FROM Student, StudentCourseRegistration

49
 
						WHERE Student.ssn=StudentCourseRegistration.StudentSsn 

50
 
							AND StudentCourseRegistration.courseName=:CNAME

51
 
							AND StudentCourseRegistration.courseOccasion=:COCCASION

52
 
						ORDER BY Student.name ASC;";

53
 
		$stmt = $pdo->prepare($querystring);

54
 
		$stmt->bindParam(':CNAME', $_POST['courseName']);

55
 
        if(isset($_POST['courseOccasion'])){

56
 
			$occasion=$_POST['courseOccasion'];

57
 
		} else {

58
 
			$occasion=$_POST['semester']."-".$_POST['year']." LP".$_POST['period'];

59
 
		}

60
 
		$stmt->bindParam(':COCCASION', $occasion);

61
 
		$stmt->execute();

62
 
		$studentList=$stmt->fetchAll(PDO::FETCH_ASSOC);

63
 
	}

64
 
	

65
 
	//Fetch all courses from Course-table to populate dropdown-list

66
 
	$querystring = "SELECT * FROM Course";

67
 
    $stmt = $pdo->prepare($querystring);

68
 
    $stmt->execute();

69
 
	$courseList=$stmt->fetchAll(PDO::FETCH_ASSOC);

70
 
	

71
 
	$content="students/listStudents.html.php";

72
 
?>