aboutsummaryrefslogtreecommitdiff
path: root/admin.php
blob: 2aeebe18e8442b71b3d6c48522dc2bb9e3affee3 (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
<?php

session_start();

if(!isset($_SESSION["loggedin"]) || $_SESSION["loggedin"] !== true){
    header("location: /login.php");
    exit;
}

$username = $_SESSION["username"];
$type = $_SESSION["type"];

if ($type != "admin") die("Permission denied.");

require_once "config.php";

// Get users
$sql = "SELECT id, username, status, type FROM users";
$stmt = mysqli_prepare($link, $sql);
mysqli_stmt_execute($stmt);
$result = mysqli_stmt_get_result($stmt);
$users = $result->fetch_all(MYSQLI_ASSOC);

// Get services
$sql = "SELECT id, name, type, billing FROM services";
$stmt = mysqli_prepare($link, $sql);
mysqli_stmt_execute($stmt);
$result = mysqli_stmt_get_result($stmt);
$services = $result->fetch_all(MYSQLI_ASSOC);

// Get services
$sql = "SELECT id, service, name, client FROM orders";
$stmt = mysqli_prepare($link, $sql);
mysqli_stmt_execute($stmt);
$result = mysqli_stmt_get_result($stmt);
$orders = $result->fetch_all(MYSQLI_ASSOC);

function getservicebyid($id) {
    global $services;
    foreach ($services as $service) {
        if ($service["id"] == $id) {
            return $service;
        }
    }
}

function getclientbyid($id) {
    global $users;
    foreach ($users as $client) {
        if ($client["id"] == $id) {
            return $client;
        }
    }
}

?>

<!doctype html>
<html>
    <head>
        <meta charset="UTF-8">
        <link rel="stylesheet" type="text/css" href="/style.css">
        <title>ARFNET CSTIMS</title>
    </head>
    <body>
        <header><a href="https://arf20.com/">
            <img src="arfnet_logo.png" width="64"><span class="title"><strong>ARFNET</strong></span>
        </a></header>
        <hr>
        <main>
            <div class="row">
                <div class="col8">
                    <h2 class="center">ARFNET Client Service Ticket and Invoice Management System</h2>
                    <h3><?php echo strtoupper($type[0]).substr($type, 1); ?> panel</h3>
                    <div class="row">
                        <div class="col2">
                            <h3>Users</h3>
                            <table>
                                <tr><th>user</th><th>type</th><th>status</th></tr>
                                <?php
                                foreach ($users as $user) {
                                    echo "<tr><td>".$user["username"]."</td><td>".$user["type"]."</td><td>".$user["status"]."</tr>\n";
                                }
                                ?>
                            </table>
                        </div>
                        <div class="col2">
                            <h3>Service offerings</h3>
                            <table>
                                <tr><th>name</th><th>type</th><th>billing</th></tr>
                                <?php
                                foreach ($services as $service) {
                                    echo "<tr><td>".$service["name"]."</td><td>".$service["type"]."</td><td>".$service["billing"]."</tr>\n";
                                }
                                ?>
                            </table>
                        </div>
                        <div class="col2">
                            <h3>Orders</h3>
                            <table>
                                <tr><th>service</th><th>instance</th><th>client</th></tr>
                                <?php
                                foreach ($orders as $order) {
                                    echo "<tr><td>".getservicebyid($order["service"])["name"]."</td><td>".$order["name"]."</td><td>".getclientbyid($order["client"])["username"]."</tr>\n";
                                }
                                ?>
                            </table>
                        </div>
                        <div class="col2">
                            <h3>Tickets</h3>
                            <!-- TODO PHP list of services -->
                        </div>
                        <div class="col2">
                            <h3>Invoices</h3>
                            <!-- TODO PHP list of services -->
                        </div>
                    </div>
                </div>
                <div class="col2">
                    <h3>Logged as <?php echo $username; ?></h3>
                    <h3><a href="/logout.php">Logout</h2>
                    <h3><a href="/manageusers.php">Manage users</h2>
                    <h3><a href="/manageservices.php">Manage services</h2>
                    <h3><a href="/manageorders.php">Manage orders</h2>
                    <h3><a href="/managetickets.php">Manage tickets</h2>
                    <h3><a href="/manageinvoices.php">Manage invoices</h2>
                </div>
            </div>
        </main>
    </body>
</html>