OXIESEC PANEL

Name	Size	Modified	Perms
📁 ..	-	12/02/2020 03:45:31 PM	rwxrwxr-x
📄 chk.login.php	822 bytes	12/02/2020 03:45:32 PM	rw-rw-r--
📄 get.section.nomination.php	15.65 KB	12/02/2020 03:45:32 PM	rw-rw-r--
📄 get.section.nominator.php	15.31 KB	12/02/2020 03:45:32 PM	rw-rw-r--
📄 get.section.user.php	10.36 KB	12/02/2020 03:45:32 PM	rw-rw-r--
📄 logout.php	96 bytes	12/02/2020 03:45:32 PM	rw-rw-r--

Editing: get.section.nomination.php

<?
//	Nomination

include '../inc/validate.logged.php';
include '../../inc/utils.php';

$act = '';
if (!empty($_POST)) $act = isset($_POST["act"]) ? $_POST["act"] : '';

// View
if ($act == 'view') {
 $isValid = 0;
 $nominationId = isset($_POST['id']) ? $_POST['id'] : '';
 $sql = "SELECT * FROM nomination WHERE id=$nominationId";
 $result = mysqli_query($con, $sql);
 $numRows = mysqli_num_rows($result);
 if ($numRows > 0) {
  $row = mysqli_fetch_assoc($result);
  $nomineeSalutation = $row["salutation"];
  $nomineeFirstName = $row["fname"];
  $nomineeLastName = $row["sname"];
  $nomineeAffiliation = $row["affiliation"];
  $nomineeRole = $row["role"];
  $nomineeAddress = $row["addr"];
  $nomineeCity = $row["city"];
  $nomineeCountry = $row["country"];
  $nomineePincode = $row["pin"];
  $nomineePhone = $row["phone"];
  $nomineeEmail = $row["email"];
  $nomineeDOB = $row["dob"];
  $nomineeAcademic = $row["academic"];
  $nomineePositions = nl2br($row["positions"]);
  $nomineeContributions = nl2br($row["contrib"]);
  $nomineeImpact = nl2br($row["impact"]);
  $nomineeRecognition = nl2br($row["recognition"]);
  $nomineePatents = nl2br($row["patents"]);
  $nomineePubs = nl2br($row["pubs"]);
  $nomineeTopPubs = nl2br($row["toppubs"]);
  $nomineeCitations = nl2br($row["cit"]);
  $isValid = 1;
 }
?>
<div class="popup" style="width:650px">
<div class="widget">
 <div class="card">
  <div class="card-header">View Nomination</div>
 </div>
 <div id="widgetEdit_B" style="padding:15px 25px">
<? if($isValid == 1) { ?>
  <h5 class="mt-4">Section 1: Nominee's Personal Details</h5>
  <div class="form-row mt-3">
   <div class="form-group col-md-2 text-left">
    <label for="nomineeSalutation">Salutation</label>
    <div class="py-2 px-2 alert alert-primary"><?=$nomineeSalutation?></div>
   </div>
   <div class="form-group col-md-5 text-left">
    <label for="nomineeFirstName">First Name</label>
    <div class="py-2 px-2 alert alert-primary"><?=$nomineeFirstName?></div>
   </div>
   <div class="form-group col-md-5 text-left">
    <label for="nomineeLastName">Last Name</label>
    <div class="py-2 px-2 alert alert-primary"><?=$nomineeLastName?></div>
   </div>
  </div>
  <div class="form-row">
   <div class="form-group col-md-6 text-left">
    <label for="nomineeAffiliation">Affiliation</label>
    <div class="py-2 px-2 alert alert-primary"><?=$nomineeAffiliation?></div>
   </div>
   <div class="form-group col-md-6 text-left">
    <label for="nomineeRole">Role</label>
    <div class="py-2 px-2 alert alert-primary"><?=$nomineeRole?></div>
   </div>
  </div>
  <div class="form-row">
   <div class="form-group col text-left">
    <label for="nomineeAcademic">Academic qualifications</label>
    <div class="py-2 px-2 alert alert-primary"><?=$nomineeAcademic?></div>
   </div>
  </div>
  <div class="form-row">
   <div class="form-group col text-left">
    <label for="nomineeAddress">Address</label>
    <div class="py-2 px-2 alert alert-primary"><?=$nomineeAddress?></div>
   </div>
  </div>
  <div class="form-row">
   <div class="form-group col-md-4 text-left">
    <label for="nomineeCity">City</label>
    <div class="py-2 px-2 alert alert-primary"><?=$nomineeCity?></div>
   </div>
   <div class="form-group col-md-4 text-left">
    <label for="nomineeCountry">Country</label>
    <div class="py-2 px-2 alert alert-primary"><?=$nomineeCountry?></div>
   </div>
   <div class="form-group col-md-4 text-left">
    <label for="nomineePincode">Pin Code</label>
    <div class="py-2 px-2 alert alert-primary"><?=$nomineePincode?></div>
   </div>
  </div>
  <div class="form-row">
   <div class="form-group col-md-4 text-left">
    <label for="nomineeDOB">Date of Birth</label>
    <div class="py-2 px-2 alert alert-primary"><?=$nomineeDOB?></div>
   </div>
   <div class="form-group col-md-4 text-left">
    <label for="nomineePhone">Phone</label>
    <div class="py-2 px-2 alert alert-primary"><?=$nomineePhone?></div>
   </div>
   <div class="form-group col-md-4 text-left">
    <label for="nomineeEmail">Email</label>
    <div class="py-2 px-2 alert alert-primary"><?=$nomineeEmail?></div>
   </div>
  </div>
  <h5 class="mt-4">Section 2: Professional Achievements</h5>
  <div class="form-row mt-3">
   <div class="form-group col text-left">
    <label for="nomineeProfRes">A. Professional Responsibilities/Positions held</label>
    <div class="alert alert-primary"><b><?=$nomineePositions?></b><br></div>
   </div>
  </div>
  <div class="form-row">
   <div class="form-group col text-left">
    <label for="nomineeContributions">B. Outstanding contributions of the Nominee</label>
    <div class="alert alert-primary"><b><?=$nomineeContributions?></b><br></div>
   </div>
  </div>
  <div class="form-row">
   <div class="form-group col text-left">
    <label for="nomineeImpact">C. Technical, professional, societal and/or economic impact of the Nominee's contributions</label>
    <div class="alert alert-primary"><b><?=$nomineeImpact?></b><br></div>
   </div>
  </div>
  <div class="form-row">
   <div class="form-group col text-left">
    <label for="nomineeRecognition">D. Nominee's Past Recognition / Honours / Awards</label>
    <div class="alert alert-primary"><b><?=$nomineeRecognition?></b><br></div>
   </div>
  </div>
  <div class="form-row">
   <div class="form-group col text-left">
    <label for="nomineePatents">E. Patents/Grants Received</label>
    <div class="alert alert-primary"><b><?=$nomineePatents?></b><br></div>
   </div>
  </div>
  <div class="form-row">
   <div class="form-group col text-left">
    <label for="nomineePubs">F. Publications of the Nominee in the past 5 years</label>
    <div class="alert alert-primary"><b><?=$nomineePubs?></b><br></div>
   </div>
  </div>
  <div class="form-row">
   <div class="form-group col text-left">
    <label for="nomineeTopPubs">G. In the Nominee's view which are the all time 3 top publications of the Nominee</label>
    <div class="alert alert-primary"><b><?=$nomineeTopPubs?></b><br></div>
   </div>
  </div>
  <div class="form-row">
   <div class="form-group col text-left">
    <label for="nomineeCitations">H. Proposed Citation</label>
    <div class="alert alert-primary"><b><?=$nomineeCitations?></b><br></div>
   </div>
  </div>
<? } ?>
 </div>
</div>
</div>
<?
}

// View Endorsement
if ($act == 'viewEndorsement') {
 $isValid = 0;
 $nominationId = isset($_POST['id']) ? $_POST['id'] : '';
 $endorserNum = trim(isset($_POST["num"]) ? $_POST["num"] : '');
 if ($nominationId <> '' && $endorserNum <> '') {
  $sql = "SELECT * FROM endorser WHERE nominationid=$nominationId AND endorsernum=$endorserNum";
  $result = mysqli_query($con, $sql);
  $numRows = mysqli_num_rows($result);
  if ($numRows > 0) {
   $row = mysqli_fetch_array($result);
   $endorserSalutation = $row["salutation"];
   $endorserFirstName = $row["fname"];
   $endorserLastName = $row["sname"];
   $endorserComments = $row["comments"];
   $endorserFile = $row["fileupload"];
   if ($endorserComments == '') $endorserComments = "No comments entered";
   $isValid = 1;
  }
 }
?>
<div class="popup" style="width:650px">
<div class="widget">
 <div class="card">
  <div class="card-header">View Endorsement</div>
 </div>
 <div id="widgetEdit_B" style="padding:15px 25px">
<? if($isValid == 1) { ?>

<label for="nomineeFirstName">Endorser</label>
  <div class="alert alert-primary"><b><?=$endorserSalutation?> <?=$endorserFirstName?> <?=$endorserLastName?></b><br></div>
  <label for="nomineeFirstName">Comments</label>
  <div class="alert alert-primary"><b><?=$endorserComments?></b><br></div>
<? if ($endorserFile <> '') { ?>
  <label for="nomineeFirstName">Uploaded File</label>
  <div class="alert alert-primary"><b><a href="https://award.accsindia.org/uploads/<?=$endorserFile?>" target="_blank">View</a></b><br></div>
<? } ?>

<? } ?>
 </div>
</div>
</div>
<?
}

// Search Form
if ($act == 'search') {
?>
<ol class="breadcrumb mt-4 mb-3">
 <li class="breadcrumb-item"><a href="dashboard.php">Dashboard</a></li>
 <li class="breadcrumb-item active">Nomination</li>
</ol>
<form id="frmSearch" name="frmSearch">
<div class="card">
 <div class="card-header">Search Nominations</div>
 <div class="card-body">
  <div class="form-inline">
   <div class="form-group mr-2">
    <label for="srcNominatorName" class="col-form-label-sm">Name</label>
    <input type="txt" class="form-control ml-0 ml-sm-2" id="srcNominationName" name="srcNominatorName" />
   </div>
   <div class="form-group ml-0 ml-sm-4">
    <label for="srcIsValidated" class="col-form-label-sm">Status</label>
    <div class="form-check form-check-inline ml-0 ml-sm-4">
     <label class="form-control radio-inline border-0 pl-1"><input type="radio" id="srcNominationStatus" name="srcNominationStatus" value="n"> Not Submitted</label>
     <label class="form-control radio-inline border-0 pl-1"><input type="radio" id="srcNominationStatus" name="srcNominationStatus" value="s"> Submitted</label>
     <label class="form-control radio-inline border-0 pl-1"><input type="radio" id="srcNominationStatus" name="srcNominationStatus" value="p"> Partially Endorsed</label>
     <label class="form-control radio-inline border-0 pl-1"><input type="radio" id="srcNominationStatus" name="srcNominationStatus" value="f"> Fully Endorsed</label>
     <label class="form-control radio-inline border-0 pl-1"><input type="radio" id="srcNominationStatus" name="srcNominationStatus" value="" CHECKED> All</label>
    </div>
   </div>
   <div class="col text-right">
    <button type="submit" class="btn btn-primary mt-2 mt-sm-0" onclick="return searchNomination()">Show</button>
   </div>
  </div>
 </div>
</div>
<div id="panelSearch"></div>
<input type="hidden" id="act" name="act" value="searchResults" />
</form>
<?
}

// Search Result
if ($act == 'searchResults') {
 $pageNum = isset($_POST["pageNum"]) ? $_POST["pageNum"] : 0;
 $srcNominationName = isset($_POST["srcNominationName"]) ? $_POST["srcNominationName"] : '';
 $srcNominationStatus = isset($_POST["srcNominationStatus"]) ? $_POST["srcNominationStatus"] : '';
 $numRecords = 20;
 $startOrder = ($pageNum * $numRecords);
 $sql = "SELECT SQL_CALC_FOUND_ROWS * FROM nomination WHERE id>0";
 if ($srcNominationName != '') $sql .= " AND (fname LIKE '%$srcNominationName%' OR sname LIKE '%$srcNominationName%')";
 if ($srcNominationStatus == 'n') $sql .= " AND submitted=''";
 if ($srcNominationStatus == 's') $sql .= " AND submitted='YES'";
 if ($srcNominationStatus == 'p') $sql .= " AND (endorsed1 IS NOT NULL OR endorsed2 IS NOT NULL OR endorsed3 IS NOT NULL)";
 if ($srcNominationStatus == 'f') $sql .= " AND (endorsed1 IS NOT NULL AND endorsed2 IS NOT NULL AND endorsed3 IS NOT NULL)";
 $sql .= " ORDER BY fname,sname LIMIT " . $startOrder . "," . ($numRecords+1);
 $result = mysqli_query($con, $sql);
 $numRows = mysqli_num_rows($result);
 $sql = "SELECT FOUND_ROWS()";
 $resultCount = mysqli_query($con, $sql);
 $rowCount = mysqli_fetch_array($resultCount);
 $totalCount = $rowCount[0];
 if ($numRows == 0) {
  echo '<div class="m-2">No results found!</div>';
 } else {
?>
<div class="table-responsive">
<table class="table table-sm mt-3">
<thead class="thead-light">
 <tr>
  <th width="20"></th>
  <th>Nominator</th>
  <th>Email</th>
  <th>Submitted</th>
  <th>Endorser 1</th>
  <th>Endorser 2</th>
  <th>Endorser 3</th>
  <th width="30"></th>
 </tr>
</thead>
<?
  $j = 0;
  for ($i=0;$i<$numRows;$i++) {
   if ($i < $numRecords) {
    $row = mysqli_fetch_array($result);
    $nominationId = $row['id'];
    $nominationName = $row['fname'] . ' ' . $row['sname'];
    $nominationEmail = $row['email'];
    $nominationSubmitted = $row['submitted'];
    $nominationEndorsed1 = $row['endorsed1'];
    $nominationEndorsed2 = $row['endorsed2'];
    $nominationEndorsed3 = $row['endorsed3'];

$sql = "SELECT * FROM endorser WHERE nominationid=$nominationId";
    $resultInner = mysqli_query($con, $sql);
    $rowInner = mysqli_fetch_array($resultInner);
    $endorserSalutation1 = $rowInner["salutation"];
    $endorserFirstName1 = $rowInner["fname"];
    $endorserLastName1 = $rowInner["sname"];
    $endorserPhone1 = $rowInner["phone"];
    $endorserEmail1 = $rowInner["email"];

$rowInner = mysqli_fetch_array($resultInner);
    $endorserSalutation2 = $rowInner["salutation"];
    $endorserFirstName2 = $rowInner["fname"];
    $endorserLastName2 = $rowInner["sname"];
    $endorserPhone2 = $rowInner["phone"];
    $endorserEmail2 = $rowInner["email"];

$rowInner = mysqli_fetch_array($resultInner);
    $endorserSalutation3 = $rowInner["salutation"];
    $endorserFirstName3 = $rowInner["fname"];
    $endorserLastName3 = $rowInner["sname"];
    $endorserPhone3 = $rowInner["phone"];
    $endorserEmail3 = $rowInner["email"];
    $j += 1;
?>
<tr>
 <th><?=$startOrder+$i+1?>.</th>
 <td><?=$nominationName?></td>
 <td><?=$nominationEmail?></td>
 <td><? if ($nominationSubmitted == 'YES') { ?><i class="far fa-check-circle fa-2x"></i><? } ?></td>
 <td>
  <?=$endorserSalutation1?> <?=$endorserFirstName1?> <?=$endorserLastName1?><br>
  <?=$endorserEmail1?>, <?=$endorserPhone1?><br>
  <? if ($nominationEndorsed1 == 'YES') { ?>
   <a href="#" class="cursorH detailRow" data-id="<?=$nominationId?>" data-num="1">View Endorsement</a>
  <? } else { ?>
   <span class="text-danger">Endorsement pending</span>
  <? } ?>
 </td>
 <td>
  <?=$endorserSalutation2?> <?=$endorserFirstName2?> <?=$endorserLastName2?><br>
  <?=$endorserEmail2?>, <?=$endorserPhone2?><br>
  <? if ($nominationEndorsed2 == 'YES') { ?>
   <a href="#" class="cursorH detailRow" data-id="<?=$nominationId?>" data-num="2">View Endorsement</a>
  <? } else { ?>
   <span class="text-danger">Endorsement pending</span>
  <? } ?>
 </td>
 <td>
  <?=$endorserSalutation3?> <?=$endorserFirstName3?> <?=$endorserLastName3?><br>
  <?=$endorserEmail3?>, <?=$endorserPhone3?><br>
  <? if ($nominationEndorsed3 == 'YES') { ?>
   <a href="#" class="cursorH detailRow" data-id="<?=$nominationId?>" data-num="3">View Endorsement</a>
  <? } else { ?>
   <span class="text-danger">Endorsement pending</span>
  <? } ?>
 </td>
 <td align="center" title="View Nomination"><i data-id="<?=$nominationId?>" class="viewRow cursorHand far fa-eye fa-lg"></i></td>
</tr>
<?
   }
  }
?>
</table>
</div>
<div id="listingPageNum" class="float-left text-success" data-pagenum="<?=$pageNum?>">Showing <?=$startOrder+1?> to <?=$startOrder+$j?> of <?=$totalCount?> entries</div>
<div class="float-right" align="right">
<? if ($pageNum > 0) { ?><button class="btn btn-warning" onclick="return searchNomination(<?=$pageNum-1?>)"><</button><? } ?>
<? if ($numRows > $numRecords) { ?><button class="btn btn-warning" style="margin-left:5px" onclick="return searchNomination(<?=$pageNum+1?>)">></button><? } ?>
</div>
<div class="cleaner"></div>
<br>
<br>
<?
 }
?>
<script type="text/javascript">
$(function () {
 $('.detailRow').magnificPopup({
  type: 'ajax',
  closeBtnInside: true,
  ajax: {
   settings: {
    method: 'POST',
    url: 'process/get.section.nomination.php'
   }
  },
  callbacks: {
   elementParse: function(item){
    postData = {
     act: 'viewEndorsement',
     id: $(item.el[0]).data('id'),
     num: $(item.el[0]).data('num')
    }
    this.st.ajax.settings.data = postData;
   }
  }
 });
 $('.viewRow').magnificPopup({
  type: 'ajax',
  closeBtnInside: true,
  ajax: {
   settings: {
    method: 'POST',
    url: 'process/get.section.nomination.php'
   }
  },
  callbacks: {
   elementParse: function(item){
    postData = {
     act: 'view',
     id: $(item.el[0]).data('id')
    }
    this.st.ajax.settings.data = postData;
   }
  }
 });
});
</script>
<?
}