mkejriwal
diff --git a/‎add.php
Lines changed: 53 additions & 0 deletions b/‎add.php
Lines changed: 53 additions & 0 deletions
diff --git a/‎add_save.php
Lines changed: 101 additions & 0 deletions b/‎add_save.php
Lines changed: 101 additions & 0 deletions
diff --git a/‎clubs.php
Lines changed: 63 additions & 0 deletions b/‎clubs.php
Lines changed: 63 additions & 0 deletions
diff --git a/‎confirm_delete.php
Lines changed: 54 additions & 0 deletions b/‎confirm_delete.php
Lines changed: 54 additions & 0 deletions
diff --git a/‎confirm_delete_post.php
Lines changed: 59 additions & 0 deletions b/‎confirm_delete_post.php
Lines changed: 59 additions & 0 deletions
@@ -0,0 +1,53 @@
+<?php
+if (!isset($_SESSION)) session_start();
+
+    if (($_SESSION['userlevel'] === NULL) OR ($_SESSION['userlevel'] == 0)) {
+        die ("<h3 style='text-align: center; color: coral; margin-bottom: 10px'><span style='color: red'>Haha</span>! C'mon you can do better!</h3><form style='text-align: center' action=\"logout.php\" method=\"post\"><button style='font-size: larger' class=\"form1 btn btn-info btn-block\">Back</button><br/><br/></form>");
+    }
+?>
+
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <title>Add New Account (Admin) : CCNB</title>
+    <meta charset="utf-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1">
+    <link rel="stylesheet" href="css/style.css">
+    <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css">
+    <script src="https://ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js"></script>
+    <script src="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js"></script>
+    <link href="//maxcdn.bootstrapcdn.com/font-awesome/4.1.0/css/font-awesome.min.css" rel="stylesheet">
+    <link rel="shortcut icon" href="img/logo.png" type="image/x-icon">
+    <link rel="icon" href="img/logo.png" type="image/x-icon">
+</head>
+<body>
+
+    <form action="loggedin.php" method="post">
+        <button class="form1 btn btn-warning btn-block">Back</button><br/><br/>
+    </form>
+    <div class="form">
+        <h2 class="heading" id="head">Add New Account </h2>
+    </div>
+
+    <form action="add_save.php" class="form2" method="post">
+        <input name="username" type="text" class="form-control" placeholder="1. Username" required/><br/>
+        <input name="password" type="password" class="form-control" placeholder="2. Password" required/><br/>
+        <input name="department" type="text" class="form-control" placeholder="3. Department's Name" required/><br/>
+        <textarea name="description" rows="3" class="form-control" placeholder="4. About Department..." required></textarea><br/>
+        <input name="link" type="url" class="form-control" placeholder="5. Department's link"/><br/>
+        <input name="name" type="text" class="form-control" placeholder="6. Profile Name" required/><br/>
+        <select name="userlevel" class="form-control" required><option value="NULL">User</option><option value="1">Admin</option></select><br/>
+        <input name="designation" type="text" class="form-control" placeholder="8. Designation" required/><br/>
+        <input name="website" type="url" class="form-control" placeholder="9. Profile Holder's Website"/><br/>
+        <input name="phone" type="tel" class="form-control" placeholder="10. Phone Number" required/><br/>
+        <input name="email" type="email" class="form-control" placeholder="11. E-Mail Id" required/><br/>
+        <br/><input name="password1" type="password" class="form-control" placeholder="*Your Own Password" required/><br/>
+        <input type="submit" class="form1 btn btn-success btn-sm" value="Proceed"/>
+    </form>
+
+    <form action="loggedin.php" method="post">
+        <button class="form1 btn btn-warning btn-block">Back</button><br/><br/>
+    </form>
+
+</body>
+</html>
@@ -0,0 +1,101 @@
+<?php
+    if (!isset($_SESSION)) session_start();
+
+    if (($_SESSION['userlevel'] === NULL) OR ($_SESSION['userlevel'] == 0)) {
+        die ("<h3 style='text-align: center; color: coral; margin-bottom: 10px'><span style='color: red'>Haha</span>! C'mon you can do better!</h3><form style='text-align: center' action=\"logout.php\" method=\"post\"><button style='font-size: larger' class=\"form1 btn btn-info btn-block\">Back</button><br/><br/></form>");
+    }
+?>
+
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <title>Save New Account (Admin) : CCNB</title>
+    <meta charset="utf-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1">
+    <link rel="stylesheet" href="css/style.css">
+    <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css">
+    <script src="https://ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js"></script>
+    <script src="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js"></script>
+    <link href="//maxcdn.bootstrapcdn.com/font-awesome/4.1.0/css/font-awesome.min.css" rel="stylesheet">
+    <link rel="shortcut icon" href="img/logo.png" type="image/x-icon">
+    <link rel="icon" href="img/logo.png" type="image/x-icon">
+</head>
+<body>
+
+    <?php
+
+            require 'connect.php';
+
+            if (isset($_SESSION['password'])) {
+                $pass = $_SESSION['password'];
+
+                if (isset($_POST['username']) AND isset($_POST['password']) AND isset($_POST['department']) AND isset($_POST['description']) AND isset($_POST['link']) AND isset($_POST['name']) AND isset($_POST['userlevel']) AND isset($_POST['designation']) AND isset($_POST['website']) AND isset($_POST['phone']) AND isset($_POST['email']) AND isset($_POST['password1'])) {
+                    $password1 = md5($_POST['password1']);
+
+                    if ($pass === $password1) {
+                        $username = addslashes($_POST['username']);
+                        $password = md5($_POST['password']);
+                        $department = addslashes($_POST['department']);
+                        $description = addslashes($_POST['description']);
+                        $link = $_POST['link'];
+                        $name = addslashes($_POST['name']);
+                        $userlevel = $_POST['userlevel'];
+                        $designation = addslashes($_POST['designation']);
+                        $website = $_POST['website'];
+                        $phone = $_POST['phone'];
+                        $email = $_POST['email'];
+
+                        $insert = "INSERT INTO departments (department, dep_description, linked) VALUES ('$department', '$description', '$link')";
+                        $res = mysqli_query($mysql, $insert) or die ("<h5 style=\"margin-bottom: 100px; text-align: center; color: coral\">Something went <span style=\"color: red\">wrong</span>! (<span style=\"color: red\">Database or Server issue</span>)</h5><form action=\"add.php\" method=\"post\"><button class=\"form1 btn btn-success btn-block\">Back</button></form>");
+                        if ($res === TRUE) {
+
+                            $query = "SELECT * FROM departments WHERE department='$department'";
+                            $result = mysqli_query($mysql, $query)  or die ("<h5 style=\"margin-bottom: 100px; text-align: center; color: coral\">Something went <span style=\"color: red\">wrong</span>! (<span style=\"color: red\">Database or Server issue</span>)</h5><form action=\"add.php\" method=\"post\"><button class=\"form1 btn btn-success btn-block\">Back</button></form>");
+                            while ($row = mysqli_fetch_assoc($result)) {
+                                $departmentID = $row['departmentId'];
+
+                                $insert1 = "INSERT INTO login_details (departmentId, username, password, name, userlevel) VALUES ('$departmentID', '$username', '$password', '$name', '$userlevel')";
+                                $result1 = mysqli_query($mysql, $insert1) or die ("<h5 style=\"margin-bottom: 100px; text-align: center; color: coral\">Something went <span style=\"color: red\">wrong</span>! (<span style=\"color: red\">Database or Server issue</span>)</h5><form action=\"add.php\" method=\"post\"><button class=\"form1 btn btn-success btn-block\">Back</button></form>");
+                                if ($result1 === TRUE) {
+
+                                    $insert2 = "INSERT INTO contact_info (departmentId, designation, website, phone, email) VALUES ('$departmentID','$designation', '$website', '$phone', '$email')";
+                                    $result2 = mysqli_query($mysql, $insert2) or die ("<h5 style=\"margin-bottom: 100px; text-align: center; color: coral\">Something went <span style=\"color: red\">wrong</span>! (<span style=\"color: red\">Database or Server issue</span>)</h5><form action=\"add.php\" method=\"post\"><button class=\"form1 btn btn-success btn-block\">Back</button></form>");
+                                    if ($result2 === TRUE) {
+
+                                        if ($userlevel == 1) {
+
+                                            echo "<h3 style='text-align: center; color: #2daae4; margin-bottom: 10px'>Congratulations! New <span style='color: dodgerblue'>ADMIN</span> has been added successfully.</h3>";
+                                            include 'add.php';
+                                        } else {
+                                            echo "<h3 style='text-align: center; color: #2daae4; margin-bottom: 10px'>Congratulations! New <span style='color: dodgerblue'>USER</span> has been added successfully.</h3>";
+                                            include 'add.php';
+                                        }
+                                    } else {
+                                        echo "<h3 style='text-align: center; color: coral; margin-bottom: 10px'>Sorry! Couldn't enter <span style='color: red'>details</span>!.3</h3>";
+                                        include 'add.php';
+                                    }
+                                } else {
+                                    echo "<h3 style='text-align: center; color: coral; margin-bottom: 10px'>Sorry! Couldn't enter <span style='color: red'>details</span>!.2</h3>";
+                                    include 'add.php';
+                                }
+                            }
+                        } else {
+                            echo "<h3 style='text-align: center; color: coral; margin-bottom: 10px'>Sorry! Couldn't enter <span style='color: red'>details</span>!.1</h3>";
+                            include 'add.php';
+                        }
+                    } else {
+                        echo "<h3 style='text-align: center; color: coral; margin-bottom: 10px'>Make sure your <span style='color: red'>password</span> is correct!</h3>";
+                        include 'add.php';
+                    }
+                } else {
+                    echo "<h3 style='text-align: center; color: coral; margin-bottom: 10px'>Make sure all <span style='color: red'>entries</span> are filled with constraints!</h3>";
+                    include 'add.php';
+                }
+            } else {
+                echo "<h3 style='text-align: center; color: coral; margin-bottom: 10px'>Make sure you're <span style='color: red'>logged in</span>!</h3>";
+                include 'add.php';
+            }
+    ?>
+
+</body>
+</html>
@@ -0,0 +1,63 @@
+<?php
+    if (!isset($_SESSION)) session_start();
+?>
+
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <title>Clubs : CCNB</title>
+    <meta charset="utf-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1">
+    <link rel="stylesheet" href="css/style.css">
+    <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css">
+    <script src="https://ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js"></script>
+    <script src="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js"></script>
+    <link href="//maxcdn.bootstrapcdn.com/font-awesome/4.1.0/css/font-awesome.min.css" rel="stylesheet">
+    <link rel="shortcut icon" href="img/logo.png" type="image/x-icon">
+    <link rel="icon" href="img/logo.png" type="image/x-icon">
+</head>
+<body>
+    <!-- header -->
+    <?php
+        include 'header.php';
+    ?>
+    <!-- background image -->
+    <div class="container-fluid">
+        <div class="row" style="max-height: 500px; min-height: 500px; overflow: hidden;">
+            <div class="image">
+                <img src="img/bg.png" alt="Centralised College Notice Board" />
+                <h1 class="col-lg-12">Centralised College Notice Board</h1>
+            </div>
+        </div>
+    </div>
+    <!-- content -->
+    <div class="form"><h2 id="head">Departments & Clubs</h2></div>
+    <div class="container-fluid" style="max-width: 95%">
+        <div class="row">
+            <?php
+                require "connect.php";
+
+                $query = "SELECT * FROM departments";
+                $result = mysqli_query($mysql, $query) or die('<h3>Sorry! Couldn\'t connect. (0)</h3>');
+                while ($row = mysqli_fetch_assoc($result)) {
+                    $departmentID = $row['departmentId'];
+
+                        $query1 = "SELECT * FROM departments WHERE departmentId='$departmentID'";
+                        $result1 = mysqli_query($mysql, $query1) or die('<h3>Sorry! Couldn\'t connect. (1)</h3>');
+                        while ($row1 = mysqli_fetch_assoc($result1)) {
+                            $department = $row1['department'];
+                            $description = $row1['dep_description'];
+                            $link = $row1['linked'];
+
+                            echo '<div class="col-lg-3" style="padding: 10px;"><div style="overflow: scroll; padding: 15px; text-align: center; border-radius: 5px; max-height: 700px; min-height: 700px; background-color: dimgrey;"><h3 class="form2"><a id="link" style="color: aliceblue" href="' . $link . '" target="_blank">' . $department . '</a></h3><p style="color: white; white-space: pre-line">' . $description . '</p><form style="margin-top: 80px" method="post" action="visit2.php"><button name="department" value="' . $department . '" type="submit" class="form1 btn btn-primary btn-block">Visit posts</button></form></div></div>';
+                        }
+                }
+            ?>
+        </div>
+    </div>
+    <!-- footer -->
+    <?php
+        include 'footer.php';
+    ?>
+</body>
+</html>
@@ -0,0 +1,54 @@
+<?php
+    if (!isset($_SESSION)) session_start();
+
+    if (($_SESSION['userlevel'] === NULL) OR ($_SESSION['userlevel'] == 0)) {
+        die ("<h3 style='text-align: center; color: coral; margin-bottom: 10px'><span style='color: red'>Haha</span>! C'mon you can do better!</h3><form style='text-align: center' action=\"logout.php\" method=\"post\"><button style='font-size: larger' class=\"form1 btn btn-info btn-block\">Back</button><br/><br/></form>");
+    }
+?>
+
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <title>Confirm Delete Account (Admin) : CCNB</title>
+    <meta charset="utf-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1">
+    <link rel="stylesheet" href="css/style.css">
+    <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css">
+    <script src="https://ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js"></script>
+    <script src="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js"></script>
+    <link href="//maxcdn.bootstrapcdn.com/font-awesome/4.1.0/css/font-awesome.min.css" rel="stylesheet">
+    <link rel="shortcut icon" href="img/logo.png" type="image/x-icon">
+    <link rel="icon" href="img/logo.png" type="image/x-icon">
+</head>
+<body>
+
+    <?php
+        require 'connect.php';
+
+        if (isset($_SESSION['username']) AND isset($_SESSION['departId'])) {
+            $departID= $_SESSION['departId'];
+
+            $query = "DELETE FROM departments WHERE departmentId='$departID'";
+            $result = mysqli_query($mysql, $query) or die ('<h3>Something went wrong!.</h3>');
+
+                $query4 = "DELETE FROM contact_info WHERE departmentId='$departID'";
+                $result4 = mysqli_query($mysql, $query4) or die ('<h3>Something went wrong!.4</h3>');
+
+                    $query1 = "SELECT * FROM login_details WHERE departmentId='$departID'";
+                    $result1 = mysqli_query($mysql, $query1) or die ('<h3>Something went wrong!.1</h3>');
+                    while ($row1 = mysqli_fetch_assoc($result1)) {
+                        $username = $row1['username'];
+
+                        $query2 = "DELETE FROM notification WHERE username='$username'";
+                        $result2 = mysqli_query($mysql, $query2) or die ('<h3>Something went wrong!.2</h3>');
+
+                            $query3 = "DELETE FROM login_details WHERE username='$username'";
+                            $result3 = mysqli_query($mysql, $query3) or die ('<h3>Something went wrong!.3</h3>');
+                    }
+
+            echo '<h3 style="text-align: center; color: coral; margin-bottom: 10px;">Account has been <span style="color: red">deleted</span> successfully!</h3><form action="edit_others_profile.php" method="post"><button class="form1 btn btn-success btn-block">Back to Control Panel</button></form>';
+        }
+    ?>
+
+</body>
+</html>
@@ -0,0 +1,59 @@
+<?php
+if (!isset($_SESSION)) session_start();
+
+if (($_SESSION['userlevel'] === NULL) OR ($_SESSION['userlevel'] == 0)) {
+    echo "<!DOCTYPE html>
+                <html lang=\"en\">
+                <head>
+                    <title>Confirm Delete post (Non-Admin) : CCNB</title>
+                    <meta charset=\"utf-8\">
+                    <meta name=\"viewport\" content=\"width=device-width, initial-scale=1\">
+                    <link rel=\"stylesheet\" href=\"css/style.css\">
+                    <link rel=\"stylesheet\" href=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css\">
+                    <script src=\"https://ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js\"></script>
+                    <script src=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js\"></script>
+                    <link href=\"//maxcdn.bootstrapcdn.com/font-awesome/4.1.0/css/font-awesome.min.css\" rel=\"stylesheet\">
+                    <link rel=\"shortcut icon\" href=\"img/logo.png\" type=\"image/x-icon\">
+                    <link rel=\"icon\" href=\"img/logo.png\" type=\"image/x-icon\">
+                </head>
+                <body>";
+} else {
+    echo "<!DOCTYPE html>
+                    <html lang=\"en\">
+                    <head>
+                        <title>Confirm Delete post (Admin) : CCNB</title>
+                        <meta charset=\"utf-8\">
+                        <meta name=\"viewport\" content=\"width=device-width, initial-scale=1\">
+                        <link rel=\"stylesheet\" href=\"css/style.css\">
+                        <link rel=\"stylesheet\" href=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css\">
+                        <script src=\"https://ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js\"></script>
+                        <script src=\"https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js\"></script>
+                        <link href=\"//maxcdn.bootstrapcdn.com/font-awesome/4.1.0/css/font-awesome.min.css\" rel=\"stylesheet\">
+                        <link rel=\"shortcut icon\" href=\"img/logo.png\" type=\"image/x-icon\">
+                        <link rel=\"icon\" href=\"img/logo.png\" type=\"image/x-icon\">
+                    </head>
+                    <body>";
+}
+?>
+
+<?php
+    require 'connect.php';
+
+    if (isset($_SESSION['username']) AND $_POST['delete']) {
+        $notificationID = $_POST['delete'];
+
+        $query = "DELETE FROM notification WHERE notificationId='$notificationID'";
+        $result = mysqli_query($mysql, $query) or die ("<h3>Sorry! Couldn't connect!</h3>");
+
+            echo "<h3 style='text-align: center; color: #2daae4; margin-bottom: 10px'>Dear <span style='color: dodgerblue'>" . $_SESSION['name'] . "</span>, your post has been <span style='color: red'>deleted</span> successfully.</h3>";
+            include 'view_post.php';
+    } else {
+        die ('<h3 style="text-align: center; color: coral; margin-bottom: 10px;">Something went wrong!</h3>  
+                        <form action="loggedin.php" method="post">
+                            <button class="form1 btn btn-success btn-block">Back</button>
+                        </form>');
+    }
+?>
+
+</body>
+</html>