'; exit; } else { $_SESSION['name'] = $info['firstName']." ".$info['lastName']; $_SESSION['email'] = $info['email']; $_SESSION['permission'] = 1; $_SESSION['searchPreferences'] = explode(":", $info['searchPreferences']); $_SESSION['opportunitiesAppliedTo'] = explode(":", $info['opportunitiesAppliedTo']); $_SESSION['type'] = "volunteers"; $_SESSION['ID'] = $info['ID']; echo ''; exit; } } elseif ($type == "organizations") { if ($info['isPending'] == 1) {$msg = 105; return $msg;} elseif ($info['passwordReset'] == 1) { echo ''; exit; } else { $_SESSION['name'] = $info['name']; $_SESSION['contact'] = $info['contactFirstName'].' '.$info['contactLastName']; $_SESSION['permission'] = $info['permissionLevel']; $_SESSION['email'] = $info['email']; $_SESSION['userID'] = 'o'.$info['ID']; $_SESSION['ID'] = $info['ID']; $_SESSION['type'] = "organizations"; if ($info['type'] == "" || $info['website'] == "") { echo ''; exit; } else { echo ''; exit; } } } elseif ($type == "users") { if ($info['passwordReset'] == 1) { echo ''; exit; } else { $_SESSION['name'] = $info['firstName']." ".$info['lastName']; $_SESSION['permission'] = $info['permissionLevel']; $_SESSION['email'] = $info['email']; $_SESSION['userID'] = $info['ID']; $_SESSION['ID'] = $info['ID']; $_SESSION['type'] = "users"; echo ''; exit; } } } } } /* ================== - checkField - $table: the name of the table in the database - $column: the column name that is checked Description: This function is used to check if a field exists in the table specified. i.e $data = getInfo($table, $column, $value); ====================*/ function checkField($table, $column) { $fields = mysql_list_fields(DB_NAME, $table); $columns = mysql_num_fields($fields); for ($i = 0; $i < $columns; $i++) {$field_array[] = mysql_field_name($fields, $i);} if (!in_array($column, $field_array)) {return false;} else {return true;} } /* ================== - checkTable - $table: the name of the table in the database Description: This function is used to check if a table exists. ====================*/ function checkTable($table) { $checkTable = @mysql_query("SELECT * FROM ".$table); if (!$checkTable) {return false;} else {return true;} } /* ================== - getInfo - $table: the name of the table in the database - $column: which columen you wish to use as a search parameter - $value: the string being used to search through the database - $orderBy: the column(s) in the table in which to organize the information by - $orderType: order by ASC or DESC. Defaults to ASC if anything else is chosen - $startFrom: the number in the LIMIT syntax indicating where to start the database query - $limit: the number in the LIMIT syntax indicating how many results to obtain Description: This function is used to retrieve information from the database. Example: $data = getInfo("table_name", "name", "Bob", "lastName", "DESC", 0, 15); ====================*/ function getInfo( $table="", $column="", $value="", $orderBy="", $orderType="", $start="", $limit="" ) { $table = mysql_real_escape_string($table); if (!is_array($column)) {$column = mysql_real_escape_string($column);} if (!is_array($value)) {$value = mysql_real_escape_string($value);} $orderBy = mysql_real_escape_string($orderBy); $orderType = mysql_real_escape_string($orderType); $start = mysql_real_escape_string($start); $limit = mysql_real_escape_string($limit); // Needs at least a table name to access some database values if ($table == "") {echo 'Table name is at least needed to use the "getInfo" function
'; return;} elseif (!checkTable($table)) {echo 'That table does not exist in this database.
'; return;} // begins to build the query string to be used $query = "SELECT * FROM `".$table."`"; if ($column !== "" && $value !== "") { if (is_array($column) && is_array($value)) { if (count($column) != count($value)) {echo 'The two arrays for the field and values to query with multiples conditions must be the same amount.'; return;} $total = count($column); $query .= " WHERE"; for ($i=0; $i<$total; $i++) { if (!checkField($table, $column[$i])) {echo 'The field "'.$column[$i].'" does not exist in the "'.$table.'" table.
'; return;} $query .= " `".mysql_real_escape_string($column[$i])."`='".mysql_real_escape_string($value[$i])."'"; if ($i != ($total-1)) {$query .= " AND";} } } elseif (!is_array($column) && is_array($value) || is_array($column) && !is_array($values)) { echo 'Both the 2nd and 3rd parameters must be an array if you\'re going to use multiple conditional statements'; return; } else { $query .= " WHERE `".$column."`='".$value."'"; } } if ($orderBy !== "" && $orderType !== "") { if (checkField($table, $orderBy) && $orderType == "ASC" || $orderType == "DESC") { $query .= " ORDER BY `".$orderBy."` ".$orderType; } else { if (!checkField($table, $orderBy)) {echo "That field does not exist.
"; return;} elseif ($orderType !== "ASC" && $orderType !== "DESC") { echo 'Please use either "ASC" or "DESC" to determine how the information should be organized.
'; } } } // Checks to make sure only number values are used for the LIMIT property if ($start !== "" && $limit !== "") { if (is_numeric($start) && is_numeric($limit)) { if ($start >= 0 && $limit >= 0) {$query .= " LIMIT ".floor($start).", ".floor($limit);} else {echo 'Please use only positive numbers.
'; return;} } else {echo 'Please use only number values.
'; return;} } $results = mysql_query($query); // Checks to see if there were results or not. If yes, then assigns variables to $info if (mysql_num_rows($results) == 0) {return false;} else { for ($i=0; $i'; return;} elseif (!checkTable($table)) {echo 'That table does not exist in this database.
'; return;} if ( $retrieveColumn == "" || $table == "" || $whereColumn == "" || $value == "" ) { return; } $query = "SELECT `".$retrieveColumn."` FROM `".$table."` WHERE `".$whereColumn."`='".$value."'"; $retrieve = mysql_query($query); if (mysql_num_rows($retrieve) == 0) {return;} $value = mysql_fetch_assoc($retrieve); return $value[$retrieveColumn]; } /* ================== - getPageNumbers - $retrieveColumn: the column field you wish to retrieve the information from - $table: the name of the table in the database - $whereColumn: the column you want to use to search. Usually references a column from another table. - $value: the value used to search and isolate the value. Description: Gets the values needed to display page numbers. ====================*/ function getPageNumbers( $limit="", $pageNumber=0, $table="", $column="", $value="", $link="", $linkSeparator=" ", $useDropdown=0 ) { $limit = mysql_real_escape_string($limit); $pageNumber = mysql_real_escape_string($pageNumber); $table = mysql_real_escape_string($table); $column = mysql_real_escape_string($column); $value = mysql_real_escape_string($value); if ($table == "") {echo 'A table name needs to included.
'; return;} elseif (!checkTable($table)) {echo 'The table "'.$table.'" does not exist in this database.
'; return;} if ($limit !== "") { if (is_numeric($limit)) { if ($limit <= 0) {echo 'Please use only positive numbers.
'; return;} } else {echo 'Please use only number values for the limit parameter.
'; return;} } else { echo 'The "limit" parameter is needed to use this function.
'; return; } $start = $pageNumber * $limit; $query = "SELECT * FROM `".$table."`"; if ($column !== "" && $value !== "") {$query .= " WHERE `".$column."`='".$value."'";} $retrieve = mysql_query($query); $total = mysql_num_rows($retrieve); $pages = ceil($total/$limit); if ($pages >= 29) {$useDropdown = 1;} if ($total == 0) {echo 'There are no pages.
'; return;} else { if ($useDropdown == 1) { echo ''; ?> > ';} ?>';} ?>'; return;} elseif (!checkTable($table)) {echo 'That table does not exist in this database.
'; return;} if (!is_array($columnsArray)) {echo 'The 2nd parameter must be an array of the fields to have values inserted.
'; return;} if (!is_array($valuesArray)) {echo 'The 3rd parameter must be an array of values to be inserted into the corresponding array of field names.
'; return;} $query = "INSERT INTO `".$table."` ("; $columnsTotal = count($columnsArray); $valuesTotal = count($valuesArray); $c = 0; $v = 0; foreach ($columnsArray as $field) { $query .= "`".$field."`"; $c++; if ($c !== $columnsTotal) {$query .= ", ";} } $query .= ") VALUES ("; foreach ($valuesArray as $value) { if ($value !== "NOW()") {$query .= "'".mysql_real_escape_string($value)."'";} else {$query .= "NOW()";} $v++; if ($v !== $valuesTotal) {$query .= ", ";} } $query .= ")"; $insert = mysql_query($query); if ($insert) {return true;} else {return false;} } /* ================== - updateInfo - $table: Name of the table to insert the values to - $columnsArray: An array made up of the fields to be update. - $valuesArray: An array of the value to update the table. Must correspond properly with the columns array. - $conditionalField: The field used for the "WHERE" syntax in query statement. Usually the ID - $contitionalValue: The value used in isolate which row to update Description: Updates information in the database ====================*/ function updateInfo ($table, $columnsArray, $valuesArray, $conditionField, $conditionValue) { if ($table == "") {echo 'A table name needs to included'; return;} elseif (!checkTable($table)) {echo 'The table "'.$table.'" does not exist in this database.
'; return;} if (!is_array($columnsArray)) {echo 'The 2nd parameter must be an array of the fields to have values inserted.
'; return;} if (!is_array($valuesArray)) {echo 'The 3rd parameter must be an array of values to be inserted into the corresponding array of field names.
'; return;} if ($conditionField == "") {echo 'The 4th parameter, the WHERE condition is required to be the name of the column.
'; return;} elseif (!checkField($table, $conditionField)) {echo 'That field "'.$conditionField.'" does not exist in the "'.$table.'" table.
'; return;} if ($conditionValue == "") {echo 'The 5th parameter, the value for the WHERE condition is required.
'; return;} $columnsTotal = count($columnsArray); $valuesTotal = count($valuesArray); if ($columnsTotal != $valuesTotal) {echo 'The two arrays must have the same amount of values.
'; return;} $query = "UPDATE `".$table."` SET "; for ($i=0; $i<$columnsTotal; $i++) { $query .= "`".$columnsArray[$i]."`='".mysql_real_escape_string($valuesArray[$i])."'"; if ($i != $columnsTotal-1) {$query .= ", ";} } $query .= " WHERE `".$conditionField."`='".$conditionValue."'"; $update = mysql_query($query); if ($update) {return true;} else {return false;} } /* ================== - deleteInfo - $table: Name of the table to delete the row from - $conditionalField: Field to use when determining which row to delete - $contitionalValue: The value used in isolate which row to delete Description: Updates information in the database ====================*/ function deleteInfo($table, $conditionField, $conditionValue) { if ($table == "") {echo 'A table name needs to included.
'; return;} elseif (!checkTable($table)) {echo 'The table "'.$table.'" does not exist in this database.
'; return;} if ($conditionField == "") {echo 'The 2nd parameter, the WHERE condition is required to be the name of the column.
'; return;} elseif (!checkField($table, $conditionField)) {echo 'That field "'.$conditionField.'" does not exist in the "'.$table.'" table.
'; return;} if ($conditionValue == "") {echo 'The 3rd parameter, the value for the WHERE condition is required.
'; return;} $query = "DELETE FROM `".$table."` WHERE `".$conditionField."`='".$conditionValue."'"; $delete = mysql_query($query); if ($delete) {return true;} else {return false;} } ?>