ikan Uploader :
Directory : /var/www/html/shardahospital.org/cowin/application/controllers/admin/
Upload File : |
| Current File : /var/www/html/shardahospital.org/cowin/application/controllers/admin/Managebooking.php |
<?php
defined('BASEPATH') OR exit('No direct script access allowed');
/**
* Description of managebooking
*
* @author : Sharda Tech Pvt. Ltd
*/
class Managebooking extends CI_Controller {
//variable for storing error message
private $error;
//variable for storing success message
private $success;
function __construct() {
parent::__construct();
//load this to validate the inputs in upload form
$this->load->model(array('Events_Model'));
if(! $this->session->userdata('adid'))
redirect('admin/login');
}
//appends all error messages
private function handle_error($err) {
$this->error .= $err . "\r\n";
}
//appends all success messages
private function handle_success($succ) {
$this->success .= $succ . "\r\n";
}
public function index(){
$data = array();
$role_id = $this->session->userdata('adid')->role_id;
$author_id = $this->session->userdata('adid')->id;
$roleArray = array('8');
$data['recorddetails'] = array();
// Get All user Records
//$condArray = array('tbl_event_master.status'=>'1', 'tbl_event_master.is_deleted'=>'0');
if($role_id>6){
$condArray['author_id'] =$author_id;
}
//print_r($role_id);die;
if($_GET['status'])
{
$condArray['tbl_order_master.status'] = $_GET['status'];
}
if($_GET['user_type'])
{
if($_GET['user_type']=='1') {
$condArray['tbl_user_registration.company_name'] = '';
} else {
$condArray['tbl_user_registration.company_name<>'] = '';
}
}
if($_GET['from_date']!='' && $_GET['to_date']!='') {
$betweenDate = array('from_date'=>$_GET['from_date'],'to_date'=>$_GET['to_date']);
$data['recorddetails'] = $this->Events_Model->getAllBookingOrderRecords($condArray, $betweenDate);
} else {
if($_GET['from_date']) {
$condArray['tbl_order_master.createdon'] = $_GET['from_date'];
$data['recorddetails'] = $this->Events_Model->getAllBookingOrderRecords($condArray);
}
if($_GET['to_date']) {
$condArray['tbl_order_master.createdon'] = $_GET['to_date'];
$data['recorddetails'] = $this->Events_Model->getAllBookingOrderRecords($condArray);
} else {
$data['recorddetails'] = $this->Events_Model->getAllBookingOrderRecords($condArray);
}
}
if($_GET['download']=='1') {
$this->downloadData($data['recorddetails']);
}
$this->load->view('admin/_parts/header',$data);
$this->load->view('admin/managebooking/index',$data);
$this->load->view('admin/_parts/footer');
setHistory('Go to manage Covid Profile listing module');
}
/*
* Function : addprofile
*
*
*/
public function addprofile($id='')
{
$userArray = $this->session->userdata('adid');
$author_id = $userArray->id;
$role_id = $userArray->role_id;
$data = array();
if($_POST){
$this->form_validation->set_rules('full_name','Full Name','required');
$this->form_validation->set_rules('contact_number','Contact Number','required');
$this->form_validation->set_rules('aadhar_number','Aadhar Number','required');
if($this->form_validation->run())
{
$full_name = $this->input->post('full_name');
$old_photo_proof = $this->input->post('old_photo_proof');
$contact_number = $this->input->post('contact_number');
$aadhar_number = $this->input->post('aadhar_number');
$email_id = $this->input->post('email_id');
$address = $this->input->post('address');
$gender = $this->input->post('gender');
$onsite_collection = $this->input->post('onsite_collection');
$age = $this->input->post('age');
$status = $this->input->post('status');
$photo_proof = $this->uploadDocuments();
if($old_photo_proof<>'' && $photo_proof=='') {
$photo_proof = $old_photo_proof;
}
$data = array(
'full_name'=>$full_name,
'age'=>$age,
'aadhar_number'=>$aadhar_number,
'contact_number'=>$contact_number,
'email_id'=>$email_id,
'photo_proof'=>$photo_proof,
'onsite_collection'=>$onsite_collection,
'gender'=>$gender,
'address'=>$address,
'ip_address'=>get_client_ip(),
'status'=>$status
);
if($this->input->post('id')){
$id = $this->input->post('id');
$this->Events_Model->updateinfo($tbl_name='tbl_booking_confirmation',$data,'id',$id);
setHistory('User Profile updated successfully');
} else {
$data['author_id'] = $author_id;
$data['createdon'] = date('Y-m-d H:i:s');
$eventId = $this->Events_Model->saveinfo($tbl_name='tbl_booking_confirmation',$data);
// Save Data In tbl_event_date_time
}
redirect('admin/managecovidtest');
} else {
$this->load->view('admin/_parts/header');
$this->load->view('admin/managecovidtest/addprofile');
$this->load->view('admin/_parts/footer');
}
} else {
if($id>0){
$data['sd'] = $sd = $this->Events_Model->getSingleRecord('tbl_booking_confirmation',' * ', array('id'=>$id));
}
//load the error and success messages
$data['errors'] = $this->error;
$data['success'] = $this->success;
//load the view along with data
$this->load->view('admin/_parts/header',$data);
$this->load->view('admin/managecovidtest/addprofile',$data);
$this->load->view('admin/_parts/footer');
setHistory('Go to Add Profile');
}
}
/*
* Function : uploadDocuments
* Description : Upload the documents
*/
private function uploadDocuments()
{
$config['upload_path'] = './attachments/documents/';
$config['allowed_types'] = 'gif|jpg|png|jpeg|JPG|PNG|JPEG|PDF|pdf|SVG|svg|avi|mp4|3gp|mpeg|mpg|mov|mp3|flv|wmv';
$this->load->library('upload', $config);
$this->upload->initialize($config);
if (!$this->upload->do_upload('photo_proof')) {
log_message('error', 'Image Upload Error: ' . $this->upload->display_errors());
}
$img = $this->upload->data();
return $img['file_name'];
}
/*
* Function : viewbooking
*
*
*/
public function viewbooking($id='')
{
$data = array();
$author_id = $this->session->userdata('adid')->id;
if($_POST['save']=='Save')
{
$dataArray = array();
$dataArray['booking_id'] = $_POST['oid'];
$dataArray['admin_id'] = $author_id;
$dataArray['author_id'] = $author_id;
$dataArray['event_status'] = $_POST['status'];
$dataArray['order_id'] = $_POST['order_id'];
$dataArray['comment'] = $_POST['comment'];
$dataArray['user_id'] = $id;
$dataArray['createdon'] = date('Y-m-d H:i:s');
$eventId = $this->Events_Model->saveinfo($tbl_name='tbl_order_approval_transaction',$dataArray);
$evmArray = array();
$evmArray = array('status'=>$_POST['status']);
$this->Events_Model->updateinfo($tbl_name='tbl_booking_confirmation',$evmArray,'id',$id);
}
$condArray = array();
$condArray['tbl_order_master.id'] = $id;
$recordsArray = $this->Events_Model->getAllBookingOrderRecords($condArray);
$data['recordsArray'] = $recordsArray[0];
// Get All Comments
$data['commentsDetails'] = $this->Events_Model->getAllRecords('tbl_order_approval_transaction', '*', array('order_id'=>$recordsArray[0]['order_id']));
// Get Slot Master Data
$data['slotDetails'] = $this->Events_Model->getSingleRecord('tbl_slot_master', '*', array('id'=>$recordsArray[0]['slot_id']));
// Get Test Master Data
$data['testDetails'] = $this->Events_Model->getSingleRecord('tbl_test_master', '*', array('id'=>$recordsArray[0]['test_id']));
// Get Tranasaction details
$data['bookingDetails'] = $this->Events_Model->getSingleRecord('tbl_payment_transactions', '*', array('order_id'=>$recordsArray[0]['order_id']));
$this->load->view('admin/_parts/header',$data);
$this->load->view('admin/managebooking/viewbooking',$data);
$this->load->view('admin/_parts/footer');
setHistory('Go to profile view');
}
/*
* Function : downloadData
*/
function downloadData($dataArray)
{
$role_id = $this->session->userdata('adid')->role_id;
header( "Content-Type: text/csv;charset=utf-8" );
header("Content-Disposition: attachment; filename=COWIN-19-Payment-".date('Y-m-d').".csv");
header("Pragma: no-cache");
header("Expires: 0");
$file = fopen('php://output', 'w');
$header = array("S.No.","Order Id","Full Name","DOB","Age","Email ID","Company Name", "Contact No.", "Address", "Date/Time","Payment Method","Transaction Id","Amount", "ID Proof", "Status");
fputcsv($file, $header);
$k=1;
foreach ($dataArray as $row){
$contact_number = $id_proof = $email_id = 'Lock';
if($role_id=='1') {
$email_id = $row['email_id'];
$contact_number = $row['contact_number'];
$id_proof = $row['id_proof'] .'-'.$row['aadhar_number'];
}
$transDetails = $this->Events_Model->getSingleRecord('tbl_payment_transactions', '*', array('order_id'=>$row['order_id']));
$data = array($k,"'".$row['order_id'], $row['full_name'],$row['dob'],$row['age'],$email_id,$row['company_name'], $contact_number, $row['address'], $row['transaction_date'],$row['payment_method'], "'".$transDetails['transaction_id'],$row['amount'],$id_proof, PAYMENT_STATUS[$row['ostatus']]);
$k++;
fputcsv($file,$data);
}
fclose($file);
exit();
}
}
Kontol Shell Bypass