Verze 1.1
// spojení s databází
@$conn = mysql_connect("localhost","ustredna","ustredna_www5")
or die ("Nelze navázat spojení s databazí");
@$sdb = mysql_select_db("ustredna")
or die ("Nenalezena databaze");
?>
// uvodni inicializace
session_start();
if (isset($_SESSION['user_login'])) { ;
}
else {
$_SESSION['user_login'] = " ";
}
if (isset($_SESSION['user_pass'])) { ;
}
else {
$_SESSION['user_pass'] = " ";
}
$parametr='';
if (isset($_GET))
{ while(list($name,$value) = each($_GET))
{
$$name = $value;
$parametr .='G'.$name.':'.$value.';';
};
};
if (isset($_POST))
{while(list($name,$value) = each($_POST))
{
$$name = $value;
$tmp_value=$value;
if (is_array($value)) {
$tmp_value='';
foreach ($value as $value1 => $value2) {
if (is_array($value2)) {
$tmp_value .= $value1.'-(';
foreach ($value2 as $value21 => $value22) {
$tmp_value .= $value21.'-'.$value22.',';
}
$tmp_value .= ')';
} else {
$tmp_value .= $value1.'-'.$value2.',';
}
}
}
$parametr .='P'.$name.':'.$tmp_value.';';
};
};
// include "/var/www/html/crm/config.php";
//$crm_srv=$sugar_config['dbconfig']['db_host_name'];
//$crm_db=$sugar_config['dbconfig']['db_name'];
//$crm_name=$sugar_config['dbconfig']['db_user_name'];
//$crm_pass=$sugar_config['dbconfig']['db_password'];
$dnes_cz=date("d.m.Y");
$dnes_en=date("Y-m-d");
$tyden_en = array("sun", "mon", "tue", "wed", "thu", "fri", "sat" );
$tyden_cz = array("NedÄ›le", "PondÄ›lÃ", "Úterý", "StÅ™eda", "ÄŒtvrtek", "Pátek", "Sobota" );
$mesic_en = array("jan", "feb", "mar", "apr","may","jun", "jul", "aug", "sep", "oct", "nov", "dec" );
$mesic_cz = array("Leden", "Únor", "BÅ™ezen", "Duben", "KvÄ›ten", "ÄŒerven", "ÄŒervenec", "Srpen","ZářÃ","ŘÃjen","Listopad","Prosinec" );
// $mtime_14 = mktime(0, 0, 0, date("m"), date("d")+14, date("Y"));
// $dnes_cz_14=date("d.m.Y",$mtime_14);
// $mtime_10 = mktime(0, 0, 0, date("m"), date("d")+10, date("Y"));
// $dnes_cz_10=date("d.m.Y",$mtime_10);
// $mtime_pm = mktime(0, 0, 0, date("m"), 0, date("Y"));
// $dnes_cz_pm=date("d.m.Y",$mtime_pm);
if(!function_exists('add_extensions')){
function add_extensions($kategory,$prikaz,$param,$userid){
global $debug;
$dotaz="INSERT INTO `ast_config` (`cat_metric` , `var_metric` , `filename` , `category` , `var_name` , `var_val`, `userid` ) VALUES ";
$dotaz=$dotaz."('0','0','extensions.conf', '$kategory', '$prikaz', '$param',$userid);";
if ($debug==1){ echo $dotaz.'
'; }
$sql_asterisk = mysql_query("$dotaz");
if ($debug==1){
$a=mysql_error();
echo $a;
}
}
}
if(!function_exists('cislo_jmeno')){
function cislo_jmeno($cislo,$userid){
global $debug;
include './conn.php';
if (strlen($cislo)==9){
$sql_txt = 'SELECT tel_list from general where userid like "'.$userid.'" ';
$sql_radek = mysql_query($sql_txt);
$zaz_radek=mysql_fetch_array($sql_radek);
$list_id=$zaz_radek["tel_list"];
$hledej_cislo='00420'.$cislo;
} else {
$hledej_cislo=$cislo;
}
//$sql_txt = 'SELECT * from list where userid like "'.$userid.'" and idnazev="'.$list_id.'" and (cislo like "'.$hledej_cislo.'%" or CONCAT("00420", cislo) like "'.$hledej_cislo.'%" ) ';
$sql_txt = 'SELECT * from list where userid like "'.$userid.'" and (cislo like "'.$hledej_cislo.'%" or CONCAT("00420", cislo) like "'.$hledej_cislo.'%" ) ';
//echo $sql_txt;
$sql_radek = mysql_query($sql_txt);
$zaz_radek=mysql_fetch_array($sql_radek);
//echo $zaz_radek[0];
if ($debug==1){
$a=mysql_error();
echo $a;
}
$tmp=$zaz_radek["prijmeni"].' '.$zaz_radek["jmeno"];
if ($tmp=='' or $tmp==' '){
$tmp=$cislo;
} else {
$tmp=$cislo.' ('.$tmp.')';
}
return ($tmp);
}
}
if(!function_exists('poslat_sms')){
function poslat_sms($cislo,$text){
global $debug;
$textkod=urlencode($text);
$adresa='http://mikrotech.sipcz.net:13003/cgi-bin/sendsms?';
$adresa .= 'from=00420775100990&to='.$cislo.'&';
$adresa .= 'username=mikrotech&password=NuWK2000';
$adresa .= '&text='.$textkod;
$fh = fopen("$adresa", "r");
$contents = fread($fh, 1000);
fclose($fh);
return ($contents);
}
}
if(!function_exists('odeslat')){
function odeslat ($postdata) {
$W_SERVER_IP="cfg.sipcz.net";
$W_SERVER_PORT="4111";
$cid=0;
$W_ODP="-1";
@$fp = stream_socket_client("tcp://$W_SERVER_IP:$W_SERVER_PORT",
$errno, $errstr, 5);
if (!$fp) {
$W_ODP = '-1';
} else {
fwrite($fp, $postdata);
stream_set_timeout($fp, 5);
$W_ODP = fread($fp, 2000);
fclose($fp);
}
return ($W_ODP);
}
}
if(!function_exists('encrypt_decrypt')){
function encrypt_decrypt($action, $string) {
$output = false;
$encrypt_method = "AES-256-CBC";
$secret_key = 'This is my secret key';
$secret_iv = 'This is my secret iv';
// hash
$key = hash('sha256', $secret_key);
$iv = hash('sha256', $secret_iv);
if( $action == 'encrypt' ) {
$output = openssl_encrypt($string, $encrypt_method, $key, $iv);
$output = base64_encode($output);
}
else if( $action == 'decrypt' ){
$output = $decryptedMessage = openssl_decrypt(base64_decode($string), $encrypt_method, $key, $iv);
}
return $output;
}
}
?>
include "./conn_asterisk.php";
if (isset($u_login))
{ settype($u_login, "string");
$_SESSION['user_login']=$u_login;
//setcookie('user_login', base64_encode(serialize($u_login)), time()+10800, '/', 'mikrotech.sipcz.net');
} else {
$u_login='';
}
if (isset($u_pass))
{ settype($u_pass, "string");
$_SESSION['user_pass']=$u_pass;
//setcookie('user_pass', base64_encode(serialize($u_pass)), time()+10800, '/', 'mikrotech.sipcz.net');
} else { $u_pass=''; }
if (isset($cislo))
{ settype($cislo, "string");
} else {
$cislo='';
}
if (isset($x_login)) {
$_SESSION['user_login']=" ";
}
// overíme uživatele v databázi podle loginu a hesla.
if (!isset($_SESSION['led'])) $_SESSION['led']="";
if (!isset($_SESSION['user_login'])) $_SESSION['user_login']="";
if (!isset($_SESSION['user_pass'])) $_SESSION['user_pass']="";
if (!isset($_SESSION['advance'])) $_SESSION['advance']="0";
$user_login1=$_SESSION['user_login'];
$user_pass1=$_SESSION['user_pass'];
$led=$_SESSION['led'];
$prihlasen='';
$id_uzivatele='';
$userid='';
$logjmeno='';
$tmplog=0;
@$sqltxt = "SELECT id,context,userid,user_login,olo,nazev,kredit,kredit_cas FROM sip_devices WHERE user_login LIKE '".$user_login1."' AND user_pass like '".$user_pass1."'";
//echo $sqltxt;
@$sql = mysql_query("$sqltxt");
$pocet_cisel=mysql_num_rows($sql);
if ($pocet_cisel > 0)
{
$zaz=mysql_fetch_array($sql);
$userid = $zaz['userid'];
$tmplog=1;
$prava=0;
$id_uzivatele=$zaz['id']; //id_user
$prihlasen=$zaz['user_login']; //name
$context=$zaz['context']; //user_login
$olo=$zaz['olo']; //user_login
$nazevfirmy=$zaz['nazev']; //nazev
$nazevfirmy = iconv('windows-1250','utf-8',$nazevfirmy);
$kredit=$zaz['kredit']; //kredit
$kredit_cas=$zaz['kredit_cas']; //kredit
$tmp = strtotime($kredit_cas);
$kredit_cas=date("d.m.Y h:j",$tmp);
} else {
// pokud se neprihlasil hlavnim heslem, zkusime jestli heslem cisla
@$sqltxt = "SELECT id,context,userid,user_login,olo,nazev,kredit,kredit_cas FROM sip_devices WHERE name LIKE '".$user_login1."' AND secret like '".$user_pass1."'";
@$sql = mysql_query("$sqltxt");
$pocet_cisel=mysql_num_rows($sql);
if ($pocet_cisel > 0)
{
$zaz=mysql_fetch_array($sql);
$userid = $zaz['userid'];
$tmplog=1;
$prava=-1;
$id_uzivatele=$zaz['id']; //id_user
$prihlasen=$zaz['user_login']; //name
$context=$zaz['context']; //user_login
$olo=$zaz['olo']; //user_login
$nazevfirmy=$zaz['nazev']; //nazev
$nazevfirmy = iconv('windows-1250','utf-8',$nazevfirmy);
$kredit=$zaz['kredit']; //kredit
$kredit_cas=$zaz['kredit_cas']; //kredit
}
}
if ($userid<>''){
include "./conn.php";
$dnes_cas_en=date("Y-m-d H:i:s");
$sqltxt = 'UPDATE general set vumlik_last_access="'.$dnes_cas_en.'" WHERE userid="'.$userid.'" ';
$sql_upd = mysql_query("$sqltxt");
$sqltxt = 'SELECT castka FROM safe_total WHERE userid="'.$userid.'" ';
$sql_safe = mysql_query("$sqltxt");
$pocet = mysql_num_rows($sql_safe);
$castka_safe = 0;
if ($pocet>0){
$zaz_safe=mysql_fetch_array($sql_safe);
$castka_safe = $zaz_safe['castka']*1.21;
$castka_safe = round($castka_safe,2);
}
}
if ($u_login<>''){
//prihlaseni
$dnes_cas_en=date("Y-m-d H:i:s");
if ($userid<>''){
//prihlaseni OK
$dotaz='INSERT INTO log (datum,userid,ip,prohlizec,akce)';
$dotaz=$dotaz." VALUES('$dnes_cas_en','$userid','$_SERVER[REMOTE_ADDR]','$_SERVER[HTTP_USER_AGENT]','login ok')";
$sql = mysql_query("$dotaz");
$sqltxt = 'SELECT vumlik_last_notify,vumlik_last_news FROM general WHERE userid="'.$userid.'" ';
$sql_safe = mysql_query("$sqltxt");
$zaz_safe=mysql_fetch_array($sql_safe);
$last_notify = $zaz_safe['vumlik_last_notify'];
$last_news = $zaz_safe['vumlik_last_news'];
if ($last_notify==''){$last_notify='2000-01-01 00:00:00';}
if ($last_news==''){$last_news='2000-01-01 00:00:00';}
//zjistime zda nema zmeskany hovor
$filtr_zmeskane=1;
$filtr_cas_od=$last_notify;
$filtr_cas_do=$dnes_cas_en;
include "./inc_vypis_hovoru.php";
$i=0;
if (isset($vypis_pole)){
foreach ($vypis_pole as $key => $row) {
$i=$i+1;
}
}
if ($i>0){
$led="light2.gif";
} else {
$led="nolight.jpg";
}
//zjistime zda nejsou novinky
include "./conn.php";
$sqltxt = 'SELECT count(*) as pocet FROM novinky WHERE datum_vlozeni>="'.$last_news.'" ';
//echo $sqltxt;
$sql_safe = mysql_query("$sqltxt");
$a=mysql_error();
//echo $a;
$zaz_safe=mysql_fetch_array($sql_safe);
$pocet = $zaz_safe['pocet'];
if ($pocet>0){
$led="light1.gif";
}
if (isset($led)) $_SESSION['led']=$led; else { $led=''; }
} else {
$dotaz='INSERT INTO log (datum,userid,ip,prohlizec,akce)';
$dotaz=$dotaz." VALUES('$dnes_cas_en','-1','$REMOTE_ADDR','login ko')";
$sql = mysql_query("$dotaz");
//prihlaseni KO
}
}
if ($tmplog==0){
$id_uzivatele='';
$user_login1='';
$x_login='';
}
?>