diff --git a/panel_manager/edit_sessions.php b/panel_manager/edit_sessions.php index b6a3716..f34f630 100644 --- a/panel_manager/edit_sessions.php +++ b/panel_manager/edit_sessions.php @@ -1,61 +1,66 @@ processesForm(null, $cinema, null, null, "list"); - require_once('./includes/listFilms.php'); $filmList = new Film_DAO('complucine'); - $films = $filmList->allFilmData(); + if($filmList){ + $films = $filmList->allFilmData(); + }else { + $films = null; + } //DISCLAIMER; sabemos que si se edita la ulr se pueden acceder a datos de una sesion que no pertenece al usuario y que incluso puede hasta editarlas/borrarlas en la base de datos if(isset($_REQUEST['option']) && $_REQUEST['option'] == 'edit') { - $bd = new sessionDAO('complucine'); - if($bd){ - $session = ($bd->sessionData($_GET["id"]))->fetch_assoc(); - echo "

Editar/Eliminar Sesion

-
+ echo "
+

Editar/Eliminar Sesion

+
Datos - - + +
- +
+ echo " +
+
Horario
- +
- -
-
-
Introducir un numero para añadir esta sesion a los futuros X dias - +
- + - +
@@ -63,17 +68,18 @@
diff --git a/panel_manager/includes/formHall.php b/panel_manager/includes/formHall.php index 1da2ee0..d8e580a 100644 --- a/panel_manager/includes/formHall.php +++ b/panel_manager/includes/formHall.php @@ -5,8 +5,8 @@ include_once('../assets/php/form.php'); class FormHall extends Form { //Atributes: - private $correct; // Indicates if the session is correct. - private $reply; // Validation response + private $correct; + private $reply; private $option; private $halls; @@ -20,7 +20,8 @@ class FormHall extends Form { //Returns validation response: public function getReply() { - //Habria que comprobar si realmente se ha validado la respuesta antes de escribir una respuesta correcta + + echo "

se va a devolver una respuesta

"; if($this->correct){ if($this->option == "new"){ $this->reply = "

Operacion realizada con exito


@@ -35,6 +36,7 @@ class FormHall extends Form {

Se ha eliminado la sala correctamente en la base de datos.

"; }else if($this->option == "list"){ + echo "

se va a devolver la lista

"; $this->reply = $this->halls; } } else { @@ -56,7 +58,7 @@ class FormHall extends Form { if($option == "list"){ $this->halls = $bd->getAllHalls($cinema); }else { - /* + /* TODO $start = date('H:i:s', strtotime( $start ) ); if($option == "new"){ diff --git a/panel_manager/includes/formSession.php b/panel_manager/includes/formSession.php index c27804b..aab2439 100644 --- a/panel_manager/includes/formSession.php +++ b/panel_manager/includes/formSession.php @@ -2,25 +2,22 @@ include_once('session_dao.php'); include_once('../assets/php/form.php'); +//Receive data from froms and prepare the correct response class FormSession extends Form { - - //Atributes: - private $correct; // Indicates if the session is correct. - private $reply; // Validation response + //Atributes + private $correct; + private $reply; private $option; private $sessions; - //Constructor: +//Constructor: public function __construct() { parent::__construct('formSession'); $this->reply = array(); } - - //Methods: - - //Returns validation response: + + //Methods: public function getReply() { - //Habria que comprobar si realmente se ha validado la respuesta antes de escribir una respuesta correcta if($this->correct){ if($this->option == "new"){ $this->reply = "

Operacion realizada con exito


@@ -45,46 +42,39 @@ class FormSession extends Form { return $this->reply; } - //Process form: public function processesForm($id, $film, $hall, $cinema, $date, $start, $price, $format, $repeat, $option) { $this->option = $option; $this->correct = true; + $bd = new sessionDAO('complucine'); - - $date = date('Y-m-d', strtotime( $date ) ); - + if($bd ){ if($option == "list"){ - $this->sessions = $bd->getAllSessionsFromDateHallAndCinema($cinema, $hall, $date); + $this->sessions = $bd->getAllSessionsFromACinemaHallDate($cinema, $hall, $date); + }else { - - $start = date('H:i:s', strtotime( $start ) ); - if($option == "new"){ - - $selectSession = $bd->selectSession($cinema, $hall, $start, $date); - if($selectSession && $selectSession->num_rows >= 1) { + $searchSession = $bd->searchSession($cinema, $hall, $start, $date); + if($searchSession) { $this->correct = false; } else{ $bd->createSession(null, $film, $hall,$cinema, $date, $start, $price, $format); } - - mysqli_free_result($selectSession); } else if ($option == "del"){ $bd->deleteSession($id); } else if ($option == "edit"){ $bd->editSession($id, $film, $hall, $cinema, $date, $start, $price, $format); + } if($repeat > "0"){ $repeat--; $date = date('Y-m-d', strtotime( $date. ' +1 day') ); - $this->processesForm($film, $hall, $cinema, $date, $start, $price, $format, $repeat); + $this->processesForm($id, $film, $hall, $cinema, $date, $start, $price, $format, $repeat, $option); } } - } else {$this->correct = false;} } } diff --git a/panel_manager/includes/session_dao.php b/panel_manager/includes/session_dao.php index 66bfd80..a304030 100644 --- a/panel_manager/includes/session_dao.php +++ b/panel_manager/includes/session_dao.php @@ -3,16 +3,16 @@ include_once('session_dto.php'); class SessionDAO extends DAO { - //Constructor: function __construct($bd_name){ parent::__construct($bd_name); } - //Methods: - - //Create a new Session. + public function createSession($id, $idfilm, $idhall, $idcinema, $date, $startTime, $seatPrice, $format){ + $format = $this->mysqli->real_escape_string($format); + $date = date('Y-m-d', strtotime( $date ) ); + $startTime = date('H:i:s', strtotime( $startTime ) ); $sql = sprintf( "INSERT INTO `session` (`id`, `idfilm`, `idhall`, `idcinema`, `date`, `start_time`, `seat_price`, `format`) VALUES ('%d', '%d', '%d', '%d', '%s', '%s', '%d', '%s')", @@ -29,25 +29,30 @@ $resul = mysqli_query($this->mysqli, $sql) or die ('Error into query database en sessionData con la id '. $id); return $resul; - } + } - //Returns a query to check if the session in this cinema, hall and scheudle exists. - public function selectSession($cinema, $hall, $start, $date){ - if($start == null){ - $sql = sprintf( "SELECT * FROM session WHERE - idcinema = '%s' AND idhall = '%s' AND date = '%s'", - $cinema, $hall, $date); - }else{ - $sql = sprintf( "SELECT * FROM session WHERE + //Returns the count of the session searched + public function searchSession($cinema, $hall, $startTime, $date){ + $date = date('Y-m-d', strtotime( $date ) ); + $startTime = date('H:i:s', strtotime( $startTime ) ); + + $sql = sprintf( "SELECT COUNT(*) FROM session WHERE idcinema = '%s' AND idhall = '%s' AND date = '%s' AND start_time = '%s'", - $cinema, $hall, $date, $start); - } + $cinema, $hall, $date, $startTime); $resul = mysqli_query($this->mysqli, $sql) or die ('Error into query database'); - return $resul; + + $session = null; + $session = mysqli_fetch_array($resul); + + mysqli_free_result($resul); + + return $session[0]; } - - public function getAllSessionsFromDateHallAndCinema($cinema, $hall, $date){ + //Returns a query to get all the session's data. + public function getAllSessionsFromACinemaHallDate($cinema, $hall, $date){ + $date = date('Y-m-d', strtotime( $date ) ); + $sql = sprintf( "SELECT * FROM session WHERE idcinema = '%s' AND idhall = '%s' AND date = '%s'", $cinema, $hall, $date); @@ -58,15 +63,16 @@ while($fila=mysqli_fetch_array($resul)){ $sessions[] = $this->loadSession($fila["id"], $fila["idfilm"], $fila["idhall"], $fila["idcinema"], $fila["date"], $fila["start_time"], $fila["seat_price"], $fila["format"]); } - mysqli_free_result($resul); return $sessions; } - //Edit Session. public function editSession($id, $idfilm, $idhall, $idcinema, $date, $startTime, $seatPrice, $format){ - + $format = $this->mysqli->real_escape_string($format); + $date = date('Y-m-d', strtotime( $date ) ); + $startTime = date('H:i:s', strtotime( $startTime ) ); + $sql = sprintf( "UPDATE `session` SET `idfilm` = '%d' , `idhall` = '%d', `idcinema` = '%d', `date` = '%s', `start_time` = '%s', `seat_price` = '%d', `format` = '%s' @@ -78,7 +84,6 @@ return $resul; } - //Delete Session. public function deleteSession($id){ $sql = sprintf( "DELETE FROM `session` WHERE `session`.`id` = '%d';",$id); @@ -88,7 +93,6 @@ return $resul; } - //Create a new Session Data Transfer Object. public function loadSession( $id, $idfilm, $idhall, $idcinema, $date, $startTime, $seatPrice, $format){ return new SessionDTO( $id, $idfilm, $idhall, $idcinema, $date, $startTime, $seatPrice, $format); diff --git a/panel_manager/includes/session_dto.php b/panel_manager/includes/session_dto.php index 24f1d04..99ade75 100644 --- a/panel_manager/includes/session_dto.php +++ b/panel_manager/includes/session_dto.php @@ -4,14 +4,14 @@ class SessionDTO implements SessionsDTO { //Attributes: - private $_id; //Session Id. - private $_idfilm; //Film Id -> deberia ser un objeto tipo pelicula? para poder sacar el nombre de la pelicula en cuestion - private $_idhall; //Hall id -> deberia ser un objeto tipo room/hall/sala de cine por lo mismo + private $_id; + private $_idfilm; + private $_idhall; private $_idcinema; - private $_date; //Session date. - private $_startTime; //Session start time. - private $_seatPrice; //Seat price. - private $_format; //Type of film: 3D | 4D | normal | subtitle | mute. + private $_date; + private $_startTime; + private $_seatPrice; + private $_format; //Constructor: function __construct($id, $idfilm, $idhall, $idcinema, $date, $startTime, $seatPrice, $format){ diff --git a/panel_manager/includes/session_dto_interface.php b/panel_manager/includes/session_dto_interface.php index 7095583..651716f 100644 --- a/panel_manager/includes/session_dto_interface.php +++ b/panel_manager/includes/session_dto_interface.php @@ -6,6 +6,8 @@ public function getIdfilm(); public function setIdhall($film); public function getIdhall(); + public function setIdcinema($cinema); + public function getIdcinema(); public function setDate($date); public function getDate(); public function setStartTime($startTime); diff --git a/panel_manager/index.php b/panel_manager/index.php index 8957579..610e158 100644 --- a/panel_manager/index.php +++ b/panel_manager/index.php @@ -1,16 +1,13 @@ get_prefix(); + //General Config File: + require_once('../assets/php/config.php'); include_once('panel_manager.php'); $login = false; - if(isset($_SESSION["login"]) && $_SESSION["nombre"] == "manager") $login = true; + if(isset($_SESSION["login"]) && $_SESSION["rol"] == "manager") $login = true; if(isset($_REQUEST['state'])) { $panel = new Panel($_REQUEST['state'],$login); @@ -18,8 +15,6 @@ else { $panel = new Panel('',$login); } - // IMPORTANTE: - // VERIFICAR QUE ES MANAGER(GERENTE), SI NO, MOSTRAR MENSAJE DE "ERROR" ?> - - Sala". $r->getNumber() ." - - Editar + Editar "; } echo " \n"; - echo "Añadir + echo "Añadir "; } drawHalls($rooms); diff --git a/panel_manager/manage_sessions.php b/panel_manager/manage_sessions.php index 7818f25..e9ebf1f 100644 --- a/panel_manager/manage_sessions.php +++ b/panel_manager/manage_sessions.php @@ -1,16 +1,15 @@ get_prefix(); + include_once('./includes/hall_dto.php'); + include_once('./includes/formHall.php'); - require($prefix.'panel_admin/includes/film_dto.php'); - require($prefix.'/panel_admin/includes/film_dao.php'); + include_once('./includes/session_dto.php'); + include_once('./includes/formSession.php'); + + include_once('../panel_admin/includes/film_dto.php'); + include_once('../panel_admin/includes/film_dao.php'); $formSession = new FormSession(); $formHall = new FormHall(); @@ -27,9 +26,10 @@ $formHall->processesForm(null, $cinema, null, null, "list"); $formSession->processesForm(null, null, $placeholder_hall, $cinema, $placeholder_date, null, null, null, null, "list"); - echo"
- -
+ echo" + +
+ -
"; + +
"; + function drawSessions($sessions,$bd){ echo " -
+
@@ -67,13 +70,25 @@ - + + + getId()."\"> + getIdfilm()."\"> + getIdhall()."\"> + getIdcinema()."\"> + getDate()."\"> + getStartTime()."\"> + getSeatPrice()."\"> + getFormat()."\"> + + + "; } echo "
" . str_replace('_', ' ', $film["tittle"]) . " " . $s->getFormat() . " " . $s->getSeatPrice() . " getid() ."\"/>
- +
"; } @@ -87,13 +102,11 @@
"; } } else { - echo "
-

No hay ninguna session en la sala ". $placeholder_hall . " el dia ". $placeholder_date . "

- -
"; + echo " + +
+

No hay ninguna session en la sala ". $placeholder_hall . " el dia ". $placeholder_date . "

+ +
"; } - echo " - - "; -?> - +?> \ No newline at end of file diff --git a/panel_manager/panel_manager.php b/panel_manager/panel_manager.php index 0eadbc0..c242059 100644 --- a/panel_manager/panel_manager.php +++ b/panel_manager/panel_manager.php @@ -12,16 +12,16 @@ function showPanel() { if($this->login){ switch($this->state) { - case 'us_u': require('user_unregistered_view.php'); break; - case 'us_r': require('user_registered_view.php'); break; - case 'rooms': require('manage_rooms.php'); break; - case 'sessions': require('manage_sessions.php'); break; - case 'edit_session': require('edit_sessions.php'); break; + case 'us_u': echo "

Esta vista no esta implementada

"; break; + case 'us_r': echo "

Esta vista no esta implementada

"; break; + case 'rooms': require_once('manage_rooms.php'); break; + case 'sessions': require_once('manage_sessions.php'); break; + case 'edit_session': require_once('edit_sessions.php'); break; default: require('hello_panel.php'); break; } } else{ - require('no_permisions_panel.php'); + echo "

Error no tienes los permisos necesarios de gerente

"; } } } diff --git a/panel_manager/validateSession.php b/panel_manager/validateSession.php index 1d55f6d..18921a6 100644 --- a/panel_manager/validateSession.php +++ b/panel_manager/validateSession.php @@ -1,31 +1,22 @@ processesForm($id, $_POST["film"], $_POST["hall"], $_POST["cinema"],$_POST["date"],$_POST["start"],$_POST["price"],$_POST["format"],$_POST["repeat"], $action); - $reply = $session->getReply(); + $reply = "

ERROR DE ACCESO

" ; + + if(isset($_POST['new'])){ + $session->processesForm(null, $_POST["film"], $_POST["hall"], $_POST["cinema"],$_POST["date"],$_POST["start"],$_POST["price"],$_POST["format"],$_POST["repeat"], "new"); + $reply = $session->getReply(); + + } else if (isset($_POST['edit'])){ + $session->processesForm($_POST["id"], $_POST["film"], $_POST["hall"], $_POST["cinema"],$_POST["date"],$_POST["start"],$_POST["price"],$_POST["format"],"0", "edit"); + $reply = $session->getReply(); + + } else if (isset($_POST['del'])){ + $session->processesForm($_POST["id"], $_POST["film"], $_POST["hall"], $_POST["cinema"],$_POST["date"],$_POST["start"],$_POST["price"],$_POST["format"],"0", "del"); + $reply = $session->getReply(); + } ?>