mirror of
https://github.com/FH-Complete/FHC-Core.git
synced 2026-06-01 12:19:28 +00:00
KarpAlex
1178 lines
29 KiB
PHP
1178 lines
29 KiB
PHP
<?php
|
|
/* Copyright (C) 2006 Technikum-Wien
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License as
|
|
* published by the Free Software Foundation; either version 2 of the
|
|
* License, or (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program; if not, write to the Free Software
|
|
* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307, USA.
|
|
*
|
|
* Authors: Christian Paminger <christian.paminger@technikum-wien.at>,
|
|
* Andreas Oesterreicher <andreas.oesterreicher@technikum-wien.at> and
|
|
* Rudolf Hangl <rudolf.hangl@technikum-wien.at>.
|
|
*/
|
|
require_once(dirname(__FILE__).'/basis_db.class.php');
|
|
require_once(dirname(__FILE__).'/authentication.class.php');
|
|
require_once(dirname(__FILE__).'/betriebsmittelperson.class.php');
|
|
require_once(dirname(__FILE__).'/personlog.class.php');
|
|
//require_once(dirname(__FILE__).'/benutzerberechtigung.class.php');
|
|
|
|
// Auth: Benutzer des Webportals
|
|
/**
|
|
* DEPRECATED - Use Authentication Class
|
|
*/
|
|
function get_uid()
|
|
{
|
|
$auth = new authentication();
|
|
return $auth->getUser();
|
|
}
|
|
|
|
/**
|
|
* DEPRECATED - Use Authentication Class
|
|
*/
|
|
function is_user_logged_in()
|
|
{
|
|
$auth = new authentication();
|
|
return $auth->isUserLoggedIn();
|
|
}
|
|
/**
|
|
* DEPRECATED - Use Authentication Class
|
|
*/
|
|
function get_original_uid()
|
|
{
|
|
$auth = new authentication();
|
|
return $auth->getOriginalUser();
|
|
}
|
|
|
|
/**
|
|
* DEPRECATED - Use Authentication Class
|
|
*/
|
|
function login_as_user($uid)
|
|
{
|
|
$auth = new authentication();
|
|
return $auth->loginAsUser($uid);
|
|
}
|
|
|
|
function crlf()
|
|
{
|
|
// doing some DOS-CRLF magic...
|
|
$crlf="\n";
|
|
$client=getenv("HTTP_USER_AGENT");
|
|
if (mb_ereg('[^(]*\((.*)\)[^)]*',$client,$regs))
|
|
{
|
|
$os = $regs[1];
|
|
// this looks better under WinX
|
|
if (mb_eregi("Win",$os))
|
|
$crlf="\r\n";
|
|
}
|
|
return $crlf;
|
|
}
|
|
|
|
function check_uid($uid)
|
|
{
|
|
if(ctype_alnum($uid) && mb_strlen($uid)<=32)
|
|
return true;
|
|
else
|
|
return false;
|
|
}
|
|
|
|
function check_stsem($stsem)
|
|
{
|
|
return preg_match('/^[WS][S][0-9]{4}$/', $stsem);
|
|
}
|
|
|
|
/**
|
|
* Prueft ob die ort_kurzbz ein gueltiges Format hat
|
|
* @param $ort_kurzbz Kurzbezeichnung eines Ortes
|
|
*/
|
|
function check_ort($ort_kurzbz)
|
|
{
|
|
if(preg_match('/^[A-Za-z0-9_.\-]{0,16}$/', $ort_kurzbz))
|
|
return true;
|
|
else
|
|
return false;
|
|
}
|
|
|
|
function check_lektor($uid)
|
|
{
|
|
$db = new basis_db();
|
|
|
|
// uid von View 'Lektor' holen
|
|
$sql_query="SELECT mitarbeiter_uid FROM public.tbl_mitarbeiter WHERE mitarbeiter_uid=".$db->db_add_param($uid);
|
|
//echo $sql_query;
|
|
if($db->db_query($sql_query))
|
|
{
|
|
$num_rows=$db->db_num_rows();
|
|
// Wenn kein ergebnis return 0 sonst ID
|
|
if ($num_rows>0)
|
|
{
|
|
$row = $db->db_fetch_object();
|
|
return $row->mitarbeiter_uid;
|
|
}
|
|
else
|
|
return 0;
|
|
}
|
|
else
|
|
return 0;
|
|
}
|
|
|
|
function check_lektor_lehrveranstaltung($uid, $lehrveranstaltung_id, $studiensemester_kurzbz)
|
|
{
|
|
$db = new basis_db();
|
|
|
|
// uid von View 'Lektor' holen
|
|
$sql_query="SELECT mitarbeiter_uid FROM campus.vw_lehreinheit
|
|
WHERE mitarbeiter_uid=".$db->db_add_param($uid)." AND
|
|
lehrveranstaltung_id=".$db->db_add_param($lehrveranstaltung_id, FHC_INTEGER)." AND
|
|
studiensemester_kurzbz=".$db->db_add_param($studiensemester_kurzbz);
|
|
|
|
//echo $sql_query;
|
|
if($db->db_query($sql_query))
|
|
{
|
|
$num_rows = $db->db_num_rows();
|
|
// Wenn kein ergebnis return 0 sonst ID
|
|
if ($num_rows>0)
|
|
{
|
|
$row = $db->db_fetch_object();
|
|
return $row->mitarbeiter_uid;
|
|
}
|
|
else
|
|
return 0;
|
|
}
|
|
else
|
|
return 0;
|
|
}
|
|
|
|
function check_student($uid)
|
|
{
|
|
$db = new basis_db();
|
|
|
|
// uid von Tabelle 'Student' holen
|
|
$sql_query="SELECT student_uid FROM public.tbl_student WHERE student_uid=".$db->db_add_param($uid);
|
|
//echo $sql_query;
|
|
if($db->db_query($sql_query))
|
|
{
|
|
$num_rows = $db->db_num_rows();
|
|
// Wenn kein ergebnis return 0 sonst ID
|
|
if ($num_rows>0)
|
|
{
|
|
$row = $db->db_fetch_object();
|
|
return $row->student_uid;
|
|
}
|
|
else
|
|
return 0;
|
|
}
|
|
else
|
|
return 0;
|
|
}
|
|
|
|
function kalenderwoche($datum)
|
|
{
|
|
//$woche=date("W",mktime($date[hours],$date[minutes],$date[seconds],$date[mon],$date[mday],$date[year]));
|
|
if (!date("w",$datum))
|
|
$datum=strtotime("+1 day",$datum);
|
|
//echo date("l j.m.Y - W",$datum);
|
|
$woche=date("W",$datum);
|
|
//if ($woche==53)
|
|
// $woche=1;
|
|
return $woche;
|
|
}
|
|
|
|
/******************************************************************************
|
|
* Springt zum vorhergehenden Montag, wenn $datum kein Sonntag oder Montag ist.
|
|
*
|
|
*/
|
|
function montag($datum)
|
|
{
|
|
// Wochentag
|
|
$wt=date("w",$datum);
|
|
// Sonntag?
|
|
if (!$wt)
|
|
{
|
|
// Wenn es ein Sonntag ist, auf Montag springen
|
|
$datum=strtotime('+1 day',$datum);
|
|
}
|
|
else
|
|
{
|
|
|
|
if($wt!=1)
|
|
$datum-=86400*($wt-1);
|
|
}
|
|
return $datum;
|
|
}
|
|
|
|
/**
|
|
* Springt zum naechsten Wochentag
|
|
*
|
|
* @param $timestamp
|
|
* @param $weekday Wochentag zu dem gesprungen werden soll (0-6, 0=Sonntag)
|
|
* @return timestamp
|
|
*/
|
|
function jump_weekday($timestamp, $weekday)
|
|
{
|
|
$wt = date("w",$timestamp);
|
|
$jump = 7-$wt+$weekday;
|
|
if($jump>7)
|
|
$jump = $jump-7;
|
|
return jump_day($timestamp, $jump);
|
|
}
|
|
|
|
function jump_day($datum, $tage)
|
|
{
|
|
// Ein Tag sind 86400 Sekunden
|
|
$datum+=86400*$tage;
|
|
return $datum;
|
|
}
|
|
|
|
function jump_week($datum, $wochen)
|
|
{
|
|
$stunde_vor=date("G",$datum);
|
|
// Eine Woche sind 604800 Sekunden
|
|
$datum+=604800*$wochen;
|
|
$stunde_nach=date("G",$datum);
|
|
if ($stunde_nach!=$stunde_vor)
|
|
$datum+=3600;
|
|
return $datum;
|
|
}
|
|
|
|
/**
|
|
* DEPRECATED - Use Variable Class
|
|
*/
|
|
function loadVariables($user)
|
|
{
|
|
$db = new basis_db();
|
|
|
|
$error_msg='';
|
|
$num_rows=0;
|
|
$sql_query="SELECT * FROM public.tbl_variable WHERE uid=".$db->db_add_param($user);
|
|
if(!$db->db_query($sql_query))
|
|
$error_msg.=$db->db_last_error().'<BR>'.$sql_query;
|
|
else
|
|
$num_rows=$db->db_num_rows();
|
|
|
|
while ($row=$db->db_fetch_object())
|
|
{
|
|
global ${$row->name};
|
|
${$row->name}=$row->wert;
|
|
}
|
|
|
|
if (!isset($semester_aktuell))
|
|
if(!$db->db_query('SELECT * FROM public.tbl_studiensemester WHERE ende>now() ORDER BY start LIMIT 1'))
|
|
$error_msg.=$db->db_last_error().'<BR>'.$sql_query;
|
|
else
|
|
{
|
|
$num_rows=$db->db_num_rows();
|
|
if ($num_rows>0)
|
|
{
|
|
$row=$db->db_fetch_object();
|
|
global $semester_aktuell;
|
|
$semester_aktuell=$row->studiensemester_kurzbz;
|
|
}
|
|
}
|
|
if (!isset($db_stpl_table))
|
|
{
|
|
global $db_stpl_table;
|
|
$db_stpl_table='stundenplandev';
|
|
}
|
|
|
|
if (!isset($kontofilterstg))
|
|
{
|
|
global $kontofilterstg;
|
|
$kontofilterstg='false';
|
|
}
|
|
|
|
if (!isset($ignore_kollision))
|
|
{
|
|
global $ignore_kollision;
|
|
$ignore_kollision='false';
|
|
}
|
|
|
|
if (!isset($kollision_student))
|
|
{
|
|
global $kollision_student;
|
|
$kollision_student='false';
|
|
}
|
|
|
|
if (!isset($max_kollision))
|
|
{
|
|
global $max_kollision;
|
|
$max_kollision='0';
|
|
}
|
|
|
|
if (!isset($ignore_zeitsperre))
|
|
{
|
|
global $ignore_zeitsperre;
|
|
$ignore_zeitsperre='false';
|
|
}
|
|
|
|
if (!isset($ignore_reservierung))
|
|
{
|
|
global $ignore_reservierung;
|
|
$ignore_reservierung='false';
|
|
}
|
|
|
|
if (!isset($emailadressentrennzeichen))
|
|
{
|
|
global $emailadressentrennzeichen;
|
|
if(defined('DEFAULT_EMAILADRESSENTRENNZEICHEN'))
|
|
$emailadressentrennzeichen = DEFAULT_EMAILADRESSENTRENNZEICHEN;
|
|
else
|
|
$emailadressentrennzeichen=',';
|
|
}
|
|
|
|
if(!isset($alle_unr_mitladen))
|
|
{
|
|
global $alle_unr_mitladen;
|
|
$alle_unr_mitladen='false';
|
|
}
|
|
if(!isset($allow_lehrstunde_drop))
|
|
{
|
|
global $allow_lehrstunde_drop;
|
|
$allow_lehrstunde_drop='false';
|
|
}
|
|
|
|
return $error_msg;
|
|
}
|
|
|
|
function writeCISlog($stat, $rm = '')
|
|
{
|
|
if($stat=='STOP')
|
|
$stat = 'STOP ';
|
|
$handle = fopen(LOG_PATH.'cis.log','a');
|
|
fwrite($handle, date('Y-m-d H:i:s').' '. $stat .' '. getmypid() .' '. $_SERVER['REMOTE_USER'] .' '. $_SERVER['REQUEST_URI'] .' '.$rm.'
|
|
');
|
|
}
|
|
|
|
function Debuglog($entry)
|
|
{
|
|
$handle = fopen(LOG_PATH.'debug.log','a');
|
|
fwrite($handle, $entry);
|
|
fclose($handle);
|
|
}
|
|
|
|
// ***************************************************************
|
|
// * Liefert das Studiensemester in dem sich
|
|
// * das uebergebene Datum befindet
|
|
// * wenn sich das Datum zwischen zwei Studiensemestern befindet
|
|
// * und $naechstes=true dann wird das naechste StSem geliefert
|
|
// * wenn $naechstes=false dann wird das vorherige StSem geliefert
|
|
// ***************************************************************
|
|
function getStudiensemesterFromDatum($datum, $naechstes=true)
|
|
{
|
|
$db = new basis_db();
|
|
$qry = "SELECT studiensemester_kurzbz FROM public.tbl_studiensemester WHERE";
|
|
|
|
if($naechstes)
|
|
$qry.= " ende>=".$db->db_add_param($datum)." ORDER BY ende ASC ";
|
|
else
|
|
$qry.= " start<".$db->db_add_param($datum)." ORDER BY ende DESC ";
|
|
|
|
$qry.= "LIMIT 1";
|
|
|
|
if($db->db_query($qry))
|
|
{
|
|
if($row = $db->db_fetch_object())
|
|
return $row->studiensemester_kurzbz;
|
|
else
|
|
return false;
|
|
}
|
|
else
|
|
return false;
|
|
}
|
|
|
|
// ****************************************************************
|
|
// * Prueft den uebergebenen Alias auf Gueltigkeit.
|
|
// * Format: mindestens 1 Punkt enhalten, mind. 1 Zeichen vor und
|
|
// * 1 Zeichen nach dem Punkt, keine Sonderzeichen
|
|
// ****************************************************************
|
|
function checkalias($alias)
|
|
{
|
|
if(preg_match("/^[-a-z0-9\_\.]*[a-z0-9]{1,}\.[-a-z0-9\_]{1,}$/",$alias))
|
|
return true;
|
|
else
|
|
return false;
|
|
|
|
}
|
|
|
|
/**
|
|
*
|
|
* Gibt UID zur passenden Kartennummer zurück, false im Fehlerfall
|
|
* @param $number
|
|
*/
|
|
function getUidFromCardNumber($number)
|
|
{
|
|
$betriebsmittel = new betriebsmittelperson();
|
|
if($betriebsmittel->getKartenzuordnung($number))
|
|
return $betriebsmittel->uid;
|
|
else
|
|
return false;
|
|
|
|
}
|
|
|
|
/**
|
|
* DEPRECATED
|
|
*/
|
|
function checkldapuser($username,$password)
|
|
{
|
|
$auth = new authentication();
|
|
return $auth->checkpassword($username, $password);
|
|
}
|
|
|
|
/**
|
|
* Berechnet die Schnittmenge zweier Strings
|
|
*
|
|
* @param $str1
|
|
* @param $str2
|
|
* @return intersected string
|
|
*/
|
|
function intersect($str1, $str2)
|
|
{
|
|
if (mb_strlen($str1) > mb_strlen($str2))
|
|
$size = mb_strlen($str1);
|
|
else
|
|
$size = mb_strlen($str2);
|
|
|
|
$intersect = null;
|
|
|
|
for ($i=0; $i<$size; $i++)
|
|
{
|
|
if (mb_substr($str1, $i, 1) == mb_substr($str2, $i, 1))
|
|
$intersect.= mb_substr($str1, $i, 1);
|
|
}
|
|
|
|
return $intersect;
|
|
}
|
|
|
|
/**
|
|
* Konvertiert Problematische Sonderzeichen in Strings fuer
|
|
* Accountnamen und EMail-Aliase
|
|
*
|
|
* @param $str
|
|
* @return bereinigter String
|
|
*/
|
|
function convertProblemChars($str)
|
|
{
|
|
$enc = 'UTF-8';
|
|
|
|
$acentos = array(
|
|
'A' => '/À|Á|Â|Ã|Å/',
|
|
'Ae' => '/Ä/',
|
|
'a' => '/à|á|â|ã|å/',
|
|
'ae'=> '/ä/',
|
|
'C' => '/Ç/',
|
|
'c' => '/ç/',
|
|
'E' => '/È|É|Ê|Ë/',
|
|
'e' => '/è|é|ê|ë/',
|
|
'I' => '/Ì|Í|Î|Ï/',
|
|
'i' => '/ì|í|î|ï/',
|
|
'N' => '/Ñ/',
|
|
'n' => '/ñ/',
|
|
'O' => '/Ò|Ó|Ô|Õ/',
|
|
'Oe' => '/Ö/',
|
|
'o' => '/ò|ó|ô|õ/',
|
|
'oe' => '/ö/',
|
|
'U' => '/Ù|Ú|Û/',
|
|
'Ue' => '/Ü/',
|
|
'u' => '/ù|ú|û/',
|
|
'ue' => '/ü/',
|
|
'Y' => '/Ý/',
|
|
'y' => '/ý|ÿ/',
|
|
'a.' => '/ª/',
|
|
'o.' => '/º/',
|
|
'ss' => '/ß/'
|
|
);
|
|
|
|
return preg_replace($acentos, array_keys($acentos), htmlentities($str,ENT_NOQUOTES, $enc));
|
|
}
|
|
|
|
//Ersetzt alle Problemzeichen in einem String bevor dieser als xml oder rdf ausgegeben wird
|
|
function xmlclean($string)
|
|
{
|
|
$mixed = array(
|
|
chr(000), //null
|
|
chr(001), //start of heading
|
|
chr(002), //start of text
|
|
chr(003), //end of text
|
|
chr(004), //end of transmission
|
|
chr(005), //enquiry
|
|
chr(006), //acknowledge
|
|
chr(007), //bell
|
|
chr(010), //backspace
|
|
chr(013), //vertical-tab
|
|
chr(014), //NP form feed, new page
|
|
chr(016), //shift out
|
|
chr(017), //shift in
|
|
|
|
chr(020), //data link escape
|
|
chr(021), //device control 1
|
|
chr(022), //device control 2
|
|
chr(023), //device control 3
|
|
chr(024), //device control 4
|
|
chr(025), //negative acknowledge
|
|
chr(026), //synchronous idle
|
|
chr(027), //end of trans. block
|
|
chr(030), //cancel
|
|
chr(031), //end of medium
|
|
chr(032), //substitute
|
|
chr(033), //escape
|
|
chr(034), //file separator
|
|
chr(035), //group separator
|
|
chr(036), //record separator
|
|
chr(037), //unit separator
|
|
);
|
|
return str_replace($mixed, "", $string);
|
|
}
|
|
|
|
/**
|
|
* Verkuertzt einen String auf eine bestimmte laenge - beachtet werden Wortzeichen
|
|
* @param String der die Zeichenkette enthaelt die verkuertzt werden soll
|
|
* @param Laenge des Strings der geliefert werden soll (inkl. der Laenge des Fortsetzungszeichen)
|
|
* @return Daten Objekt wenn ok, false im Fehlerfall
|
|
*/
|
|
function StringCut($str='',$len=0,$checkWortumbruch=false,$fortsetzungszeichen='...')
|
|
{
|
|
// Plausib
|
|
if (!is_numeric($len))
|
|
return $str;
|
|
|
|
$len=intval($len);
|
|
if ($len <1 )
|
|
return $str;
|
|
|
|
if (is_null($checkWortumbruch) || empty($checkWortumbruch))
|
|
$checkWortumbruch=false;
|
|
|
|
if (is_null($fortsetzungszeichen) || empty($fortsetzungszeichen) || $checkWortumbruch)
|
|
$fortsetzungszeichen='';
|
|
// null oder Leerzeichen beim Fortsetzungszeichen entfernen
|
|
$fortsetzungszeichen=trim($fortsetzungszeichen);
|
|
|
|
// Pruefen auf UTF-8 und Bearbeitungsfunktionen
|
|
$utf8=check_utf8($str);
|
|
if (!function_exists('mb_strlen'))
|
|
$utf8=false;
|
|
if (!function_exists('mb_substr'))
|
|
$utf8=false;
|
|
|
|
// ist der String nicht laenger als die gewuenschte Lange kann hier beendet werden
|
|
if ($utf8)
|
|
$vLen=mb_strlen($str);
|
|
else
|
|
$vLen=strlen($str);
|
|
|
|
// String ist nicht laenger als die gewuenschte leange - kpl.String retour senden
|
|
if ($len>=$vLen)
|
|
return $str;
|
|
|
|
if (!$checkWortumbruch)
|
|
{
|
|
if ($utf8)
|
|
$vLen=$len-mb_strlen($fortsetzungszeichen,'utf-8');
|
|
else
|
|
$vLen=$len- strlen($fortsetzungszeichen);
|
|
// die Laenge vom Fortsetzungszeichen mit berucksichtigen
|
|
if ($utf8) // Teilstring ermitteln, und Ergebnis zuruck geben
|
|
return mb_substr($str,0,$vLen,'utf-8').$fortsetzungszeichen;
|
|
else // Teilstring ermitteln, und Ergebnis zuruck geben
|
|
return substr($str,0,$vLen).$fortsetzungszeichen;
|
|
}
|
|
|
|
|
|
if ($utf8) // Teilstring ermitteln, und Ergebnis zuruck geben
|
|
$vStr=mb_substr($str,0,$len,'utf-8');
|
|
else // Teilstring ermitteln, und Ergebnis zuruck geben
|
|
$vStr=substr($str,0,$len);
|
|
|
|
if ($utf8)
|
|
$vLen=mb_strlen($vStr);
|
|
else
|
|
$vLen=strlen($vStr);
|
|
|
|
// Suchen letztes Leerzeichen im String
|
|
for ($i=$vLen;$i>0;$i--)
|
|
{
|
|
if ($utf8)
|
|
{
|
|
if (mb_substr($vStr,$i,1,'utf-8')==' ' && $i>0)
|
|
return $vStr=trim(mb_substr($str,0,$i,'utf-8'));
|
|
}
|
|
else
|
|
{
|
|
if (substr($vStr,$i,1)==' ' && $i>0)
|
|
return $vStr=trim(substr($str,0,$i));
|
|
}
|
|
}
|
|
return $vStr;
|
|
}
|
|
|
|
/**
|
|
* Prueft ob ein String UTF-8 Kodiert ist
|
|
*
|
|
* @param $str
|
|
* @return true wenn utf8 sonst false
|
|
*/
|
|
function check_utf8($str="")
|
|
{
|
|
$cStr=$str;
|
|
if (strlen($cStr)>3590)
|
|
{
|
|
$cStr=substr($cStr,0,3590);
|
|
}
|
|
$stati=@preg_match("/^(
|
|
[\x09\x0A\x0D\x20-\x7E] # ASCII
|
|
| [\xC2-\xDF][\x80-\xBF] # non-overlong 2-byte
|
|
| \xE0[\xA0-\xBF][\x80-\xBF] # excluding overlongs
|
|
| [\xE1-\xEC\xEE\xEF][\x80-\xBF]{2} # straight 3-byte
|
|
| \xED[\x80-\x9F][\x80-\xBF] # excluding surrogates
|
|
| \xF0[\x90-\xBF][\x80-\xBF]{2} # planes 1-3
|
|
| [\xF1-\xF3][\x80-\xBF]{3} # planes 4-15
|
|
| \xF4[\x80-\x8F][\x80-\xBF]{2} # plane 16
|
|
)*$/x",$cStr);
|
|
|
|
return $stati;
|
|
}
|
|
|
|
/**
|
|
* DB Array Konvertieren zu XML
|
|
*
|
|
* @param $rows
|
|
* @param $root
|
|
* @return XML
|
|
*/
|
|
function array_to_xml($rows,$root='root')
|
|
{
|
|
if (!count($rows))
|
|
return '<'.$root.' />'."\r\n";
|
|
|
|
$xml_string='';
|
|
$xml_string.='<'.$root.'>'."\r\n";
|
|
reset($rows);
|
|
|
|
for ($i=0;$i<count($rows);$i++)
|
|
{
|
|
$xml_string.='<row>'."\r\n";
|
|
$row=$rows[$i];
|
|
@reset($row);
|
|
while (@list( $tmp_key, $tmp_value ) = each($row) )
|
|
{
|
|
if (!is_numeric($tmp_key))
|
|
{
|
|
$xml_string.='<'.$tmp_key.'><![CDATA['.trim($tmp_value).']]></'.$tmp_key.'>'."\r\n";
|
|
}
|
|
elseif (is_numeric($tmp_key))
|
|
{
|
|
$xml_string.='<row'.$tmp_key.'><![CDATA['.trim($tmp_value).']]></row'.$tmp_key.'>'."\r\n";
|
|
}
|
|
}
|
|
$xml_string.='</row>'."\r\n";
|
|
}
|
|
$xml_string.='</'.$root.'>'."\r\n";
|
|
return $xml_string;
|
|
}
|
|
|
|
/**
|
|
* DB Array Konvertieren zu RDF
|
|
*
|
|
* @param $rows
|
|
* @param $root
|
|
* @param $rdf_uri
|
|
* @return RDF
|
|
*/
|
|
function array_to_rdf($rows,$root='root',$rdf_uri='rdf')
|
|
{
|
|
$rdf_server=$_SERVER['SERVER_NAME'];
|
|
$rdf_string='';
|
|
if (!count($rows))
|
|
return $rdf_string.='<'.strtoupper($rdf_uri).':'.$root.' />'."\r\n";
|
|
|
|
$rdf_string.='<'.strtoupper($rdf_uri).':Seq rdf:about="http://'.$rdf_server.'/'.$root.'/liste">'."\r\n";
|
|
|
|
reset($rows);
|
|
for ($i=0;$i<count($rows);$i++)
|
|
{
|
|
$rdf_string.='<'.strtoupper($rdf_uri).':li>'."\r\n";
|
|
$rdf_string.='<'.strtoupper($rdf_uri).':Description id="'.$i.'" about="http://'.$rdf_server.'/liste'.$i.'">'."\r\n";
|
|
|
|
$row=$rows[$i];
|
|
reset($row);
|
|
while (list( $tmp_key, $tmp_value ) = each($row) )
|
|
{
|
|
if (!is_numeric($tmp_key))
|
|
{
|
|
$rdf_string.='<'.strtoupper($rdf_uri).':'.$tmp_key.'><![CDATA['.trim($tmp_value).']]></'.strtoupper($rdf_uri).':'.$tmp_key.'>'."\r\n";
|
|
}
|
|
}
|
|
$rdf_string.='</'.strtoupper($rdf_uri).':Description>'."\r\n";
|
|
$rdf_string.='</'.strtoupper($rdf_uri).':li>'."\r\n";
|
|
}
|
|
$rdf_string.='</'.strtoupper($rdf_uri).':Seq>'."\r\n";
|
|
return $rdf_string;
|
|
}
|
|
|
|
/**
|
|
* Prueft, ob ein String nur aus ganzen Zahlen besteht
|
|
*
|
|
* @param $mixed
|
|
* @return boolean
|
|
*/
|
|
function isint( $mixed )
|
|
{
|
|
return ( preg_match( '/^\d*$/' , $mixed) == 1 );
|
|
}
|
|
|
|
/**
|
|
* Multibyte String Replace
|
|
*
|
|
* @param $needle
|
|
* @param $replacement
|
|
* @param $haystack
|
|
* @return string
|
|
*/
|
|
function mb_str_replace( $needle, $replacement, $haystack )
|
|
{
|
|
$needle_len = mb_strlen($needle);
|
|
$pos = mb_strpos( $haystack, $needle);
|
|
while (!($pos ===false))
|
|
{
|
|
$front = mb_substr( $haystack, 0, $pos );
|
|
$back = mb_substr( $haystack, $pos + $needle_len);
|
|
$haystack = $front.$replacement.$back;
|
|
$pos = mb_strpos( $haystack, $needle);
|
|
}
|
|
return $haystack;
|
|
}
|
|
|
|
/**
|
|
*
|
|
* Prueft ob es sich um einen gueltigen Filenamen handelt
|
|
* Filenamen mit HTML-Tags oder sonstigem Schadcode sind nicht gueltig
|
|
*
|
|
* @param string $filename
|
|
* @return boolean true wenn gueltig, sonst false
|
|
*/
|
|
function check_filename($filename)
|
|
{
|
|
if(!preg_match('/^(\d|\w|\s|[-_.,ÄÜÖäüö!?])*$/',$filename))
|
|
return false;
|
|
else
|
|
return true;
|
|
}
|
|
|
|
/**
|
|
* Startet eine HTTP-Basic-Authentifizierung und prueft das Passwort gegen LDAP
|
|
* @return uid wenn erfolgreich. Fehlermeldung und Scriptabbruch bei fehlerhafter Auth.
|
|
*/
|
|
function manual_basic_auth()
|
|
{
|
|
$auth = new authentication();
|
|
return $auth->RequireLogin();
|
|
}
|
|
|
|
/**
|
|
* Liefert die aktuelle Sprache
|
|
*/
|
|
function getSprache()
|
|
{
|
|
if(isset($_SESSION['sprache']))
|
|
{
|
|
$sprache=$_SESSION['sprache'];
|
|
}
|
|
else
|
|
{
|
|
if(isset($_COOKIE['sprache']))
|
|
{
|
|
// Uses urlencode to avoid XSS issues
|
|
$sprache = urlencode($_COOKIE['sprache']);
|
|
}
|
|
else
|
|
{
|
|
$sprache = DEFAULT_LANGUAGE;
|
|
}
|
|
setSprache($sprache);
|
|
}
|
|
return $sprache;
|
|
}
|
|
|
|
/**
|
|
* Setzt die Sprache in der Session Variable und im Cookie
|
|
* @param $sprache
|
|
*/
|
|
function setSprache($sprache)
|
|
{
|
|
$_SESSION['sprache']=$sprache;
|
|
setcookie('sprache',$sprache,time()+60*60*24*30,'/');
|
|
}
|
|
|
|
|
|
function check_user($username, $passwort)
|
|
{
|
|
if($username=='')
|
|
{
|
|
$user = get_uid();
|
|
if($user=='')
|
|
return false;
|
|
return $user;
|
|
}
|
|
else
|
|
{
|
|
if(!checkldapuser($username,$passwort))
|
|
return false;
|
|
else
|
|
return $username;
|
|
}
|
|
}
|
|
|
|
function safe_b64encode($string)
|
|
{
|
|
$data = base64_encode($string);
|
|
$data = str_replace(array('+','/','='),array('-','_',''),$data);
|
|
return $data;
|
|
}
|
|
|
|
function safe_b64decode($string)
|
|
{
|
|
$data = str_replace(array('-','_'),array('+','/'),$string);
|
|
$mod4 = strlen($data) % 4;
|
|
if ($mod4)
|
|
{
|
|
$data .= substr('====', $mod4);
|
|
}
|
|
return base64_decode($data);
|
|
}
|
|
|
|
function encryptData($value,$key)
|
|
{
|
|
if(!$value)
|
|
{
|
|
return false;
|
|
}
|
|
|
|
require_once(dirname(__FILE__)."/../vendor/autoload.php");
|
|
|
|
$cipher = new phpseclib\Crypt\Rijndael(phpseclib\Crypt\Rijndael::MODE_ECB);
|
|
$cipher->setKey($key);
|
|
$cipher->disablePadding();
|
|
$length = strlen($value);
|
|
$pad = 32 - ($length % 32);
|
|
$value = str_pad($value, $length + $pad, chr(0));
|
|
$cipher->setBlockLength(256);
|
|
|
|
return trim(safe_b64encode($cipher->encrypt($value)));
|
|
}
|
|
|
|
function decryptData($value,$key)
|
|
{
|
|
if(!$value)
|
|
{
|
|
return false;
|
|
}
|
|
|
|
require_once(dirname(__FILE__)."/../vendor/autoload.php");
|
|
$crypttext = safe_b64decode($value);
|
|
$cipher = new phpseclib\Crypt\Rijndael(phpseclib\Crypt\Rijndael::MODE_ECB);
|
|
$cipher->disablePadding();
|
|
$cipher->setBlockLength(256);
|
|
$cipher->setKey($key);
|
|
|
|
return trim($cipher->decrypt($crypttext));
|
|
}
|
|
|
|
function clearHtmlTags($text)
|
|
{
|
|
$newline='
|
|
';
|
|
|
|
$text=mb_str_replace('<br>','\n',$text);
|
|
$text=mb_str_replace('<br/>','\n',$text);
|
|
$text=mb_str_replace('<br />','\n',$text);
|
|
|
|
$text=mb_str_replace('<ul>\n','',$text);
|
|
$text=mb_str_replace('<ul>','',$text);
|
|
$text=mb_str_replace('\n</ul>','',$text);
|
|
$text=mb_str_replace('</ul>','',$text);
|
|
$text=mb_str_replace('<li>',$newline.' - ',$text);
|
|
$text=mb_str_replace('</li>','',$text);
|
|
|
|
$text=mb_str_replace('</lI>','',$text);
|
|
$text=mb_str_replace('</li','',$text);
|
|
|
|
return $text;
|
|
}
|
|
|
|
/**
|
|
* nächstes Semester erzeugen. Bsp incSemester('SS2014') liefert 'WS2014'
|
|
* @param string $semester z.B. SS2014
|
|
* @return string nächstes semester
|
|
*/
|
|
function incSemester($semester)
|
|
{
|
|
$result = null;
|
|
$jahr = intval(substr($semester,2,4));
|
|
if (substr($semester,0,2) === 'SS') {
|
|
$result = 'WS';
|
|
} else {
|
|
$result = 'SS';
|
|
$jahr++;
|
|
}
|
|
$result = $result.$jahr;
|
|
return $result;
|
|
}
|
|
|
|
/**
|
|
* Liste mit Semestern erzeugen
|
|
* @param type $semester
|
|
* @param type $anzahlFolgesemester
|
|
* @return array Semesterliste
|
|
*/
|
|
function generateSemesterList($semester, $anzahlFolgesemester)
|
|
{
|
|
$result[] = $semester;
|
|
$jahr = intval(substr($semester,2,4));
|
|
$currentSemester = $semester;
|
|
for ($index = 0; $index < $anzahlFolgesemester; $index++)
|
|
{
|
|
$currentSemester = incSemester($currentSemester);
|
|
$result[] = $currentSemester;
|
|
}
|
|
return $result;
|
|
}
|
|
|
|
/**
|
|
* Generiert einen Aktivierungscode
|
|
*/
|
|
function generateActivationKey()
|
|
{
|
|
$keyvalues=array('0','1','2','3','4','5','6','7','8','9','A','B','C','D','E','F');
|
|
$key='';
|
|
for($i=0;$i<32;$i++)
|
|
$key.=$keyvalues[mt_rand(0,15)];
|
|
|
|
return md5(encryptData(uniqid(mt_rand(), true),$key));
|
|
}
|
|
|
|
function check_infrastruktur($uid)
|
|
{
|
|
$db = new basis_db();
|
|
|
|
// checken, ob der user eine oezuordnung der infrastruktur hat
|
|
$sql_query="SELECT 1 FROM public.tbl_benutzerfunktion WHERE funktion_kurzbz = 'oezuordnung' and oe_kurzbz in ('Infrastruktur', 'SystemEntwicklung', 'IT-ServiceDesk', 'Empfang', 'Haustechnik', 'ITService', 'LVPlanung','ITBereich','SystemSupport') and (datum_bis > now() or datum_bis is NULL) and uid=".$db->db_add_param($uid);
|
|
//echo $sql_query;
|
|
if($db->db_query($sql_query))
|
|
{
|
|
$num_rows=$db->db_num_rows();
|
|
// Wenn kein ergebnis return 0 sonst 1
|
|
if ($num_rows>0 || $uid == 'pam')
|
|
{
|
|
return 1;
|
|
}
|
|
else
|
|
return 0;
|
|
}
|
|
else
|
|
return 0;
|
|
}
|
|
|
|
/**
|
|
* The function is used to prepare a string for a regular expression search in an sql-query.
|
|
* It lowers and trims the $inputString, splits it by character, compares each character with the character set
|
|
* and replaces (if exists) this character with the entire set surrounded with square brackets.
|
|
* E.g: "ösi" returns "[oóŏǒôốộồổỗöọőòỏơớợờởỡōǫøǿõɛɔɵʘœ][sśšşŝșṡṣʂſʃʆßʅ][iíĭǐîïịìỉīįɨĩɩı]"
|
|
*
|
|
* @param string $inputString The string to convert
|
|
* @param boolean $punctuationMark Default false. If true, the set is expanded with punctuation marks.
|
|
* @return string A regular expression-formatted string
|
|
*/
|
|
function generateSpecialCharacterString($inputString, $punctuationMark = false)
|
|
{
|
|
$character_set = array(
|
|
'aáăắặằẳẵǎâấậầẩẫäạàảāąåǻãæǽɑɐɒ',
|
|
'bḅɓß',
|
|
'cćčçĉɕċ',
|
|
'dďḓḍɗḏđɖʤdzʣʥdžð',
|
|
'eéĕěêếệềểễëėẹèẻēęẽʒǯʓɘɜɝəɚ',
|
|
'fƒſʩfiflʃʆʅɟʄ',
|
|
'gǵğǧģĝġɠḡɡɣ',
|
|
'hḫĥḥɦẖħɧɥʮʯų',
|
|
'iíĭǐîïịìỉīįɨĩɩıİ',
|
|
'jijɟjǰĵʝȷɟʄ',
|
|
'kķḳƙḵĸʞ',
|
|
'lĺƚɬľļḽḷḹḻŀɫɭłƛɮljʪʫ',
|
|
'mḿṁṃɱɯɰ',
|
|
'nʼnńňņṋṅṇǹɲṉɳñnjŋŊ',
|
|
'oóŏǒôốộồổỗöọőòỏơớợờởỡōǫøǿõɛɔɵʘœ',
|
|
'pɸþ',
|
|
'rŕřŗṙṛṝɾṟɼɽɿɹɻɺ',
|
|
'sśšşŝșṡṣʂſʃʆßʅ',
|
|
'tťţṱțẗṭṯʈŧʨʧþðʦʇ',
|
|
'uʉúŭǔûüǘǚǜǖụűùủưứựừửữūųůũʊ',
|
|
'wẃŵẅẁʍ',
|
|
'yýŷÿẏỵỳƴỷȳỹʎ',
|
|
'zźžʑżẓẕʐƶ'
|
|
);
|
|
|
|
if ($punctuationMark == true)
|
|
array_push($character_set, '--‒–——–—-');
|
|
|
|
|
|
/* the backslash \,
|
|
* the caret ^,
|
|
* the dollar sign $,
|
|
* the period or dot .,
|
|
* the vertical bar or pipe symbol |,
|
|
* the question mark ?,
|
|
* the asterisk or star *,
|
|
* the plus sign +,
|
|
* the opening parenthesis (,
|
|
* the closing parenthesis ),
|
|
* the opening square bracket [,
|
|
* the opening curly brace { */
|
|
|
|
// Trim and lower $inputString
|
|
$inputString = mb_strtolower(TRIM($inputString));
|
|
// Split string by character to compare it with the character set
|
|
$inputStringSplitted = preg_split('//u', $inputString, -1, PREG_SPLIT_NO_EMPTY);
|
|
|
|
// Compare every character with the set and replace it
|
|
foreach ($inputStringSplitted AS $key => $item)
|
|
{
|
|
foreach ($character_set AS $set)
|
|
{
|
|
if (strpos($set, $item) !== false)
|
|
$inputStringSplitted[$key] = '['.$set.']';
|
|
elseif ($item == ' ')
|
|
$inputStringSplitted[$key] = '.*';
|
|
}
|
|
}
|
|
|
|
// Recombine array to string
|
|
$inputString = implode('', $inputStringSplitted);
|
|
|
|
return $inputString;
|
|
}
|
|
|
|
/**
|
|
* Cuts the string to the given limit minus the stringlength of the placeholderSign and adds the placeholderSign at the end of the string
|
|
* If $keepFilextension is true, the string is checked for a PATHINFO_EXTENSION and the extension is added to the returned string.
|
|
* The returned stringlength includes the fileextension.
|
|
* @param string $string The input string to be cutted
|
|
* @param integer $limit The length of the returned string (including the placeholderSigns)
|
|
* @param string $placeholderSign Optional. Default null. The string to be added at the end of the cutted string.
|
|
* @param bool $keepFilextension. Default false. When set to true the
|
|
* @return string The cutted string with the placeholderSign at the end and the optional fileextension
|
|
*/
|
|
function cutString($string, $limit, $placeholderSign = '', $keepFileextension = false)
|
|
{
|
|
$offset = strlen($placeholderSign);
|
|
$extension = '';
|
|
if ($keepFileextension)
|
|
{
|
|
$extension = '.'.pathinfo($string, PATHINFO_EXTENSION);
|
|
$offset = $offset + mb_strlen($extension);
|
|
}
|
|
if(($limit - $offset) < 0)
|
|
{
|
|
return '<span class="error">$placeholderSign must not be shorter than $limit</span>';
|
|
}
|
|
|
|
if(strlen($string) > ($limit - $offset))
|
|
{
|
|
return mb_substr($string, 0, ($limit - $offset)).$placeholderSign.$extension;
|
|
}
|
|
else
|
|
{
|
|
return $string;
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Erstellt einen Log Eintrag zu einer Person
|
|
* @param $person_id ID der Person.
|
|
* @param $logtype_kurzbz Typ des Logeintrages
|
|
* @param $logdata Array mit den zusaetzlichen Logdaten zu diesem Typ.
|
|
* @param $taetigkeit_kurzbz Kurzbz der Verarbeitungstaetigkeit.
|
|
* @param $app Applikation von der dieser Logeintrag stammt. (optional)
|
|
* @param $oe_kurzbz Kurzbz der Organisationseinheit. (optional)
|
|
* @param $user User der die Aktion durchgefuehrt hat. (optional)
|
|
*/
|
|
function PersonLog($person_id, $logtype_kurzbz, $logdata, $taetigkeit_kurzbz, $app = 'core', $oe_kurzbz = null, $user = null)
|
|
{
|
|
$personlog = new personlog();
|
|
$personlog->log($person_id, $logtype_kurzbz, $logdata, $taetigkeit_kurzbz, $app, $oe_kurzbz, $user);
|
|
}
|
|
|
|
/** Sets leading zeros to an integer number. 2 digits by default.
|
|
*
|
|
* @param integer $number
|
|
* @param integer $length
|
|
* @return integer
|
|
*/
|
|
function setLeadingZero($number, $length = 2)
|
|
{
|
|
if (is_int($number))
|
|
{
|
|
return str_pad($number, $length, "0", STR_PAD_LEFT);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Generates a new token for diffent use cases. Default token length is 64
|
|
* - Reading messages
|
|
* - Forgotten password
|
|
* - etc
|
|
* Returns null on failure
|
|
*/
|
|
function generateUniqueToken($length = 64)
|
|
{
|
|
$token = null;
|
|
$firstGeneratedToken = null;
|
|
|
|
// For PHP 7 you can use random_bytes()
|
|
if (function_exists('random_bytes'))
|
|
{
|
|
try
|
|
{
|
|
$firstGeneratedToken = random_bytes($length); // try to generates cryptographically secure pseudo-random bytes...
|
|
}
|
|
catch (Exception $e) { $firstGeneratedToken = null; } // if fails $firstGeneratedToken is set to null
|
|
}
|
|
// For PHP >= 5.3 and < 7 and openssl is available
|
|
elseif (function_exists('openssl_random_pseudo_bytes'))
|
|
{
|
|
$firstGeneratedToken = openssl_random_pseudo_bytes($length, $strong);
|
|
// If the token generation ended with errors OR the generated token is NOT strong enough
|
|
if ($firstGeneratedToken == false || $strong == false) $firstGeneratedToken = null; // $firstGeneratedToken is set to null
|
|
}
|
|
|
|
if ($firstGeneratedToken != null) // If everything was fine
|
|
{
|
|
// base64 is about 33% longer, so we need to truncate the result
|
|
$token = strtr(substr(base64_encode($firstGeneratedToken), 0, $length), '+/=', '-_,');
|
|
}
|
|
|
|
// Fallback to mt_rand if:
|
|
// php < 5.3
|
|
// OR no openssl is available
|
|
// OR openssl_random_pseudo_bytes used an algorithm that is cryptographically NOT strong
|
|
// OR one of the previous methods failed
|
|
if ($token == null)
|
|
{
|
|
$token = ''; // set $token as an empty string
|
|
$characters = '0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz/+';
|
|
$charactersLength = strlen($characters) - 1;
|
|
|
|
// Select some random characters
|
|
for ($i = 0; $i < $length; $i++) $token .= $characters[mt_rand(0, $charactersLength)];
|
|
}
|
|
|
|
return $token;
|
|
}
|
|
?>
|