#!/usr/bin/perl # Copyright 2001-2025 Leslie Richardson # This file is part of Open Admin for Schools. # Origin: from pvTestDelete.pl my %lex = ('Main' => 'Main', 'Error' => 'Error', 'Delete' => 'Delete', 'Continue' => 'Continue', 'Date' => 'Date', 'No User Id' => 'No User Id', 'No Password' => 'No Password', 'Please Log In' => 'Please Log In', 'Record(s) Deleted' => 'Record(s) Deleted', 'Admin Password' => 'Admin Password', 'Not Allowed' => 'Not Allowed', 'Grade' => 'Grade', 'Author' => 'Author', 'Close' => 'Close', ); use DBI; use CGI; my $adminpassword = 'meisowen'; my $self = 'fpDelete.pl'; # Configuration Settings --------------------- my $allow_author = 1; # allow author to delete my $allow_fp = 1; # allow user with fp access code to delete #--------------------------------------------- my $q = new CGI; my %arr = $q->Vars; my @time = localtime(time); my $year = $time[5] + 1900; my $month = $time[4] + 1; my $currdate = "$year-$month-$time[3]"; eval require "../../etc/admin.conf"; if ( $@ ) { print $lex{Error}. " $self: $@
\n"; die $lex{Error}. "$self: $@\n"; } my $userid = $ENV{'REMOTE_USER'}; my $dsn = "DBI:$dbtype:dbname=$dbase"; my $dbh = DBI->connect($dsn,$user,$password); print $q->header(-charset, $charset); # Check for fp access code my $sth = $dbh->prepare("select field_value from staff_multi where field_name = 'access' and userid = ?"); $sth->execute( $userid ); if ( $DBI::errstr ){ print $DBI::errstr; die $DBI::errstr; } my $access_fp; while ( my $val = $sth->fetchrow ) { if ( uc $val eq 'FP' ) { $access_fp = 1; } # print qq{VAL:$val ACCESS:$access_fp
\n}; } # Page Header my $title = qq{$lex{Delete} FP Record}; print qq{$doctype\n$title\n}; print qq{\n}; print qq{\n}; print qq{$chartype\n\n}; print qq{[ $lex{Main} ]\n}; print qq{

$lex{Delete} F&P Reading Record

\n}; if ( not $arr{page} ) { selectRecord( $arr{id} ); } elsif ( $arr{page} == 1 ) { delete $arr{page}; deleteRecord(); } #--------------- sub selectRecord { #--------------- #foreach my $key ( sort keys %arr ) { print qq{K:$key V:$arr{$key}
\n}; } my $id = shift; # Get Record my $sth = $dbh->prepare("select * from fp_book where id = ?"); $sth->execute( $id ); if ( $DBI::errstr ){ print $DBI::errstr; die $DBI::errstr; } my $ref = $sth->fetchrow_hashref; my %r = %$ref; my $studnum = $r{studnum}; # Access Controls my $failflag; if ( not $allow_author and not $allow_fp ) { $failflag = 1; } # nobody deletes elsif ( $allow_author and $r{tauthor} ne $userid ) { $failflag = 1; } # not author if ( $allow_fp and $access_fp ) { $failflag = 0; } # allow dra override of author failure if ( $adminpassword eq $arr{adminpassword} ) { $failflag = 0; } # allow admin override if ( $failflag ) { print qq{

$lex{Delete} $lex{'Not Allowed'}

\n}; print qq{\n}; print qq{\n}; exit; } # Get Student Name my $sth1 = $dbh->prepare("select lastname, firstname, grade from student where studnum = ?"); $sth1->execute( $studnum ); if ( $DBI::errstr ) { print $DBI::errstr; die $DBI::errstr; } my ( $lastname, $firstname,$grade ) = $sth1->fetchrow; # print qq{Name: $lastname $firstname
\n}; # Print Form Heading print qq{\n}; exit; } #-------------- sub deleteRecord { #-------------- foreach my $key ( sort keys %arr ) { print qq{K:$key V:$arr{$key}
\n}; } my $id = $arr{id}; # Delete Test $sth = $dbh->prepare("delete from fp_book where id = ?"); $sth->execute( $id ); if ( $DBI::errstr ){ print $DBI::errstr; die $DBI::errstr; } print qq{

Record Deleted

\n}; print qq{

}; print qq{\n}; exit; }

$firstname $lastname
$lex{Grade}	$grade
Title	$r{title}
$lex{Date}	$r{tdate}
$lex{Author}	$r{tauthor}