employee.php000064400000025220150211543120007067 0ustar00 conn = $db; } /*****************************************************************************/ /*function at_dupl_remove(){ $query = "DELETE FROM ". $this->table_name_at ." WHERE ts_empid NOT IN(SELECT MAX(ts_empid) FROM ". $this->table_name_at ." GROUP BY ts_scantime, ts_type)"; //echo $query; //exit; $stmt = $this->conn->prepare($query); $stmt->execute(); return $stmt; } */ /******************************************************************************/ function at_all_read(){ $query = "SELECT * FROM " . $this->table_name_at; $stmt = $this->conn->prepare($query); $stmt->execute(); return $stmt; } /******************************************************************************/ function at_read(){ //$monthNo = date('m'); $today = date("Y/m/d"); // set ID property of record to read //$emp->empid = isset($_GET['empid']) ? $_GET['empid'] : die(); //$query = "SELECT c.empname,p.ts_empid, p.ts_scantime, p.ts_scanloc, p.ts_type FROM " . $this->table_name_at . " p LEFT JOIN acts_emp c ON p.ts_empid = c.empid WHERE p.ts_brid=:ts_offid AND date(p.ts_scantime) BETWEEN '2020/12/13' AND :ts_todt ORDER BY p.ts_scantime, p.ts_empid DESC" ; /*$query = "SELECT c.empname,p.ts_empid, p.ts_scantime, p.ts_scanloc, p.ts_type FROM " . $this->table_name_at . " p LEFT JOIN acts_emp c ON p.ts_empid = c.empid WHERE p.ts_brid=:ts_offid AND MONTH(p.ts_scantime)= " . $monthNo . " ORDER BY p.ts_scantime, p.ts_empid DESC"; */ //echo $query; $query = "SELECT c.empname,p.ts_empid, p.ts_scantime, p.ts_scanloc, p.ts_type FROM " . $this->table_name_at . " p INNER JOIN acts_emp c ON p.ts_empid = c.empid WHERE p.ts_brid=:ts_offid AND date(p.ts_scantime) = '$today' ORDER BY p.ts_scantime, p.ts_empid DESC"; //echo $query; //exit; // prepare query statement $stmt = $this->conn->prepare($query); $stmt->bindParam(":ts_offid", $this->ts_brid); //$stmt->bindParam (":fromdate", strtotime (date ("Y-m-d H:i:s")), PDO::PARAM_STR); //$stmt->bind_param(":fromdate", $this->ts_fromdt, PDO::PARAM_STR); //$stmt->bindParam(":ts_todt", $this->ts_todt); //$date = date('Y-m-d H:i:s'); //$stmt->bindParam(':ts_todt', $this->ts_fromdt, PDO::PARAM_STR); // execute query $stmt->execute(); return $stmt; } /******************************************************************************/ function emp_read(){ // set ID property of record to read $query = "SELECT c.brch_name,p.empbranchcode, p.empid, p.empname, p.loname, p.empphone, p.empaddress, p.emppic, p.empstatus, p.emppass FROM " . $this->table_name . " p LEFT JOIN acts_branch c ON p.empbranchcode = c.brch_id WHERE p.empbranchcode=:ts_offid" ; // prepare query statement $stmt = $this->conn->prepare($query); $stmt->bindParam(":ts_offid", $this->ts_brid); // execute query $stmt->execute(); return $stmt; } /******************************************************************************/ function emp_delete(){ // set ID property of record to read $query = "DELETE FROM " . $this->table_name . " WHERE empid=:ts_empid" ; // prepare query statement $stmt = $this->conn->prepare($query); $stmt->bindParam(":ts_empid", $this->ts_empid); // execute query $stmt->execute(); return $stmt; } /******************************************************************************/ function qr_read(){ // set ID property of record to read $query = "SELECT c.brch_name,p.empbranchcode, p.empid, p.empname FROM " . $this->table_name . " p LEFT JOIN acts_branch c ON p.empbranchcode = c.brch_id WHERE p.empbranchcode=:ts_offid" ; // prepare query statement $stmt = $this->conn->prepare($query); $stmt->bindParam(":ts_offid", $this->ts_brid); // execute query $stmt->execute(); return $stmt; } /******************************************************************************/ function emp_Valid(){ // set ID property of record to read $query = "SELECT p.empid, p.empname FROM " . $this->table_name . " p LEFT JOIN acts_branch c ON p.empbranchcode = c.brch_id WHERE p.empid=:ts_empid"; // prepare query statement $stmt = $this->conn->prepare($query); $stmt->bindParam(":ts_empid", $this->ts_empid); // execute query $stmt->execute(); return $stmt; } /******************************************************************************/ function emp_OffCode(){ // set ID property of record to read $query = "SELECT p.empbranchcode FROM " . $this->table_name . " p LEFT JOIN acts_branch c ON p.empbranchcode = c.brch_id WHERE p.empid=:ts_empid LIMIT 1"; // prepare query statement $stmt = $this->conn->prepare($query); $stmt->bindParam(":ts_empid", $this->ts_empid); // execute query $stmt->execute(); return $stmt; } /******************************************************************************/ // Update attendance function emp_create_or_update() { // Remove spaces from the Aadhaar number before checking $this->empadharnumber = str_replace(' ', '', $this->empadharnumber); // Check if the Aadhaar number exists in the database $query_check = "SELECT empid FROM " . $this->table_name . " WHERE empadharnumber = :empadharnumber LIMIT 1"; $stmt_check = $this->conn->prepare($query_check); $stmt_check->bindParam(':empadharnumber', $this->empadharnumber); $stmt_check->execute(); if ($stmt_check->rowCount() === 0) { error_log("Aadhaar Number Not Found!"); // Debugging return false; } // Fetch existing employee ID $row = $stmt_check->fetch(PDO::FETCH_ASSOC); $existing_empid = $row['empid']; // Prepare UPDATE query $query = "UPDATE " . $this->table_name . " SET empname=:empname, empfathername=:empfathername, empdob=:empdob, empqualification=:empqualification, empemail=:empemail, empphone=:empphone, empaddress=:empaddress, dgname=:dgname, empbg=:empbg, emppic=:emppic, empstatus=:empstatus, emppass=:emppass WHERE empadharnumber=:empadharnumber"; $stmt = $this->conn->prepare($query); // Sanitize input data $this->empname = htmlspecialchars(strip_tags($this->empname)); $this->empfathername = htmlspecialchars(strip_tags($this->empfathername)); $this->empdob = htmlspecialchars(strip_tags($this->empdob)); $this->empqualification = htmlspecialchars(strip_tags($this->empqualification)); $this->empemail = htmlspecialchars(strip_tags($this->empemail)); $this->empphone = htmlspecialchars(strip_tags($this->empphone)); $this->empaddress = htmlspecialchars(strip_tags($this->empaddress)); $this->dgname = htmlspecialchars(strip_tags($this->dgname)); $this->empbg = htmlspecialchars(strip_tags($this->empbg)); $this->emppic = htmlspecialchars(strip_tags($this->emppic)); $this->empstatus = htmlspecialchars(strip_tags($this->empstatus)); $this->emppass = htmlspecialchars(strip_tags($this->emppass)); // Bind parameters $stmt->bindParam(":empadharnumber", $this->empadharnumber); $stmt->bindParam(":empname", $this->empname); $stmt->bindParam(":empfathername", $this->empfathername); $stmt->bindParam(":empdob", $this->empdob); $stmt->bindParam(":empqualification", $this->empqualification); $stmt->bindParam(":empemail", $this->empemail); $stmt->bindParam(":empphone", $this->empphone); $stmt->bindParam(":empaddress", $this->empaddress); $stmt->bindParam(':dgname', $this->dgname); $stmt->bindParam(":empbg", $this->empbg); $stmt->bindParam(":emppic", $this->emppic); $stmt->bindParam(":empstatus", $this->empstatus); $stmt->bindParam(":emppass", $this->emppass); // Execute query if (!$stmt->execute()) { error_log("SQL Error: " . implode(" | ", $stmt->errorInfo())); // Debugging return false; } $this->lastempid = $existing_empid; return true; } /******************************************************************************/ // Update attendance function at_update(){ // query to insert record $query = "INSERT INTO " . $this->table_name_at . " SET ts_brid=:ts_brid, ts_empid=:ts_empid, ts_scantime=:ts_scantime, ts_scanloc=:ts_scanloc, ts_type=:ts_type"; //echo $query; // prepare query $stmt = $this->conn->prepare($query); // sanitize $this->ts_brid=htmlspecialchars(strip_tags($this->ts_brid)); $this->ts_empid=htmlspecialchars(strip_tags($this->ts_empid)); $this->ts_scantime=htmlspecialchars(strip_tags($this->ts_scantime)); $this->ts_scantime=date('Y-m-d H:i:s', strtotime($this->ts_scantime)); $this->ts_scanloc=htmlspecialchars(strip_tags($this->ts_scanloc)); $this->ts_type=htmlspecialchars(strip_tags($this->ts_type)); // bind values $stmt->bindParam(":ts_brid", $this->ts_brid); $stmt->bindParam(":ts_empid", $this->ts_empid); $stmt->bindParam(":ts_scantime", $this->ts_scantime); $stmt->bindParam(":ts_scanloc", $this->ts_scanloc); $stmt->bindParam(":ts_type", $this->ts_type); // execute query if($stmt->execute()){ return true; } return false; } /******************************************************************************/ function count_all_empid() { $query = "SELECT COUNT(*) AS total FROM " . $this->table_name; $stmt = $this->conn->prepare($query); $stmt->execute(); $row = $stmt->fetch(PDO::FETCH_ASSOC); return $row['total']; } /******************************************************************************/ } ?>office.php000064400000006013150211543120006502 0ustar00conn = $db; } /******************************************************************************/ // create Office function off_create(){ // query to insert record $query = "INSERT INTO " . $this->table_name . " SET brch_name=:brch_name, brch_city=:brch_city, brch_add=:brch_add, brch_code=:brch_code"; //echo $query; // prepare query $stmt = $this->conn->prepare($query); // sanitize $this->brch_name=htmlspecialchars(strip_tags($this->brch_name)); $this->brch_city=htmlspecialchars(strip_tags($this->brch_city)); $this->brch_add=htmlspecialchars(strip_tags($this->brch_add)); $this->brch_code=htmlspecialchars(strip_tags($this->brch_code)); // bind values $stmt->bindParam(":brch_name", $this->brch_name); $stmt->bindParam(":brch_city", $this->brch_city); $stmt->bindParam(":brch_add", $this->brch_add); $stmt->bindParam(":brch_code", $this->brch_code); // execute query if($stmt->execute()){ return true; } return false; } /******************************************************************************/ function off_read(){ // set ID property of record to read $query = "SELECT brch_id,brch_name,brch_city FROM " . $this->table_name . " ORDER BY brch_id"; // prepare query statement $stmt = $this->conn->prepare($query); //$stmt->bindParam(":ts_empid", $this->ts_empid); // execute query $stmt->execute(); return $stmt; } /******************************************************************************/ function off_list_read(){ // set ID property of record to read $query = "SELECT brch_id,brch_name FROM " . $this->table_name . " ORDER BY brch_id"; // prepare query statement $stmt = $this->conn->prepare($query); //$stmt->bindParam(":ts_empid", $this->ts_empid); // execute query $stmt->execute(); return $stmt; } /******************************************************************************/ function off_delete(){ $query = "select count(*) from acts_emp WHERE empbranchcode=:ts_oid"; // prepare query statement $stmt = $this->conn->prepare($query); $stmt->bindParam(":ts_oid", $this->ts_oid); $stmt->execute(); $count = $stmt->fetchColumn(); if($count<=0){ // Delete record $query = "DELETE FROM " . $this->table_name . " WHERE brch_id=:ts_oid" ; // prepare query statement $stmt = $this->conn->prepare($query); $stmt->bindParam(":ts_oid", $this->ts_oid); // execute query $stmt->execute(); } return $count; } } ?>bank.php000064400000003655150211543120006173 0ustar00 conn = $db; } // Method to fetch bank details for a given empid public function fetch_bank_details_by_empid($empid) { // Query to fetch bank details for the given empid $query = "SELECT * FROM " . $this->table_name . " WHERE empid = :empid"; $stmt = $this->conn->prepare($query); $stmt->bindParam(':empid', $empid); $stmt->execute(); // Fetch the bank details as an associative array $bankDetails = $stmt->fetch(PDO::FETCH_ASSOC); return $bankDetails; } // Method to check if the given esino exists public function check_esino_exists($esino) { // Query to check if the esino exists in the database $query = "SELECT COUNT(*) FROM " . $this->table_name . " WHERE esino = :esino"; $stmt = $this->conn->prepare($query); $stmt->bindParam(':esino', $esino); $stmt->execute(); // Fetch the count of matching records $count = $stmt->fetchColumn(); // Return true if the esino exists, otherwise false return $count > 0; } // Method to check if the given esino exists public function check_epfno_exists($epfno) { // Query to check if the esino exists in the database $query = "SELECT COUNT(*) FROM " . $this->table_name . " WHERE epfno = :epfno"; $stmt = $this->conn->prepare($query); $stmt->bindParam(':epfno', $epfno); $stmt->execute(); // Fetch the count of matching records $count = $stmt->fetchColumn(); // Return true if the esino exists, otherwise false return $count > 0; } }setting.php000064400000003075150211543120006731 0ustar00conn = $db; } /******************************************************************************/ // create Office function setting_create(){ // query to insert record $query = "INSERT INTO " . $this->table_name . " SET gmap_api=:gmap_api"; echo $query; // prepare query $stmt = $this->conn->prepare($query); // sanitize $this->gmap_api=htmlspecialchars(strip_tags($this->gmap_api)); // bind values $stmt->bindParam(":gmap_api", $this->gmap_api); // execute query if($stmt->execute()){ return true; } return false; } /******************************************************************************/ function setting_read(){ // set ID property of record to read $query = "SELECT gmap_api FROM " . $this->table_name . " order by setting_id desc limit 1"; // prepare query statement $stmt = $this->conn->prepare($query); //$stmt->bindParam(":ts_empid", $this->ts_empid); // execute query $stmt->execute(); while ($row = $stmt->fetch(PDO::FETCH_ASSOC)){ $result = $row["gmap_api"]; } return $result; } /******************************************************************************/ } ?>user.php000064400000007514150211543120006234 0ustar00conn = $db; } function user_create(){ // query to insert record $query = "INSERT INTO " . $this->table_name . " SET userbranchcode=:userbranchcode, mobile=:mobile, username=:username, useremail=:useremail, userpass=:userpass, userstatus=:userstatus"; //echo $query; // prepare query $stmt = $this->conn->prepare($query); // sanitize $this->userbranchcode=htmlspecialchars(strip_tags($this->userbranchcode)); $this->mobile=htmlspecialchars(strip_tags($this->mobile)); $this->username=htmlspecialchars(strip_tags($this->username)); $this->useremail=htmlspecialchars(strip_tags($this->useremail)); $this->userpass=htmlspecialchars(strip_tags($this->userpass)); $this->userstatus=htmlspecialchars(strip_tags($this->userstatus)); // bind values $stmt->bindParam(":userbranchcode", $this->userbranchcode); $stmt->bindParam(":mobile", $this->mobile); $stmt->bindParam(":username", $this->username); $stmt->bindParam(":useremail", $this->useremail); $stmt->bindParam(":userpass", $this->userpass); $stmt->bindParam(":userstatus", $this->userstatus); // execute query if($stmt->execute()){ return true; } return false; } /******************************************************************************/ function user_read(){ $query = "SELECT * FROM " . $this->table_name . " WHERE userstatus = 'active'"; //echo $query; // prepare query statement $stmt = $this->conn->prepare($query); // execute query $stmt->execute(); return $stmt; } /******************************************************************************/ /******************************************************************************/ public function check_login($emailusername, $password){ // query to insert record $query = "SELECT * FROM " . $this->table_name . " WHERE useremail='" . $emailusername ."' or username = '".$emailusername."' AND userpass = '".$password."'"; // prepare query statement $stmt = $this->conn->prepare($query); //$stmt->bindParam(":ts_empid", $this->ts_empid); // execute query $stmt->execute(); if ($stmt->rowCount() == 1) { return true; } else { // Define failure return false; } } /******************************************************************************/ public function check_admin_permission($username){ // query to insert record $query = "SELECT * FROM " . $this->table_name . " WHERE username='" . $username ."' AND userbranchcode = 0"; // prepare query statement $stmt = $this->conn->prepare($query); //$stmt->bindParam(":ts_empid", $this->ts_empid); // execute query $stmt->execute(); if ($stmt->rowCount() == 1) { return true; } else { // Define failure return false; } } /******************************************************************************/ function user_delete(){ // set ID property of record to read $query = "DELETE FROM " . $this->table_name . " WHERE user_id=:ts_userid" ; // prepare query statement $stmt = $this->conn->prepare($query); $stmt->bindParam(":ts_userid", $this->ts_userid); // execute query $stmt->execute(); return $stmt; } /******************************************************************************/ } ?>