| Server IP : 134.29.175.74 / Your IP : 216.73.216.160 Web Server : nginx/1.10.2 System : Windows NT CST-WEBSERVER 10.0 build 19045 (Windows 10) i586 User : Administrator ( 0) PHP Version : 7.1.0 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : OFF | Perl : OFF | Python : OFF | Sudo : OFF | Pkexec : OFF Directory : C:/nginx/html/Admin/User/ |
Upload File : |
<?
// Admin/User/SearchQueryUser.phpinc
// Perform the search query.
if (da()) debugTrackBegin();
#setDebugOn();
# DATE_FORMAT(userDOB,GET_FORMAT(DATE,'USA')) AS userDOB,
$v_SearchPart = explode(" ",ucwords($f_userSearch));
if ( count($v_SearchPart) > 0 ) {
switch (count($v_SearchPart)) {
case 0:
break;
case 1:
if ( !is_numeric($v_SearchPart[0]) ) {
$f_FirstName = $v_SearchPart[0];
} else {
$f_userStudentId = $v_SearchPart[0];
}
break;
case 2:
$f_FirstName = $v_SearchPart[0];
$f_LastName = $v_SearchPart[1];
break;
default:
$f_FirstName = $v_SearchPart[0];
$f_MiddleName = '';
for ($i=1; $i<count($v_SearchPart)-1; $i++) {
$f_MiddleName .= $v_SearchPart[$i].' ';
}
$f_MiddleName = trim($f_MiddleName);
$f_LastName = $v_SearchPart[count($v_SearchPart)-1];
break;
}
}
// Perform search.
$query = "
SELECT DISTINCT
user.userId,
userUsername,
user.userStudentId,
userFirstName,
userMiddleName,
userLastName,
userNickname,
userDN,
userEmail,
userImage,
userIsInactive,
userIsStudent,
userIsAlumni,
userComments,
userDefaultDrive,
userDataFolder,
userLoggedIn,
userLoginCount,
userAccessTime,
userIPAddress,
userIPDecimal,
userPHPSESSID,
user.lastModified,
user.modifiedBy,
userAdvisor,
userClassification,
userMajor,
";
if ( isset($f_FirstName) ) { // userFirstName or userNickname match.
$query .= "
IF (userFirstName = '".$f_FirstName."', 40,
IF (userFirstName LIKE '".$f_FirstName."%', 20,
IF (userFirstName LIKE '%".$f_FirstName."%', 10, 0 ) ) )
+
IF (userNickname = '".$f_FirstName."', 30,
IF (userNickname LIKE '".$f_FirstName."%', 15,
IF (userNickname LIKE '%".$f_FirstName."%', 7, 0 ) ) )
+
";
}
if ( isset($f_MiddleName) ) { // userMiddleName match.
$query .= "
IF (userMiddleName = '".$f_MiddleName."', 15,
IF (userMiddleName LIKE '".$f_MiddleName."%', 7,
IF (userMiddleName LIKE '%".$f_MiddleName."%', 3, 0 ) ) )
+
";
}
if ( isset($f_LastName) ) { // userLastName match.
$query .= "
IF (userLastName = '".$f_LastName."', 20,
IF (userLastName LIKE '".$f_LastName."%', 10,
IF (userLastName LIKE '%".$f_LastName."%', 5, 0 ) ) )
+
";
}
if ( isset($f_userStudentId) ) { // userStudentId match.
$query .= "
IF (user.userStudentId = '".$f_userStudentId."', 50,
IF (user.userStudentId LIKE '%".$f_userStudentId."', 25,
IF (user.userStudentId LIKE '%".$f_userStudentId."%', 12, 0 ) ) )
+
";
}
$query .= "
0 AS score
FROM `user`
LEFT JOIN userdata ON user.userStudentId = userdata.userStudentId
LEFT JOIN studentprofile ON studentprofile.userId = user.userId
WHERE (
1=0
";
foreach ($v_SearchPart as $key => $value) { // Match mixed names, email addresses, phone numbers.
$query .= "
OR userFirstName LIKE '%".$value."%'
OR userNickname LIKE '%".$value."%'
OR userMiddleName LIKE '%".$value."%'
OR userLastName LIKE '%".$value."%'
OR user.userStudentId LIKE '%".$value."%'
OR userEmail LIKE '%".$value."%'
OR studentprofile.studentprofileEmail1 LIKE '%".$value."%'
OR studentprofile.studentprofileEmail2 LIKE '%".$value."%'
OR studentprofile.studentprofilePhone1 LIKE '%".$value."%'
OR studentprofile.studentprofilePhone2 LIKE '%".$value."%'
";
}
$query .= "
)
ORDER BY score DESC, userLastName, userFirstName, userMiddleName
";
#if (true || dc()) printVar('$query',$query,'q');
#printVar('$query',$query,'q');
$userSearchResult = query_do($query);
#if (true || dc()) printDivVar('$userSearchResult',$userSearchResult);
#printDivVar('$userSearchResult',$userSearchResult);
$userSearchResultCount = $_SESSION['qry']['count'];
if (da()) debugTrackEnd();
?>