. * * For more information, contact Colosa Inc, 2566 Le Jeune Rd., * Coral Gables, FL, 33134, USA, or email info@colosa.com. */ /* * Authentication for Case Tracker * * @author Everth S. Berrios Morales * */ if (! isset( $_POST['form'] )) { G::SendTemporalMessage( 'ID_USER_HAVENT_RIGHTS_SYSTEM', "error" ); G::header( "location: login.php" ); die(); } try { $frm = $_POST['form']; $case = ''; $pin = ''; if (isset( $frm['CASE'] )) { $case = strtolower( trim( $frm['CASE'] ) ); $pin = trim( $frm['PIN'] ); } $cases = new Cases(); $uid = $cases->verifyCaseTracker( $case, $pin ); switch ($uid) { //The case doesn't exist case - 1: G::SendTemporalMessage( 'ID_CASE_NOT_EXISTS', "error" ); break; //The pin is invalid case - 2: G::SendTemporalMessage( 'ID_PIN_INVALID', "error" ); break; } if ($uid < 0) { G::header( "location: login.php" ); die(); } if (is_array( $uid )) { require_once ("classes/model/CaseTracker.php"); require_once ("classes/model/CaseTrackerObject.php"); $_SESSION['CASE'] = $case; $_SESSION['PIN'] = $pin; $_SESSION['PROCESS'] = $uid['PRO_UID']; $_SESSION['APPLICATION'] = $uid['APP_UID']; $_SESSION['TASK'] = - 1; $_SESSION['INDEX'] = - 1; $criteria = new Criteria(); $criteria->add( CaseTrackerPeer::PRO_UID, $_SESSION['PROCESS'] ); $caseTracker = new CaseTracker(); if (CaseTrackerPeer::doCount( $criteria ) === 0) { $permissionsCaseTracker = array ('PRO_UID' => $_SESSION['PROCESS'],'CT_MAP_TYPE' => 'PROCESSMAP','CT_DERIVATION_HISTORY' => 1,'CT_MESSAGE_HISTORY' => 1 ); $caseTracker->create( $permissionsCaseTracker ); } $caseTracker = $cases->caseTrackerPermissions( $_SESSION['PROCESS'] ); if ($caseTracker['CT_MAP_TYPE']) { G::header( 'location: tracker_ViewMap' ); } else { if ($caseTracker['DYNADOC']) { G::header( "location: tracker_DynaDocs" ); } else { if ($caseTracker['CT_DERIVATION_HISTORY']) { G::header( "location: tracker_History" ); } else { if ($caseTracker['CT_MESSAGE_HISTORY']) { G::header( "location: tracker_No" ); } else { G::header( "location: login.php" ); G::SendTemporalMessage( 'ID_ACCOUNT_DISABLED_CONTACT_ADMIN', "error" ); } } } } } } catch (Exception $e) { $aMessage['MESSAGE'] = $e->getMessage(); $G_PUBLISH = new Publisher(); $G_PUBLISH->AddContent( 'xmlform', 'xmlform', 'login/showMessage', '', $aMessage ); G::RenderPage( 'publish' ); die(); }