Execute($actsurquery) or safe_die($connect->ErrorMsg()); $actsurrows = $actsurresult->FetchRow(); if($_SESSION['USER_RIGHT_SUPERADMIN'] == 1 || $actsurrows['edit_survey_property']){ if ($action == "assessmentadd") { $inserttable=$dbprefix."assessments"; $query = $connect->GetInsertSQL($inserttable, array( 'sid' => $surveyid, 'scope' => $_POST['scope'], 'gid' => $_POST['gid'], 'minimum' => $_POST['minimum'], 'maximum' => $_POST['maximum'], 'name' => $_POST['name'], 'message' => $_POST['message'], 'link' => $_POST['link'] )); $result=$connect->Execute($query) or safe_die("Error inserting
$query
".$connect->ErrorMsg()); } elseif ($action == "assessmentupdate") { $query = "UPDATE {$dbprefix}assessments SET scope='".db_quote($_POST['scope'])."', gid=".sanitize_int($_POST['gid']).", minimum='".sanitize_int($_POST['minimum'])."', maximum='".sanitize_int($_POST['maximum'])."', name='".db_quote($_POST['name'])."', message='".db_quote($_POST['message'])."', link='".db_quote($_POST['link'])."' WHERE id=".sanitize_int($_POST['id']); $result = $connect->Execute($query) or safe_die("Error updating
$query
".$connect->ErrorMsg()); } elseif ($action == "assessmentdelete") { $query = "DELETE FROM {$dbprefix}assessments WHERE id=".sanitize_int($_POST['id']); $result=$connect->Execute($query); } $assessmentsoutput= "\n" . "\t\n" . "\t\t

\n" . "\t\t\t\n" . "\t\t\t\n" . "\t\t\t\t\n"; $assessmentsoutput.= "\t\n" . "\t\t\n" . "\t\n"; $assessmentsoutput.= "

\n" . "\t\t\t\t\t".$clang->gT("Assessments")."
\n" . "\t\t\tgT("Return to Survey Administration", "js")."');return false\">" . "\n" . "\t\t\t\n" . "\t\t\t\n" . "\t\t

"; if ($surveyid == "") { $assessmentsoutput.= $clang->gT("No SID Provided"); exit; } $assessments=getAssessments($surveyid); //$assessmentsoutput.= "

";print_r($assessments);echo "

"; $groups=getGroups($surveyid); $groupselect="\n"; $headings=array($clang->gT("Scope"), $clang->gT("Group"), $clang->gT("Minimum"), $clang->gT("Maximum"), $clang->gT("Heading"), $clang->gT("Message"), $clang->gT("URL")); $inputs=array("", $groupselect, "", "", "", "", ""); $actiontitle=$clang->gT("Add"); $actionvalue="assessmentadd"; $thisid=""; if ($action == "assessmentedit") { $query = "SELECT * FROM {$dbprefix}assessments WHERE id=".sanitize_int($_POST['id']); $results = db_execute_assoc($query); while($row=$results->FetchRow()) { $editdata=$row; } $scopeselect = ""; $groupselect=str_replace("'".$editdata['gid']."'", "'".$editdata['gid']."' selected", $groupselect); $inputs=array($scopeselect, $groupselect, "", "", "", "", ""); $actiontitle=$clang->gT("Edit"); $actionvalue="assessmentupdate"; $thisid=$editdata['id']; } //$assessmentsoutput.= "

"; print_r($edits); $assessmentsoutput.= "

"; //PRESENT THE PAGE $assessmentsoutput.= "
" ."\n"; foreach ($headings as $head) { $assessmentsoutput.= "\n"; } $assessmentsoutput.= ""; $assessmentsoutput.= "\n"; $flipflop=true; foreach($assessments as $assess) { $flipflop=!$flipflop; if ($flipflop==true){$assessmentsoutput.= "\n";} else {$assessmentsoutput.= "\n";} $assessmentsoutput.= "\n"; $assessmentsoutput.= "\n"; if ($assess['scope'] == "T") { $assessmentsoutput.= "\n"; } else {$assessmentsoutput.= "\n"; } $assessmentsoutput.= "\n"; $assessmentsoutput.= "\n"; $assessmentsoutput.= "\n"; $assessmentsoutput.= "\n"; $assessmentsoutput.= "\n"; $assessmentsoutput.= "\n"; $assessmentsoutput.= "\n"; $assessmentsoutput.= "\n"; } $assessmentsoutput.= "

".$clang->gT("If you create any assessments in this page, for the currently selected survey, the assessment will be performed at the end of the survey after submission")."

SID

$head

".$clang->gT("Actions")."

".$assess['id']."

".$assess['sid']."

".$clang->gT("Total")."

".$clang->gT("Group")."

".$groups[$assess['gid']]['group_name']." (".$assess['gid'].")

".$assess['minimum']."

".$assess['maximum']."

".stripslashes($assess['name'])."

".stripslashes($assess['message'])."

".stripslashes($assess['link'])."

"; $assessmentsoutput.= "

\n"; $assessmentsoutput.= "\n"; $i=0; foreach ($headings as $head) { $assessmentsoutput.= "\n"; $i++; } $assessmentsoutput.= "\n" ."

$actiontitle
$head	".$inputs[$i]."
\n"; if ($action == "assessmentedit") $assessmentsoutput.= " \n"; $assessmentsoutput.= "\n" ."\n" ."\n" ."

\n"; } else { $action = "assessment"; include("access_denied.php"); include("admin.php"); } function getAssessments($surveyid) { global $dbprefix, $connect; $query = "SELECT id, sid, scope, gid, minimum, maximum, name, message, link FROM ".db_table_name('assessments')." WHERE sid='$surveyid' ORDER BY scope, gid"; $result=db_execute_assoc($query) or safe_die("Error getting assessments
$query
".$connect->ErrorMsg()); $output=array(); while($row=$result->FetchRow()) { $output[]=$row; } return $output; } function getGroups($surveyid) { global $dbprefix, $connect; $baselang = GetBaseLanguageFromSurveyID($surveyid); $query = "SELECT gid, group_name FROM ".db_table_name('groups')." WHERE sid='$surveyid' and language='$baselang' ORDER BY group_order"; $result = db_execute_assoc($query) or safe_die("Error getting groups
$query
".$connect->ErrorMsg()); $output=array(); while($row=$result->FetchRow()) { $output[$row['gid']]=$row; } return $output; } ?>