<?php
header("Content-Type: text/html; charset=utf-8");
if(isset($_COOKIE["id"]))
;
else{
echo "<script language='javascript'>window.location.replace('volunteer.php');</script>";
return;
}
$id=$_COOKIE["id"];
$mysql_host = SAE_MYSQL_HOST_M;
$mysql_host_s = SAE_MYSQL_HOST_S;
$mysql_port = SAE_MYSQL_PORT;
$mysql_user = SAE_MYSQL_USER;
$mysql_password = SAE_MYSQL_PASS;
$mysql_database = SAE_MYSQL_DB;
$mysql_table = "volunteer";
$con = mysql_connect($mysql_host.':'.$mysql_port, $mysql_user, $mysql_password, true);
if (!$con){
die('Could not connect: ' . mysql_error());
}
mysql_query("SET NAMES 'UTF8'");
mysql_select_db($mysql_database, $con);
$workdate = mysql_real_escape_string($_POST['WorkDate']);
$id2 = mysql_real_escape_string($_POST['Id']);
$workname = mysql_real_escape_string($_POST['WorkName']);
$worktime = mysql_real_escape_string($_POST['WorkTime']);
$money = mysql_real_escape_string($_POST['Money']);
$Result = mysql_query("SELECT * FROM ".$mysql_table." WHERE id='".$id2."'");
$row = mysql_fetch_array($Result);
if (!$row){
echo "<script>alert('此学号尚未添加,请先添加再上传工时');</script>";
echo '<script language=\'javascript\'>window.location.replace(\'addwork.php\');</script>';
return;
}
$Result = mysql_query("SELECT * FROM ".$mysql_table." WHERE id='".$id."'");
$row = mysql_fetch_array($Result);
$power = $row[power];
if($power == 2){
$sql = "insert into volunteer_details (id,workdate,workname,worktime,money) values('$id2','$workdate','$workname','$worktime','$money')";
if (!mysql_query($sql,$con))
{
die('Error: ' . mysql_error());
}
else{
echo "<script>alert('上传成功');</script>";
echo '<script language=\'javascript\'>window.location.replace(\'addwork.php\');</script>';
return;
}
}
else{
echo "<script>alert('您没有此权限!');</script>";
echo '<script language=\'javascript\'>window.location.replace(\'index.php\');</script>';
return;
}
?>