Hamza/Siro
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update: 2026-06-25 18:39:01

Browse Source
This commit is contained in:
Hamza-Ayed
2026-06-25 18:39:01 +03:00
parent a4d9d8e74c
commit 9b61bd50c8
11 changed files with 108 additions and 29 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
backend/Admin/Staff/add.php
View File

@@ -32,6 +32,7 @@ $fingerprint = filterRequest("fingerprint") ?: '';
$gender = filterRequest("gender") ?? 'Male';
$birthdate = filterRequest("birthdate") ?? date('Y-m-d');
$site = filterRequest("site") ?? 'main';
$country = filterRequest("country") ?? 'Jordan';
if (empty($name) || empty($password) || empty($role)) {
jsonError("Missing required fields (name, password, role).");
@@ -70,8 +71,8 @@ try {
} else {
// الإضافة لجدول المستخدمين (خدمة العملاء)
// أضفنا site و last_name (كقيمة افتراضية فارغة إذا لم تتوفر)
$sql = "INSERT INTO users (id, fingerprint, fingerprint_hash, phone, email, gender, password, birthdate, user_type, first_name, last_name, site, created_at)
VALUES (:id, :fp, :fp_hash, :phone, :email, :gender, :pass, :bdate, 'service', :fname, :lname, :site, NOW())";
$sql = "INSERT INTO users (id, fingerprint, fingerprint_hash, phone, email, gender, password, birthdate, user_type, first_name, last_name, site, country, created_at)
VALUES (:id, :fp, :fp_hash, :phone, :email, :gender, :pass, :bdate, 'service', :fname, :lname, :site, :country, NOW())";
$stmt = $con->prepare($sql);
$stmt->execute([
':id' => $uniqueId,
@@ -84,7 +85,8 @@ try {
':bdate' => $birthdate,
':fname' => $encName,
':lname' => '', // last_name is empty for now
':site' => $site
':site' => $site,
':country' => $country
]);
}

63
backend/Admin/Staff/add_super_admin.php Normal file
View File

@@ -0,0 +1,63 @@
<?php
/**
* Admin/Staff/add_super_admin.php
* إضافة مشرف عام (Super Admin) — استخدام لمرة واحدة
*/
require_once __DIR__ . '/../../core/bootstrap.php';
// $adminKey = filterRequest('admin_key') ?? '';
// $expected = getenv('MIGRATION_ADMIN_KEY');
// if (empty($adminKey) || empty($expected) || !hash_equals($expected, $adminKey)) {
// http_response_code(403);
// exit(json_encode(['error' => 'Access denied. Admin key required.']));
// }
$con = Database::get('main');
$name = filterRequest('name') ?: 'Super Admin';
$email = filterRequest('email') ?: '';
$phone = filterRequest('phone') ?: '';
$fingerprint = filterRequest('fingerprint') ?: '';
$password = filterRequest('password') ?: bin2hex(random_bytes(8));
try {
$hashedPass = password_hash($password, PASSWORD_DEFAULT);
$encName = $encryptionHelper->encryptData($name);
$encPhone = $phone ? $encryptionHelper->encryptData($phone) : '';
$encEmail = $email ? $encryptionHelper->encryptData($email) : '';
$encFp = $fingerprint ? $encryptionHelper->encryptData($fingerprint) : '';
$fpHash = $fingerprint ? hash('sha256', $fingerprint) : '';
$uniqueId = bin2hex(random_bytes(16));
$check = $con->prepare("SELECT id FROM adminUser WHERE role = 'super_admin' LIMIT 1");
$check->execute();
if ($check->fetch()) {
echo "<h2>⚠️ Super Admin already exists.</h2>";
exit;
}
$sql = "INSERT INTO adminUser (id, fingerprint, fingerprint_hash, name, phone, email, password, role, created_at)
VALUES (:id, :fp, :fp_hash, :name, :phone, :email, :pass, 'super_admin', NOW())";
$stmt = $con->prepare($sql);
$stmt->execute([
':id' => $uniqueId,
':fp' => $encFp,
':fp_hash' => $fpHash,
':name' => $encName,
':phone' => $encPhone,
':email' => $encEmail,
':pass' => $hashedPass,
]);
if ($stmt->rowCount() > 0) {
echo "<h2>✅ Super Admin created successfully!</h2>";
echo "<p><b>ID:</b> $uniqueId</p>";
echo "<p><b>Name:</b> $name</p>";
echo "<p><b>Password:</b> $password</p>";
echo "<p style='color:red;'><b>⚠️ Save this password. Delete this file after use.</b></p>";
} else {
echo "<h2>❌ Failed to create Super Admin.</h2>";
}
} catch (Exception $e) {
echo "<h2>❌ Error: " . htmlspecialchars($e->getMessage()) . "</h2>";
}

2
backend/serviceapp/getDriverDetailsForActivate.php
View File

@@ -5,7 +5,7 @@ $driverId = filterRequest("driverId");
$sql = "SELECT d.*, cr.*
FROM `driver` d
JOIN `CarRegistration` cr ON cr.driverID = d.id
LEFT JOIN `CarRegistration` cr ON cr.driverID = d.id
WHERE d.id = :driverId ";
$stmt = $con->prepare($sql);

6
backend/serviceapp/getDriverNotCompleteRegistration.php
View File

@@ -7,14 +7,14 @@ $sql = "SELECT
notesForDriverService.note
FROM
phone_verification
INNER JOIN -- نستخدم INNER JOIN لضمان جلب من لديهم ملاحظات فقط
INNER JOIN
`notesForDriverService`
ON
`notesForDriverService`.`phone` = `phone_verification`.`phone_number`
WHERE
`notesForDriverService`.`note` != 'delete'
ORDER BY
`phone_verification`.`created_at` DESC -- الترتيب حسب تاريخ التحقق لأنه العمود الموجود
`phone_verification`.`created_at` DESC
LIMIT 400;
";
@@ -24,7 +24,6 @@ $stmt->execute();
if ($stmt->rowCount() > 0) {
$rows = $stmt->fetchAll(PDO::FETCH_ASSOC);
// فك تشفير أرقام الهواتف فقط للإخراج
foreach ($rows as &$row) {
if (!empty($row['phone'])) {
$row['phone'] = $encryptionHelper->decryptData($row['phone']);
@@ -42,4 +41,3 @@ if ($stmt->rowCount() > 0) {
} else {
jsonError("No Phone verified yet found");
}
?>

4
backend/serviceapp/login.php
View File

@@ -105,10 +105,6 @@ try {
$expires_in = $ttl;
}
// توليد مفتاح HMAC فريد للمستخدم (للتوافق مع CRUD الجديد)
$hmacKey = hash_hmac('sha256', (string)$user['id'], getenv('SECRET_KEY_HMAC'));
// ✅ FIX H-05: لا نعيد مفتاح HMAC أبداً (يُحسب على العميل بنفس المعادلة)
printSuccess([
"message" => "Login successful",
"data" => $user,

2
siro_admin/lib/controller/admin/staff_controller.dart
View File

@@ -18,6 +18,7 @@ class StaffController extends GetxController {
String selectedGender = 'Male';
String selectedRole = 'service'; // 'admin' or 'service'
String selectedCountry = 'Jordan';
bool isLoading = false;
@@ -43,6 +44,7 @@ class StaffController extends GetxController {
"birthdate": birthdateController.text.trim(),
"fingerprint": fingerprint,
"site": "main", // القيمة الافتراضية للفرع
"country": selectedCountry,
},
);

8
siro_admin/lib/views/admin/staff/add_staff_page.dart
View File

@@ -87,6 +87,14 @@ class AddStaffPage extends StatelessWidget {
),
],
),
const SizedBox(height: 16),
_buildDropdown(
label: "البلد",
value: controller.selectedCountry,
items: const ['Jordan', 'Syria', 'Egypt'],
onChanged: (val) => controller.selectedCountry = val!,
fillColor: inputColor,
),
const SizedBox(height: 40),
GetBuilder<StaffController>(
builder: (controller) => SizedBox(

8
siro_admin/macos/Podfile.lock
View File

@@ -105,6 +105,8 @@ PODS:
- nanopb/encode (= 3.30910.0)
- nanopb/decode (3.30910.0)
- nanopb/encode (3.30910.0)
- package_info_plus (0.0.1):
- FlutterMacOS
- path_provider_foundation (0.0.1):
- Flutter
- FlutterMacOS
@@ -127,6 +129,7 @@ DEPENDENCIES:
- flutter_secure_storage_macos (from `Flutter/ephemeral/.symlinks/plugins/flutter_secure_storage_macos/macos`)
- FlutterMacOS (from `Flutter/ephemeral`)
- local_auth_darwin (from `Flutter/ephemeral/.symlinks/plugins/local_auth_darwin/darwin`)
- package_info_plus (from `Flutter/ephemeral/.symlinks/plugins/package_info_plus/macos`)
- path_provider_foundation (from `Flutter/ephemeral/.symlinks/plugins/path_provider_foundation/darwin`)
- sqflite_darwin (from `Flutter/ephemeral/.symlinks/plugins/sqflite_darwin/darwin`)
- url_launcher_macos (from `Flutter/ephemeral/.symlinks/plugins/url_launcher_macos/macos`)
@@ -167,6 +170,8 @@ EXTERNAL SOURCES:
:path: Flutter/ephemeral
local_auth_darwin:
:path: Flutter/ephemeral/.symlinks/plugins/local_auth_darwin/darwin
package_info_plus:
:path: Flutter/ephemeral/.symlinks/plugins/package_info_plus/macos
path_provider_foundation:
:path: Flutter/ephemeral/.symlinks/plugins/path_provider_foundation/darwin
sqflite_darwin:
@@ -191,11 +196,12 @@ SPEC CHECKSUMS:
FirebaseSessions: b9a92c1c51bbb81e78fc3142cda6d925d700f8e7
flutter_image_compress_macos: e68daf54bb4bf2144c580fd4d151c949cbf492f0
flutter_secure_storage_macos: 7f45e30f838cf2659862a4e4e3ee1c347c2b3b54
FlutterMacOS: 8f6f14fa908a6fb3fba0cd85dbd81ec4b251fb24
FlutterMacOS: d0db08ddef1a9af05a5ec4b724367152bb0500b1
GoogleDataTransport: aae35b7ea0c09004c3797d53c8c41f66f219d6a7
GoogleUtilities: 00c88b9a86066ef77f0da2fab05f65d7768ed8e1
local_auth_darwin: d2e8c53ef0c4f43c646462e3415432c4dab3ae19
nanopb: fad817b59e0457d11a5dfbde799381cd727c1275
package_info_plus: 122abb51244f66eead59ce7c9c200d6b53111779
path_provider_foundation: 080d55be775b7414fd5a5ef3ac137b97b097e564
PromisesObjC: f5707f49cb48b9636751c5b2e7d227e43fba9f47
PromisesSwift: 9d77319bbe72ebf6d872900551f7eeba9bce2851

3
siro_service/lib/controller/login_controller.dart
View File

@@ -140,6 +140,9 @@ class LoginController extends GetxController {
await storage.write(key: 'password', value: pass);
await box.write(BoxName.employeename, userData['first_name']);
await box.write(BoxName.password, pass);
if (userData['country'] != null) {
await box.write(BoxName.countryCode, userData['country']);
}
Get.offAll(() => Main());
} else {

3
siro_service/lib/controller/mainController/pages/drivers_cant_register.dart
View File

@@ -144,7 +144,8 @@ class DriversCantRegister extends StatelessWidget {
},
),
// Edit button → go to registration form
// Edit button → go to review page (only if driverId exists)
if (driver['driverId'] != null)
buildActionButton(
icon: CupertinoIcons
.pencil_ellipsis_rectangle,

2
siro_service/lib/controller/mainController/review_driver_controller.dart
View File

@@ -48,7 +48,7 @@ class ReviewDriverController extends GetxController {
'profile_picture': Icons.person,
};
String get country => box.read('countryCode')?.toString() ?? 'Syria';
String get country => box.read('countryCode')?.toString() ?? 'Jordan';
static const Map<String, List<List<dynamic>>> fieldConfig = {
'id_front': [