Hamza/intaleq_v3_pure_php
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

admin 8

Browse Source
This commit is contained in:
Hamza-Ayed
2026-04-30 17:29:33 +03:00
parent 2ca910ec32
commit b602106b79
2 changed files with 26 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

26
Admin/Staff/add.php
View File

@@ -22,26 +22,27 @@ $phone = filterRequest("phone");
$email = filterRequest("email"); $email = filterRequest("email");
$password = filterRequest("password"); $password = filterRequest("password");
$role = filterRequest("role"); // 'admin' or 'service' $role = filterRequest("role"); // 'admin' or 'service'
$fingerprint = filterRequest("fingerprint"); $fingerprint = filterRequest("fingerprint") ?: '';
$gender = filterRequest("gender") ?? 'Male'; $gender = filterRequest("gender") ?? 'Male';
$birthdate = filterRequest("birthdate"); $birthdate = filterRequest("birthdate") ?? date('Y-m-d');
$site = filterRequest("site") ?? 'main';
if (empty($name) || empty($password) || empty($role) || empty($fingerprint)) { if (empty($name) || empty($password) || empty($role)) {
jsonError("Missing required fields (name, password, role, fingerprint)."); jsonError("Missing required fields (name, password, role).");
exit; exit;
} }
try { try {
$hashedPassword = password_hash($password, PASSWORD_DEFAULT); $hashedPassword = password_hash($password, PASSWORD_DEFAULT);
// تشفير البيانات الحساسة باستخدام الهيلبر العام من bootstrap // تشفير البيانات الحساسة
$encName = $encryptionHelper->encryptData($name); $encName = $encryptionHelper->encryptData($name);
$encPhone = $encryptionHelper->encryptData($phone); $encPhone = $encryptionHelper->encryptData($phone);
$encEmail = $encryptionHelper->encryptData($email); $encEmail = $encryptionHelper->encryptData($email);
// تشفير البصمة وهش البصمة // تشفير البصمة وهش البصمة (إذا تم إرسالها)
$encFp = $encryptionHelper->encryptData($fingerprint); $encFp = $fingerprint ? $encryptionHelper->encryptData($fingerprint) : '';
$fpHash = hash('sha256', $fingerprint); $fpHash = $fingerprint ? hash('sha256', $fingerprint) : '';
$uniqueId = bin2hex(random_bytes(16)); $uniqueId = bin2hex(random_bytes(16));
if ($role === 'admin') { if ($role === 'admin') {
@@ -59,8 +60,9 @@ try {
]); ]);
} else { } else {
// الإضافة لجدول المستخدمين (خدمة العملاء) // الإضافة لجدول المستخدمين (خدمة العملاء)
$sql = "INSERT INTO users (id, fingerprint, fingerprint_hash, phone, email, gender, password, birthdate, user_type, first_name, created_at) // أضفنا site و last_name (كقيمة افتراضية فارغة إذا لم تتوفر)
VALUES (:id, :fp, :fp_hash, :phone, :email, :gender, :pass, :bdate, 'service', :fname, NOW())"; $sql = "INSERT INTO users (id, fingerprint, fingerprint_hash, phone, email, gender, password, birthdate, user_type, first_name, last_name, site, created_at)
VALUES (:id, :fp, :fp_hash, :phone, :email, :gender, :pass, :bdate, 'service', :fname, :lname, :site, NOW())";
$stmt = $con->prepare($sql); $stmt = $con->prepare($sql);
$stmt->execute([ $stmt->execute([
':id' => $uniqueId, ':id' => $uniqueId,
@@ -71,7 +73,9 @@ try {
':gender' => $gender, ':gender' => $gender,
':pass' => $hashedPassword, ':pass' => $hashedPassword,
':bdate' => $birthdate, ':bdate' => $birthdate,
':fname' => $encName ':fname' => $encName,
':lname' => '', // last_name is empty for now
':site' => $site
]); ]);
} }

11
check_users_cols.php Normal file
View File

@@ -0,0 +1,11 @@
<?php
require_once 'connect.php';
try {
$stmt = $con->query("DESCRIBE users");
$cols = $stmt->fetchAll(PDO::FETCH_ASSOC);
echo json_encode($cols, JSON_PRETTY_PRINT);
} catch (Exception $e) {
echo $e->getMessage();
}
?>