<?

ob_start();

//$redirect = "http://www.google.com";
//header("location:$redirect");
//exit;

//VIEW ERRROS
ini_set('display_errors',1);
ini_set('display_startup_erros',1);
error_reporting(E_ALL);

require "ClientNameBD.php";

$codigo = "";
session_start();
ob_start();

if ( isset ( $_SESSION['MM_Username'] ) ) {

	$codigo = $_SESSION['MM_Username'];
	
}

if ($codigo == false) { 

	echo "<meta HTTP-EQUIV='Refresh' CONTENT='0;URL=login.php'>"; 

} else { 
	
	require "../config/".$ClientNameBD."Config.Class.php";
	require "class/Resource.Class.php";
	
	//UPDATE PASS - USER
	if ( isset ( $_POST['form_post'] ) && is_numeric ( $_POST['form_post'] ) ) {

		if ( $_POST['form_post'] == "88888" ) {
			
			if ( trim($_POST['user-settings-password']) == trim($_POST['user-settings-repassword']) ) {
				
				if ( isset ( $_POST['user-settings-notifications'] ) ) {
					
					$notifications = 1;
					
				} else { 
					
					$notifications = 0;
					
				}
				
				if ( $_POST['user-settings-repassword'] == "" ) {
					
					$cons = new CONEXAO();
					$cons->Consulta("update
										autenticacao
									SET
										notificacao	= '".$notifications."',
										email		= '".trim($_POST['user-settings-email'])."'
									WHERE
										login 			= '".$codigo."'");
					$cons->Desconecta();
					
				} else {
					
					$cons = new CONEXAO();
					$cons->Consulta("update
										autenticacao
									SET
										senha		= '".trim($_POST['user-settings-repassword'])."',
										notificacao	= '".$notifications."',
										email		= '".trim($_POST['user-settings-email'])."'
									WHERE
										login 			= '".$codigo."'");
					$cons->Desconecta();
					
				}
				
				echo "<script>
					location.href='inicial';
				</script>";
				exit;
				
			} else {
				
				echo "<script>
					alert('Senha nao coincidem!');
					location.href='inicial';
				</script>";
				exit;
				
			}
	
		}

	}
	
	//USUARIO - DESATIVADO
	$cons = new CONEXAO();
	$sql = $cons->Consulta("SELECT 
								ID,
								grupo,
								ativo,
								nome,
								sobrenome,
								acesso,
								email,
								menu_upper,
								menu_side_one,
								login,
								instituicao,
								notificacao
							FROM 
								autenticacao
							WHERE 
								login = '".$codigo."'
							AND
								ativo = 0");

	$cons->Desconecta();
	
	if ( mysql_num_rows($sql) == "0" ) {
		
		echo "<script>
			alert('Usuario desativado!');
			location.href='logout.php';
		</script>";
		exit;
		
	}

	//USUARIO - INFO
	$cons = new CONEXAO();
	$sql = $cons->Consulta("SELECT 
								ID,
								grupo,
								ativo,
								nome,
								sobrenome,
								acesso,
								email,
								menu_upper,
								menu_side_one,
								login,
								instituicao,
								notificacao
							FROM 
								autenticacao
							WHERE 
								login = '".$codigo."'");

	$cons->Desconecta();
	
	if ( mysql_num_rows($sql) == "0" ) {
		
		echo "<script>
			alert('Senha nao coincidem!');
			location.href='logout.php';
		</script>";
		exit;
		
	}

	$ddsacesso = mysql_fetch_object($sql);

	$idacess 		= $ddsacesso->ID;
	$idgroup 		= $ddsacesso->grupo; 
	$ativo 			= $ddsacesso->ativo;
	$nusuario 		= $ddsacesso->nome;
	$usuario 		= $ddsacesso->login;
	$nuacesso 		= $ddsacesso->acesso;
	$nemail 		= $ddsacesso->email;
	$menu_upper 	= $ddsacesso->menu_upper;
	$menu_side_one 	= $ddsacesso->menu_side_one;
	$notificacao 	= $ddsacesso->notificacao;
	$instituicao 	= $ddsacesso->instituicao;

	require "libs/Smarty.class.php";
	$smarty = new Smarty;

	require_once "class/Users.Class.php";
	require_once "class/Init.Class.php";
	
	if ( isset ( $geturl[0] )  && $geturl[0] != "21" ) {
		
		require_once "class/Acess.Class.php";
		
	}	
		
	require_once "class/Menu.Class.php";
	require_once "class/User.Enterprise.Class.php";
	require_once "class/Acess.Point.Class.php";
	require_once "class/Reply.Sales.Class.php";
	//require_once "class/SMS.Send.LocaSMS.Client.List.Birthdays.Class.php";

	$FUNCAOUSER = "";
	
	if ( $idgroup == "1" ) {
		
		$FUNCAOUSER = "ADMIN";
	
	} else {
		
		//FUNCAO
		$cons = new CONEXAO();
		$sqlfuc = $cons->Consulta("SELECT
			 							funcao
		 							FROM
										human_resources_employee
									WHERE  
										autenticacao = '".$idacess."'");
		$cons->Desconecta();	
		$FUNCAOINFO = mysql_fetch_array($sqlfuc);	
		$FUNCAOUSER = $FUNCAOINFO['funcao'];
		
	}
	
	//AUTENTICACAO ON LINE
	$sessaoid = session_id();
	$cons = new CONEXAO();
	$sqluv = $cons->Consulta("SELECT 
								*
							FROM 
								authentication_online
							WHERE 
								sessao = '".$sessaoid."'
							AND
								user = '".$idacess."'");
	$cons->Desconecta();

	if ( mysql_num_rows($sqluv) == "0" ) {

		$ip = getenv("REMOTE_ADDR");
	
		$cons = new CONEXAO();
		$cons->Consulta("INSERT INTO
							authentication_online
							(sessao,
							ip,
							ativo,
							dtreg,
							user,
							enterprise)
						VALUES
							('".$sessaoid."',
							'".$ip."',
							'',
							'".$dtreg."',
							'".$idacess."',
							'".$enterprise."')");
		$cons->Desconecta();

	}
	
	//LISTA OPCAO
	$cons = new CONEXAO();
	$sqlr = $cons->Consulta("SELECT 
								*
							FROM
								website_column_redirect");
	$cons->Desconecta();
	$INFOREDIREC = mysql_fetch_array($sqlr);
	
	//WEBSITE - ENTERPRISE
	$REDIRECACAO					= $INFOREDIREC['redirecionar_acao'];
	$enterprise_website 			= $INFOREDIREC['enterprise_website'];
	$pagamento_redirecionamento 	= $INFOREDIREC['pagamento_redirecionamento'];
	$ficha_inscricao				= $INFOREDIREC['ficha_inscricao'];
	$ficha_inscricao_batalha_mc		= $INFOREDIREC['ficha_inscricao_batalha_mc'];
	$rankingname					= $INFOREDIREC['rankingname'];
	$rankingedition					= $INFOREDIREC['rankingedition'];
	$calendarname					= $INFOREDIREC['calendarname'];
	$videoyoutube					= $INFOREDIREC['videoyoutube'];
	$promotioncolun					= $INFOREDIREC['promotioncolun'];
	$promotionred					= $INFOREDIREC['promotionred'];
	$videopage						= $INFOREDIREC['videopage'];
	$language_original				= $INFOREDIREC['language_original'];
	$language_opcional				= $INFOREDIREC['language_opcional'];
	$arquivomp3epedf				= $INFOREDIREC['arquivomp3epedf'];
	$arquivomp3epedfreturn			= $INFOREDIREC['arquivomp3epedfreturn'];
	$transparencia					= $INFOREDIREC['transparencia'];
	
	//CONTATO
	$cons = new CONEXAO();
	$sqlcont = $cons->Consulta("SELECT 
									* 
								FROM 
									website_contact 
								WHERE 
									enterprise = '".$enterprise."' 
								ORDER by 
									id DESC 
								LIMIT 
									0,1");
	$cons->Desconecta();
	
	if ( mysql_num_rows($sqlcont) == 0 ) {
		
		$cons = new CONEXAO();
		$sqlcont = $cons->Consulta("INSERT INTO
										website_contact 
										(enterprise)
									VALUES
										('".$enterprise."')");
		$cons->Desconecta();
		
	}
	
	$cons = new CONEXAO();
	$sqlcont = $cons->Consulta("SELECT 
									* 
								FROM 
									website_contact 
								WHERE 
									enterprise = '".$enterprise."' 
								ORDER by 
									id DESC 
								LIMIT 
									0,1");
	$cons->Desconecta();
	
 	$contact = mysql_fetch_object($sqlcont);
	
	if ( isset ( $geturl[0] ) ) {
		
		$request = '';
		
		if ( $_SERVER['REQUEST_METHOD'] == 'POST' ) {
			
			if ( $_GET['c'] == "" ) {
			
				foreach ($_REQUEST as $value) {

			    	$request .= $value;

				}
				
			}
			
		} else {
			
			$request = $_GET['c'];
			
		}
		
		//LOGS - USER
		$cons = new CONEXAO();
		$cons->Consulta("INSERT INTO
							 system_logs
							(acao,
							ip,
							dtreg,
							user,
							enterprise)
						VALUES
							('".$request."',
							'".$_SERVER['REMOTE_ADDR']."',
							'".$dtreg."',
							'".$idacess."',
							'".$enterprise."')");
		$cons->Desconecta();
		
		if ( $geturl[0] != "21" ) {
			
			if ( isset ( $geturl[1] ) ) {
			
				$cons = new CONEXAO();
				$sqlvermenu = $cons->Consulta("SELECT 
											m.id, 
											m.modulo
										FROM 
											system_module m, 
											system_module_item_permission p
										WHERE 
											m.id = p.modulo 
										AND 
											p.usuario = '".$idacess."' 
										AND 
											m.ativo = '1'
										AND
											p.modulo = '".$geturl[0]."'
										AND
											p.item = '".$geturl[1]."'
										ORDER by 
											m.id");
				$cons->Desconecta();							

				while ( $list = mysql_fetch_array($sqlvermenu) ) {

					$filename = "class/".$geturl[0]."/c.".$geturl[0]."-".$geturl[1].".php";

					if ( file_exists ( $filename ) ) {

					    require_once "class/".$geturl[0]."/c.".$geturl[0]."-".$geturl[1].".php";

					} else {

					    require_once "class/".$list['id'].".php";

					}

				}
				
			}
			
		}
		
	} else {

		require_once "class/Home.Class.php";
		
	}
	
	require_once "class/21.php";
	
	if ( isset ( $_SESSION['alertoper'] ) ) {
	
		$smarty->assign("ALERTOPER", $_SESSION['alertoper']);
		
	}
	
	require_once "class/User.Stop.Page.Class.php";
	
	//INFO USUARIO E EMPRESA - START
	$sessaoid = session_id();
	
	$cons = new CONEXAO();
	$cons->Consulta("DELETE FROM
						system_user_access_temp
					WHERE
						user = '".$idacess."'
					OR
						sessao = '".$sessaoid."'");
	$cons->Desconecta();

	$cons = new CONEXAO();
	$cons->Consulta("INSERT INTO
						system_user_access_temp
						(sessao,
						ativo,
						dtreg,
						user,
						enterprise)
					VALUE
						('".$sessaoid."',
						'0',
						'".$dtreg."',
						'".$idacess."',
						'".$enterprise."')");
	$cons->Desconecta();
	//INFO USUARIO E EMPRESA - END

	//INFO USUARIO E EMPRESA - END
	$smarty->assign("ARQUIVOMP3EPDF", 					$arquivomp3epedf);
	$smarty->assign("PAGAMENTOREDIRECIONAMENTO", 		$pagamento_redirecionamento);
	$smarty->assign("PROMOTIONCOLUN", 					$promotioncolun);
	$smarty->assign("PROMOTIONRED", 					$promotionred);
	$smarty->assign("HOMEPAGE", 						$homepage);
	$smarty->assign("DTHJ", 							$dthj);
	$smarty->assign("DTHRHJ", 							$dtreg);
	$smarty->assign("LUSUARIO", 						$codigo);
	$smarty->assign("IDACESS", 							$idacess);
	$smarty->assign("NUSUARIO", 						$nusuario);
	$smarty->assign("FUNCAOUSER", 						$FUNCAOUSER);
	$smarty->assign("NEMAIL", 							$nemail);
	$smarty->assign("USUARIO", 							$usuario);
	$smarty->assign("GRUPOUSER", 						$idgroup);
	$smarty->assign("INSTITUICAO", 						$instituicao);
	$smarty->assign("MENU_UPPER", 						$menu_upper);
	$smarty->assign("MENU_SIDE_ONE", 					$menu_side_one);
	$smarty->assign("NNOTIFICACAO", 					$notificacao);
	$smarty->assign("LOGO", 							$logo);
	$smarty->assign("DOMINIOWEBOFICIAL", 				$dominioweb);
	$smarty->assign("DOMINIO", 							$dominio);
	$smarty->assign("DOMINIOWEB", 						$aeroporto);
	$smarty->assign("DOMINIOEMP", 						$aeroporto);
	$smarty->assign("DOMINIOCLOUDSDJ", 					$dominiocloudsdj);
	$smarty->assign("HEADERIM", 						$headerim);
	$smarty->assign("SUP", 								$supinf->sup);
	$smarty->assign("INF", 								$supinf->inf);
	$smarty->assign("CONTATOID", 						$contact->id);
	$smarty->assign("CONTATO", 							$contact->contato);
	$smarty->assign("ENDERECO", 						$contact->endereco);
	$smarty->assign("EMAIL", 							$contact->email);
	$smarty->assign("FONE", 							$contact->fone);
	$smarty->assign("WHATSAPP", 						$contact->whatsapp);
	$smarty->assign("SKYPE", 							$contact->skype);
	$smarty->assign("MAPA", 							$contact->mapa);
	$smarty->assign("ENTERPRISE", 						$enterprise);
	$smarty->assign("ENTERPRISENAME", 					$enterprisen);
	$smarty->assign("ENTERPRISECOLOR", 					$enterprisecolor);
	$smarty->assign("NUACESSO", 						$nuacesso);

	$smarty->display('index.tpl');
	
}

ob_end_flush();

?>