""){ $user=$_GET['user']; } if(isset($_GET['CompanyID']) && $_GET['CompanyID']>""){ $company=$_GET['CompanyID']; } else $company=0; $db=new database(); $msg=''; if (isset($user) && $user>"" && $_SERVER['REQUEST_METHOD']=="POST"){ if($user=='Admin'){ $email=mysql_real_escape_string(trim($_POST['email'])); $pass=mysql_real_escape_string(trim($_POST['pass'])); $fname=mysql_real_escape_string(trim($_POST['fname'])); $lname=mysql_real_escape_string(trim($_POST['lname'])); if(isset($_POST['perms'])) $perms=implode('-',$_POST['perms']); else $perms=''; $db->query("SELECT email FROM `users_accts` WHERE `email`='$email'"); if($db->count_rows()==0){ $db->query("INSERT INTO `users_accts` SET `utype`='Admin', `email`='$email', `pass`=OLD_PASSWORD('$pass'), `fname`='$fname', `lname`='$lname', `perms`='$perms'"); $msg='Admin Added'; }else{ $msg='Email Already Exists'; } }elseif($user=='Company'){ if(isset($_POST['perms'])) $perms=implode('-',$_POST['perms']); else $perms=''; $CompanyName=mysql_real_escape_string(trim($_POST['CompanyName'])); $db->query("SELECT CompanyName FROM `users_accts` WHERE `utype`='Company' AND `CompanyName`='$CompanyName'"); if($db->count_rows()==0){ $db->query("INSERT INTO `users_accts` SET `utype`='Company', `CompanyName`='$CompanyName', `perms`='$perms'"); $msg='Company Added'; }else{ $msg='Comany Name Already Exists'; } }elseif($user=='Consultant'){ $email=mysql_real_escape_string(trim($_POST['email'])); $pass=mysql_real_escape_string(trim($_POST['pass'])); $fname=mysql_real_escape_string(trim($_POST['fname'])); $lname=mysql_real_escape_string(trim($_POST['lname'])); if(isset($_POST['perms'])) $perms=implode('-',$_POST['perms']); else $perms=''; $db->query("SELECT email FROM `users_accts` WHERE `email`='$email'"); if($db->count_rows()==0){ $db->query("INSERT INTO `users_accts` SET `utype`='Consultant', `email`='$email', `pass`=OLD_PASSWORD('$pass'), `fname`='$fname', `lname`='$lname', `perms`='$perms'"); $prev_id=mysql_insert_id(); $db->query("DELETE FROM `consultant_companies` WHERE (`cuid`='$prev_id') "); foreach($_POST['CompanyIDb'] as $ccomid){ $db->query("INSERT INTO `consultant_companies` SET `cuid`='$prev_id',`ccomid`='$ccomid'"); } $msg='Consultant Added'; }else{ $msg='Email Already Exists'; } }elseif($user=='Client'){ $email=mysql_real_escape_string(trim($_POST['email'])); $pass=mysql_real_escape_string(trim($_POST['pass'])); $fname=mysql_real_escape_string(trim($_POST['fname'])); $lname=mysql_real_escape_string(trim($_POST['lname'])); $CompanyID=mysql_real_escape_string(trim($_POST['CompanyID'])); if(isset($_POST['perms'])) $perms=implode('-',$_POST['perms']); else $perms=''; $db->query("SELECT email FROM `users_accts` WHERE `email`='$email'"); if($db->count_rows()==0){ $db->query("INSERT INTO `users_accts` SET `utype`='Client', `email`='$email', `pass`=OLD_PASSWORD('$pass'), `fname`='$fname', `lname`='$lname', CompanyID='$CompanyID', `perms`='$perms'"); $msg='Client Added'; }else{ $msg='Email Already Exists'; } } } ///UPDATE `users_accts` SET `utype`='$CompanyName',`email`='$Email',`pass`='$Pass',`CompanyID`='12',`CompanyName`='12',`fname`='$frname',`lname`='$lname' WHERE (`uid`='2') $db->query("SELECT * FROM `users_accts` WHERE `utype` = 'Company' "); $numberofcompanies=$db->count_rows(); $CompanySelect=' '.$CompanyName.' '; } $CompanySelect.=''; $CompanyBoxes.=''; get_header(); ?>
FilesAdd FileUsersAdd UserEdit ProfileLogout

Add User ''){ print "
".$msg; } ?>

User Type
   
Email
Password
   
First Name
Last Name
   
Permissions   2009     2012
 
Limited Partner
   
Permissions   2009     2012
 
Email
Password
   
First Name
Last Name
   
Permissions   2009     2012
 
Limited Partners
 
Limited Partner
   
Email
Password
   
First Name
Last Name
   
Permissions   2009     2012
 
Method Advisors, LLC | 192 South Street, 6th Floor | Boston, MA 02111
Legal Disclaimer