--- index.php	2001/06/06 07:25:51	1.3
+++ index.php	2001/06/07 06:06:05	1.8
@@ -11,7 +11,23 @@
 		if (count($row) <= 0) $auth = false;
 		if ($auth) {
 			$row = $row[0];
-			if ($PHP_AUTH_PW != $row[0]) $auth = false;
+			if (substr($row[0], 0, 5) == "auth_") {
+				switch (strtoupper(substr($row[0], 5))) {
+					case "POP3":
+						include("auth_POP3.php");
+						$pop = new POP3();
+						$pop->connect("intranet.pliva.hr");
+						$ret = $pop->checklogin($PHP_AUTH_USER, $PHP_AUTH_PW);
+						$pop->quit();
+						if (!$ret) $auth = false;
+						break;
+					default: $auth = false; break;
+				}
+			} else {
+				$pw = md5($PHP_AUTH_USER.$PHP_AUTH_PW);
+				if ($pw != $row[0]) $auth = false;
+			}
+			# if ($PHP_AUTH_PW != $row[0]) $auth = false;
 		}
 	}
 	if (!$auth || $relogin == $PHP_AUTH_USER) {
@@ -20,18 +36,29 @@
 		echo "<HTML><B>No access.</B></HTML>\n";
 		exit;
 	}
-//	if (!$id) { echo "<HTML><B>No product ID!</B></HTML>\n"; exit; }
-	if (!$id) { $id=1; }
+	# if (!$id) { echo "<HTML><B>No product ID!</B></HTML>\n"; exit; }
+	DBOpen();
+	if (!$id) {
+		$id = 1;
+		$row = DBQuery("SELECT MIN(product_id) FROM products");
+		if ($row[0]) $id = $row[0][0];
+	}
 	$error = "";
 	$msg = false;
 	$err = 0;
-	DBOpen();
 	$row = DBQuery("SELECT market,production,purchasing,economics,risks,competition,potential,portfolio,sales,quality,dosage,evaluation,comment FROM user_product WHERE (product_id=$id) AND (login='$PHP_AUTH_USER')");
-	if (is_array($row[0]) && count($row[0]) > 0) bool_fix($row[0]);
 	list($ok_market, $ok_production, $ok_purchasing, $ok_economics,
 		$ok_risks, $ok_competition, $ok_potential, $ok_portfolio,
 		$ok_sales, $ok_quality, $ok_dosage, $ok_evaluation,
-		$ok_comment) = $row[0];
+		$ok_comment) = array(-1, -1, -1, -1, -1, -1, -1, -1, -1,
+		-1, -1, -1, -1);
+	if (is_array($row[0])) {
+		bool_fix($row[0]);
+		list($ok_market, $ok_production, $ok_purchasing,
+			$ok_economics, $ok_risks, $ok_competition,
+			$ok_potential, $ok_portfolio, $ok_sales, $ok_quality,
+			$ok_dosage, $ok_evaluation, $ok_comment) = $row[0];
+	}
 	if ($save) {
 		$error = "";
 		$q = array();
@@ -128,23 +155,20 @@
 	}
 	$row = DBQuery("SELECT naziv FROM products WHERE (product_id=$id)");
 	list($product_name) = $row[0];
-	DBClose();
 ?>
 <HTML>
 <HEAD>
 <META HTTP-EQUIV="Pragma" CONTENT="no-cache">
 <META HTTP-EQUIV="Cache-Control" CONTENT="no-cache">
 <?php
-	$ns_ua="Mozilla/4.";
-	$old_netscape=false;
-	if (substr($HTTP_USER_AGENT,0,strlen($ns_ua)) == $ns_ua) {
-		$old_netscape=true;
-		print '<LINK REL="StyleSheet" HREF="style-ns.css">';
-	} else {
-		print '<LINK REL="StyleSheet" HREF="style.css">';
-	}
+	$ns_ua = "Mozilla/4.";
+	$old_netscape = (substr($HTTP_USER_AGENT, 0, strlen($ns_ua)) == $ns_ua) ?
+		true : false;
+	if ($old_netscape) $old_netscape = strstr($HTTP_USER_AGENT, "MSIE") ? false : true;
+	if ($old_netscape) echo "<LINK REL=\"StyleSheet\" HREF=\"style-ns.css\">\n";
+		else echo "<LINK REL=\"StyleSheet\" HREF=\"style.css\">\n";
 ?>
-<TITLE><?= $product_name ?></TITLE>
+<TITLE><?= ereg_replace("\r?\n(.*)$", " (\\1)", $product_name); ?></TITLE>
 <?php if ($msg): ?>
 <META HTTP-EQUIV="Refresh" CONTENT="1; URL=?id=<?= $id ?>">
 <?php else: ?>
@@ -163,15 +187,25 @@
 </TD></TR></TABLE>
 </TD></TR></TABLE>
 <?php else: ?>
-<FORM ENCTYPE="multipart/form-data" METHOD="post" ACTION="<?= $PHP_SELF ?>">
 <TABLE BORDER="0" CELLSPACING="0" CELLPADDING="2" WIDTH="100%" HEIGHT="100%">
 <TR>
-<TD ALIGN="left" VALIGN="top" ROWSPAN="2" WIDTH="33%" HEIGHT="1%"><TABLE BORDER="0" CELLSPACING="0"><TR><TD CLASS="title1"><B>FINE CHEMICALS</B></TD></TR></TABLE></TD>
-<TD ALIGN="center" VALIGN="top" ROWSPAN="2" WIDTH="33%" HEIGHT="1%"><TABLE BORDER="0" CELLSPACING="0"><TR><TD CLASS="title2"><B><?= $product_name ?></B></TD></TR></TABLE></TD>
-<TD ALIGN="right" VALIGN="top" WIDTH="33%" HEIGHT="1%"><TABLE BORDER="0" CELLSPACING="0"><TR><TD CLASS="title3"><B>PRODUCT MATRIX</B></TD></TR></TABLE></TD>
+<TD ALIGN="left" VALIGN="top" WIDTH="33%" HEIGHT="1%"><TABLE BORDER="0" CELLSPACING="0"><TR><TD CLASS="title1"><B>FINE CHEMICALS</B></TD></TR></TABLE></TD>
+<TD ALIGN="center" VALIGN="top" ROWSPAN="2" WIDTH="33%" HEIGHT="1%"><TABLE BORDER="0" CELLSPACING="0"><TR><TD CLASS="title2"><B><?= ereg_replace("\r?\n(.*)$", "<BR><SMALL>\\1</SMALL>", $product_name); ?></B></TD></TR></TABLE></TD>
+<TD ALIGN="right" VALIGN="top" WIDTH="33%" HEIGHT="1%" COLSPAN="2"><TABLE BORDER="0" CELLSPACING="0"><TR><TD CLASS="title3"><B>PRODUCT MATRIX</B></TD></TR></TABLE></TD>
 </TR>
-<TR><TD ALIGN="right" VALIGN="middle" HEIGHT="1%"><B>Date of last change:</B> <?php $tmp = getlastmod(); echo date("F d, Y.", $tmp)." at ".date("H:i:s", $tmp); ?></TD></TR>
-<TR><TD COLSPAN="3" ALIGN="center" HEIGHT="1%"><HR WIDTH="100%" SIZE="2"></TD></TR>
+<FORM ENCTYPE="multipart/form-data" METHOD="post" ACTION="<?= $PHP_SELF ?>">
+<TR><TD ALIGN="left" VALIGN="bottom"><HR WIDTH="100%" SIZE="1" NOSHADE><INPUT TYPE="submit" NAME="change" VALUE="Change" CLASS="button"> product to <SELECT NAME="id" ONCHANGE="document.forms[0].submit();"><?php
+	$row = DBQuery("SELECT product_id,naziv FROM products ORDER BY naziv");
+	while (list($key, $val) = each($row)) {
+		list($_id, $name) = $val;
+		$name = ereg_replace("\r?\n.*$", "", $name);
+		$selected = ($id == $_id) ? " SELECTED" : "";
+		echo "<OPTION VALUE=\"$_id\"$selected>$name</OPTION>\n";
+	}
+?></SELECT></TD><TD ALIGN="right" VALIGN="bottom" HEIGHT="1%" COLSPAN="2"><B>Date of last change:</B> <?php $tmp = getlastmod(); echo date("F d, Y.", $tmp)." at ".date("H:i:s", $tmp); ?></TD></TR>
+</FORM>
+<TR><TD COLSPAN="4" ALIGN="center" HEIGHT="1%"><HR WIDTH="100%" SIZE="2"></TD></TR>
+<FORM ENCTYPE="multipart/form-data" METHOD="post" ACTION="<?= $PHP_SELF ?>">
 <TR>
 
 <TD WIDTH="33%" ALIGN="center" VALIGN="top">
@@ -194,14 +228,14 @@
 <UL>
 <LI>relevant competitors: <?php if ($edit && $ok_competition > 0): ?><INPUT TYPE="text" CLASS="text" NAME="competitors" VALUE="<?= $competitors ?>"><?php else: ?><?= $competitors ?><?php endif; ?></LI>
 <LI>holders of the US DMF: <?php if ($edit && $ok_competition > 0): ?><INPUT TYPE="text" CLASS="text" NAME="holders" VALUE="<?= $holders ?>"><?php else: ?><?= $holders ?><?php endif; ?></LI>
-<LI>API market size 1999: <?php if ($edit && $ok_competition > 0): ?><INPUT TYPE="text" CLASS="text" NAME="market_size" VALUE="<?= $market_size ?>"><?php else: ?><?= $market_size ?><?php endif; ?> t/US$</LI>
+<LI>API market size 1999: <?php if ($edit && $ok_competition > 0): ?><INPUT TYPE="text" CLASS="text" NAME="market_size" VALUE="<?= $market_size ?>"><?php else: ?><?= $market_size ?><?php endif; ?></LI>
 </UL>
 <P<?php if ($err == 2): ?> CLASS="error" <?php endif; ?>><?php if ($edit && $ok_competition > 0): ?>&quot;<B>more data</B>&quot; URL: <INPUT TYPE="text" CLASS="text" NAME="info_competition" VALUE="<?= $info_competition ?>"><?php elseif ($info_competition): ?><B><A HREF="<?= $info_competition ?>">more data</A></B><?php else: ?>&nbsp;<?php endif; ?></P>
 </TD><?php else: ?><TD CLASS="cell1" ALIGN="center" VALIGN="middle"><?= $msg_no_data ?></TD><?php endif; ?></TR>
 </TABLE>
 </TD>
 
-<TD WIDTH="33%" ALIGN="center" VALIGN="top">
+<TD WIDTH="33%" ALIGN="center" VALIGN="top" COLSPAN="2">
 <TABLE CLASS="table" CELLSPACING="0" CELLPADDING="1" WIDTH="100%" HEIGHT="100%">
 <TR><TD CLASS="cell3" ALIGN="center" VALIGN="middle" HEIGHT="1%"><B>Quality and Regulations</B></TD></TR>
 <TR><?php if ($ok_quality >= 0): ?><TD CLASS="cell1" ALIGN="left" VALIGN="top">
@@ -244,7 +278,7 @@
 </TABLE>
 </TD>
 
-<TD WIDTH="33%" ALIGN="center" VALIGN="top">
+<TD WIDTH="33%" ALIGN="center" VALIGN="top" COLSPAN="2">
 <TABLE CLASS="table" CELLSPACING="0" CELLPADDING="1" WIDTH="100%" HEIGHT="100%">
 <TR><TD CLASS="cell3" ALIGN="center" VALIGN="middle" HEIGHT="1%"><B>Dosage Form Market</B></TD></TR>
 <TR><?php if ($ok_dosage >= 0): ?><TD CLASS="cell1" ALIGN="left" VALIGN="top">
@@ -280,7 +314,7 @@
 </TABLE>
 </TD>
 
-<TD WIDTH="33%" ROWSPAN="2" ALIGN="center" VALIGN="top">
+<TD WIDTH="33%" ROWSPAN="2" ALIGN="center" VALIGN="top" COLSPAN="2">
 <TABLE CLASS="table" CELLSPACING="0" CELLPADDING="1" WIDTH="100%" HEIGHT="100%">
 <TR><TD CLASS="cell3" ALIGN="center" VALIGN="middle" HEIGHT="1%"><SPAN CLASS="red"><B>Product Evaluation</B></SPAN></TD></TR>
 <TR><?php if ($ok_evaluation >= 0): ?><TD CLASS="cell2" ALIGN="left" VALIGN="top">
@@ -299,7 +333,7 @@
 <TD WIDTH="33%" ROWSPAN="3" ALIGN="center" VALIGN="top">
 <TABLE CLASS="table" CELLSPACING="0" CELLPADDING="1" WIDTH="100%" HEIGHT="100%">
 <TR><TD CLASS="cell3" ALIGN="center" VALIGN="middle" HEIGHT="1%"><B>Sales: realisation&amp;plan / Price trend</B></SPAN></TD></TR>
-<TR><TD CLASS="cell1" ALIGN="center" VALIGN="middle" HEIGHT="100%"><?php if ($ok_sales >= 0): ?><?php if ($edit && $ok_sales > 0): ?><B>Please choose an image to display here.</B><BR><BR><INPUT TYPE="file" CLASS="file" NAME="sales_img" VALUE="<?= $info_sales ?>"><BR><SMALL><I><B>NOTE:</B> The previously specified image will be used if no image is specified.</I></SMALL><?php elseif ($sales_img): ?><IMG SRC="img/<?= $sales_img ?>" BORDER="0"><?php else: ?>&nbsp;<?php endif; ?><?php else: ?><?= $msg_no_data ?><?php endif; ?></TD></TR>
+<TR><TD CLASS="cell1" ALIGN="center" VALIGN="middle" HEIGHT="100%"><?php if ($ok_sales >= 0): ?><?php if ($edit && $ok_sales > 0): ?><B>Please choose an image to display here.</B><BR><BR><INPUT TYPE="file" CLASS="file" NAME="sales_img" VALUE="<?= $info_sales ?>"><BR><SMALL><I><B>NOTE:</B> The previously specified image will be used if no image is specified.</I></SMALL><?php elseif ($sales_img): ?><IMG SRC="img/<?= $sales_img ?>" BORDER="0" ALT=""><?php else: ?>&nbsp;<?php endif; ?><?php else: ?><?= $msg_no_data ?><?php endif; ?></TD></TR>
 </TABLE>
 </TD>
 
@@ -321,7 +355,7 @@
 </TABLE>
 </TD>
 
-<TD WIDTH="33%" ROWSPAN="2" ALIGN="center" VALIGN="top">
+<TD WIDTH="33%" ROWSPAN="2" ALIGN="center" VALIGN="top" COLSPAN="2">
 <TABLE CLASS="table" CELLSPACING="0" CELLPADDING="1" WIDTH="100%" HEIGHT="100%">
 <TR><TD CLASS="cell2" ALIGN="left" VALIGN="top"><B>Comments</B><BR><?php if ($ok_comment >= 0): ?><?php if ($edit && $ok_comment > 0): ?><TEXTAREA NAME="comment" WRAP="virtual" CLASS="ta2"><?= $comment ?></TEXTAREA><?php else: ?><BLOCKQUOTE><?php
 	$out = str_replace("&", "&amp;", $comment);
@@ -330,14 +364,14 @@
 	$out = str_replace(">", "&gt;", $out);
 	$out = ereg_replace("\r?\n", "<BR>", $out);
 	echo $out;
-?></BLOCKQUOTE><?php endif; ?><?php else: ?><BR><BR><BR><BR><P CLASS="center"><?= $msg_no_data ?></P><?php endif; ?></TD></TR>
+?></BLOCKQUOTE><?php endif; ?><?php else: ?><BR><BR><BR><P CLASS="center"><?= $msg_no_data ?></P><?php endif; ?></TD></TR>
 </TABLE>
 </TD>
 
 </TR>
 <TR>
 
-<TD WIDTH="33%">
+<TD WIDTH="33%" HEIGHT="1%">
 <TABLE CLASS="table" CELLSPACING="0" CELLPADDING="1" WIDTH="100%" HEIGHT="100%">
 <TR><TD CLASS="cell3" ALIGN="center" VALIGN="middle" HEIGHT="1%"><B>Risks</B></TD></TR>
 <TR><?php if ($ok_risks >= 0): ?><TD CLASS="cell1" ALIGN="left" VALIGN="middle">
@@ -351,13 +385,15 @@
 
 </TR>
 <TR>
-<TD ALIGN="left" VALIGN="top"><?php if ($error): ?><FONT COLOR="#FF0000" SIZE="2"><B><?= $error ?></B><?php else: ?>&nbsp;<?php endif; ?></TD>
-<TD COLSPAN="2" ALIGN="right"><?php if ($edit): ?><INPUT TYPE="submit" CLASS="button" VALUE="Cancel">&nbsp;<INPUT TYPE="submit" CLASS="button" NAME="save" VALUE="Save"><?php else: ?><INPUT TYPE="hidden" NAME="edit" VALUE="1"><INPUT TYPE="submit" CLASS="button" VALUE="Edit..."><?php endif; ?></TD>
+<TD ALIGN="left" VALIGN="top" COLSPAN="2"><?php if ($error): ?><FONT COLOR="#FF0000" SIZE="2"><B><?= $error ?></B><?php else: ?>&nbsp;<?php endif; ?></TD>
+<TD ALIGN="left" VALIGN="middle"><SMALL CLASS="info">&nbsp;&nbsp;Logged in as <B><?= $PHP_AUTH_USER ?></B>.&nbsp;&nbsp;[<A HREF="?relogin=<?= $PHP_AUTH_USER ?>" CLASS="logout">Logout</A>]</SMALL></TD>
+<TD ALIGN="right"><?php if ($edit): ?><INPUT TYPE="submit" CLASS="button" VALUE="Cancel">&nbsp;<INPUT TYPE="submit" CLASS="button" NAME="save" VALUE="Save"><?php else: ?><INPUT TYPE="hidden" NAME="edit" VALUE="1"><INPUT TYPE="submit" CLASS="button" VALUE="Edit..."><?php endif; ?></TD>
 </TR>
 </TABLE>
 </TD></TR>
-</TABLE>
 <INPUT TYPE="hidden" NAME="id" VALUE="<?= $id ?>"></FORM>
+</TABLE>
 <?php endif; ?>
 </BODY>
+<?php DBClose(); ?>
 </HTML>