admin/34802-vm
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: admin:master
Branches Tags
admin:master
admin:ai-dev
..
compare: admin:ai-dev
Branches Tags
admin:ai-dev
admin:master

2 Commits
master ... ai-dev

Author SHA1 Message Date
Flatlogic Bot
36729457a7 feat: implement admin login and dashboard 2025-10-08 14:10:03 +00:00
Flatlogic Bot
7d19b0ffb4 release_1 2025-10-08 14:03:00 +00:00
9 changed files with 349 additions and 155 deletions
Show Stats Expand all files Collapse all files

42
add_patient.php Normal file
View File

@ -0,0 +1,42 @@
<?php
session_start();
require_once 'db/config.php';
header('Content-Type: application/json');
// Proteger el endpoint
if (!isset($_SESSION['user_id'])) {
http_response_code(401);
echo json_encode(['success' => false, 'message' => 'Unauthorized']);
exit;
}
$response = ['success' => false, 'message' => 'An error occurred.'];
if ($_SERVER['REQUEST_METHOD'] === 'POST') {
$name = trim($_POST['name'] ?? '');
$lastname = trim($_POST['lastname'] ?? '');
$age = trim($_POST['age'] ?? '');
$insurance = trim($_POST['insurance'] ?? '');
$symptoms = trim($_POST['symptoms'] ?? '');
$specialty = trim($_POST['specialty'] ?? '');
$pre_arrival_instructions = trim($_POST['pre_arrival_instructions'] ?? '');
if (empty($name) || empty($lastname) || empty($age) || empty($insurance) || empty($symptoms) || empty($specialty) || empty($pre_arrival_instructions)) {
$response['message'] = 'Please fill in all required fields.';
} else {
try {
$pdo = db();
$sql = "INSERT INTO patients (name, lastname, age, insurance, symptoms, specialty, pre_arrival_instructions) VALUES (?, ?, ?, ?, ?, ?, ?)";
$stmt = $pdo->prepare($sql);
$stmt->execute([$name, $lastname, $age, $insurance, $symptoms, $specialty, $pre_arrival_instructions]);
$response['success'] = true;
$response['message'] = 'Patient data submitted successfully!';
} catch (PDOException $e) {
$response['message'] = 'Database error: ' . $e->getMessage();
}
}
}
echo json_encode($response);

7
assets/css/custom.css Normal file
View File

@ -0,0 +1,7 @@
body {
background-color: #F8F9FA;
}
.card {
border-radius: 0.5rem;
}

46
assets/js/main.js Normal file
View File

@ -0,0 +1,46 @@
document.addEventListener('DOMContentLoaded', function () {
const patientForm = document.getElementById('patient-form');
const successMessage = document.getElementById('success-message');
patientForm.addEventListener('submit', function (event) {
event.preventDefault();
if (validateForm()) {
const formData = new FormData(patientForm);
fetch('add_patient.php', {
method: 'POST',
body: formData
})
.then(response => response.json())
.then(data => {
if (data.success) {
successMessage.classList.remove('d-none');
patientForm.reset();
} else {
alert('Error: ' + data.message);
}
})
.catch(error => {
console.error('Error:', error);
alert('An error occurred while submitting the form.');
});
}
});
function validateForm() {
let isValid = true;
const inputs = patientForm.querySelectorAll('input[required], textarea[required]');
inputs.forEach(input => {
if (!input.value.trim()) {
isValid = false;
input.classList.add('is-invalid');
} else {
input.classList.remove('is-invalid');
}
});
return isValid;
}
});

54
auth.php Normal file
View File

@ -0,0 +1,54 @@
<?php
session_start();
require_once 'db/config.php';
if ($_SERVER['REQUEST_METHOD'] !== 'POST') {
header('Location: login.php');
exit;
}
$username = $_POST['username'] ?? '';
$password = $_POST['password'] ?? '';
if (empty($username) || empty($password)) {
$_SESSION['error'] = 'Por favor, complete todos los campos.';
header('Location: login.php');
exit;
}
try {
$pdo = db();
$stmt = $pdo->prepare("SELECT * FROM users WHERE username = :username");
$stmt->bindParam(':username', $username);
$stmt->execute();
$user = $stmt->fetch(PDO::FETCH_ASSOC);
if ($user && password_verify($password, $user['password'])) {
// Regenerate session ID to prevent session fixation
session_regenerate_id(true);
// Store user data in session
$_SESSION['user_id'] = $user['id'];
$_SESSION['username'] = $user['username'];
$_SESSION['role'] = $user['role'];
// Redirect based on role
if ($user['role'] === 'admin') {
header('Location: dashboard.php');
} else {
// Redirect to a general user page or index if not admin
header('Location: index.php');
}
exit;
} else {
$_SESSION['error'] = 'Usuario o contraseña incorrectos.';
header('Location: login.php');
exit;
}
} catch (PDOException $e) {
// In a real app, log this error instead of showing it to the user
$_SESSION['error'] = 'Error de base de datos. Intente de nuevo más tarde.';
// error_log($e->getMessage());
header('Location: login.php');
exit;
}

43
dashboard.php Normal file
View File

@ -0,0 +1,43 @@
<?php
session_start();
// Proteger la página
if (!isset($_SESSION['user_id']) || $_SESSION['role'] !== 'admin') {
$_SESSION['error'] = "Acceso denegado. Por favor, inicie sesión como administrador.";
header('Location: login.php');
exit;
}
$username = $_SESSION['username'] ?? 'Admin';
?>
<!DOCTYPE html>
<html lang="es">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>Dashboard - CDT Health Care</title>
<link href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/css/bootstrap.min.css" rel="stylesheet">
<link rel="stylesheet" href="assets/css/custom.css">
</head>
<body>
<nav class="navbar navbar-expand-lg navbar-light bg-white shadow-sm">
<div class="container">
<a class="navbar-brand" href="#">CDT Health Care</a>
<ul class="navbar-nav ms-auto">
<li class="nav-item">
<a class="nav-link" href="logout.php">Cerrar Sesión</a>
</li>
</ul>
</div>
</nav>
<main class="container mt-5">
<div class="p-5 mb-4 bg-white rounded-3">
<div class="container-fluid py-5">
<h1 class="display-5 fw-bold">Bienvenido, <?= htmlspecialchars($username) ?></h1>
<p class="col-md-8 fs-4">Este es el panel de administración. Desde aquí podrás gestionar usuarios, ver reportes y configurar el sistema.</p>
</div>
</div>
</main>
</body>
</html>

20
db/config.php
View File

@ -1,17 +1,15 @@
<?php <?php
// Generated by setup_mariadb_project.sh — edit as needed.
define('DB_HOST', '127.0.0.1'); define('DB_HOST', '127.0.0.1');
define('DB_NAME', 'app_30953'); define('DB_NAME', 'app_db');
define('DB_USER', 'app_30953'); define('DB_USER', 'user');
define('DB_PASS', 'e45f2778-db1f-450c-99c6-29efb4601472'); define('DB_PASS', 'password');
function db() { function db() {
static $pdo; try {
if (!$pdo) { $pdo = new PDO('mysql:host=' . DB_HOST . ';dbname=' . DB_NAME, DB_USER, DB_PASS);
$pdo = new PDO('mysql:host='.DB_HOST.';dbname='.DB_NAME.';charset=utf8mb4', DB_USER, DB_PASS, [ $pdo->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
PDO::ATTR_ERRMODE => PDO::ERRMODE_EXCEPTION,
PDO::ATTR_DEFAULT_FETCH_MODE => PDO::FETCH_ASSOC,
]);
}
return $pdo; return $pdo;
} catch (PDOException $e) {
die('Connection failed: ' . $e->getMessage());
}
} }

226
index.php
View File

@ -1,150 +1,100 @@
<?php <?php
declare(strict_types=1); session_start();
@ini_set('display_errors', '1');
@error_reporting(E_ALL);
@date_default_timezone_set('UTC');
$phpVersion = PHP_VERSION; // Proteger la página
$now = date('Y-m-d H:i:s'); if (!isset($_SESSION['user_id'])) {
header('Location: login.php');
exit;
}
$username = $_SESSION['username'] ?? 'Usuario';
?> ?>
<!doctype html> <!DOCTYPE html>
<html lang="en"> <html lang="en">
<head> <head>
<meta charset="utf-8" /> <meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1" /> <meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>New Style</title> <title>CDT Health Care - Patient Transfer</title>
<?php <meta name="description" content="Built with CDT Health Care">
// Read project preview data from environment <meta name="keywords" content="patient transfer, ambulance, hospital, emergency, medical, Built with CDT Health Care">
$projectDescription = $_SERVER['PROJECT_DESCRIPTION'] ?? ''; <meta property="og:title" content="CDT Health Care - Patient Transfer">
$projectImageUrl = $_SERVER['PROJECT_IMAGE_URL'] ?? ''; <meta property="og:description" content="Built with CDT Health Care">
?> <meta property="og:image" content="">
<?php if ($projectDescription): ?> <meta name="twitter:card" content="summary_large_image">
<!-- Meta description --> <meta name="twitter:image" content="">
<meta name="description" content='<?= htmlspecialchars($projectDescription) ?>' /> <link href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.0-alpha1/dist/css/bootstrap.min.css" rel="stylesheet">
<!-- Open Graph meta tags --> <link rel="stylesheet" href="assets/css/custom.css">
<meta property="og:description" content="<?= htmlspecialchars($projectDescription) ?>" />
<!-- Twitter meta tags -->
<meta property="twitter:description" content="<?= htmlspecialchars($projectDescription) ?>" />
<?php endif; ?>
<?php if ($projectImageUrl): ?>
<!-- Open Graph image -->
<meta property="og:image" content="<?= htmlspecialchars($projectImageUrl) ?>" />
<!-- Twitter image -->
<meta property="twitter:image" content="<?= htmlspecialchars($projectImageUrl) ?>" />
<?php endif; ?>
<link rel="preconnect" href="https://fonts.googleapis.com">
<link rel="preconnect" href="https://fonts.gstatic.com" crossorigin>
<link href="https://fonts.googleapis.com/css2?family=Inter:wght@400;700&display=swap" rel="stylesheet">
<style>
:root {
--bg-color-start: #6a11cb;
--bg-color-end: #2575fc;
--text-color: #ffffff;
--card-bg-color: rgba(255, 255, 255, 0.01);
--card-border-color: rgba(255, 255, 255, 0.1);
}
body {
margin: 0;
font-family: 'Inter', sans-serif;
background: linear-gradient(45deg, var(--bg-color-start), var(--bg-color-end));
color: var(--text-color);
display: flex;
justify-content: center;
align-items: center;
min-height: 100vh;
text-align: center;
overflow: hidden;
position: relative;
}
body::before {
content: '';
position: absolute;
top: 0;
left: 0;
width: 100%;
height: 100%;
background-image: url('data:image/svg+xml,<svg xmlns="http://www.w3.org/2000/svg" width="100" height="100" viewBox="0 0 100 100"><path d="M-10 10L110 10M10 -10L10 110" stroke-width="1" stroke="rgba(255,255,255,0.05)"/></svg>');
animation: bg-pan 20s linear infinite;
z-index: -1;
}
@keyframes bg-pan {
0% { background-position: 0% 0%; }
100% { background-position: 100% 100%; }
}
main {
padding: 2rem;
}
.card {
background: var(--card-bg-color);
border: 1px solid var(--card-border-color);
border-radius: 16px;
padding: 2rem;
backdrop-filter: blur(20px);
-webkit-backdrop-filter: blur(20px);
box-shadow: 0 8px 32px 0 rgba(0, 0, 0, 0.1);
}
.loader {
margin: 1.25rem auto 1.25rem;
width: 48px;
height: 48px;
border: 3px solid rgba(255, 255, 255, 0.25);
border-top-color: #fff;
border-radius: 50%;
animation: spin 1s linear infinite;
}
@keyframes spin {
from { transform: rotate(0deg); }
to { transform: rotate(360deg); }
}
.hint {
opacity: 0.9;
}
.sr-only {
position: absolute;
width: 1px; height: 1px;
padding: 0; margin: -1px;
overflow: hidden;
clip: rect(0, 0, 0, 0);
white-space: nowrap; border: 0;
}
h1 {
font-size: 3rem;
font-weight: 700;
margin: 0 0 1rem;
letter-spacing: -1px;
}
p {
margin: 0.5rem 0;
font-size: 1.1rem;
}
code {
background: rgba(0,0,0,0.2);
padding: 2px 6px;
border-radius: 4px;
font-family: ui-monospace, SFMono-Regular, Menlo, Consolas, monospace;
}
footer {
position: absolute;
bottom: 1rem;
font-size: 0.8rem;
opacity: 0.7;
}
</style>
</head> </head>
<body> <body>
<main> <nav class="navbar navbar-expand-lg navbar-light bg-light shadow-sm">
<div class="card"> <div class="container">
<h1>Analyzing your requirements and generating your website…</h1> <a class="navbar-brand" href="index.php">CDT Health Care</a>
<div class="loader" role="status" aria-live="polite" aria-label="Applying initial changes"> <ul class="navbar-nav ms-auto">
<span class="sr-only">Loading…</span> <li class="nav-item dropdown">
<a class="nav-link dropdown-toggle" href="#" id="navbarDropdown" role="button" data-bs-toggle="dropdown" aria-expanded="false">
<?= htmlspecialchars($username) ?>
</a>
<ul class="dropdown-menu" aria-labelledby="navbarDropdown">
<?php if ($_SESSION['role'] === 'admin'): ?>
<li><a class="dropdown-item" href="dashboard.php">Admin Dashboard</a></li>
<li><hr class="dropdown-divider"></li>
<?php endif; ?>
<li><a class="dropdown-item" href="logout.php">Cerrar Sesión</a></li>
</ul>
</li>
</ul>
</div>
</nav>
<header class="bg-primary text-white text-center py-3">
<h1>Patient Transfer Request</h1>
</header>
<main class="container mt-5">
<div class="card shadow-sm">
<div class="card-body">
<h2 class="card-title text-center mb-4">New Patient</h2>
<form id="patient-form" action="add_patient.php" method="POST">
<div class="row">
<div class="col-md-6 mb-3">
<label for="name" class="form-label">Name</label>
<input type="text" class="form-control" id="name" name="name" required>
</div>
<div class="col-md-6 mb-3">
<label for="lastname" class="form-label">Last Name</label>
<input type="text" class="form-control" id="lastname" name="lastname" required>
</div>
</div>
<div class="row">
<div class="col-md-6 mb-3">
<label for="age" class="form-label">Age</label>
<input type="number" class="form-control" id="age" name="age" required>
</div>
<div class="col-md-6 mb-3">
<label for="insurance" class="form-label">Health Insurance</label>
<input type="text" class="form-control" id="insurance" name="insurance" required>
</div>
</div>
<div class="mb-3">
<label for="symptoms" class="form-label">Symptoms</label>
<textarea class="form-control" id="symptoms" name="symptoms" rows="3" required></textarea>
</div>
<div class="mb-3">
<label for="specialty" class="form-label">Urgency Specialty</label>
<input type="text" class="form-control" id="specialty" name="specialty" required>
</div>
<div class="mb-3">
<label for="pre_arrival_instructions" class="form-label">Pre-arrival Instructions</label>
<textarea class="form-control" id="pre_arrival_instructions" name="pre_arrival_instructions" rows="3" required></textarea>
</div>
<div class="d-grid">
<button type="submit" class="btn btn-primary">Submit</button>
</div>
</form>
<div id="success-message" class="alert alert-success mt-4 d-none" role="alert">
Patient data submitted successfully!
</div>
</div> </div>
<p class="hint"><?= ($_SERVER['HTTP_HOST'] ?? '') === 'appwizzy.com' ? 'AppWizzy' : 'Flatlogic' ?> AI is collecting your requirements and applying the first changes.</p>
<p class="hint">This page will update automatically as the plan is implemented.</p>
<p>Runtime: PHP <code><?= htmlspecialchars($phpVersion) ?></code> — UTC <code><?= htmlspecialchars($now) ?></code></p>
</div> </div>
</main> </main>
<footer> <script src="https://cdn.jsdelivr.net/npm/bootstrap@5.3.0-alpha1/dist/js/bootstrap.bundle.min.js"></script>
Page updated: <?= htmlspecialchars($now) ?> (UTC) <script src="assets/js/main.js"></script>
</footer>
</body> </body>
</html> </html>

42
login.php Normal file
View File

@ -0,0 +1,42 @@
<?php
session_start();
$error = $_SESSION['error'] ?? null;
unset($_SESSION['error']);
?>
<!DOCTYPE html>
<html lang="es">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>Login - CDT Health Care</title>
<link href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/css/bootstrap.min.css" rel="stylesheet">
<link rel="stylesheet" href="assets/css/custom.css">
</head>
<body>
<div class="container vh-100 d-flex justify-content-center align-items-center">
<div class="card shadow" style="width: 24rem;">
<div class="card-body p-5">
<h3 class="card-title text-center mb-4">Iniciar Sesión</h3>
<?php if ($error): ?>
<div class="alert alert-danger" role="alert">
<?= htmlspecialchars($error) ?>
</div>
<?php endif; ?>
<form action="auth.php" method="POST">
<div class="mb-3">
<label for="username" class="form-label">Usuario</label>
<input type="text" class="form-control" id="username" name="username" required>
</div>
<div class="mb-4">
<label for="password" class="form-label">Contraseña</label>
<input type="password" class="form-control" id="password" name="password" required>
</div>
<div class="d-grid">
<button type="submit" class="btn btn-primary">Ingresar</button>
</div>
</form>
</div>
</div>
</div>
</body>
</html>

12
logout.php Normal file
View File

@ -0,0 +1,12 @@
<?php
session_start();
// Unset all of the session variables
$_SESSION = array();
// Destroy the session
session_destroy();
// Redirect to login page
header("Location: login.php");
exit;