#!/usr/bin/perl

# uSignIn - Online Message Board
# Version 1.1 (Trial)
# Copyright (c) 1998-2000, Microburst Technologies, Inc.
# All rights reserved.

#----------------------------------------------------------------------
# INSTRUCTIONS: Edit the appropriate variables to match your
# configuration by changing the values between the quotes ( " " );
# Do NOT use any quotes in your new configuration.
#----------------------------------------------------------------------

#----------------------------------------------------------------------
# START HERE!
# Check the first line of this script and make sure it is the path to
# the perl executable on your machine.  Common path's are /usr/bin/perl
# /usr/local/perl, /usr/local/bin/perl or /bin/perl.  This step is not
# required on NT machines.  Also make sure the line starts with #!
#----------------------------------------------------------------------

#----------------------------------------------------------------------
# 1. Enter the page title to appear in the title bar of the browser when
# the main page is loaded.
#----------------------------------------------------------------------
$page_title = "uSignIn Message Board by Microburst Technologies, Inc.";

#----------------------------------------------------------------------
# 2. Provide the full url to the location of this script on your server
#----------------------------------------------------------------------
#$script_url = "http://www.uburst.com/cgi-bin/usignin.cgi";
$script_url = "http://www.davrom.com/usignin/usignin.cgi";


#----------------------------------------------------------------------
# 3. Provide the partial url to the directory on your server where you
# installed the images for uSignIn.
#----------------------------------------------------------------------
#$image_dir = "http://www.uburst.com/uSignIn/demo_images/";
$image_dir = "http://www.davrom.com/usignin/";

#----------------------------------------------------------------------
# 4. If you change any of the default images to use your own custom
# images, you may change their names here.
#----------------------------------------------------------------------
$puck_image = $image_dir . "puck.gif";
$puck_in = $image_dir . "in.gif";
$puck_out = $image_dir . "out.gif";
$puck_lunch = $image_dir . "lunch.gif";
$puck_conf = $image_dir . "meeting.gif";
$puck_sick = $image_dir . "sick.gif";
$puck_vac = $image_dir . "vacation.gif";
$mail_image = $image_dir . "mail.gif";
$pushpin_image = $image_dir . "pushpin.gif";
$check_message = $image_dir . "message.gif";

#----------------------------------------------------------------------
# 5. You may alter the fonts used by uSignIn here.  The table font is
# used for all text data on all pages.  The header font is used only
# for column or row headers.
#----------------------------------------------------------------------
$table_font = "Comic Sans MS";
$header_font = "Arial Black";

#----------------------------------------------------------------------
# 6. uSignIn may also be customized by altering the colors of the text
# and the associated html link colors.  Use 6 digit hex and make sure
# to preceed the value with a number sign (#).
#----------------------------------------------------------------------
$text_color = "#000000";
$link_color = "#3333FF";
$active_link = "#3333FF";
$visited_link = "#3333FF";

#----------------------------------------------------------------------
# 7. This is the background color of uSignIn
#----------------------------------------------------------------------
$bg_color = "#FFFFFF";

#----------------------------------------------------------------------
# 8. This is the background color of the table headers and the
# foreground color of the 'While You Were Out' message slip.
#----------------------------------------------------------------------
$bg_header = "#E1FFFF";

#----------------------------------------------------------------------
# 9. This is the background color of the 'While You Were Out' message
# slip.
#----------------------------------------------------------------------
$bg_message = "#FFD1D1";

#----------------------------------------------------------------------
# 10. This is how many seconds between updates to a loaded usignin
# message page.  It will take this amount of time to see any new
# changes.
#----------------------------------------------------------------------
$reload_period = "60";

#----------------------------------------------------------------------
# 11. These generally do not need to be changed.  Make sure any 
# databases that are transfered to the server are done so in ASCII or 
# TEXT format.
#----------------------------------------------------------------------
$user_database = "usignin.csv";
$msg_database = "messages.csv";

#----------------------------------------------------------------------
# 12. This is the admin password.  This password can be used in place
# of a user password by a manager to edit any user data or change the
# in/out status of a user.
#----------------------------------------------------------------------
$passwd = "rac00n";

#----------------------------------------------------------------------
# That's it !
#----------------------------------------------------------------------


sub startHtmlOutput
{
	print "Content-type: text/html\n\n";
	print "<HTML><HEAD><META HTTP-EQUIV=\"Expires\"content=\"-1\">";
	print "<TITLE>";
	if($_[0])
	{
		print "$_[0]";
	}
	else
	{
		print "$page_title";
	}
	print "</TITLE></HEAD>\n";
}
sub printUserLink
{
print "<A HREF=\"\#\" ONCLICK=\"window.open('$script_url?cmd=user&name=$_[0]', '_blank','height=460,width=550,dependent=0,fullscreen=0,menubar=0,resizable=1,scrollbars=1,status=0,toolbar=0')\">";
	&printTableCell($_[1]);
	print "</A>";
}
sub printAddUserLink
{
print "<A HREF=\"\#\" ONCLICK=\"window.open('$script_url?cmd=add', '_blank','height=440,width=550,dependent=0,fullscreen=0,menubar=0,resizable=1,scrollbars=1,status=0,toolbar=0')\">";
	&printTableCell("Add new user");
	print "</A>";
}
sub printDelUserLink
{
print "<A HREF=\"\#\" ONCLICK=\"window.open('$script_url?cmd=del', '_blank','height=440,width=550,dependent=0,fullscreen=0,menubar=0,resizable=1,scrollbars=1,status=0,toolbar=0')\">";
	&printTableCell("Delete a user");
	print "</A>";
}
sub printAdminLinks
{
	print "<CENTER>";
	print "<A HREF=\"$script_url?cmd=listdept\">List By Department</A>";
	print " | ";
	&printAddUserLink;
	print " | ";
	&printDelUserLink;
	print "<BR><BR>";
	printf "<FONT size=-2 face=\"Arial\"><i>";
	print &pftr();
	print "</i></font></CENTER>";
        print "<BR>";
        print "<BR>";
        print "<CENTER>";
        print "<A HREF=http://www.davrom.com/demos.html>Back to Davrom Demos Page</A><BR>";
        print "<A HREF=http://www.davrom.com/index.html>Back to Davrom Home Page</A><BR>";
        print "</CENTER>";
}
sub pftr
{
	$ftr =	pack("C*",0x3C,0x41,0x20,0x48,0x52,0x45,0x46,0x3D,0x22,0x68,0x74,0x74,0x70,0x3A);
	$ftr .= pack("C*",0x2F,0x2F,0x77,0x77,0x77,0x2E,0x75,0x62,0x75,0x72,0x73,0x74,0x2E,0x63);
	$ftr .= pack("C*",0x6F,0x6D,0x2F,0x75,0x53,0x69,0x67,0x6E,0x49,0x6E,0x2F,0x22,0x3E,0x75);
	$ftr .= pack("C*",0x53,0x69,0x67,0x6E,0x49,0x6E,0x20,0x50,0x65,0x72,0x73,0x6F,0x6E,0x6E);
	$ftr .= pack("C*",0x65,0x6C,0x20,0x54,0x72,0x61,0x63,0x6B,0x69,0x6E,0x67,0x20,0x20,0x53);
	$ftr .= pack("C*",0x79,0x73,0x74,0x65,0x6D,0x3C,0x2F,0x41,0x3E);
	return $ftr;
}
sub startTableData 
{
	print "<TD>";
}
sub endTableData
{
	print "</TD>";
}
sub printTableCell
{
	print "<FONT FACE=\"$table_font\">$_[0]</FONT>";
}
sub printHeaderCell 
{
	print "<FONT FACE=\"$header_font\">$_[0]</FONT>";
}
sub printSmallHeaderCell
{
	print "<FONT FACE=\"$header_font\" SIZE=-1>$_[0]</FONT>";
}
sub printEmptyCell 
{
	print "&nbsp";
}
sub fullTableCell
{
	&startTableData;
	printTableCell($_[0]);
	&endTableData;
}
sub fullHeaderCell
{
	&startTableData;
	printHeaderCell($_[0]);
	&endTableData;
}
sub fullEmptyCell # :>)
{
	&startTableData;
	printEmptyCell;
	&endTableData;
}
sub alignCenter 
{
	print "<P ALIGN=\"CENTER\">";
}
sub printColSpan 
{
	print "<TD COLSPAN=\"$_[0]\">";
}
sub printRowSpan 
{
	print "<TD ROWSPAN=\"$_[0]\">";
}
sub showPushPin
{
	&alignCenter;
print "<A HREF=\"\#\" ONCLICK=\"window.open('$script_url?cmd=leavemsg&login=$_[0]', '_blank','height=440,width=550,dependent=0,fullscreen=0,menubar=0,resizable=1,scrollbars=1,status=0,toolbar=0')\">";
	print "<IMG SRC=\"$pushpin_image\" WIDTH=\"24\" HEIGHT=\"24\" ALIGN=\"BOTTOM\" BORDER=\"0\">";
	print "</A>";
}

sub showMessageLink
{
	&alignCenter;
print "<A HREF=\"\#\" ONCLICK=\"window.open('$script_url?cmd=listmsgs&login=$_[0]', '_blank','height=440,width=550,dependent=0,fullscreen=0,menubar=0,resizable=1,scrollbars=1,status=0,toolbar=0')\">";
	print "<IMG SRC=\"$check_message\" BORDER=\"0\">";
	print "</A>";
}


# takes two args, login and "in"/"out"
sub showPuck 
{
	&alignCenter;
print "<A HREF=\"\#\" ONCLICK=\"window.open('$script_url?cmd=status&login=$_[0]', '_blank','height=440,width=550,dependent=0,fullscreen=0,menubar=0,resizable=1,scrollbars=1,status=0,toolbar=0')\">";
	if($_[1] eq "in")
	{
		print "<IMG SRC=\"$puck_in\" WIDTH=\"24\" HEIGHT=\"24\" ALIGN=\"BOTTOM\" BORDER=\"0\">";
	}
	else
	{
		print "<IMG SRC=\"$puck_out\" WIDTH=\"24\" HEIGHT=\"24\" ALIGN=\"BOTTOM\" BORDER=\"0\">";
	}
	print "</A>";
}
sub showMail 
{
	&alignCenter; 
	print "<A HREF=\"mailto:$_[0]\">";
	print "<IMG SRC=\"$mail_image\" WIDTH=\"35\" HEIGHT=\"23\" ALIGN=\"BOTTOM\" BORDER=\"0\">";
	print "</A>";
}
sub printMailTo 
{	
	$name = $_[0];
	print "<A HREF=\"mailto:$name\">";
	&printTableCell($name);	
	print "</A>";
}
sub newHeaderRow 
{	
	print "<TR BGCOLOR=\"$bg_header\">";
}
sub newTableRow
{
	print "<TR>";
}
sub startTableRow
{
	&newTableRow;
}
sub endTableRow 
{
	print "</TR>";
}
sub startBody 
{
	print "<SCRIPT LANGUAGE=\"JavaScript\">";
	print "setTimeout(\"this.location.reload()\", ($reload_period * 1000))";
	print "</SCRIPT>";
	print "<BODY TEXT=\"$text_color\" BGCOLOR=\"$bg_color\" LINK=\"$link_color\" ALINK=\"$active_link\" VLINK=\"$visited_link\">";
}
sub startPlainBody
{
	print "<BODY TEXT=\"$text_color\" BGCOLOR=\"$bg_color\" LINK=\"$link_color\" ALINK=\"$active_link\" VLINK=\"$visited_link\">";
}
sub endBody 
{
	print "</BODY>";
}
sub endForm
{
	print "</FORM>";
}
sub startTable 
{
	print "<CENTER><P>";	
	print "<TABLE BORDER=\"1\" CELLPADDING=\"2\" CELLSPACING=\"0\" WIDTH=\"100%\">";		
}
sub endTable 
{
	print "</TABLE>";
}
sub printMailTo 
{
	$name = $_[0];
	&startTableData;
	print "<A HREF=\"mailto:$name\">";
	print "<H3><FONT FACE=\"$table_font\">$name</FONT>";
	print "</A>";
	&endTableData;
}
sub printURL 
{
	$url = $_[0];
	$text = $_[1];
	&startTableData;
	print "<A HREF=\"$url\">";
	print "<H3><FONT FACE=\"$table_font\">$text</FONT>";
	print "</A>";
	&endTableData;
}
sub printDeleteURL 
{
	$text = $_[1]; 
	print "<P><A HREF=\"$script_url?cmd=del&login=$_[0]\">";
	print "<H3><FONT FACE=\"$table_font\">$text</FONT>";	
	print "</A></P>";
}

sub printEditLinks 
{
	$userLink = $_[0];
	$text = "Edit Data";
	#$text2= "Check Messages";
	#&startTableData;
	&printColSpan(2);
	print "<A HREF=\"$script_url?cmd=edit&name=$userLink\">";
	print "<H3 ALIGN=\"CENTER\"><FONT FACE=\"$table_font\">$text</FONT>";
	print "</A>";
	&endTableData;
	#&startTableData;
	#print "<H3><FONT FACE=\"$table_font\">$text2</FONT>";
	#print "<A HREF=\"$script_url?cmd=listmsgs&login=$userLink\">";
	#print "<IMG SRC=\"$check_message\" BORDER=\"0\">";
	#print "</A>";
	#&endTableData;
}
sub done 
{
	print "Content-type: text/html\n\n";
	print "<HTML><HEAD><META HTTP-EQUIV=\"Expires\" content=\"-1\"><TITLE>ERROR</TITLE></HEAD>\n";
	print "<BODY TEXT=\"#000000\" BGCOLOR=\"$bg_message\">";
	print "<CENTER><B>";
	print "$_[0]";
	print "</B>"; 
	print "<FORM>";
	print "<INPUT TYPE=\"button\" VALUE=\"Ok\" onClick=\"window.close()\">";
	print "</FORM>";
	print "</CENTER>";
	print "</BODY>"; 
	exit(0);
}
sub doneSuccess
{
	local($msg);
	if($_[0])
	{
		$msg = $_[0];
	}
	else
	{
		$msg = "Success";
	}
	print "Content-type: text/html\n\n";
	print "<HTML><HEAD><META HTTP-EQUIV=\"Expires\" content=\"-1\"><TITLE>SUCCESS!</TITLE></HEAD>\n";
	print "<SCRIPT LANGUAGE=\"JavaScript\">";
	print "setTimeout(\"window.close()\", 2000)";
	print "</SCRIPT>";
	print "<BODY TEXT=\"#000000\" BGCOLOR=\"$bg_header\">";
	print "<B><CENTER>";
	print "$msg"; 
	print "</B></BODY>"; 
	exit(0);
}
sub showTableHeaders 
{
	($dept,$l,$a,$g) = @_;
	
	$opp_a = 1 - $a;
	$opp_g = 1 - $g;
	$astr = "false";
	if($a)
	{
		$astr = "true";
	}
	$opp_astr = "false";
	if($opp_a)
	{
		$opp_astr = "true";
	}
	$gstr = "false";
	if($g)
	{
		$gstr = "true";
	}
	$opp_gstr = "false";
	if($opp_g)
	{
		$opp_gstr = "true";
	}
	&newHeaderRow;
	#&printColSpan(3);
	&printColSpan(4);
	&alignCenter;
	&printHeaderCell("Name");
	&endTableData;
	&printColSpan(2);	
	&alignCenter;
	&printHeaderCell("Contact");
	&endTableData;
	&printColSpan(6);
	&alignCenter;
	
	# use the status header to alternate grouping
	$hstr = "$script_url?dept=$dept&sort=lastname&ascend=$astr&group=$opp_gstr";
	&printHeaderCell("Status");
	&endTableData;
	
	&printRowSpan(2);
	&alignCenter;
	&printHeaderCell("Back");
	&endTableData;
	&printRowSpan(2);
	&alignCenter;
	&printHeaderCell("Message");
	&endTableData;
	&endTableRow;
	#second header row
	#start with the pushpin and message links
	&newHeaderRow;
	#&startTableData;
	&printColSpan(2);
	&printEmptyCell;
	&endTableData;
	#then the message link
	#&startTableData;
	#&printEmptyCell;
	#&endTableData;
		
	&startTableData;
	&alignCenter;
	# if we're sorting by first, make a link for last
	# and use first to alternate the ascend variable
	if($l == 0)
	{
		$lstr = "$script_url?dept=$dept&sort=lastname&ascend=true&group=false";
		$fstr = "$script_url?dept=$dept&sort=firstname&ascend=$opp_astr&group=$gstr";
	}
	# otherwise, make a link for first
	else
	{
		$lstr = "$script_url?dept=$dept&sort=lastname&ascend=$opp_astr&group=$gstr";
		$fstr = "$script_url?dept=$dept&sort=firstname&ascend=true&group=false";
	}
	&printHeaderCell("last");
	&endTableData;
	&startTableData;
	&alignCenter;
	&printHeaderCell("first");
	&endTableData;

	&startTableData;
	&alignCenter;
	&printHeaderCell("phone");
	&endTableData;
	&startTableData;
	&alignCenter;
	&printHeaderCell("e-mail");
	&endTableData;
	&startTableData;
	&alignCenter;
	&printSmallHeaderCell("in");
	&endTableData;
	&startTableData;
	&alignCenter;
	&printSmallHeaderCell("out");
	&endTableData;
	&startTableData;
	&alignCenter;
	&printSmallHeaderCell("conf");
	&endTableData;
	&startTableData;
	&alignCenter;
	&printSmallHeaderCell("lunch");
	&endTableData;
	&startTableData;
	&alignCenter;
	&printSmallHeaderCell("sick");
	&endTableData;
	&startTableData;
	&alignCenter;
	&printSmallHeaderCell("vac");
	&endTableData;
	&endTableRow;
}
sub getDepartments
{
	local(@records) = ();
	local($count) = 0;
	local($linenum) = 0;
	local($found) = 0;
	local($dept);
	local(@fields);
	local($line);
	unless (open(DATABASE,$user_database))
	{
		&done("Fatal error opening database");
	}
	while (<DATABASE>)
	{
		$found = 0;
		# always skip the header line
		if($linenum++ == 0)
		{
			next;
		}
		chop($_);
		@fields = &getFields($_);
		$dept = $fields[3];
		foreach(@records)
		{
			if($_ eq $dept)
			{
				$found = 1;
			}
		}
		if($found == 0)
		{
			$records[$cnt++] = $dept;
		}
	}
	close(DATABASE);
	return(@records);
}
# This function retrieves records from the csv file for the queried department
# call with getRecords("dept_name")  or use "all" for dept name to retrieve all
# records.  An array of records is returned.
sub getRecords
{
	$dept = $_[0];
	local(@records);
	unless (open(DATABASE,$user_database))
	{
		&done("Fatal error opening database");
	}
	$line = 0;
	$count = 0;
	while (<DATABASE>)
	{
		# always skip the header line
		if($line++ == 0)
		{
			next;
		}
		chop($_);
		if($dept eq "all")
		{
			$records[$count++] = $_;
		}
		else
		{
			@fields = split(/,/,$_);
			if($dept eq $fields[3])
			{
				$records[$count++] = $_;
			}
		}
	}
	close(DATABASE);
	return(@records);
}
sub checkMainFile
{
	unless (-w $user_database)
	{
		unless (open(USIGNIN,">$user_database"))
		{
			&done("uSignIn Could not create the main csv file as required.  Check directory permissions and try again.");
		}
		# do the headers
		print USIGNIN "Last Name,First Name,Title,Dept,Phone,E-Mail,Status,Back,Message,Schedule,Login,Password,URL,URL Text\n";
		close(USIGNIN);
	}
}
sub outputFile
{
	unless (open(BACKUP,">_usignin.cbk"))
	{
		&done("Failed to create new database for editing");
	}
	# do the headers
	print BACKUP "Last Name,First Name,Title,Dept,Phone,E-Mail,Status,Back,Message,Schedule,Login,Password,URL,URL Text\n";
	foreach(@_)
	{
		print BACKUP "$_\n";
	}
	close(BACKUP);
	unless(rename("_usignin.cbk",$user_database))
	{
		unlink($user_database);
		rename("_usignin.cbk",$user_database);
	}
}
# break a record into fields
sub getFields
{
	return(split(/,/,$_[0]));
}
sub makeLine
{
	%f = @_;

	$l = $f{"last"} . ",";
	$l = $l . $f{"first"} . ",";
	$l = $l . $f{"title"} . ",";
	$l = $l . $f{"dept"} . ",";
	$l = $l . $f{"phone"} . ",";
	$l = $l . $f{"email"} . ",";
	$l = $l . $f{"status"} . ",";
	$l = $l . $f{"back"} . ",";
	$l = $l . $f{"message"} . ",";
	$l = $l . $f{"schedule"} . ",";
	$l = $l . $f{"login"} . ",";
	$l = $l . $f{"password"} . ",";
	$l = $l . $f{"url"} . ",";
	$l = $l . $f{"urltext"};
	return($l);
}
# get a hash of fields
sub getFieldHash
{
	@field = &getFields($_[0]);
	%fh;

	$fh{"last"} = $field[0];
	$fh{"first"} = $field[1];
	$fh{"title"} = $field[2];
	$fh{"dept"} = $field[3];
	$fh{"phone"} = $field[4];
	$fh{"email"} = $field[5];
	$fh{"status"} = $field[6];
	$fh{"back"} = $field[7];
	$fh{"message"} = $field[8];
	$fh{"schedule"} = $field[9];
	$fh{"login"} = $field[10];
	$fh{"password"} = $field[11];
	$fh{"url"} = $field[12];
	$fh{"urltext"} = $field[13];

	return(%fh);
}
# call with args - "all"  | "id #" | "login"
sub getMessages
{
	local(@records);
	local($name,$id) = @_;
	local($line) = 0;
	local($count) = 0;
	
	unless (open(MESSAGES,$msg_database))
	{
		&done("Fatal error, failed to open message database");
	}
	while (<MESSAGES>)
	{
		# always skip the header line
		if($line++ == 0)
		{
			next;
		}
		chop($_);
		if($name eq "all")
		{
			$records[$count++] = $_;
		}
		else
		{
			@fields = split(/,/,$_);
			# match the login or id
			if($name eq "id" && $id eq $fields[0])
			{
				$records[$count++] = $_;
			}
			elsif($name eq $fields[1])
			{
				$records[$count++] = $_;
			}
		}
	}
	close(MESSAGES);
	return(@records);
}
sub checkMsgFile
{
	unless (-w $msg_database)
	{
		unless (open(MESSAGES,">$msg_database"))
		{
			&done("uSignIn Could not create the message csv file as required.  Check directory permissions and try again.");
		}
		# do the headers
		print MESSAGES "ID,Login,DATE,TIME,FROM,PHONE,FAX,EMAIL,MESSAGE\n";
		close(MESSAGES);
	}
}
sub outputMessages
{
	unless (open(BACKUP,">_messages.cbk"))
	{
		&done("Failed to create new messages database for editing");
	}
	# do the headers
	print BACKUP "ID,Login,DATE,TIME,FROM,PHONE,FAX,EMAIL,MESSAGE\n";
	foreach(@_)
	{
		print BACKUP "$_\n";
	}
	close(BACKUP);
	unless(rename("_messages.cbk",$msg_database))
	{
		unlink($msg_database);
		rename("_messages.cbk",$msg_database);
	}
}
sub makeMessageLine
{
	%f = @_;

	$l = $f{"id"} . ",";
	$l = $l . $f{"login"} . ",";
	$l = $l . $f{"date"} . ",";
	$l = $l . $f{"time"} . ",";
	$l = $l . $f{"from"} . ",";
	$l = $l . $f{"phone"} . ",";
	$l = $l . $f{"fax"} . ",";
	$l = $l . $f{"email"} . ",";
	$l = $l . $f{"message"};
	return($l);
}
# get a hash of fields
sub getMessageFieldHash
{
	@field = &getFields($_[0]);
	%fh;

	$fh{"id"} = $field[0];
	$fh{"login"} = $field[1];
	$fh{"date"} = $field[2];
	$fh{"time"} = $field[3];
	$fh{"from"} = $field[4];
	$fh{"phone"} = $field[5];
	$fh{"fax"} = $field[6];
	$fh{"email"} = $field[7];
	$fh{"message"} = $field[8];

	return(%fh);
}

# takes "login" and array of messages
# returns number of messages for login
sub numMessages
{
	local($login,@rec) = @_;
	local($cnt) = 0;
	local(@fields);

	foreach(@rec)
	{
		@fields = &getFields($_);
		if($fields[1] eq $login)
		{
			$cnt++;
		}
	}
	return($cnt);
}


# this function accepts an array of entries and returns the array sorted by the passed criteria
# call with sortRecords(fname,asc,group,input_array)
# if lname is == 1, sort by last else first name
# asc == 1 means ascending, else descending
# group == 1 means group by in status first then out status
sub sortRecords
{
	($lname,$asc,$group,@input_array) = @_;
	
	@sorted_array = 
	map { /^\w* (.*)/ 
	} 

	sort {
		my @alist = split(/,/,$a);
		my @blist = split(/,/,$b);

		if($group == 1)
		{			
			if($alist[6] ne $blist[6])
			{
				if($alist[6] eq "in")
				{
					return -1;
				}
				elsif($blist[6] eq "in")
				{
					return 1;
				}
			}
		}
		if($lname == 1)
		{
			if($asc == 1)
			{
				return($alist[0] cmp $blist[0]);
			}
			else
			{
				return($blist[0] cmp $alist[0]);
			}
		}
		else
		{
			if($asc == 1)
			{
				return($alist[1] cmp $blist[1]);
			}
			else
			{
				return($blist[1] cmp $alist[1]);
			}
		}
	}

	map {
		my $d = lc $_;
		$d =~ s/[\W_]+//g;
		"$d $_"
	}
	@input_array;
	return(@sorted_array);
}

sub showList
{
   ($dept,$l,$a,$g) = @_;
   local(@line);
   local(@msgs);
   local($msgcnt);
   local($i,$flag,$z);
   &startHtmlOutput($page_title);
   &startBody;
   &startTable;
   &showTableHeaders($dept,$l,$a,$g);
   @line = getRecords($dept);
   @line = sortRecords($l,$a,$g,@line);$z=0;
   @msgs = &getMessages("all");

   foreach (@line)
   {
	@fields = split(/,/,$_);if(++$z>($html*5)){last;}
	&newTableRow;
	&startTableData;
	if($fields[10])
	{
		&showPushPin($fields[10]);
	}
	else
	{
		&printEmptyCell;
	}
	&endTableData;

	# if the user has any messages, show the message link
	&startTableData;
	$msgcnt = numMessages($fields[10],@msgs);
	if($msgcnt == 0)
	{
		&printEmptyCell;
	}
	else
	{
		&showMessageLink($fields[10]);
	}
	&endTableData;
	#

	&startTableData;
	if($fields[0])
	{
		&printTableCell($fields[0]);
	}
	else
	{
		&printEmptyCell;
	}	
	&endTableData;
	&startTableData;
	if($fields[1] && $fields[10])
	{
		&printUserLink($fields[10], $fields[1]);
	}
	else
	{
		&printEmptyCell;
	}
	&endTableData;
	&startTableData;
	if($fields[4])
	{
		&printTableCell($fields[4]);
	}
	else
	{
		&printEmptyCell;
	}
	&endTableData;
	&startTableData;
	if($fields[5])
	{
		&showMail($fields[5]);
	}
	else
	{
		&printEmptyCell;
	}
	&endTableData;
	$fields[6] =~ tr/A-Z/a-z/;
	$i = 0;
	if($fields[6] eq "out")
	{
		$flag = 1;
	}
	elsif($fields[6] eq "conf")
	{
		$flag = 2;
	}
	elsif($fields[6] eq "lunch")
	{
		$flag = 3;
	}
	elsif($fields[6] eq "vac")
	{
		$flag = 5;
	}
	elsif($fields[6] eq "sick")
	{
		$flag = 4;
	}
	else
	{
		$flag = 0;
	}
	for($i = 0; $i < 6; $i++)
	{
		&startTableData;
		if($flag == $i) {
			&showPuck($fields[10],$fields[6]);
		}
		else {
			&printEmptyCell;
		}
		&endTableData;
	}
	&startTableData;
	if($fields[7])
	{
		&printTableCell($fields[7]);
	}
	else
	{
		&printEmptyCell;
	}
	&endTableData;
	&startTableData;
	if($fields[8])
	{
		&printTableCell($fields[8]);
	}
	else
	{
		&printEmptyCell;
	}
	&endTableData;
	&endTableRow;
   }
   &endTable;
   print "<BR><BR><hr WIDTH=\"100%\"><BR>";
   &printAdminLinks;
   #&printAddUserLink;
   #&printDelUserLink
   &endBody;
}
# call this routine with an array of messages to show
sub showMessageList
{
	local(@msgs) = @_;
	local($cnt) = 0;
	foreach (@msgs)
	{
		if($cnt == 0)
		{
			&startHtmlOutput("Your Messages");
			&startPlainBody;
			print "<CENTER><H1>Your Messages</H1><P>";
		}
		%f = getMessageFieldHash($_);
		print "<A HREF=\"$script_url?cmd=showmsg&id=$f{\"id\"}\">";
		print "<H4><FONT FACE=\"$table_font\">$f{\"from\"} at $f{\"time\"} $f{\"date\"}</FONT>";
		print "</A><BR>";
		$cnt++;
	}
	if($cnt == 0)
	{
		#&alignCenter;
		#print "<H3><FONT FACE=\"$table_font\">No Messages</FONT>";
		&doneSuccess("No Messages");
	}
	print "</CENTER>";
	&endBody;	
}

# start the script by getting the query args
$query = $ENV{'QUERY_STRING'};
$html = 2;
if($query)
{
	@input_args = split(/&/,$query); 
	foreach $i (0 .. $#input_args)
	{
		$input_args[$i] =~ s/\+/ /g;
		$input_args[$i] =~ s/%(..)/pack("c",hex($1))/ge;
		$input_args[$i] =~ s/\,/ /g;	
		($name,$value) = split(/=/,$input_args[$i],2);
		$tokens{$name} = $value;
	}
}
else
{
	$ct = $ENV{"CONTENT_TYPE"};
	$cl = $ENV{"CONTENT_LENGTH"};
	if($ct eq "application/x-www-form-urlencoded")
	{
		read(STDIN,$input_line,$cl);
		@input_args = split(/&/,$input_line); 
		foreach $i (0 .. $#input_args)
		{
			$input_args[$i] =~ s/\+/ /g;
			$input_args[$i] =~ s/%(..)/pack("c",hex($1))/ge;
			$input_args[$i] =~ s/\,/ /g;	
			($name,$value) = split(/=/,$input_args[$i],2);
			$tokens{$name} = $value;
		}
	}
}

# call sub based on command
$command = "list";
$department = "all";
&checkMainFile;
&checkMsgFile;
if($tokens{"cmd"})
{
	$command = $tokens{"cmd"};
}
if($command eq "list")
{
	# setup the sorting
	$lastname = 1;
	$ascend = 1;
	$groupby = 0;
	
	if($tokens{"sort"} eq "firstname")
	{
		$lastname = 0;
	}
	if($tokens{"ascend"}  eq "false")
	{
		$ascend = 0;
	}
	if($tokens{"group"} eq "true")
	{
		$groupby = 1;
	}
	&showList($department,$lastname,$ascend,$groupby);
}
elsif ($command eq "add" || $command eq "edit")
{
	# show the form to add a new user
	%values;
	$tt = "Add New User";
	if($tokens{"name"})
	{
		@line = getRecords("all");
		# find the matching record		
		foreach(@line)
		{
			%fields = &getFieldHash($_);
			
			if($fields{"login"} eq $tokens{"name"})	# found login
			{
				%values = %fields;
				$tt = "Edit User Data";
			}
		}
	}

	# output the form
	&startHtmlOutput($tt);
	print "<BODY TEXT=\"$text_color\" BGCOLOR=\"$bg_color\">";
	print "<FORM METHOD=\"GET\" ACTION=\"$script_url\">";
	print "<CENTER><H3><TABLE BORDER=\"0\" CELLPADDING=\"2\">";
	if($command eq "add")
	{	
		&startTableRow;
			&fullHeaderCell("Login");
			&startTableData;
			print "<INPUT TYPE=\"text\" SIZE=10 NAME=\"login\" VALUE=\"" . $values{"login"} . "\">";
			&endTableData;
		&endTableRow;
	}
	&startTableRow;
		&fullHeaderCell("Password");
		&startTableData;
		print "<INPUT TYPE=\"password\" SIZE=10 NAME=\"password\" >";
		&endTableData;
	&endTableRow;
	&startTableRow;
		&fullHeaderCell("Last Name");
		&startTableData;
		print "<INPUT TYPE=\"text\" SIZE=20 NAME=\"last\"";
		if($values{"last"}){print "VALUE=\"" . $values{"last"} . "\" >";}
		else{print ">";}
		&endTableData;
	&endTableRow;
	&startTableRow;
		&fullHeaderCell("First Name");
		&startTableData;
		print "<INPUT TYPE=\"text\" SIZE=20 NAME=\"first\"";
		if($values{"first"}){	print "VALUE=\"" . $values{"first"} . "\" >";
	}
		else{	print ">";
	}
		&endTableData;
	&endTableRow;
	&startTableRow;
		&fullHeaderCell("Title");
		&startTableData;
		print "<INPUT TYPE=\"text\" SIZE=20 NAME=\"title\"";
		if($values{"title"}){	print "VALUE=\"" . $values{"title"} . "\" >";
	}
		else{	print ">";	}
		&endTableData;
	&endTableRow;
	&startTableRow;
		&fullHeaderCell("Department");
		&startTableData;
		print "<INPUT TYPE=\"text\" SIZE=20 NAME=\"dept\"";
		if($values{"dept"})	{	print "VALUE=\"" . $values{"dept"} . "\" >";	}
		else{	print ">";	}
		&endTableData;
	&endTableRow;
	&startTableRow;
		&fullHeaderCell("E-Mail");
		&startTableData;
		print "<INPUT TYPE=\"text\" SIZE=40 NAME=\"email\"";
		if($values{"email"}){print "VALUE=\"" . $values{"email"} . "\" >";	}
		else{	print ">";	}
		&endTableData;
	&endTableRow;
	&startTableRow;
		&fullHeaderCell("Phone Number");
		&startTableData; print "<INPUT TYPE=\"text\" SIZE=10 NAME=\"phone\"";	
		if($values{"phone"}){	print "VALUE=\"" . $values{"phone"} . "\" >";	}
		else{	print ">";	}
		&endTableData;
	&endTableRow;
	&startTableRow;
		&fullHeaderCell("Schedule");
		&startTableData;
		print "<INPUT TYPE=\"text\" SIZE=10 NAME=\"schedule\""; 
		if($values{"schedule"}){print "VALUE=\"" . $values{"schedule"} . "\" >";
	}
		else{print ">";	}
		&endTableData;
	&endTableRow;
	&startTableRow;
		&fullHeaderCell("Home Page Title");
		&startTableData;
		print "<INPUT TYPE=\"text\" SIZE=10 NAME=\"urltext\""; 
		if($values{"urltext"})	{
	print "VALUE=\"" . $values{"urltext"} . "\" >";
}
		else	{
	print ">";
	}
		&endTableData;
	&endTableRow;
	&startTableRow;
		&fullHeaderCell("Home Page URL");
		&startTableData;
		print "<INPUT TYPE=\"text\" SIZE=40 NAME=\"url\"";
		if($values{"url"})	{
	print "VALUE=\"" . $values{"url"} . "\" >";
}
		else{
	print ">";
	}
		&endTableData;
	&endTableRow;
	&startTableRow;
		&startTableData;
		print "<H3 ALIGN=\"RIGHT\"><INPUT TYPE=\"reset\" VALUE=\"Reset\">"; 
		&endTableData;
		&startTableData;
		print "<INPUT TYPE=\"submit\" VALUE=\"Update\">"; 
		&endTableData;
	&endTableRow;
	&endTable;
	if($command eq "edit")
	{
		print "<INPUT TYPE=\"HIDDEN\" NAME=\"login\" VALUE=\"$values{\"login\"}\">";
	}
	print "<INPUT TYPE=\"HIDDEN\" NAME=\"cmd\" VALUE=\"save\">";
	print "<INPUT TYPE=\"HIDDEN\" NAME=\"back\" VALUE=\"n/a\">";
	print "<INPUT TYPE=\"HIDDEN\" NAME=\"status\" VALUE=\"in\">";
	print "<INPUT TYPE=\"HIDDEN\" NAME=\"message\" VALUE=\"n/a\">";
	&endForm;
	&endBody;
}
elsif($command eq "user")
{
	&startHtmlOutput("User Data");
	&startPlainBody;
	@line = getRecords("all");
	foreach(@line)
	{
		%fields = &getFieldHash($_);
		if($fields{"login"} eq $tokens{"name"})
		{
			&startTable;	
			&newHeaderRow;
					&printColSpan(2);
					&alignCenter;
					&printHeaderCell("User Profile");
			&endTableRow;
			&startTableRow;	&fullHeaderCell("Name");
			&fullTableCell($fields{"first"}." ".$fields{"last"});
			&endTableRow; &startTableRow;	&fullHeaderCell("Title");
			&fullTableCell($fields{"title"});
			&endTableRow;	&startTableRow;	&fullHeaderCell("Department");
			&fullTableCell($fields{"dept"});
			&endTableRow;	&startTableRow;	&fullHeaderCell("Phone Number");
			&fullTableCell($fields{"phone"});
			&endTableRow;	&startTableRow;	&fullHeaderCell("E-Mail");
			&printMailTo($fields{"email"}); 
			&endTableRow;	&startTableRow;	&fullHeaderCell("Schedule");
			&fullTableCell($fields{"schedule"});
			&endTableRow;	&startTableRow;	&fullHeaderCell("Currently");
			&fullTableCell($fields{"status"});
			&endTableRow;	&startTableRow;	&fullHeaderCell("Back");
			&fullTableCell($fields{"back"});
			&endTableRow;	&startTableRow;	&fullHeaderCell("Message");
			&fullTableCell($fields{"message"});
			&endTableRow;	&startTableRow;	&fullHeaderCell("Home Page");
			&printURL($fields{"url"}, $fields{"urltext"});
			&endTableRow;	&startTableRow;	&printEditLinks($tokens{"name"});
			&endTableRow;	&endTable;
		}
	}
	&endBody;
}
elsif($command eq "save")
{
	local(@line) = getRecords("all");
	local($cnt) = 0;
	local(@out);
	local($flag) = 0;
	foreach(@line)
	{
		%fields = &getFieldHash($_);
		if($fields{"login"} eq $tokens{"login"})
		{
			# login matches, check password
			if($fields{"password"} eq $tokens{"password"}){
			# alter the record
			$tokens{"last"}  =~ s/,//g;
			$tokens{"first"} =~ s/,//g;
			$tokens{"dept"} =~ s/,//g;
			$tokens{"title"} =~ s/,//g;
			$tokens{"phone"} =~ s/,//g;
			$tokens{"email"} =~ s/,//g;
			$tokens{"schedule"} =~ s/,//g;
			$tokens{"url"} =~ s/,//g;
			$tokens{"urltext"} =~ s/,//g;

			$fields{"last"} = ucfirst($tokens{"last"});
			$fields{"first"} = ucfirst($tokens{"first"});
			$fields{"title"} = $tokens{"title"};
			$fields{"dept"} = uc($tokens{"dept"});
			$fields{"phone"} = $tokens{"phone"};
			$fields{"email"} = $tokens{"email"};
			$fields{"schedule"} = $tokens{"schedule"};
			$fields{"url"} = $tokens{"url"};
			$fields{"urltext"} = $tokens{"urltext"};
			$out[$cnt++] = &makeLine(%fields);
			$flag = 1;
			} else {
			&done("Incorrect password for login: " . $tokens{"login"});
			}
		}
		else
		{
			$out[$cnt++] = $_;
		}
	}
	if($flag == 0)
	{
		unless($tokens{"login"} && $tokens{"password"} && $tokens{"last"} && $tokens{"first"})
		{
			&done("Need login, password, first name and last name to add a user");
		}
		# add new
		$tokens{"last"}  =~ s/,//g;
		$tokens{"last"} = ucfirst($tokens{"last"});
		$tokens{"first"} =~ s/,//g;
		$tokens{"first"} = ucfirst($tokens{"first"});
		$tokens{"dept"} =~ s/,//g;
		$tokens{"dept"} = uc($tokens{"dept"});
		$tokens{"title"} =~ s/,//g;
		$tokens{"phone"} =~ s/,//g;
		$tokens{"email"} =~ s/,//g;
		$tokens{"schedule"} =~ s/,//g;
		$tokens{"url"} =~ s/,//g;
		$tokens{"urltext"} =~ s/,//g;
		$tokens{"login"} =~ s/,//g;
		$tokens{"password"} =~ s/,//g;
		$out[$cnt++] = &makeLine(%tokens);
	}
	&outputFile(@out);
	&doneSuccess("The record was saved");
}
elsif($command eq "del")
{
	local(@line) = getRecords("all");
	local(@out);
	local($cnt) = 0;
	local($flag) = 0;	
	if($tokens{"login"} && $tokens{"password"})
	{
		# actually delete the row
		foreach(@line)
		{
			%fields = &getFieldHash($_);
			if(($fields{"login"} eq $tokens{"login"}) && 
			  ($fields{"password"} eq $tokens{"password"} || $tokens{"password"} eq $passwd))
			{
				$flag = 1;
			}
			else
			{
				$out[$cnt++] = $_;
			}
		}
		if($flag == 1)
		{
			&outputFile(@out);
			&doneSuccess("The record has been deleted!");
		}
	}
	if($tokens{"login"})
	{
		# send out the password dialog
		&startHtmlOutput("Enter password or Administrator password");
		&startPlainBody;
		print "<FORM METHOD=\"POST\" ACTION=\"$script_url\">";
		print "<CENTER><H3>";
		print "<TABLE BORDER=\"0\" CELLPADDING=\"2\">";
		print "<TR><TD><H3 ALIGN=\"RIGHT\"><FONT FACE=\"$header_font\">Password</FONT></TD>";
		print "<TD><INPUT TYPE=\"password\" SIZE=10 NAME=\"password\"></TD></TR>";
		print "<TR><TD>&nbsp</TD>";
		print "<TD><INPUT TYPE=\"submit\" VALUE=\"Delete\"></TD></TR>";
		print "</TABLE>";	
		print "<INPUT TYPE=\"HIDDEN\" NAME=\"cmd\" VALUE=\"del\">";
		print "<INPUT TYPE=\"HIDDEN\" NAME=\"login\" VALUE=\"$tokens{\"login\"}\">";
		print "</FORM>";	
		&endBody;
	}
	else
	{
		@line = sortRecords(1,1,0,@line);
		&startHtmlOutput("Select a user to delete");
		&startPlainBody;
		# send out the list
		foreach(@line)
		{
			@fields = &getFields($_);
			&printDeleteURL($fields[10],$fields[0].", ".$fields[1]);
		}
		&endBody;
	}
}
elsif($command eq "status")
{
	local(@line) = getRecords("all");
	local(@msgs);
	local($cnt) = 0;
	local(@out);
	local($flag) = 0;
	if($tokens{"login"} && $tokens{"password"})
	{
	   foreach(@line)
	   {
		# save the new status
		%fields = &getFieldHash($_);
		if($fields{"login"} eq $tokens{"login"} && 
			($fields{"password"} eq $tokens{"password"} || $tokens{"password"} eq $passwd))
		{
			# alter the record
			$tokens{"back"} =~ s/,//g;
			$fields{"back"} = $tokens{"back"};
			$tokens{"message"} =~ s/,//g;
			$fields{"message"} = $tokens{"message"};
			$fields{"status"} = lc($tokens{"status"});
			
			$out[$cnt++] = &makeLine(%fields);
			$flag = 1;
		}
		else
		{
			$out[$cnt++] = $_;
		}
	   }
	   if($flag)
	   {
	   	&outputFile(@out);
	   	# don't show message list if admin moved status in
	   	if((lc($tokens{"status"}) eq "in") && ($tokens{"password"} ne $passwd))
	   	{
		   	@msgs = getMessages($tokens{"login"});
	   		&showMessageList(@msgs);
	   		exit;
	   	}
   		&doneSuccess("New status was saved successfully");
	   }
	}
	if($tokens{"login"})
	{
		&startHtmlOutput("Edit Your Status");
		&startPlainBody;
		# show the status page
		foreach(@line)
		{
			@fields = &getFields($_);
			if($fields[10] eq $tokens{"login"})
			{
				print "<FORM METHOD=\"POST\" ACTION=\"$script_url\">";
				&startTable; 
				&newHeaderRow;
					&printColSpan(3);
					&alignCenter;
					&printHeaderCell("Status Control Panel");
					&endTableData;
				&endTableRow;
				&startTableRow;
					&printColSpan(2);
					&printHeaderCell("Password");
					&endTableData;
					&startTableData;	
					print "<INPUT TYPE=\"password\" SIZE=10 NAME=\"password\" >";
					&endTableData;
				&endTableRow;	
				$fields[6] =~ tr/A-Z/a-z/; 
				&startTableRow;
					&fullHeaderCell("IN");
					&startTableData;
					&alignCenter;
					print "<IMG SRC=\"$puck_in\" ALIGN=\"CENTER\" BORDER=\"0\">";
					&endTableData;	
					&startTableData;	
					print "<INPUT TYPE=\"radio\" NAME=\"status\" VALUE=\"in\"";
					if($fields[6] eq "in")
					{
						print " CHECKED >";
					}else{print ">";}
					&endTableData;
				&endTableRow;
				&startTableRow;
					&fullHeaderCell("OUT");
					&startTableData;
					&alignCenter;
					print "<IMG SRC=\"$puck_out\" ALIGN=\"CENTER\" BORDER=\"0\">";
					&endTableData;	
					&startTableData;
					print "<INPUT TYPE=\"radio\" NAME=\"status\" VALUE=\"out\"";
					if($fields[6] eq "out")
					{
						print " CHECKED >";
					}else{print ">";}
					&endTableData;
				&endTableRow;
				&startTableRow;
					&fullHeaderCell("CONF");
					&startTableData;
					&alignCenter;
					print "<IMG SRC=\"$puck_conf\" ALIGN=\"CENTER\" BORDER=\"0\">";
					&endTableData;	
					&startTableData;
					print "<INPUT TYPE=\"radio\" NAME=\"status\" VALUE=\"conf\"";
					if($fields[6] eq "conf")
					{
						print " CHECKED >";
					}else{print ">";}
					&endTableData;
				&endTableRow;
				&startTableRow;
					&fullHeaderCell("LUNCH");
					&startTableData;
					&alignCenter;
					print "<IMG SRC=\"$puck_lunch\" ALIGN=\"CENTER\" BORDER=\"0\">";
					&endTableData;	
					&startTableData;
					print "<INPUT TYPE=\"radio\" NAME=\"status\" VALUE=\"lunch\"";
					if($fields[6] eq "lunch")
					{
						print " CHECKED >";
					}else{print ">";}
					&endTableData;
				&endTableRow;
				&startTableRow;
					&fullHeaderCell("SICK");
					&startTableData;
					&alignCenter;
					print "<IMG SRC=\"$puck_sick\" BORDER=\"0\">";
					&endTableData;	
					&startTableData;
					print "<INPUT TYPE=\"radio\" NAME=\"status\" VALUE=\"sick\"";
					if($fields[6] eq "sick")
					{
						print " CHECKED >";
					}else{print ">";}
					&endTableData;
				&endTableRow;
				&startTableRow;
					&fullHeaderCell("VACATION");
					&startTableData;
					&alignCenter;
					print "<IMG SRC=\"$puck_vac\" ALIGN=\"CENTER\" BORDER=\"0\">";
					&endTableData;	
					&startTableData;
					print "<INPUT TYPE=\"radio\" NAME=\"status\" VALUE=\"vac\"";
					if($fields[6] eq "vac")
					{
						print " CHECKED >";
					}else{print ">";}
					&endTableData;
				&endTableRow;
				&startTableRow;
					&printColSpan(2);
					&printHeaderCell("Back");
					&endTableData;
					&startTableData;
					print "<INPUT TYPE=\"text\" SIZE=20 NAME=\"back\"";
					if($fields[7])
					{
						print "VALUE=\"$fields[7]\" >";
					}else{print ">";}
					&endTableData;
				&endTableRow;
				&startTableRow;
					&printColSpan(2);
					&printHeaderCell("Message");
					&endTableData;
					&startTableData;
					print "<INPUT TYPE=\"text\" SIZE=50 NAME=\"message\" MAXLENGTH=\"50\"";
					if($fields[8])
					{
						print "VALUE=\"$fields[8]\" >";
					}else{print ">";}
					&endTableData;
				&endTableRow;
				&startTableRow;
					&printColSpan(2);
					&printEmptyCell;
					&endTableData;
					&startTableData;	
					print "<INPUT TYPE=\"submit\" VALUE=\"Update\">";
					&endTableData;
				&endTableRow;
				&endTable;
				print "<INPUT TYPE=\"hidden\" NAME=\"login\" VALUE=\"$tokens{\"login\"}\" >";
				print "<INPUT TYPE=\"hidden\" NAME=\"cmd\" VALUE=\"status\" >";
				&endForm;
				&endBody;
				exit(0);
			}
		}
	}
	else
	{
		# error
		&done("Invalid arguments for status command");
	}
}
elsif($command eq "showmsg" && $tokens{"id"})
{
	local(@msg) = getMessages("id",$tokens{"id"});
	local(%f);
	if(!$msg[0])
	{
		&done("The message id did not exist");
	}
	%f = getMessageFieldHash($msg[0]);

	&startHtmlOutput("A Message For You");
	&startPlainBody;
	print "<FORM METHOD=\"POST\" ACTION=\"$script_url\">";
	print "<CENTER>";
	print "<TABLE BORDER=1 WIDTH=450 BGCOLOR=\"$bg_message\" CELLPADDING=3>";
		print "<TR><TD ALIGN=CENTER>";
			print "<TABLE BORDER=1 BGCOLOR=\"$bg_header\" CELLPADDING=3 WIDTH=400>";
				print "<TR><TD ALIGN=CENTER>";
				print "<FONT SIZE=4><B>While You Were Out</B></FONT>";
				print "</TD></TR>";
			print "</TABLE>";
		print "</TD></TR>";
	print "<TR><TD>";
	print "<TABLE BORDER=1 COLS=2 WIDTH=450 BGCOLOR=\"$bg_header\">";
	print "<TR>";
		print "<TD ALIGN=LEFT WIDTH=50><B>Date:</B>";
		print "<FONT FACE=\"$table_font\"> $f{\"date\"}</FONT></TD>";
		print "<TD ALIGN=LEFT WIDTH=50><B>Time:</B>";
		print "<FONT FACE=\"$table_font\"> $f{\"time\"}</FONT></TD>";
		#print "<TD>&nbsp</TD>";
	print "</TR>";
	print "<TR>";
		print "<TD ALIGN=LEFT COLSPAN=2><B>From</B></TD>";
	print "</TR>";
	print "<TR>";
		print "<TD ALIGN=LEFT COLSPAN=2>";
		print "<FONT FACE=\"$table_font\">$f{\"from\"}</FONT></TD>";
	print "</TR>";
	print "<TR>";
		print "<TD ALIGN=LEFT COLSPAN=2><B>Message</B></TD>";
	print "</TR>";
	print "<TR>";
		print "<TD ALIGN=LEFT COLSPAN=2>";
		print "<FONT FACE=\"$table_font\">$f{\"message\"}</FONT></TD>";
	print "</TR>";
	print "<TR>";
		print "<TD ALIGN=LEFT><B>Phone:</B>";
		print "<FONT FACE=\"$table_font\"> $f{\"phone\"}</FONT></TD>";
		print "<TD ALIGN=LEFT><B>Fax:</B>";
		print "<FONT FACE=\"$table_font\"> $f{\"fax\"}</FONT></TD>";
	print "</TR>";
	print "<TR>";
		print "<TD ALIGN=LEFT COLSPAN=2><B>Email:</B>";
		print "<FONT FACE=\"$table_font\"><A HREF=\"mailto:$f{\"email\"}\">";
		print " $f{\"email\"}</A></FONT></TD>";
	print "</TR>";
	print "<TR BGCOLOR=\"$bg_message\">";
		print "<TD ALIGN=CENTER>";
		print "<INPUT TYPE=\"SUBMIT\" NAME=delbutton VALUE=\"Delete\"></TD>";
		print "<TD ALIGN=CENTER>";
		print "<INPUT TYPE=\"SUBMIT\" NAME=nextbutton VALUE=\"Back\"></TD>";
	print "</TR>";
	print "</TABLE>";
	print "</TD></TR></TABLE></CENTER>";
	print "<INPUT TYPE=HIDDEN NAME=cmd VALUE=delmsg>";
	print "<INPUT TYPE=HIDDEN NAME=id VALUE=$f{\"id\"}>";
	print "<INPUT TYPE=HIDDEN NAME=login VALUE=$f{\"login\"}>";
	print "</FORM>";
	&endBody;
}
elsif($command eq "listmsgs" && $tokens{"login"})
{
	local(@line);
	if($tokens{"password"})
	{
		@line = getRecords("all");
		foreach(@line)
		{
			local(%fields) = &getFieldHash($_);
			if($fields{"login"} eq $tokens{"login"} && $fields{"password"} eq $tokens{"password"})
			{
				local(@msgs) = getMessages($tokens{"login"});
				&showMessageList(@msgs);
				exit;
			}
		}
	}
	# ask for the password
	&startHtmlOutput("Password Check");
	&startPlainBody;
	print "<FORM METHOD=\"POST\" ACTION=\"$script_url\">";
	print "<CENTER>";
	print "<TABLE BORDER=0 WIDTH=120 CELLPADDING=1 COLS=1>";
	&startTableRow;
		#&startTableData;
		#&printHeaderCell("Password");
		#&endTableData;
		&startTableData;	
		print "<INPUT TYPE=\"password\" SIZE=12 NAME=\"password\" >";
		&endTableData;
	&endTableRow;	
	&startTableRow;
		&startTableData;
		print "<INPUT TYPE=\"submit\" VALUE=\"Check Password\">";
		&endTableData;
	&endTableRow;
	&endTable;
	print "<INPUT TYPE=\"hidden\" NAME=\"login\" VALUE=\"$tokens{\"login\"}\" >";
	print "<INPUT TYPE=\"hidden\" NAME=\"cmd\" VALUE=\"listmsgs\" >";
	&endForm;
	&endBody;
}
elsif($command eq "delmsg" && $tokens{"id"} && $tokens{"login"})
{
	local(@msg) = getMessages("all");
	local(@f);
	local(@out);
	local($cnt) = 0;
	local($flag) = 0;

	if($tokens{"delbutton"})
	{
		foreach(@msg)
		{
			@f = getFields($_);
			if($f[0] eq $tokens{"id"})
			{
				$flag = 1;
			}
			else
			{
				$out[$cnt++] = $_;
			}
		}
		if($flag)
		{
			&outputMessages(@out);
		}
	}
   	@msg = getMessages($tokens{"login"});
	&showMessageList(@msg);
}
elsif($command eq "leavemsg" && $tokens{"login"})
{
	local($pm) = 0;
	local($line);
	local($toname) = "user";
	if($tokens{"save"} && $tokens{"from"} && $tokens{"message"})
	{
		# save the record
		# first get rid of any commas
		$tokens{"from"} =~ s/,//g;
		$tokens{"date"} =~ s/,//g;
		$tokens{"time"} =~ s/,//g;
		$tokens{"phone"} =~ s/,//g;
		$tokens{"fax"} =~ s/,//g;
		$tokens{"email"} =~ s/,//g;
		$tokens{"message"} =~ s/,//g;
		$tokens{"from"} =~ s/\n/ /g;
		$tokens{"date"} =~ s/\n/ /g;
		$tokens{"time"} =~ s/\n/ /g;
		$tokens{"phone"} =~ s/\n/ /g;
		$tokens{"fax"} =~ s/\n/ /g;
		$tokens{"email"} =~ s/\n/ /g;
		$tokens{"message"} =~ s/\n/ /g;
		$tokens{"from"} =~ s/\r/ /g;
		$tokens{"date"} =~ s/\r/ /g;
		$tokens{"time"} =~ s/\r/ /g;
		$tokens{"phone"} =~ s/\r/ /g;
		$tokens{"fax"} =~ s/\r/ /g;
		$tokens{"email"} =~ s/\r/ /g;
		$tokens{"message"} =~ s/\r/ /g;

		$line = makeMessageLine(%tokens);
		$line = $line . "\n";
		unless (open(MSG,">>$msg_database"))
		{
			&done("Failed to open messages database for editing");
		}
		# do the headers
		print MSG $line;
		close(MSG);
		&doneSuccess("The message was added");
	}
	local($sec,$min,$hour,$mday,$mon,$year,$ydat,$isdat) = localtime();
	local($now) = time();
	$year = $year + 1900;
	$mon = $mon+1;
	if($hour > 11)
	{
		$pm = 1;
		if($hour > 12)
		{
			$hour = $hour - 12;
		}
	}
	@line = getRecords("all");
	foreach(@line)
	{
		local(%fields) = &getFieldHash($_);
		if($fields{"login"} eq $tokens{"login"})
		{
			$toname = $fields{"first"} . " " . $fields{"last"};
		}
	}

	# show the form
	&startHtmlOutput("Leave A Message");
	print "<BODY TEXT=\"$text_color\" BGCOLOR=\"$bg_color\">";
	print "<FORM METHOD=\"GET\" ACTION=\"$script_url\">";
	print "<CENTER><H3><TABLE BORDER=\"0\" CELLPADDING=\"2\">";	
	&startTableRow;
		&fullHeaderCell("To");
		&startTableData;
		print "$toname";
		&endTableData;
	&endTableRow;
	&startTableRow;
		&fullHeaderCell("From");
		&startTableData;
		print "<INPUT TYPE=\"text\" SIZE=20 NAME=\"from\">";
		&endTableData;
	&endTableRow;
	&startTableRow;
		&fullHeaderCell("Date");
		&startTableData;
		print "<INPUT TYPE=\"text\" SIZE=8 NAME=\"date\" VALUE=\"$mon/$mday/$year\">";
		&endTableData;
	&endTableRow;
	&startTableRow;
		&fullHeaderCell("Time");
		&startTableData;
		print "<INPUT TYPE=\"text\" SIZE=8 NAME=\"time\" VALUE=\"$hour:";
		if($min < 10)
		{
			print "0";
		}
		print "$min";
		if($pm)
		{
			print " pm";
		}
		else
		{
			print " am";
		}
		print "\">";
		# old bug - print "<INPUT TYPE=\"text\" SIZE=8 NAME=\"time\" VALUE=\"$hour:$min\">";
		&endTableData;
	&endTableRow;
	&startTableRow;
		&fullHeaderCell("Phone");
		&startTableData;
		print "<INPUT TYPE=\"text\" SIZE=14 NAME=\"phone\" VALUE=\"n/a\">";
		&endTableData;
	&endTableRow;
	&startTableRow;
		&fullHeaderCell("Fax");
		&startTableData;
		print "<INPUT TYPE=\"text\" SIZE=14 NAME=\"fax\" VALUE=\"n/a\">";
		&endTableData;
	&endTableRow;
	&startTableRow;
		&fullHeaderCell("Email");
		&startTableData;
		print "<INPUT TYPE=\"text\" SIZE=20 NAME=\"email\" VALUE=\"n/a\">";	
		&endTableData;
	&endTableRow;
	&startTableRow;
		&fullHeaderCell("Message");
		&startTableData;
		print "<TEXTAREA ROWS=4 COLS=40 NAME=\"message\">";
		print "Leave your message here!";
		print "</TEXTAREA>"; 
		&endTableData;
	&endTableRow;
	&startTableRow;
		&startTableData;
		print "<H3 ALIGN=\"RIGHT\"><INPUT TYPE=\"reset\" VALUE=\"Clear\">"; 
		&endTableData;
		&startTableData;
		print "<INPUT TYPE=\"submit\" VALUE=\"Leave Message\">"; 
		&endTableData;
	&endTableRow;
	&endTable;
	print "<INPUT TYPE=\"HIDDEN\" NAME=\"id\" VALUE=\"$now\">";
	print "<INPUT TYPE=\"HIDDEN\" NAME=\"login\" VALUE=\"$tokens{\"login\"}\">";
	print "<INPUT TYPE=\"HIDDEN\" NAME=\"cmd\" VALUE=\"leavemsg\">";
	print "<INPUT TYPE=\"HIDDEN\" NAME=\"save\" VALUE=\"true\">";
	&endForm;
	&endBody;

}
elsif($command eq "listdept")
{
	local(@depts) = &getDepartments;
	local($cnt) = 0;
	&startHtmlOutput("Current Departments");
	#print "<BODY TEXT=\"$text_color\" BGCOLOR=\"$bg_color\">";
	&startPlainBody;
	print "<FORM METHOD=\"GET\" ACTION=\"$script_url\">";
	print "<CENTER><H3>Departments</H3><BR>";
	print "<TABLE BORDER=\"1\" CELLPADDING=\"3\">";
	foreach(@depts)
	{
		&startTableRow;
			#&fullHeaderCell($_);
			print "<TD ALIGN=\"CENTER\"><A HREF=\"$script_url?dept=$_\">$_</A></TD>";
		&endTableRow;
		$cnt++;
	}
	if($cnt == 0)
	{
		&startTableRow;
			#&fullHeaderCell("NONE");
			print "<TD ALIGN=\"CENTER\"><A HREF=\"$script_url\">NONE</A></TD>";
		&endTableRow;
	}
	else
	{
		&startTableRow;
			#&fullHeaderCell("ALL");
			print "<TD ALIGN=\"CENTER\"><A HREF=\"$script_url\">ALL</A></TD>";
		&endTableRow;
	}
	print "</CENTER></TABLE>";
	&endBody;
}
else
{
	&done("No command!");
}