index.php

极限网络智能办公系统—MYOA26—100％—源程序。

<?php

function my_xml_tree( $PARENT_ID )
{
	global $POST_DEPT;
	global $PARA_URL1;
	global $PARA_URL2;
	global $PARA_TARGET;
	global $PARA_ID;
	global $PARA_VALUE;
	global $POST_PRIV;
	global $PRIV_NO;
	global $PRIV_NO_FLAG;
	global $LOGIN_DEPT_ID;
	global $LOGIN_USER_PRIV;
	$XML_TEXT = "";
	$connection = openconnection( );
	$query = "SELECT * from DEPARTMENT where DEPT_PARENT={$PARENT_ID} order by DEPT_NO";
	$cursor = exequery( $connection, $query );
	while ( $ROW = mysql_fetch_array( $cursor ) )
	{
		$DEPT_ID = $ROW['DEPT_ID'];
		$DEPT_NAME = $ROW['DEPT_NAME'];
		$DEPT_NAME = str_replace( "<", "&lt", $DEPT_NAME );
		$DEPT_NAME = str_replace( ">", "&gt", $DEPT_NAME );
		$DEPT_NAME = stripslashes( $DEPT_NAME );
		if ( $PRIV_NO_FLAG )
		{
			$DEPT_PRIV = is_dept_priv( $DEPT_ID );
		}
		else
		{
			$DEPT_PRIV = 1;
		}
		$XML_TEXT_USER = "";
		if ( $DEPT_PRIV == 1 )
		{
			if ( $LOGIN_USER_PRIV != "1" && $PRIV_NO_FLAG )
			{
				$query1 = "SELECT * from USER,USER_PRIV where DEPT_ID={$DEPT_ID} and USER.USER_PRIV=USER_PRIV.USER_PRIV and USER_PRIV.PRIV_NO>{$PRIV_NO} and USER_PRIV.USER_PRIV!=1 order by PRIV_NO,USER_NAME";
			}
			else
			{
				$query1 = "SELECT * from USER,USER_PRIV where DEPT_ID={$DEPT_ID} and USER.USER_PRIV=USER_PRIV.USER_PRIV order by PRIV_NO,USER_NAME";
			}
			$cursor1 = exequery( $connection, $query1 );
			while ( $ROW = mysql_fetch_array( $cursor1 ) )
			{
				$USER_ID = $ROW['USER_ID'];
				$USER_NAME = $ROW['USER_NAME'];
				$USER_NAME = str_replace( "<", "&lt", $USER_NAME );
				$USER_NAME = str_replace( ">", "&gt", $USER_NAME );
				$USER_NAME = stripslashes( $USER_NAME );
				$XML_TEXT_USER .= "<node>\n<name>{$USER_NAME}</name>\n<type>web</type>\n<link>{$PARA_URL2}?USER_ID={$USER_ID}</link>\n<target>{$PARA_TARGET}</target>\n</node>\n";
			}
			if ( $PARA_URL1 != "" )
			{
				$XML_TEXT_USER = "<link>{$PARA_URL1}?DEPT_ID={$DEPT_ID}</link>\n<target>{$PARA_TARGET}</target>\n".$XML_TEXT_USER;
			}
			if ( $PRIV_NO_FLAG )
			{
				$DEPT_NAME = "[".$DEPT_NAME."]";
			}
		}
		$XML_TEXT_CHILD = my_xml_tree( $DEPT_ID );
		if ( $XML_TEXT_CHILD == "" )
		{
			$XML_TEXT .= "<node>\n<name>{$DEPT_NAME}</name>\n<type>ini</type>\n".$XML_TEXT_USER."</node>\n";
		}
		else
		{
			$XML_TEXT .= "<node name=\"{$DEPT_NAME}\" Type=\"ini\">\n".$XML_TEXT_USER.$XML_TEXT_CHILD."</node>\n";
		}
	}
	return $XML_TEXT;
}

include_once( "inc/utility_all.php" );
include_once( "inc/auth.php" );
include_once( "inc/xmltree.php" );
$query = "SELECT * from UNIT";
$cursor = exequery( $connection, $query );
if ( $ROW = mysql_fetch_array( $cursor ) )
{
	$UNIT_NAME = $ROW['UNIT_NAME'];
}
echo "\r\n<body topmargin=\"3\" leftmargin=\"0\" rightMargin=\"0\" class=\"panel\" marginwidth=\"0\" marginheight=\"0\">\r\n\r\n";
$query = "SELECT * from USER where USER_ID='{$LOGIN_USER_ID}'";
$cursor = exequery( $connection, $query );
if ( $ROW = mysql_fetch_array( $cursor ) )
{
	$POST_PRIV = $ROW['POST_PRIV'];
	$POST_DEPT = $ROW['POST_DEPT'];
}
if ( $PRIV_NO_FLAG )
{
	$query = "SELECT * from USER_PRIV where USER_PRIV={$LOGIN_USER_PRIV}";
	$cursor = exequery( $connection, $query );
	if ( $ROW = mysql_fetch_array( $cursor ) )
	{
		$PRIV_NO = $ROW['PRIV_NO'];
	}
}
if ( $POST_PRIV == "1" )
{
	$DEPT_PRIV = "全体";
}
else if ( $POST_PRIV == "2" )
{
	$DEPT_PRIV = "指定部门";
}
else
{
	$query1 = "select * from DEPARTMENT where DEPT_ID={$LOGIN_DEPT_ID}";
	$cursor1 = exequery( $connection, $query1 );
	if ( $ROW = mysql_fetch_array( $cursor1 ) )
	{
		$DEPT_PRIV = $ROW['DEPT_NAME'];
	}
}
$XML_TEXT = "<?xml version=\"1.0\"?>";
$XML_TEXT .= "<tree name=\"".$UNIT_NAME."\">\n";
$XML_TEXT .= my_xml_tree( 0 );
$XML_TEXT .= "</tree>\n";
$tree = new tree( );
$tree->$ROOT_IMAGE = "/images/menu/system.gif";
$tree->PARA_ID = $PARA_ID;
$tree->PARA_VALUE = $PARA_VALUE;
$html = $tree->maketreetext( $XML_TEXT );
print $html."<br>";
?>