user.php

极限网络智能办公系统 - Office Automation 2.8 100％ 源码

<?php

include_once( "inc/auth.php" );
include_once( "inc/utility_all.php" );
if ( $INTEL != 1 )
{
	$PRCS_ID_I = 1;
	for ( ;	$PRCS_ID_I <= $PRCS_ID;	++$PRCS_ID_I	)
	{
		$query = "SELECT * from FLOW_RUN_PRCS where RUN_ID={$RUN_ID} and PRCS_ID={$PRCS_ID_I}";
		$cursor = exequery( $connection, $query );
		$USER_NAME_STR = "";
		while ( $ROW = mysql_fetch_array( $cursor ) )
		{
			$USER_ID = $ROW['USER_ID'];
			$query1 = "SELECT * from USER where USER_ID='{$USER_ID}'";
			$cursor1 = exequery( $connection, $query1 );
			if ( !( $ROW = mysql_fetch_array( $cursor1 ) ) && find_id( $HISTORY_USER_ID, $USER_ID ) )
			{
				$HISTORY_USER_ID .= $USER_ID.",";
			}
		}
	}
}
if ( $INTEL == 1 || $INTEL == 2 )
{
	$query1 = "SELECT * from FLOW_PROCESS where FLOW_ID={$FLOW_ID} and PRCS_ID={$PRCS_ID_NEXT}";
	$cursor1 = exequery( $connection, $query1 );
	if ( $ROW = mysql_fetch_array( $cursor1 ) )
	{
		$PRCS_USER = $ROW['PRCS_USER'];
		$PRCS_DEPT = $ROW['PRCS_DEPT'];
		$PRCS_PRIV = $ROW['PRCS_PRIV'];
	}
}
echo "\r\n<html>\r\n<head>\r\n<title></title>\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=gb2312\">\r\n";
echo "<s";
echo "tyle>\r\n.menulines{}\r\n</style>\r\n\r\n";
echo "<s";
echo "cript Language=\"JavaScript\">\r\nvar parent_window = parent.dialogArguments;\r\n\r\n";
$TO_ID = "PRCS_USER";
$TO_NAME = "PRCS_USER_NAME";
echo "\r\nfunction click_user(user_id)\r\n{\r\n  TO_VAL=parent_window.form1.";
echo $TO_ID;
echo ".value;\r\n  OP_VAL=parent_window.form1.PRCS_OP_USER.value;\r\n  targetelement=document.all(user_id);\r\n  user_name=targetelement.name;\r\n\r\n  if(TO_VAL.indexOf(\",\"+user_id+\",\")>0 || TO_VAL.indexOf(user_id+\",\")==0)\r\n  {\r\n    if(TO_VAL.indexOf(user_id+\",\")==0)\r\n    {\r\n       parent_window.form1.";
echo $TO_ID;
echo ".value=parent_window.form1.";
echo $TO_ID;
echo ".value.replace(user_id+\",\",\"\");\r\n       parent_window.form1.";
echo $TO_NAME;
echo ".value=parent_window.form1.";
echo $TO_NAME;
echo ".value.replace(user_name+\",\",\"\");\r\n       borderize_off(targetelement);\r\n    }\r\n    if(TO_VAL.indexOf(\",\"+user_id+\",\")>0)\r\n    {\r\n       parent_window.form1.";
echo $TO_ID;
echo ".value=parent_window.form1.";
echo $TO_ID;
echo ".value.replace(\",\"+user_id+\",\",\",\");\r\n       parent_window.form1.";
echo $TO_NAME;
echo ".value=parent_window.form1.";
echo $TO_NAME;
echo ".value.replace(\",\"+user_name+\",\",\",\");\r\n       borderize_off(targetelement);\r\n    }\r\n\r\n    if(OP_VAL==user_id)\r\n    {\r\n    \t parent_window.form1.PRCS_OP_USER.value=\"\";\r\n       parent_window.form1.PRCS_OP_USER_NAME.value=\"\";\r\n       targetelement=document.all(user_id+\"_op\");\r\n       borderize_off(targetelement);\r\n    }\r\n  }\r\n  else\r\n  {\r\n    parent_window.form1.";
echo $TO_ID;
echo ".value+=user_id+\",\";\r\n    parent_window.form1.";
echo $TO_NAME;
echo ".value+=user_name+\",\";\r\n    borderize_on(targetelement);\r\n  }\r\n}\r\n\r\nfunction click_op(op_id)\r\n{\r\n  TO_VAL=parent_window.form1.";
echo $TO_ID;
echo ".value;\r\n  OP_VAL=parent_window.form1.PRCS_OP_USER.value;\r\n  targetelement=document.all(op_id);\r\n  user_id=op_id.substr(0,op_id.length-3);\r\n  user_name=targetelement.name;\r\n\r\n  if(OP_VAL==user_id)\r\n  {\r\n     parent_window.form1.PRCS_OP_USER.value=\"\";\r\n     parent_window.form1.PRCS_OP_USER_NAME.value=\"\";\r\n  }\r\n  else\r\n  {\r\n    parent_window.form1.PRCS_OP_USER.value=user_id;\r\n    parent_window.form1";
echo ".PRCS_OP_USER_NAME.value=user_name;\r\n    if(!(TO_VAL.indexOf(\",\"+user_id+\",\")>0 || TO_VAL.indexOf(user_id+\",\")==0))\r\n      click_user(user_id);\r\n  }\r\n  begin_set();\r\n}\r\n\r\nfunction borderize_on(targetelement)\r\n{\r\n color=\"#003FBF\";\r\n targetelement.style.borderColor=\"black\";\r\n targetelement.style.backgroundColor=color;\r\n targetelement.style.color=\"white\";\r\n targetelement.style.fontWeight=\"bold\";\r\n}\r\n";
echo "\r\nfunction borderize_off(targetelement)\r\n{\r\n  targetelement.style.backgroundColor=\"\";\r\n  targetelement.style.borderColor=\"\";\r\n  targetelement.style.color=\"\";\r\n  targetelement.style.fontWeight=\"\";\r\n}\r\n\r\nfunction begin_set()\r\n{\r\n  TO_VAL=parent_window.form1.";
echo $TO_ID;
echo ".value;\r\n  OP_VAL=parent_window.form1.PRCS_OP_USER.value;\r\n\r\n  for (step_i=0; step_i<document.all.length; step_i++)\r\n  {\r\n    if(document.all(step_i).className==\"menulines\")\r\n    {\r\n       user_id=document.all(step_i).id;\r\n       if(TO_VAL.indexOf(\",\"+user_id+\",\")>0 || TO_VAL.indexOf(user_id+\",\")==0)\r\n          borderize_on(document.all(step_i));\r\n    }\r\n    else if(document.all(step_i).className==";
echo "\"menulines_op\")\r\n    {\r\n       user_id=document.all(step_i).id.substr(0,document.all(step_i).id.length-3);\r\n       if(OP_VAL==user_id)\r\n          borderize_on(document.all(step_i));\r\n       else\r\n       \t  borderize_off(document.all(step_i));\r\n    }\r\n  }\r\n}\r\n\r\nfunction add_all()\r\n{\r\n  TO_VAL=parent_window.form1.";
echo $TO_ID;
echo ".value;\r\n  for (step_i=0; step_i<document.all.length; step_i++)\r\n  {\r\n    if(document.all(step_i).className==\"menulines\")\r\n    {\r\n       user_id=document.all(step_i).id;\r\n       user_name=document.all(step_i).name;\r\n\r\n       if(TO_VAL.indexOf(\",\"+user_id+\",\")<0 && TO_VAL.indexOf(user_id+\",\")!=0)\r\n       {\r\n         parent_window.form1.";
echo $TO_ID;
echo ".value+=user_id+\",\";\r\n         parent_window.form1.";
echo $TO_NAME;
echo ".value+=user_name+\",\";\r\n         borderize_on(document.all(step_i));\r\n       }\r\n    }\r\n  }\r\n}\r\n\r\nfunction del_all()\r\n{\r\n  OP_VAL=parent_window.form1.PRCS_OP_USER.value;\r\n  for (step_i=0; step_i<document.all.length; step_i++)\r\n  {\r\n    TO_VAL=parent_window.form1.";
echo $TO_ID;
echo ".value;\r\n    if(document.all(step_i).className==\"menulines\")\r\n    {\r\n       user_id=document.all(step_i).id;\r\n       user_name=document.all(step_i).name;\r\n       if(user_id==OP_VAL)\r\n       {\r\n          parent_window.form1.PRCS_OP_USER.value=\"\";\r\n          parent_window.form1.PRCS_OP_USER_NAME.value=\"\";\r\n       }\r\n\r\n       if(TO_VAL.indexOf(user_id+\",\")==0)\r\n       {\r\n          parent_window.form1";
echo ".";
echo $TO_ID;
echo ".value=parent_window.form1.";
echo $TO_ID;
echo ".value.replace(user_id+\",\",\"\");\r\n          parent_window.form1.";
echo $TO_NAME;
echo ".value=parent_window.form1.";
echo $TO_NAME;
echo ".value.replace(user_name+\",\",\"\");\r\n          borderize_off(document.all(step_i));\r\n       }\r\n\r\n       if(TO_VAL.indexOf(\",\"+user_id+\",\")>0)\r\n       {\r\n          parent_window.form1.";
echo $TO_ID;
echo ".value=parent_window.form1.";
echo $TO_ID;
echo ".value.replace(\",\"+user_id+\",\",\",\");\r\n          parent_window.form1.";
echo $TO_NAME;
echo ".value=parent_window.form1.";
echo $TO_NAME;
echo ".value.replace(\",\"+user_name+\",\",\",\");\r\n          borderize_off(document.all(step_i));\r\n       }\r\n    }\r\n  }\r\n  begin_set();\r\n}\r\n</script>\r\n</head>\r\n\r\n<body class=\"bodycolor\" topmargin=\"1\" leftmargin=\"0\" onload=\"begin_set()\">\r\n\r\n";
if ( $PRCS_USER != "" )
{
	if ( substr( $PRCS_USER, -1 ) == "," )
	{
		$PRCS_USER = substr( $PRCS_USER, 0, -1 );
	}
	$PRCS_USER = "'".str_replace( ",", "','", $PRCS_USER )."'";
}
if ( $PRCS_DEPT != "" && substr( $PRCS_DEPT, -1 ) == "," )
{
	$PRCS_DEPT = substr( $PRCS_DEPT, 0, -1 );
}
if ( $PRCS_PRIV != "" && substr( $PRCS_PRIV, -1 ) == "," )
{
	$PRCS_PRIV = substr( $PRCS_PRIV, 0, -1 );
}
if ( $INTEL == "1" )
{
	if ( substr( $HISTORY_USER_ID, -1 ) == "," )
	{
		$INTEL_USER_ID = substr( $HISTORY_USER_ID, 0, -1 );
	}
	$INTEL_USER_ID = "'".str_replace( ",", "','", $INTEL_USER_ID )."'";
	$query1 = "SELECT * from USER where DEPT_ID={$LOGIN_DEPT_ID}";
	$cursor1 = exequery( $connection, $query1 );
	while ( $ROW = mysql_fetch_array( $cursor1 ) )
	{
		$INTEL_USER_ID .= ",'".$ROW['USER_ID']."'";
	}
	$query = "SELECT * from USER,USER_PRIV where USER.USER_PRIV=USER_PRIV.USER_PRIV and USER_ID in({$INTEL_USER_ID}) and (1=2 ";
	if ( $PRCS_USER != "" )
	{
		$query .= " or USER_ID in({$PRCS_USER})";
	}
	if ( $PRCS_DEPT != "" )
	{
		$query .= " or DEPT_ID in({$PRCS_DEPT})";
	}
	if ( $PRCS_PRIV != "" )
	{
		$query .= " or USER.USER_PRIV in({$PRCS_PRIV})";
	}
	$query .= ") order by PRIV_NO,USER_NO,USER_NAME";
	$TITLE = "智能选人";
}
else if ( $INTEL == "2" )
{
	$query = "SELECT * from USER,USER_PRIV where USER.USER_PRIV=USER_PRIV.USER_PRIV and USER_ID in({$PRCS_USER}) order by PRIV_NO,USER_NO,USER_NAME";
	$TITLE = "经办人员";
}
else if ( $INTEL == "3" )
{
	$query = "SELECT * from USER,USER_PRIV where DEPT_ID={$DEPT_ID} and USER.USER_PRIV=USER_PRIV.USER_PRIV order by PRIV_NO,USER_NO,USER_NAME";
	$query1 = "select * from DEPARTMENT where DEPT_ID={$DEPT_ID}";
	$cursor1 = exequery( $connection, $query1 );
	if ( $ROW = mysql_fetch_array( $cursor1 ) )
	{
		$TITLE = $ROW['DEPT_NAME'];
	}
}
else
{
	$query = "SELECT * from USER where USER_PRIV='{$USER_PRIV}' and DEPT_ID!=0 order by USER_NO,USER_NAME";
	$query1 = "select * from USER_PRIV where USER_PRIV='{$USER_PRIV}'";
	$cursor1 = exequery( $connection, $query1 );
	if ( $ROW = mysql_fetch_array( $cursor1 ) )
	{
		$TITLE = $ROW['PRIV_NAME'];
	}
}
echo "\r\n<table border=\"1\" cellspacing=\"0\" width=\"100%\" class=\"small\" cellpadding=\"3\"  bordercolorlight=\"#000000\" bordercolordark=\"#FFFFFF\">\r\n<tr class=\"TableHeader\">\r\n  <td colspan=\"2\" align=\"center\"><b>";
echo $TITLE;
echo "</b></td>\r\n</tr>\r\n\r\n";
$cursor = exequery( $connection, $query );
$USER_COUNT = 0;
while ( $ROW = mysql_fetch_array( $cursor ) )
{
	++$USER_COUNT;
	$USER_ID = $ROW['USER_ID'];
	$DEPT_ID = $ROW['DEPT_ID'];
	$USER_NAME = $ROW['USER_NAME'];
	if ( $INTEL == "1" && find_id( $HISTORY_USER_ID, $USER_ID ) )
	{
		$USER_NAME_DESC = "<font color=red>".$USER_NAME."</font>";
	}
	else
	{
		$USER_NAME_DESC = $USER_NAME;
	}
	$DEPT_LONG_NAME = dept_long_name( $DEPT_ID );
	if ( $USER_COUNT == 1 )
	{
		echo "<tr class=\"TableContent\">\r\n  <td onclick=\"javascript:add_all();\" style=\"cursor:hand\" align=\"center\" colspan=\"2\">全部添加</td>\r\n</tr>\r\n<tr class=\"TableContent\">\r\n  <td onclick=\"javascript:del_all();\" style=\"cursor:hand\" align=\"center\" colspan=\"2\">全部删除</td>\r\n</tr>\r\n";
	}
	echo "\r\n<tr class=\"TableControl\" title=\"设为主办人\">\r\n  <td class=\"menulines_op\" id=\"";
	echo $USER_ID;
	echo "_op\" name=\"";
	echo $USER_NAME;
	echo "\" width=\"65\" align=\"center\" onclick=\"javascript:click_op('";
	echo $USER_ID;
	echo "_op')\" style=\"cursor:hand\">\r\n  设为主办人\r\n  </td>\r\n  <td title=\"";
	echo $DEPT_LONG_NAME;
	echo "\" class=\"menulines\" id=\"";
	echo $USER_ID;
	echo "\" name=\"";
	echo $USER_NAME;
	echo "\"   align=\"center\" onclick=\"javascript:click_user('";
	echo $USER_ID;
	echo "')\" style=\"cursor:hand\">\r\n  ";
	echo $USER_NAME_DESC;
	echo "  </td>\r\n</tr>\r\n\r\n";
}
if ( $USER_COUNT == 0 )
{
	echo "<tr class=\"TableControl\">\r\n  <td align=\"center\">无符合条件的用户</td>\r\n</tr>\r\n";
}
echo "\r\n</table>\r\n</body>\r\n</html>\r\n";
?>