📄 survey.php
字号:
<?php
$GLOBALS['inAdmin'] = 1;
require( "../inc/init.php" );
require( "../inc/mysql.php" );
require( "../inc/functions.php" );
require( "../inc/pfunctions.php" );
require( "../inc/ifunctions.php" );
$varnames = array( "surveyname", "description", "adminnotes", "surveywidth", "questionstyle", "answerinputstyle", "answerstyle", "answertextstyle", "errorstyle", "template", "oncomplete", "redirecturl", "completed", "verifyemail", "emailfrom", "emailsubject", "localadvance", "advance", "questionnumb", "surveyusersip", "surveyusersck", "surveyusersem", "surveyresults", "sdmonth", "sdday", "sdyear", "sdhr", "sdmt", "sdsc", "edmonth", "edday", "edyear", "edhr", "edmt", "edsc", "cs", "action", "modifyid", "activate", "activateid", "deleteid", "indent", "submitimagesrc", "submitimagewidth", "submitimageheight", "submitimagealt", "resultimagesrc", "resultimagewidth", "resultimageheight", "resultimagealt", "nextimagesrc", "nextimagewidth", "nextimageheight", "nextimagealt", "resultswidth", "resultsborder", "resultsanswer", "resultsstats", "resultsgraph", "responseemail", "responsenotice", "message", "language" );
setvars( $varnames );
setlanguage( "", "ADMIN" );
$languages = getlanguages( );
$imgurl = $phpQImageDir;
if ( !$advance )
{
$advance = $phpQAdmin['AdvanceInterface'] == "y" ? true : false;
}
if ( $cs )
{
$mqadvance = mysql_query( "select AdvanceInterface from phpQSurvey where SID = \"".protectmysql( $cs )."\"" );
if ( $maadvance = mysql_fetch_array( $mqadvance ) )
{
$advance = $maadvance['AdvanceInterface'] ? $maadvance['AdvanceInterface'] == "y" ? true : false : $advance;
}
}
switch ( $localadvance )
{
case "y" :
$advance = true;
break;
case "n" :
$advance = false;
break;
default :
break;
}
$qnumb = array(
array(
$phpQlang['Yes'],
"y"
),
array(
$phpQlang['No'],
"n"
)
);
$advancearray = array(
array(
$phpQlang['Basic'],
"n"
),
array(
$phpQlang['Advanced'],
"y"
)
);
$startyear = 2000;
$endyear = $startyear + 50;
$resultswidth = is_numeric( $resultswidth ) ? $resultswidth : 500;
if ( $action == "add" || $action == "modify" )
{
$surveyresults = is_numeric( $surveyresults ) ? $surveyresults : 0;
$oncomplete = $oncomplete ? $oncomplete : 0;
if ( !$surveyresults && $oncomplete == 1 )
{
$oncomplete = 0;
$message = $phpQlang['RedirectPrivateError'];
}
}
switch ( $action )
{
case "add" :
if ( $surveyname )
{
$surveyname = protectmysql( $surveyname );
$description = protectmysql( $description );
$adminnotes = protectmysql( $adminnotes );
$surveywidth = protectmysql( $surveywidth );
$iinput = protectmysql( $_REQUEST['iinput'] );
if ( $iinput == "" )
{
$iinput = 0;
}
$TO_ID = protectmysql( $_REQUEST['TO_ID'] );
$template = protectmysql( $template );
if ( !isset( $languages[$language] ) )
{
if ( isset( $languages['chinese'] ) )
{
$language = "chinese";
}
else
{
foreach ( $languages as $key => $value )
{
$language = $key;
break;
}
}
}
$language = protectmysql( $language );
$oncomplete = protectmysql( $oncomplete );
$responsenotice = protectmysql( $responsenotice );
$responseemail = protectmysql( $responseemail );
$emailfrom = protectmysql( $emailfrom );
$emailsubject = protectmysql( $emailsubject );
$verifyemail = protectmysql( $verifyemail );
$localadvance = $localadvance == "y" || $localadvance == "n" ? $localadvance : $advance;
$questionnumb = $questionnumb == "y" || $questionnumb == "n" ? $questionnumb : "y";
$surveyusers = processsurveyusers( $surveyusersip, $surveyusersck, $surveyusersem );
$surveyresults = protectmysql( $surveyresults );
if ( $sdmonth || $sdday || $sdyear || $sdhr || $sdmt || $sdsc )
{
if ( checkdatetime( $sdmonth, $sdday, $sdyear, $sdhr, $sdmt, $sdsc ) )
{
$startdate = "{$sdyear}-{$sdmonth}-{$sdday} {$sdhr}:{$sdmt}:{$sdsc}";
}
else
{
$message = sprintf( $phpQlang['InvalidDateError'], $phpQlang['StartingDate'] );
}
}
if ( $edmonth || $edday || $edyear || $edhr || $edmt || $edsc )
{
if ( checkdatetime( $edmonth, $edday, $edyear, $edhr, $edmt, $edsc ) )
{
$enddate = "{$edyear}-{$edmonth}-{$edday} {$edhr}:{$edmt}:{$edsc}";
}
else if ( $edyear || $edmonth || $edday )
{
$message = sprintf( $phpQlang['InvalidDateError'], $phpQlang['EndingDate'] );
}
}
if ( $startdate && $enddate && mktime( $edhr, $edmt, $edsc, $edmonth, $edday, $edyear ) < mktime( $sdhr, $sdmt, $sdsc, $sdmonth, $sdday, $sdyear ) )
{
$startdate = "";
$enddate = "";
$message = sprintf( $phpQlang['DateOrderError'], $phpQlang['StartingDate'], $phpQlang['EndingDate'] );
}
$insertquery = "insert into phpQSurvey (";
$insertquery .= "SID, Name, Description, AdminNotes, Width, Indent, IINPUT,DEPT_ID,";
$insertquery .= "CREATOR,Template, Language, AddDate, SurveyUsers, SurveyResults, ";
$insertquery .= "OnComplete, ";
$insertquery .= "VerifyEmail, EmailFrom, EmailSubject";
$insertquery .= $startdate ? ", StartDate" : "";
$insertquery .= $enddate ? ", EndDate" : "";
$insertquery .= ", ResponseEmail) values (";
$insertquery .= "NULL, \"{$surveyname}\", \"{$description}\", \"{$adminnotes}\", \"{$surveywidth}\",";
$insertquery .= "'".$indent."', ".$iinput.",'".$TO_ID."','".$_SESSION['LOGIN_USER_ID']."',";
$insertquery .= "\"{$template}\", \"{$language}\", now(),";
$insertquery .= "\"{$surveyusers}\", \"{$surveyresults}\",'".$oncomplete."',";
$insertquery .= "\"{$verifyemail}\", \"{$emailfrom}\", \"{$emailsubject}\"";
$insertquery .= $startdate ? ", \"{$startdate}\"" : "";
$insertquery .= $enddate ? ", \"{$enddate}\"" : "";
$insertquery .= ", \"{$responseemail}\")";
$success = mysql_query( $insertquery );
if ( $success )
{
$cs = mysql_insert_id( );
header( "location:question.php?cs=".$cs );
exit( );
}
if ( !$success )
{
$message = $phpQlang['form1Error'];
}
else if ( !$message )
{
$phpQlang['form1Success'];
}
if ( $iinput == 1 )
{
$sql = "UPDATE phpQSurvey SET IINPUT = 0 WHERE IINPUT = 1 AND SID != LAST_INSERT_ID()";
mysql_query( $sql );
}
}
header( "Location: main.php" );
break;
case "activate" :
if ( $activateid && $activate )
{
$success = mysql_query( "update phpQSurvey set Active = \"{$activate}\" where SID = \"".protectmysql( $activateid )."\"" );
if ( !$success )
{
$message = $phpQlang['ActivateSurveyError'];
}
}
header( "Location: main.php" );
break;
case "delete" :
if ( !$deleteid )
{
break;
}
$sql = "delete from phpQSurvey where SID = \"".protectmysql( $deleteid )."\"";
$success = mysql_query( $sql );
$success = mysql_query( "delete from phpQQuestion where SID = \"".protectmysql( $deleteid )."\"" ) ? $success : false;
$success = mysql_query( "delete from phpQUser where SID = \"".protectmysql( $deleteid )."\"" ) ? $success : false;
$success = mysql_query( "delete from phpQAnswer where SID = \"".protectmysql( $deleteid )."\"" ) ? $success : false;
$message = $success ? $phpQlang['DeleteSurveySuccess'] : $phpQlang['DeleteSurveyError'];
header( "Location: main.php" );
break;
case "modify" :
if ( $surveyname && $modifyid )
{
$surveyname = protectmysql( $surveyname );
$description = protectmysql( $description );
$adminnotes = protectmysql( $adminnotes );
$surveywidth = protectmysql( $surveywidth );
$iinput = protectmysql( $_REQUEST['iinput'] );
if ( $iinput == "" )
{
$iinput = 0;
}
$TO_ID = protectmysql( $_REQUEST['TO_ID'] );
$questionstyle = protectmysql( preg_replace( "/STYLE=\"(.*)\"/i", "\\1", $questionstyle ) );
$answerstyle = protectmysql( preg_replace( "/STYLE=\"(.*)\"/i", "\\1", $answerstyle ) );
$answertextstyle = protectmysql( preg_replace( "/STYLE=\"(.*)\"/i", "\\1", $answertextstyle ) );
$errorstyle = protectmysql( preg_replace( "/STYLE=\"(.*)\"/i", "\\1", $errorstyle ) );
$template = protectmysql( $template );
if ( !isset( $languages[$language] ) )
{
if ( isset( $languages['chinese'] ) )
{
$language = "chinese";
}
else
{
foreach ( $languages as $key => $value )
{
$language = $key;
break;
}
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -