query.php

泛微协同办公系统标准版E-office V5.5的源代码内含泛微办公系统V5.5自动注册文件。

<?php

include_once( "inc/auth.php" );
include_once( "inc/check_type.php" );
include_once( "inc/utility_all.php" );
include_once( "inc/function_page_01.php" );
echo "\r\n<html>\r\n<head>\r\n<title>工作计划</title>\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=gb2312\">\r\n\r\n";
echo "<s";
echo "cript>\r\nfunction plan_detail(PLAN_ID)\r\n{\r\n URL=\"../plan_detail.php?PLAN_ID=\"+PLAN_ID;\r\n myleft=(screen.availWidth-500)/2;\r\n window.open(URL,\"read_work_plan\",\"height=400,width=500,status=1,toolbar=no,menubar=no,location=no,scrollbars=yes,top=150,left=\"+myleft+\",resizable=yes\");\r\n}\r\n</script>\r\n";
echo "<s";
echo "cript>\r\nvar menu_id=0;\r\n\r\nfunction setPointer(theRow, thePointerColor,menu_id_over)\r\n{\r\n  if(menu_id!=menu_id_over)\r\n     theRow.bgColor = thePointerColor;\r\n}\r\n\r\nfunction view_menu1()\r\n{\r\n  \r\n   location=\"../work_plan.php?DATE=1\";\r\n   menu_id=1;\r\n   \r\n}\r\n\r\nfunction view_menu2()\r\n{\r\n   location=\"../work_plan.php?DATE=2\";\r\n   menu_id=2;\r\n   \r\n}\r\n\r\nfunction view_menu3()\r\n{\r\n   location=\"../work_plan.";
echo "php?DATE=3\";\r\n   menu_id=3;\r\n   \r\n}\r\nfunction view_menu4()\r\n{\r\n   location=\"../query\";\r\n   menu_id=4;\r\n   \r\n}\r\n\r\n\r\n</script>\r\n</head>\r\n<body class=\"bodycolor\" topmargin=\"5\">\r\n\r\n";
$connection = openconnection( );
$MANAGER = $SECRET_TO_ID;
$PARTICIPATOR = $COPY_TO_ID;
if ( $BEGIN_DATE != "" )
{
	$TIME_OK = is_date( $BEGIN_DATE );
	if ( !$TIME_OK )
	{
		message( "错误", "起始日期格式不对，应形如 1999-1-2" );
		button_back( );
		exit( );
	}
}
if ( $END_DATE != "" )
{
	$TIME_OK = is_date( $END_DATE );
	if ( !$TIME_OK )
	{
		message( "错误", "截止日期格式不对，应形如 1999-1-2" );
		button_back( );
		exit( );
	}
}
$CONDITION_STR = "";
if ( $NAME != "" )
{
	$CONDITION_STR .= "NAME like '%".$NAME."%'";
}
if ( $CONTENT != "" )
{
	if ( $CONDITION_STR != "" )
	{
		$CONDITION_STR .= " and ";
	}
	$CONDITION_STR .= "CONTENT like '%".$CONTENT."%'";
}
if ( $BEGIN_DATE != "" )
{
	if ( $CONDITION_STR != "" )
	{
		$CONDITION_STR .= " and ";
	}
	$CONDITION_STR .= "BEGIN_DATE like '%".$BEGIN_DATE."%'";
}
if ( $END_DATE != "" )
{
	if ( $CONDITION_STR != "" )
	{
		$CONDITION_STR .= " and ";
	}
	$CONDITION_STR .= "END_DATE like '%".$END_DATE."%'";
}
if ( $TYPE != "" )
{
	if ( $CONDITION_STR != "" )
	{
		$CONDITION_STR .= " and ";
	}
	$CONDITION_STR .= "TYPE like '%".$TYPE."%'";
}
if ( $TO_ID != "" )
{
	if ( $CONDITION_STR != "" )
	{
		$CONDITION_STR .= " and ";
	}
	$CONDITION_STR .= "TO_ID like '%".$TO_ID."%'";
}
if ( $MANAGER != "" )
{
	if ( $CONDITION_STR != "" )
	{
		$CONDITION_STR .= " and ";
	}
	$CONDITION_STR .= "MANAGER like '%".$MANAGER."%'";
}
if ( $PARTICIPATOR != "" )
{
	if ( $CONDITION_STR != "" )
	{
		$CONDITION_STR .= " and ";
	}
	$CONDITION_STR .= "PARTICIPATOR like '%".$PARTICIPATOR."%'";
}
if ( $REMARK != "" )
{
	if ( $CONDITION_STR != "" )
	{
		$CONDITION_STR .= " and ";
	}
	$CONDITION_STR .= "REMARK like '%".$REMARK."%'";
}
$query = "SELECT * from USER where USER_ID='{$LOGIN_USER_ID}'";
$cursor = exequery( $connection, $query );
if ( $ROW = mysql_fetch_array( $cursor ) )
{
	$POST_PRIV = $ROW['POST_PRIV'];
}
if ( $LOGIN_USER_PRIV == "1" || $POST_PRIV == "1" )
{
	if ( $CONDITION_STR != "" )
	{
		$CONDITION_STR = " where ".$CONDITION_STR;
	}
	else
	{
		$CONDITION_STR = "";
	}
}
else if ( $CONDITION_STR != "" )
{
	$CONDITION_STR = " where (1) and ".$CONDITION_STR;
}
else
{
	$CONDITION_STR = " where (1)";
}
$query = "SELECT count(*) from WORK_PLAN".$CONDITION_STR;
$cursor = exequery( $connection, $query );
$WORK_PLAN_COUNT = 0;
if ( $ROW = mysql_fetch_array( $cursor ) )
{
	$WORK_PLAN_COUNT = $ROW[0];
}
if ( $WORK_PLAN_COUNT == 0 )
{
	echo "<table border=\"0\" width=\"100%\" cellspacing=\"1\"  cellpadding=\"0\">\r\n   <tr class=\"tablehead1\">\r\n    <td ><img src=\"/images/menu/work_plan.gif\"  align=\"absmiddle\"> 工作计划查询结果\r\n    </td>\r\n  </tr>\r\n  <tr class=\"tablehead2\"><td>\r\n  <a href=\"#\" onclick=\"view_menu1()\"><img src=\"/images/button/dayplan.gif\" border=\"0\" title=\"今天的工作计划列表\"></a>\r\n  <a href=\"#\" onclick=\"view_menu2()\"><img src=\"/images/button/we";
	echo "ekplan.gif\" border=\"0\" title=\"本周工作计划列表\"></a>\r\n  <a href=\"#\" onclick=\"view_menu3()\"><img src=\"/images/button/monthplan.gif\" border=\"0\" title=\"本月的工作计划列表\"></a>\r\n  <a href=\"#\" onclick=\"view_menu4()\"><img src=\"/images/button/queryplan.gif\" border=\"0\" title=\"所有工作计划查询\"></a>\r\n  <a href=\"../\"><img src=\"/images/button/return.gif\" border=\"0\" title=\"返回\"></a>\r\n  </td></tr>\r\n</table>\r\n<br>\r\n";
	message( "", "无符合条件的工作计划" );
	echo "   \r\n";
	exit( );
}
echo "<table border=\"0\" width=\"100%\" cellspacing=\"1\"  cellpadding=\"0\">\r\n   <tr class=\"tablehead1\">\r\n    <td ><img src=\"/images/menu/work_plan.gif\"  align=\"absmiddle\"> 工作计划查询结果\r\n    </td>\r\n  </tr>\r\n  <tr class=\"tablehead2\"><td>\r\n  <a href=\"#\" onclick=\"view_menu1()\"><img src=\"/images/button/dayplan.gif\" border=\"0\" title=\"今天的工作计划列表\"></a>\r\n  <a href=\"#\" onclick=\"view_menu2()\"><img src=\"/images/button/we";
echo "ekplan.gif\" border=\"0\" title=\"本周工作计划列表\"></a>\r\n  <a href=\"#\" onclick=\"view_menu3()\"><img src=\"/images/button/monthplan.gif\" border=\"0\" title=\"本月的工作计划列表\"></a>\r\n  <a href=\"#\" onclick=\"view_menu4()\"><img src=\"/images/button/queryplan.gif\" border=\"0\" title=\"所有工作计划查询\"></a>\r\n  <a href=\"../\"><img src=\"/images/button/return.gif\" border=\"0\" title=\"返回\"></a>\r\n  </td></tr>\r\n</table>\r\n<hr width=\"95";
echo "%\" height=\"1\" align=\"left\" color=\"#ffffff\">\r\n\r\n<table border=\"0\" cellspacing=\"1\" width=\"100%\" class=\"small\" cellpadding=\"5\">\r\n  <tr class=\"TableHeader\">\r\n      <td>计划名称</td>\r\n      <td width='11%'>开始时间</td>\r\n      <td width='11%'>结束时间</td>\r\n      <td>负责人</td>\r\n      <td>附件</td>\r\n      <td>状态</td>\r\n    </tr>\r\n\r\n";
$CUR_DATE = date( "Y-m-d", time( ) );
$query = "\r\n\t\t\t\tSELECT * from WORK_PLAN ".$CONDITION_STR." \r\n\t\t\t\t\tAND ( \r\n\t\t\t\t\t(TO_ID='ALL_DEPT') \r\n\t\t\t\t\tOR ((TO_ID LIKE '%,".$_SESSION['LOGIN_DEPT_ID'].",%') OR LEFT(TO_ID,".strlen( $_SESSION['LOGIN_DEPT_ID'] ).")='".$_SESSION['LOGIN_DEPT_ID']."' ) \r\n\t\t\t\t\tOR ((MANAGER LIKE '%,".$_SESSION['LOGIN_USER_ID'].",%') OR LEFT(MANAGER,".strlen( $_SESSION['LOGIN_USER_ID'] ).")='".$_SESSION['LOGIN_USER_ID']."' ) \r\n\t\t\t\t\tOR ((PARTICIPATOR LIKE '%,".$_SESSION['LOGIN_USER_ID'].",%') OR LEFT(PARTICIPATOR,".strlen( $_SESSION['LOGIN_USER_ID'] ).")='".$_SESSION['LOGIN_USER_ID']."' ) )\t\r\n\t\t\t\t\tORDER BY PLAN_ID DESC";
$query = page( $query, 15 );
$cursor = exequery( $connection, $query );
$WORK_PLAN_COUNT = 0;
while ( $ROW = mysql_fetch_array( $cursor ) )
{
	++$WORK_PLAN_COUNT;
	$PLAN_ID = $ROW['PLAN_ID'];
	$NAME = $ROW['NAME'];
	$BEGIN_DATE = $ROW['BEGIN_DATE'];
	$END_DATE = $ROW['END_DATE'];
	$TYPE = $ROW['TYPE'];
	$TO_ID = $ROW['TO_ID'];
	$MANAGER = $ROW['MANAGER'];
	$ATTACHMENT_ID = $ROW['ATTACHMENT_ID'];
	$ATTACHMENT_NAME = $ROW['ATTACHMENT_NAME'];
	$participator = $ROW['PARTICIPATOR'];
	$sqlNew = "select DEPT_ID from user where USER_ID='".$_SESSION['LOGIN_USER_ID']."'";
	$csNew = exequery( $connection, $sqlNew );
	if ( $rNew = mysql_fetch_row( $csNew ) )
	{
		$dept_idNew = $rNew[0];
	}
	if ( isset( $TYPE ) && trim( $TYPE ) != null )
	{
		$query = "SELECT * from PLAN_TYPE where TYPE_ID={$TYPE}";
		$cursor1 = exequery( $connection, $query );
		if ( $ROW1 = mysql_fetch_array( $cursor1 ) )
		{
			$TYPE_DESC = $ROW1['TYPE_NAME'];
		}
		if ( $TO_ID == "ALL_DEPT" )
		{
			$TO_NAME = "所有部门";
		}
		else
		{
			$TO_NAME = "";
			$TOK = strtok( $TO_ID, "," );
			while ( $TOK != "" )
			{
				if ( $TO_NAME != "" )
				{
					$TO_NAME .= "，";
				}
				$query1 = "select * from DEPARTMENT where DEPT_ID={$TOK}";
				$cursor1 = exequery( $connection, $query1 );
				if ( $ROW = mysql_fetch_array( $cursor1 ) )
				{
					$TO_NAME .= $ROW['DEPT_NAME'];
				}
				$TOK = strtok( "," );
			}
		}
	}
	$MANAGE_NAME = "";
	$TOK = strtok( $MANAGER, "," );
	while ( $TOK != "" )
	{
		if ( $MANAGE_NAME != "" )
		{
			$MANAGE_NAME .= "，";
		}
		$query1 = "select * from USER where USER_ID='{$TOK}'";
		$cursor1 = exequery( $connection, $query1 );
		if ( $ROW1 = mysql_fetch_array( $cursor1 ) )
		{
			$DEPT_ID = $ROW1['DEPT_ID'];
			$DEPT_NAME = dept_long_name( $DEPT_ID );
			$MANAGE_NAME .= "<u title=\"部门：".$DEPT_NAME."\" style=\"cursor:hand\">".$ROW1['USER_NAME']."</u>,";
		}
		$TOK = strtok( "," );
	}
	$MANAGE_NAME = substr( $MANAGE_NAME, 0, -1 );
	if ( 20 < strlen( $TO_NAME ) )
	{
		$TO_NAME = csubstr( $TO_NAME, 0, 20 )."...";
	}
	if ( compare_date( $CUR_DATE, $BEGIN_DATE ) < 0 )
	{
		$STATUS = 1;
		$STATUS_DESC = "待生效";
	}
	else
	{
		$STATUS = 2;
		$STATUS_DESC = "<font color='#00AA00'><b>已生效</span>";
	}
	if ( $END_DATE != "0000-00-00" && 0 < compare_date( $CUR_DATE, $END_DATE ) )
	{
		$STATUS = 3;
		$STATUS_DESC = "<font color='#FF0000'><b>已终止</span>";
	}
	if ( $WORK_PLAN_COUNT % 2 == 1 )
	{
		$TableLine = "TableLine1";
	}
	else
	{
		$TableLine = "TableLine2";
	}
	if ( $END_DATE == "0000-00-00" )
	{
		$END_DATE = "";
	}
	echo "    <tr class=\"";
	echo $TableLine;
	echo "\">\r\n      <td title='";
	echo $NAME;
	echo "'><a href=\"javascript:plan_detail('";
	echo $PLAN_ID;
	echo "');\">";
	echo strlen( $NAME ) <= 30 ? $NAME : substr( $NAME, 0, 30 ).chr( 0 )."...";
	echo "</a></td>\r\n      <td>";
	echo $BEGIN_DATE;
	echo "</td>\r\n      <td>";
	echo $END_DATE;
	echo "</a></td>\r\n      <td>";
	echo $MANAGE_NAME;
	echo "</td>\r\n      <td>\r\n";
	if ( $ATTACHMENT_NAME == "" )
	{
		echo "无";
	}
	else
	{
		$ATTACHMENT_ID_ARRAY = explode( ",", $ATTACHMENT_ID );
		$ATTACHMENT_NAME_ARRAY = explode( "*", $ATTACHMENT_NAME );
		$ARRAY_COUNT = sizeof( $ATTACHMENT_ID_ARRAY );
		$I = 0;
		for ( ;	$I < $ARRAY_COUNT;	++$I	)
		{
			if ( $ATTACHMENT_ID_ARRAY[$I] == "" )
			{
			}
			else
			{
				$ATTACH_SIZE = attach_size( $ATTACHMENT_ID_ARRAY[$I], $ATTACHMENT_NAME_ARRAY[$I] );
				$ATTACH_SIZE = number_format( $ATTACH_SIZE, 0, ".", "," );
				echo "       <img src=\"/images/email_atta.gif\"><a href=\"/inc/attach.php?ATTACHMENT_ID=";
				echo $ATTACHMENT_ID_ARRAY[$I] * 3 + 2;
				echo "&ATTACHMENT_NAME=";
				echo urlencode( $ATTACHMENT_NAME_ARRAY[$I] );
				echo "\">";
				echo $ATTACHMENT_NAME_ARRAY[$I];
				echo "</a>\r\n";
				if ( stristr( $ATTACHMENT_NAME_ARRAY[$I], ".doc" ) || stristr( $ATTACHMENT_NAME_ARRAY[$I], ".ppt" ) || stristr( $ATTACHMENT_NAME_ARRAY[$I], ".xls" ) )
				{
					echo "\t     <input type=\"button\" value=\"阅读\" class=\"SmallButton\"\r\n\t\t onClick=\"window.open('/iWebOffice/DocumentEdit.php?RecordID=";
					echo $CONTENT_ID;
					echo "&EditType=0&UserName=";
					echo $_SESSION['LOGIN_USER_ID'];
					echo ";&ATTACHMENT_ID=";
					echo $ATTACHMENT_ID_ARRAY[$I] * 3 + 2;
					echo "&ATTACHMENT_NAME=";
					echo urlencode( $ATTACHMENT_NAME_ARRAY[$I] );
					echo "',null,'menubar=0,toolbar=0,status=1,scrollbars=1,resizable=1');\">&nbsp;\r\n";
				}
				echo "       (";
				echo $ATTACH_SIZE;
				echo "字节)<br>\r\n";
			}
		}
	}
	echo "      </td>\r\n      <td nowrap align=\"center\">";
	echo $STATUS_DESC;
	echo "</td>\r\n\r\n    </tr>\r\n";
}
echo "</table>\r\n<table width=\"100%\"  border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\r\n  <tr class=\"TableLine2\">\r\n    <td width=\"83%\" align=\"right\">";
disp( "&BEGIN_DATE=".$_REQUEST['BEGIN_DATE']."&END_DATE=".$_REQUEST['END_DATE']."&NAME=".$_REQUEST['NAME']."&CONTENT=".$_REQUEST['CONTENT']."&TYPE=".$_REQUEST['TYPE']."&MANAGER=".$_REQUEST['MANAGER']."&PARTICIPATOR=".$_REQUEST['PARTICIPATOR']."&REMARK=".$_REQUEST['REMARK'] );
echo "</td>\r\n  </tr>\r\n</table>\r\n</body>\r\n\r\n</html>\r\n";
?>