read.php

通达网络办公 - Office Anywhere 2008 增强版100％源码(3.4.081216) 内含 通达OA2008增強版接近完美破解补丁20081216集 及 最新通达OA2008ADV(

<?php

include_once( "inc/auth.php" );
include_once( "inc/utility_all.php" );
include_once( "inc/utility_file.php" );
$SORT_ID = intval( $SORT_ID );
echo "<html>\r\n<head>\r\n<title>查看文件</title>\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=gb2312\">\r\n</head>\r\n<script src=\"/inc/js/attach.js\"></script>\r\n<script src=\"/inc/js/utility.js\"></script>\r\n<body class=\"bodycolor\" topmargin=\"0\">\r\n";
$query = "SELECT * from PROJ_FILE_SORT where SORT_ID='".$SORT_ID."'";
$cursor = exequery( $connection, $query );
if ( $ROW = mysql_fetch_array( $cursor ) )
{
	$SORT_NAME = $ROW['SORT_NAME'];
	$VIEW_USER = $ROW['VIEW_USER'];
	$MANAGE_USER = $ROW['MANAGE_USER'];
	$NEW_USER = $ROW['NEW_USER'];
	$MODIFY_USER = $ROW['MODIFY_USER'];
	$VIEW_PRIV = find_id( $VIEW_USER, $LOGIN_USER_ID ) ? "1" : "0";
	$MANAGE_PRIV = find_id( $MANAGE_USER, $LOGIN_USER_ID ) ? "1" : "0";
	$NEW_PRIV = find_id( $NEW_USER, $LOGIN_USER_ID ) ? "1" : "0";
	$MODIFY_PRIV = find_id( $MODIFY_USER, $LOGIN_USER_ID ) ? "1" : "0";
}
$query = "SELECT PROJ_VIWER,PROJ_OWNER from PROJ_PROJECT where PROJ_ID='".$PROJ_ID."'";
$cursor = exequery( $connection, $query );
if ( $ROW = mysql_fetch_array( $cursor ) )
{
	$PROJ_VIWER = $ROW['PROJ_VIWER'];
	$PROJ_OWNER = $ROW['PROJ_OWNER'];
}
if ( $PROJ_OWNER == $LOGIN_USER_ID )
{
	$VIEW_PRIV = $MANAGE_PRIV = $NEW_PRIV = $MODIFY_PRIV = 1;
}
if ( find_id( $PROJ_VIWER, $LOGIN_USER_ID ) )
{
	$VIEW_PRIV = 1;
}
if ( !$VIEW_PRIV )
{
	message( "错误", "您没有权限查看此文件！" );
	exit( );
}
$query = "SELECT * from PROJ_FILE where FILE_ID='".$FILE_ID."'";
$cursor = exequery( $connection, $query );
if ( $ROW = mysql_fetch_array( $cursor ) )
{
	$UPLOAD_USER = $ROW['UPLOAD_USER'];
	$SUBJECT = $ROW['SUBJECT'];
	$FILE_DESC = $ROW['FILE_DESC'];
	$UPDATE_TIME = substr( $ROW['UPDATE_TIME'], 0, -3 );
	$ATTACHMENT_ID = $ROW['ATTACHMENT_ID'];
	$ATTACHMENT_NAME = $ROW['ATTACHMENT_NAME'];
	$SUBJECT = htmlspecialchars( $SUBJECT );
	$query1 = "SELECT USER_NAME FROM USER WHERE USER_ID='".$UPLOAD_USER."'";
	$cursor1 = exequery( $connection, $query1 );
	if ( $ROW = mysql_fetch_array( $cursor1 ) )
	{
		$UPLOAD_USER_NAME = $ROW['USER_NAME'];
	}
}
$query = "SELECT USER_NAME,ACTION,ACTION_TIME from PROJ_FILE_LOG,USER where PROJ_FILE_LOG.USER_ID=USER.USER_ID AND FILE_ID='".$FILE_ID."'";
$cursor = exequery( $connection, $query );
while ( $ROW = mysql_fetch_array( $cursor ) )
{
	$USER_NAME = $ROW['USER_NAME'];
	$ACTION = $ROW['ACTION'];
	$ACTION_TIME = $ROW['ACTION_TIME'];
	if ( $ACTION == 1 )
	{
		$ACTION_NAME = " 添加文件";
	}
	else if ( $ACTION == 2 )
	{
		$ACTION_NAME = " 修改文件";
	}
	else if ( $ACTION == 3 )
	{
		$ACTION_NAME = " 删除文件";
	}
	$LOG_DESC .= $USER_NAME."于 ".$ACTION_TIME.$ACTION_NAME."<br>";
}
echo "\r\n<table border=\"0\" width=\"100%\" cellspacing=\"0\" cellpadding=\"3\" class=\"small\">\r\n  <tr>\r\n    <td class=\"Big\"><img src=\"/images/folder_file.gif\" width=22 align=\"absmiddle\"><b><span class=\"Big1\">查看文件</span></b>\r\n    </td>\r\n  </tr>\r\n</table>\r\n\r\n<table class=\"TableBlock\" width=\"100%\" align=\"center\">\r\n  <form action=\"update.php\"  method=\"post\" name=\"form1\">\r\n    <tr>\r\n      <td class=\"TableHeader\" align=\"center\" colspan=\"2\"><b><span class=\"big\">";
echo $SUBJECT;
echo "</span></b></td>\r\n    </tr>\r\n    <tr class=small>\r\n      <td class=\"TableData\" width=\"150\">文件说明：</td>\r\n      <td class=\"TableData\" width=\"400\">\r\n          ";
echo $FILE_DESC;
echo "      </td>\r\n    </tr>\r\n";
if ( $ATTACHMENT_NAME != "" )
{
	echo "    <tr class=small>\r\n      <td class=\"TableData\" width=\"150\">文件：</td>\r\n      <td class=\"TableData\" width=\"400\">\r\n";
	echo attach_link( $ATTACHMENT_ID, $ATTACHMENT_NAME, 1, 1, $DOWN_PRIV );
	echo "      </td>\r\n    </tr>\r\n";
}
echo " \r\n      <tr class=small>\r\n         <td class=\"TableData\" width=\"150\">创建人：</td>\r\n         <td class=\"TableData\" width=\"400\">";
echo $UPLOAD_USER_NAME;
echo "</td>\r\n       </tr>\r\n";
if ( $MANAGE_PRIV == "1" )
{
	echo "       <tr class=small>\r\n         <td class=\"TableData\" width=\"150\">操作记录：</td>\r\n         <td class=\"TableData\" width=\"400\">";
	echo $LOG_DESC;
	echo "</td>\r\n       </tr>\r\n";
}
echo "      \r\n    <tr align=\"center\" class=\"TableControl\">\r\n      <td colspan=\"2\">\r\n        <input type=\"button\" value=\"打印\" class=\"BigButton\" onClick=\"document.execCommand('Print');\" title=\"打印文件内容\">&nbsp;&nbsp;\r\n";
if ( $MANAGE_PRIV || $MODIFY_PRIV_PRIV )
{
	echo "        <input type=\"button\" value=\"编辑\" class=\"BigButton\" onClick=\"location='./new?PROJ_ID=";
	echo $PROJ_ID;
	echo "&SORT_ID=";
	echo $SORT_ID;
	echo "&FILE_ID=";
	echo $FILE_ID;
	echo "'\">&nbsp;&nbsp;\r\n";
}
echo "        <input type=\"button\" value=\"返回\" class=\"BigButton\" onClick=\"location='folder.php?PROJ_ID=";
echo $PROJ_ID;
echo "&SORT_ID=";
echo $SORT_ID;
echo "'\">\r\n      </td>\r\n    </tr>\r\n  </table>\r\n</form>\r\n</body>\r\n</html>";
?>