modify.php

极限网络智能办公系统 - Office Automation 2008 官方100％ 源码

<?php
 

include_once( "inc/auth.php" );
include_once( "inc/utility_all.php" );
$query = "select * from SYS_PARA where PARA_NAME='NOTIFY_MANAGER'";
$cursor = exequery( $connection, $query );
if ( $ROW = mysql_fetch_array( $cursor ) )
{
	$NOTIFY_MANAGER = $ROW['PARA_VALUE'];
}
$query = "select * from SYS_PARA where PARA_NAME='NOTIFY_CONFIRM'";
$cursor = exequery( $connection, $query );
if ( $ROW = mysql_fetch_array( $cursor ) )
{
	$NOTIFY_CONFIRM = $ROW['PARA_VALUE'];
}
echo "\r\n<html>\r\n<head>\r\n<title>编辑公告通知</title>\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=gb2312\">\r\n\r\n<script Language=\"JavaScript\">\r\nfunction CheckForm()\r\n{\r\n   if(document.form1.TO_ID.value==\"\"&&document.form1.PRIV_ID.value==\"\"&&document.form1.COPY_TO_ID.value==\"\")\r\n   { alert(\"请指定发布范围！\");\r\n     return (false);\r\n   }\r\n\r\n   if(document.form1.SUBJECT.value==\"\")\r\n   { alert(\"公告通知的标题不能为空！\");\r\n     return (false);\r\n   }\r\n\r\n   if(document.form1.ATTACHMENT.value==\"\" && document.form1.FORMAT.value==\"1\"&&document.form1.ATTACHMENT_ID_OLD.value==\"\")\r\n   { alert(\"请选择MHT文件 ！\");\r\n     return (false);\r\n   }\r\n\r\n   if(document.form1.CONTENT.value==\"\" && document.form1.FORMAT.value==\"0\")\r\n   { alert(\"公告通知的内容不能为空！\");\r\n     return (false);\r\n   }\r\n   \r\n   if (document.form1.ATTACHMENT.value!=\"\")\r\n   {\r\n     var file_temp=document.form1.ATTACHMENT.value,file_name;\r\n     var Pos;\r\n     Pos=file_temp.lastIndexOf(\"\\\\\");\r\n     file_name=file_temp.substring(Pos+1,file_temp.length);\r\n     document.form1.ATTACHMENT_NAME.value=file_name;\r\n   }\r\n   return (true);\r\n}\r\n\r\nfunction sendForm(publish)\r\n{\r\n document.form1.CONTENT.value=EDIT_HTML.get_docHtml();\r\n document.form1.PUBLISH.value=publish;\r\n if(CheckForm())\r\n {\r\n   document.form1.OP.value=\"1\";\r\n   document.form1.submit();\r\n  }\r\n}\r\n\r\nfunction clear_dept()\r\n{\r\n  document.form1.TO_NAME.value=\"\";\r\n  document.form1.TO_ID.value=\"\";\r\n}\r\n\r\nfunction LoadWindow()\r\n{\r\n  URL=\"/module/dept_select\";\r\n  loc_x=document.body.scrollLeft+event.clientX-event.offsetX-100;\r\n  loc_y=document.body.scrollTop+event.clientY-event.offsetY+170;\r\n  window.showModalDialog(URL,self,\"edge:raised;scroll:1;status:0;help:0;resizable:1;dialogWidth:400px;dialogHeight:330px;dialogTop:\"+loc_y+\"px;dialogLeft:\"+loc_x+\"px\");\r\n}\r\n\r\nfunction clear_user2()\r\n{\r\n  document.form1.COPY_TO_NAME.value=\"\";\r\n  document.form1.COPY_TO_ID.value=\"\";\r\n}\r\nfunction LoadWindow2()\r\n{\r\n  URL=\"/module/user_select?ID=2\";\r\n  loc_x=document.body.scrollLeft+event.clientX-event.offsetX-100;\r\n  loc_y=document.body.scrollTop+event.clientY-event.offsetY+170;\r\n  //window.open(URL,\"read_notify\",\"height=400,width=550,status=1,toolbar=no,menubar=no,location=no,scrollbars=yes,top=150,left=150,resizable=yes\");\r\n  window.showModalDialog(URL,self,\"edge:raised;scroll:0;status:0;help:0;resizable:1;dialogWidth:350px;dialogHeight:350px;dialogTop:\"+loc_y+\"px;dialogLeft:\"+loc_x+\"px\");\r\n}\r\n\r\nfunction Load_Do()\r\n{\r\n  EDIT_HTML.insertHtml(document.form1.CONTENT.value);\r\n  changeFormat();\r\n}\r\n\r\nfunction td_calendar(fieldname)\r\n{\r\n  myleft=document.body.scrollLeft+event.clientX-event.offsetX-80;\r\n  mytop=document.body.scrollTop+event.clientY-event.offsetY+140;\r\n\r\n  window.showModalDialog(\"/inc/calendar.php?FIELDNAME=\"+fieldname,self,\"edge:raised;scroll:0;status:0;help:0;resizable:1;dialogWidth:280px;dialogHeight:215px;dialogTop:\"+mytop+\"px;dialogLeft:\"+myleft+\"px\");\r\n}\r\n\r\nfunction upload_attach()\r\n{\r\n  document.form1.CONTENT.value=EDIT_HTML.get_docHtml();\r\n  document.form1.PUBLISH.value=\"0\";\r\n  if(CheckForm())\r\n   {\r\n     document.form1.OP.value=\"0\";\r\n     document.form1.submit();\r\n   }\r\n}\r\n\r\nfunction delete_attach(ATTACHMENT_ID,ATTACHMENT_NAME)\r\n{\r\n  msg=\"确定要删除文件 '\"+ ATTACHMENT_NAME +\"' 吗?\";\r\n  if(window.confirm(msg))\r\n  {\r\n    URL=\"delete_attach.php?NOTIFY_ID=";
echo $NOTIFY_ID;
echo "&ATTACHMENT_ID=\"+ATTACHMENT_ID+\"&ATTACHMENT_NAME=\"+ATTACHMENT_NAME;\r\n    window.location=URL;\r\n  }\r\n}\r\n\r\nfunction clear_priv()\r\n{\r\n  document.form1.PRIV_ID.value=\"\";\r\n  document.form1.PRIV_NAME.value=\"\";\r\n}\r\n\r\nfunction LoadPrivWindow()\r\n{\r\n  URL=\"/module/priv_select\";\r\n  loc_x=document.body.scrollLeft+event.clientX-event.offsetX;\r\n  loc_y=document.body.scrollTop+event.clientY-event.offsetY+200;\r\n  window.showModalDialog(URL,self,\"edge:raised;scroll:1;status:0;help:0;resizable:1;dialogWidth:400px;dialogHeight:330px;dialogTop:\"+loc_y+\"px;dialogLeft:\"+loc_x+\"px\");\r\n}\r\n\r\nfunction changeFormat()\r\n{\r\n   var obj=document.all(\"FORMAT\");\r\n   if(!obj)\r\n      return;\r\n   \r\n   if(obj.value==\"1\")\r\n   {\r\n      document.all(\"EDITOR\").style.display=\"none\";\r\n      document.all(\"ATTACH_LABEL\").innerHTML=\"MHT文件(或附件)：\";\r\n   }\r\n   else\r\n   {\r\n      document.all(\"EDITOR\").style.display=\"\";\r\n      document.all(\"ATTACH_LABEL\").innerHTML=\"附件：\";\r\n   }\r\n}\r\nfunction sel_attach(div_id,dir_field,name_field,disk_id)\r\n{\r\n   var URL=\"/module/sel_file?EXT_FILTER=&MULTI_SELECT=1&DIV_ID=\" + div_id + \"&DIR_FIELD=\" + dir_field + \"&NAME_FIELD=\" + name_field + \"&TYPE_FIELD=\" + disk_id;\r\n   window.open(URL,null,\"height=300,width=500,status=0,toolbar=no,menubar=no,location=no,scrollbars=yes,top=200,left=300,resizable=yes\");\r\n}\r\n</script>\r\n</head>\r\n";
$query = "select * from NOTIFY where NOTIFY_ID=".$NOTIFY_ID;
$cursor = exequery( $connection, $query );
if ( $ROW = mysql_fetch_array( $cursor ) )
{
	$TO_ID = $ROW['TO_ID'];
	$SUBJECT = $ROW['SUBJECT'];
	$CONTENT = $ROW['CONTENT'];
	$BEGIN_DATE = $ROW['BEGIN_DATE'];
	$END_DATE = $ROW['END_DATE'];
	$ATTACHMENT_ID = $ROW['ATTACHMENT_ID'];
	$ATTACHMENT_NAME = $ROW['ATTACHMENT_NAME'];
	$PRINT = $ROW['PRINT'];
	$FORMAT = $ROW['FORMAT'];
	$TOP = $ROW['TOP'];
	$PRIV_ID = $ROW['PRIV_ID'];
	$USER_ID = $ROW['USER_ID'];
	$TYPE_ID = $ROW['TYPE_ID'];
	$PUBLISH_OLD = $ROW['PUBLISH'];
	$NOTIFY_NO = $ROW['NOTIFY_NO'];
	$IMG_TYPE_STR = "gif,jpg,png,tiff,bmp,iff,jp2,jpx,jb2,jpc,xbm,wbmp,";
	$ATTACHMENT_ID_ARRAY = explode( ",", $ATTACHMENT_ID );
	$ATTACHMENT_NAME_ARRAY = explode( "*", $ATTACHMENT_NAME );
	$ARRAY_COUNT = sizeof( $ATTACHMENT_ID_ARRAY );
	$I = 0;
	for ( ;	$I < $ARRAY_COUNT;	++$I	)
	{
		if ( !( $ATTACHMENT_ID_ARRAY[$I] == "" ) )
		{
			$EXT_NAME = substr( strrchr( $ATTACHMENT_NAME_ARRAY[$I], "." ), 1 );
			$EXT_NAME = strtolower( $EXT_NAME );
			if ( find_id( $IMG_TYPE_STR, $EXT_NAME ) )
			{
				$ATTACHMENT_YM = strtok( $ATTACHMENT_ID_ARRAY[$I], "_" );
				$ATTACHMENT_ID0 = strtok( "_" );
				if ( $ATTACHMENT_ID0 == "" )
				{
					$ATTACHMENT_ID0 = $ATTACHMENT_YM;
					$ATTACHMENT_YM = "";
				}
				$IMG_ATTACHMENT_YM .= $ATTACHMENT_YM.",";
				$IMG_ATTACHMENT_ID .= ( $ATTACHMENT_ID0 * 3 + 2 ).",";
				$IMG_ATTACHMENT_NAME .= $ATTACHMENT_NAME_ARRAY[$I]."*";
			}
		}
	}
}
if ( $END_DATE == "0000-00-00" )
{
	$END_DATE = "";
}
$CONTENT = str_replace( "\"", "'", $CONTENT );
$CONTENT = str_replace( chr( 10 ), "", $CONTENT );
$CONTENT = str_replace( chr( 13 ), "", $CONTENT );
$query = "select DEPT_ID,DEPT_NAME from DEPARTMENT";
$cursor = exequery( $connection, $query );
while ( $ROW = mysql_fetch_array( $cursor ) )
{
	$DEPT_ID = $ROW['DEPT_ID'];
	$DEPT_NAME = $ROW['DEPT_NAME'];
	if ( find_id( $TO_ID, $DEPT_ID ) )
	{
		$TO_NAME .= $DEPT_NAME.",";
	}
}
if ( $TO_ID == "ALL_DEPT" )
{
	$TO_NAME = "全体部门";
}
$TOK = strtok( $PRIV_ID, "," );
while ( $TOK != "" )
{
	$query1 = "SELECT PRIV_NAME from USER_PRIV where USER_PRIV='".$TOK."'";
	$cursor1 = exequery( $connection, $query1 );
	if ( $ROW = mysql_fetch_array( $cursor1 ) )
	{
		$PRIV_NAME .= $ROW['PRIV_NAME'].",";
	}
	$TOK = strtok( "," );
}
$TOK = strtok( $USER_ID, "," );
while ( $TOK != "" )
{
	$query1 = "SELECT USER_NAME from USER where USER_ID='".$TOK."'";
	$cursor1 = exequery( $connection, $query1 );
	if ( $ROW = mysql_fetch_array( $cursor1 ) )
	{
		$USER_NAME .= $ROW['USER_NAME'].",";
	}
	$TOK = strtok( "," );
}
echo "<body class=\"bodycolor\" topmargin=\"5\" onload=\"Load_Do(); form1.SUBJECT.focus();\">\r\n\r\n<table border=\"0\" width=\"90%\" cellspacing=\"0\" cellpadding=\"3\" class=\"small\">\r\n  <tr>\r\n    <td class=\"Big\"><img src=\"/images/notify_new.gif\" align=\"absmiddle\"><span class=\"big3\"> 编辑公告通知</span>\r\n    </td>\r\n  </tr>\r\n</table>\r\n\r\n<table border=\"0\" width=\"85%\" cellpadding=\"2\" cellspacing=\"1\" align=\"center\" bgcolor=\"#000000\" class=\"small\">\r\n  <form enctype=\"multipart/form-data\" action=\"update.php\"  method=\"post\" name=\"form1\">\r\n    <tr>\r\n      <td nowrap class=\"TableData\"> 格式：</td>\r\n      <td class=\"TableData\"> \r\n        <select name=\"FORMAT\" class=\"BigSelect\" onchange=\"changeFormat();\">\r\n          <option value=\"0\"";
if ( $FORMAT == "0" )
{
	echo " selected";
}
echo ">普通格式</option>\r\n          <option value=\"1\"";