📄 user.php
字号:
<?php
include_once( "inc/auth.php" );
include_once( "inc/utility_all.php" );
$query = "SELECT * from FLOW_PROCESS where ID='".$ID."'";
$cursor = exequery( $connection, $query );
if ( $ROW = mysql_fetch_array( $cursor ) )
{
$PRCS_USER = $ROW['PRCS_USER'];
$PRCS_DEPT = $ROW['PRCS_DEPT'];
$PRCS_PRIV = $ROW['PRCS_PRIV'];
}
$QUERY_PRIV = " and (1=2 ";
if ( $PRCS_USER != "" )
{
if ( substr( $PRCS_USER, -1 ) == "," )
{
$PRCS_USER = substr( $PRCS_USER, 0, -1 );
}
$PRCS_USER = "'".str_replace( ",", "','", $PRCS_USER )."'";
$QUERY_PRIV .= " or USER.USER_ID in(".$PRCS_USER.")";
}
if ( $PRCS_DEPT != "" )
{
if ( substr( $PRCS_DEPT, -1 ) == "," )
{
$PRCS_DEPT = substr( $PRCS_DEPT, 0, -1 );
}
$QUERY_PRIV .= " or DEPT_ID in(".$PRCS_DEPT.")";
}
if ( $PRCS_PRIV != "" )
{
if ( substr( $PRCS_PRIV, -1 ) == "," )
{
$PRCS_PRIV = substr( $PRCS_PRIV, 0, -1 );
}
$QUERY_PRIV .= " or USER.USER_PRIV in(".$PRCS_PRIV.")";
}
$QUERY_PRIV .= ") ";
echo "\r\n<html>\r\n<head>\r\n<title></title>\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=gb2312\">\r\n<style>\r\n.menulines{}\r\n</style>\r\n\r\n<script Language=\"JavaScript\">\r\nvar parent_window = parent.dialogArguments;\r\n\r\n";
$TO_ID = "AUTO_USER";
$TO_NAME = "AUTO_USER_NAME";
echo "\r\nfunction click_user(user_id)\r\n{\r\n TO_VAL=parent_window.form1.";
echo $TO_ID;
echo ".value;\r\n OP_VAL=parent_window.form1.AUTO_USER_OP.value;\r\n\r\n targetelement=document.getElementById(user_id);\r\n user_name=targetelement.name;\r\n\r\n if(TO_VAL==\"\")\r\n {\r\n parent_window.form1.AUTO_USER_OP.value=user_id;\r\n parent_window.form1.AUTO_USER_OP_NAME.value=user_name;\r\n }\r\n\r\n if(TO_VAL.indexOf(\",\"+user_id+\",\")>0 || TO_VAL.indexOf(user_id+\",\")==0)\r\n {\r\n if(TO_VAL.indexOf(user_id+\",\")==0)\r\n {\r\n parent_window.form1.";
echo $TO_ID;
echo ".value=parent_window.form1.";
echo $TO_ID;
echo ".value.replace(user_id+\",\",\"\");\r\n parent_window.form1.";
echo $TO_NAME;
echo ".value=parent_window.form1.";
echo $TO_NAME;
echo ".value.replace(user_name+\",\",\"\");\r\n }\r\n if(TO_VAL.indexOf(\",\"+user_id+\",\")>0)\r\n {\r\n parent_window.form1.";
echo $TO_ID;
echo ".value=parent_window.form1.";
echo $TO_ID;
echo ".value.replace(\",\"+user_id+\",\",\",\");\r\n parent_window.form1.";
echo $TO_NAME;
echo ".value=parent_window.form1.";
echo $TO_NAME;
echo ".value.replace(\",\"+user_name+\",\",\",\");\r\n }\r\n\r\n if(OP_VAL==user_id)\r\n {\r\n \t parent_window.form1.AUTO_USER_OP.value=\"\";\r\n parent_window.form1.AUTO_USER_OP_NAME.value=\"\";\r\n targetelement=document.getElementById(user_id+\"_op\");\r\n }\r\n }\r\n else\r\n {\r\n parent_window.form1.";
echo $TO_ID;
echo ".value+=user_id+\",\";\r\n parent_window.form1.";
echo $TO_NAME;
echo ".value+=user_name+\",\";\r\n }\r\n begin_set();\r\n}\r\n\r\nfunction click_op(op_id)\r\n{\r\n TO_VAL=parent_window.form1.";
echo $TO_ID;
echo ".value;\r\n OP_VAL=parent_window.form1.AUTO_USER_OP.value;\r\n targetelement=document.getElementById(op_id);\r\n user_id=op_id.substr(0,op_id.length-3);\r\n user_name=targetelement.name;\r\n\r\n if(OP_VAL==user_id)\r\n {\r\n parent_window.form1.AUTO_USER_OP.value=\"\";\r\n parent_window.form1.AUTO_USER_OP_NAME.value=\"\";\r\n }\r\n else\r\n {\r\n parent_window.form1.AUTO_USER_OP.value=user_id;\r\n parent_window.form1.AUTO_USER_OP_NAME.value=user_name;\r\n if(!(TO_VAL.indexOf(\",\"+user_id+\",\")>0 || TO_VAL.indexOf(user_id+\",\")==0))\r\n click_user(user_id);\r\n }\r\n begin_set();\r\n}\r\n\r\nfunction borderize_on(targetelement)\r\n{\r\n color=\"#003FBF\";\r\n targetelement.style.borderColor=\"black\";\r\n targetelement.style.backgroundColor=color;\r\n targetelement.style.color=\"white\";\r\n targetelement.style.fontWeight=\"bold\";\r\n}\r\n\r\nfunction borderize_off(targetelement)\r\n{\r\n targetelement.style.backgroundColor=\"\";\r\n targetelement.style.borderColor=\"\";\r\n targetelement.style.color=\"\";\r\n targetelement.style.fontWeight=\"\";\r\n}\r\n\r\nfunction begin_set()\r\n{\r\n\r\n TO_VAL=parent_window.form1.";
echo $TO_ID;
echo ".value;\r\n OP_VAL=parent_window.form1.AUTO_USER_OP.value;\r\n\r\n for (step_i=0; step_i<document.all.length; step_i++)\r\n {\r\n if(document.all(step_i).className==\"menulines\")\r\n {\r\n user_id=document.all(step_i).id;\r\n if(TO_VAL.indexOf(\",\"+user_id+\",\")>0 || TO_VAL.indexOf(user_id+\",\")==0)\r\n borderize_on(document.all(step_i));\r\n else\r\n \t borderize_off(document.all(step_i));\r\n }\r\n else if(document.all(step_i).className==\"menulines_op\")\r\n {\r\n user_id=document.all(step_i).id.substr(0,document.all(step_i).id.length-3);\r\n if(OP_VAL==user_id)\r\n borderize_on(document.all(step_i));\r\n else\r\n \t borderize_off(document.all(step_i));\r\n }\r\n }\r\n}\r\n\r\nfunction add_all()\r\n{\r\n TO_VAL=parent_window.form1.";
echo $TO_ID;
echo ".value;\r\n for (step_i=0; step_i<document.all.length; step_i++)\r\n {\r\n if(document.all(step_i).className==\"menulines\")\r\n {\r\n user_id=document.all(step_i).id;\r\n user_name=document.all(step_i).name;\r\n\r\n if(TO_VAL.indexOf(\",\"+user_id+\",\")<0 && TO_VAL.indexOf(user_id+\",\")!=0)\r\n {\r\n parent_window.form1.";
echo $TO_ID;
echo ".value+=user_id+\",\";\r\n parent_window.form1.";
echo $TO_NAME;
echo ".value+=user_name+\",\";\r\n borderize_on(document.all(step_i));\r\n }\r\n }\r\n }\r\n}\r\n\r\nfunction del_all()\r\n{\r\n OP_VAL=parent_window.form1.AUTO_USER_OP.value;\r\n for (step_i=0; step_i<document.all.length; step_i++)\r\n {\r\n TO_VAL=parent_window.form1.";
echo $TO_ID;
echo ".value;\r\n if(document.all(step_i).className==\"menulines\")\r\n {\r\n user_id=document.all(step_i).id;\r\n user_name=document.all(step_i).name;\r\n if(user_id==OP_VAL)\r\n {\r\n parent_window.form1.AUTO_USER_OP.value=\"\";\r\n parent_window.form1.AUTO_USER_OP_NAME.value=\"\";\r\n }\r\n\r\n if(TO_VAL.indexOf(user_id+\",\")==0)\r\n {\r\n parent_window.form1.";
echo $TO_ID;
echo ".value=parent_window.form1.";
echo $TO_ID;
echo ".value.replace(user_id+\",\",\"\");\r\n parent_window.form1.";
echo $TO_NAME;
echo ".value=parent_window.form1.";
echo $TO_NAME;
echo ".value.replace(user_name+\",\",\"\");\r\n borderize_off(document.all(step_i));\r\n }\r\n\r\n if(TO_VAL.indexOf(\",\"+user_id+\",\")>0)\r\n {\r\n parent_window.form1.";
echo $TO_ID;
echo ".value=parent_window.form1.";
echo $TO_ID;
echo ".value.replace(\",\"+user_id+\",\",\",\");\r\n parent_window.form1.";
echo $TO_NAME;
echo ".value=parent_window.form1.";
echo $TO_NAME;
echo ".value.replace(\",\"+user_name+\",\",\",\");\r\n borderize_off(document.all(step_i));\r\n }\r\n }\r\n }\r\n begin_set();\r\n}\r\n</script>\r\n</head>\r\n\r\n<body class=\"bodycolor\" topmargin=\"1\" leftmargin=\"0\" onload=\"begin_set()\">\r\n\r\n";
if ( $INTEL == "1" )
{
$query = "SELECT * from USER,USER_PRIV where DEPT_ID!=0 and NOT_LOGIN!='1' and USER.USER_PRIV=USER_PRIV.USER_PRIV ".$QUERY_PRIV." order by PRIV_NO,USER_NO,USER_NAME";
$TITLE = "全部经办人";
}
else if ( $DEPT_ID != "" )
{
$query = "SELECT * from USER,USER_PRIV where DEPT_ID=".$DEPT_ID." and NOT_LOGIN!='1' and USER.USER_PRIV=USER_PRIV.USER_PRIV ".$QUERY_PRIV." order by PRIV_NO,USER_NO,USER_NAME";
$query1 = "select * from DEPARTMENT where DEPT_ID=".$DEPT_ID;
$cursor1 = exequery( $connection, $query1 );
if ( $ROW = mysql_fetch_array( $cursor1 ) )
{
$TITLE = $ROW['DEPT_NAME'];
}
}
else if ( $USER_PRIV != "" )
{
$query = "SELECT * from USER where USER_PRIV='".$USER_PRIV."' and DEPT_ID!=0 and NOT_LOGIN!='1' ".$QUERY_PRIV." order by USER_NO,USER_NAME";
$query1 = "select * from USER_PRIV where USER_PRIV='".$USER_PRIV."'";
$cursor1 = exequery( $connection, $query1 );
if ( $ROW = mysql_fetch_array( $cursor1 ) )
{
$TITLE = $ROW['PRIV_NAME'];
}
}
echo "\r\n<table border=\"1\" cellspacing=\"0\" width=\"100%\" class=\"small\" cellpadding=\"3\" bordercolorlight=\"#000000\" bordercolordark=\"#FFFFFF\">\r\n<tr class=\"TableHeader\">\r\n <td colspan=\"2\" align=\"center\"><b>";
echo $TITLE;
echo "</b></td>\r\n</tr>\r\n\r\n";
$cursor = exequery( $connection, $query );
$USER_COUNT = 0;
while ( $ROW = mysql_fetch_array( $cursor ) )
{
++$USER_COUNT;
if ( $INTEL == "1" && $LIST_ALL != 1 && 20 < $USER_COUNT )
{
echo " \t<tr class=\"TableContent\">\r\n <td onclick=\"location='user.php?INTEL=1&LIST_ALL=1&ID=";
echo $ID;
echo "'\" style=\"cursor:hand\" align=\"center\" colspan=\"2\">显示更多...</td>\r\n </tr>\r\n";
}
else
{
$USER_ID = $ROW['USER_ID'];
$DEPT_ID = $ROW['DEPT_ID'];
$USER_NAME = $ROW['USER_NAME'];
$DEPT_LONG_NAME = dept_long_name( $DEPT_ID );
if ( find_id( $HISTORY_USER_ID, $USER_ID ) )
{
$USER_NAME_DESC = "<font color=red>".$USER_NAME."</font>";
}
else
{
$USER_NAME_DESC = $USER_NAME;
}
if ( $USER_COUNT == 1 )
{
echo "<tr class=\"TableContent\">\r\n <td onclick=\"javascript:add_all();\" style=\"cursor:hand\" align=\"center\" colspan=\"2\">全部添加</td>\r\n</tr>\r\n<tr class=\"TableContent\">\r\n <td onclick=\"javascript:del_all();\" style=\"cursor:hand\" align=\"center\" colspan=\"2\">全部删除</td>\r\n</tr>\r\n";
}
echo "\r\n<tr class=\"TableControl\" title=\"设为主办人\">\r\n <td class=\"menulines_op\" id=\"";
echo $USER_ID;
echo "_op\" name=\"";
echo $USER_NAME;
echo "\" width=\"50\" align=\"center\" onclick=\"javascript:click_op('";
echo $USER_ID;
echo "_op')\" style=\"cursor:hand\">\r\n 主办人\r\n </td>\r\n <td title=\"";
echo $DEPT_LONG_NAME;
echo "\" class=\"menulines\" id=\"";
echo $USER_ID;
echo "\" name=\"";
echo $USER_NAME;
echo "\" align=\"center\" onclick=\"javascript:click_user('";
echo $USER_ID;
echo "')\" style=\"cursor:hand\">\r\n ";
echo $USER_NAME_DESC;
echo " </td>\r\n</tr>\r\n\r\n";
}
}
if ( $USER_PRIV != "" )
{
$query = "SELECT * from USER where (USER_PRIV_OTHER like '".$USER_PRIV.",%' or USER_PRIV_OTHER like '%,{$USER_PRIV},%') and USER_PRIV!='{$USER_PRIV}' and DEPT_ID!=0 and NOT_LOGIN!='1' ".$QUERY_PRIV." order by USER_NO,USER_NAME";
$cursor = exequery( $connection, $query );
$USER_COUNT1 = 0;
while ( $ROW = mysql_fetch_array( $cursor ) )
{
++$USER_COUNT;
++$USER_COUNT1;
$USER_ID = $ROW['USER_ID'];
$USER_NAME = $ROW['USER_NAME'];
if ( find_id( $HISTORY_USER_ID, $USER_ID ) )
{
$USER_NAME_DESC = "<font color=red>".$USER_NAME."</font>";
}
else
{
$USER_NAME_DESC = $USER_NAME;
}
if ( $USER_COUNT1 == 1 )
{
echo "<tr class=\"TableHeader\">\r\n <td colspan=\"2\" align=\"center\"><b>辅助角色</b></td>\r\n</tr>\r\n";
}
echo "\r\n<tr class=\"TableControl\" title=\"设为主办人\">\r\n <td class=\"menulines_op\" id=\"";
echo $USER_ID;
echo "_op\" name=\"";
echo $USER_NAME;
echo "\" width=\"50\" align=\"center\" onclick=\"javascript:click_op('";
echo $USER_ID;
echo "_op')\" style=\"cursor:hand\">\r\n 主办人\r\n </td>\r\n <td title=\"";
echo $DEPT_LONG_NAME;
echo "\" class=\"menulines\" id=\"";
echo $USER_ID;
echo "\" name=\"";
echo $USER_NAME;
echo "\" align=\"center\" onclick=\"javascript:click_user('";
echo $USER_ID;
echo "')\" style=\"cursor:hand\">\r\n ";
echo $USER_NAME_DESC;
echo " </td>\r\n</tr>\r\n\r\n";
}
}
if ( $USER_COUNT == 0 )
{
echo "<tr class=\"TableControl\">\r\n <td align=\"center\"><b>无符合条件的用户</b><br><br>请首先设置好本步骤经办人或经办部门或经办角色</td>\r\n</tr>\r\n";
}
echo "\r\n</table>\r\n</body>\r\n</html>\r\n";
?>
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -