📄 global_search.php
字号:
<?
include_once 'inc/auth.php';
include_once 'inc/utility_all.php';
echo '
<html>
<head>
<title>全局搜索</title>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
';
echo '<s';
echo 'cript>
function SaveFile(ATTACHMENT_ID,ATTACHMENT_NAME)
{
URL="/module/save_file?ATTACHMENT_ID="+ATTACHMENT_ID+"&ATTACHMENT_NAME="+ATTACHMENT_NAME+"&A=1";
loc_x=document.body.scrollLeft+event.clientX-event.offsetX-100;
loc_y=document.body.scrollTop+event.clientY-event.offsetY+170;
window.open(URL,null,"height=180,width=400,status=1,toolbar=no,menubar=no,location=no,scrollbars=yes,top';
echo '="+loc_y+",left="+loc_x+",resizable=yes");
}
</script>
</head>
<body class="bodycolor" topmargin="0">
';
if (((($FILE_SORT != '1') AND ($FILE_SORT != '2')) OR !stristr ($HTTP_REFERER, '/general/file_folder/global_query.php')))
{
exit ();
}
if (($SUBJECT != ''))
{
($where_str .= (((''.' and SUBJECT like \'%').$SUBJECT).'%\''));
}
if (($CONTENT_NO != ''))
{
($where_str .= (((''.' and CONTENT_NO like \'%').$CONTENT_NO).'%\''));
}
if (($ATTACHMENT_DESC != ''))
{
($where_str .= (((''.' and ATTACHMENT_DESC like \'%').$ATTACHMENT_DESC).'%\''));
}
if (($KEY1 != ''))
{
($where_str .= (((''.' and CONTENT like \'%').$KEY1).'%\''));
}
if (($KEY2 != ''))
{
($where_str .= (((''.' and CONTENT like \'%').$KEY2).'%\''));
}
if (($KEY3 != ''))
{
($where_str .= (((''.' and CONTENT like \'%').$KEY3).'%\''));
}
if (($ATTACHMENT_NAME != ''))
{
($where_str .= (((''.' and ATTACHMENT_NAME like \'%').$ATTACHMENT_NAME).'%\''));
}
echo '<table border="0" width="100%" cellspacing="0" cellpadding="3" class="small">
<tr>
<td class="Big"><img src="/images/folder_search.gif" align="absmiddle"><b>';
echo '<s';
echo 'pan class="Big1"> 全局搜索结果</span></b><br>
</td>
</tr>
</table>
';
$query = ('SELECT * from FILE_CONTENT where 1'.$where_str);
($query .= ' order by CONTENT_NO,SEND_TIME desc');
$cursor = exequery ($connection, $query);
$CONTENT_COUNT = 0;
while (true)
{
while ($ROW = mysql_fetch_array ($cursor))
{
$CONTENT_ID = $ROW['CONTENT_ID'];
$SORT_ID = $ROW['SORT_ID'];
$SUBJECT = $ROW['SUBJECT'];
$SEND_TIME = $ROW['SEND_TIME'];
$ATTACHMENT_ID = $ROW['ATTACHMENT_ID'];
$ATTACHMENT_NAME = $ROW['ATTACHMENT_NAME'];
$ATTACHMENT_DESC = $ROW['ATTACHMENT_DESC'];
$USER_ID = $ROW['USER_ID'];
if ((($ATTACHMENT_DATA != '') AND ($ATTACHMENT_NAME == '')))
{
continue;
}
else
{
if ((($ATTACHMENT_DATA != '') AND ($ATTACHMENT_NAME != '')))
{
$ATTACHMENT_ID_ARRAY = explode (',', $ATTACHMENT_ID);
$ATTACHMENT_NAME_ARRAY = explode ('*', $ATTACHMENT_NAME);
$ARRAY_COUNT = sizeof ($ATTACHMENT_ID_ARRAY);
($value == 0);
for ($I = 0; ($I < $ARRAY_COUNT); ++$I)
{
$FILE_PATH = ((($ATTACH_PATH.$ATTACHMENT_ID_ARRAY[$I]).'/').$ATTACHMENT_NAME_ARRAY[$I]);
if (!file_exists ($FILE_PATH))
{
break;
}
$msg = '';
if ((stristr ($ATTACHMENT_NAME_ARRAY[$I], '.doc') AND ($SEARCH_DOC == 'on')))
{
$msg = doc2txt ($FILE_PATH);
$msg = preg_replace ('/<style>.+<\\/style>/is', '', $msg);
}
else
{
if ((stristr ($ATTACHMENT_NAME_ARRAY[$I], '.htm') OR stristr ($ATTACHMENT_NAME_ARRAY[$I], '.html')))
{
$msg = file_get_contents ($FILE_PATH);
$msg = strip_tags ($msg);
}
else
{
if (stristr ($ATTACHMENT_NAME_ARRAY[$I], '.txt'))
{
$msg = file_get_contents ($FILE_PATH);
}
}
}
$msg = str_replace (' ', '', $msg);
$msg = preg_replace ('/<[^>]+>/', '', $msg);
$value = preg_match ((((''.'/.*').$ATTACHMENT_DATA).'.*/i'), $msg);
if ($value)
{
break;
}
}
if (($value == 0))
{
continue;
}
}
$SUBJECT = htmlspecialchars ($SUBJECT);
$ATTACHMENT_DESC = htmlspecialchars ($ATTACHMENT_DESC);
$MANAGE_PRIV = 0;
$DOWN_PRIV = 0;
$NEW_PRIV = 0;
if (($SORT_ID != 0))
{
$query1 = (((''.'SELECT * from FILE_SORT where SORT_ID=\'').$SORT_ID).'\'');
$cursor1 = exequery ($connection, $query1);
if ($ROW = mysql_fetch_array ($cursor1))
{
$SORT_TYPE = sort_attrib ($SORT_ID, 'SORT_TYPE');
$USER_ID = $ROW['USER_ID'];
$MANAGE_USER = $ROW['MANAGE_USER'];
$DOWN_USER = $ROW['DOWN_USER'];
$NEW_USER = $ROW['NEW_USER'];
$USER_ARRAY = explode ('|', $USER_ID);
if (((((($USER_ID != $LOGIN_USER_ID) AND ($USER_ARRAY[0] != 'ALL_DEPT')) AND !find_id ($USER_ARRAY[0], $LOGIN_DEPT_ID)) AND !find_id ($USER_ARRAY[1], $LOGIN_USER_PRIV)) AND !find_id ($USER_ARRAY[2], $LOGIN_USER_ID)))
{
continue;
}
else
{
if ((($FILE_SORT == '1') AND ($SORT_TYPE == '4')))
{
continue;
}
else
{
if ((($FILE_SORT == '2') AND ($SORT_TYPE != '4')))
{
continue;
}
else
{
$MANAGE_ARRAY = explode ('|', $MANAGE_USER);
$DOWN_ARRAY = explode ('|', $DOWN_USER);
$NEW_ARRAY = explode ('|', $NEW_USER);
if (((((($USER_ID == $LOGIN_USER_ID) OR ($MANAGE_ARRAY[0] == 'ALL_DEPT')) OR find_id ($MANAGE_ARRAY[0], $LOGIN_DEPT_ID)) OR find_id ($MANAGE_ARRAY[1], $LOGIN_USER_PRIV)) OR find_id ($MANAGE_ARRAY[2], $LOGIN_USER_ID)))
{
$MANAGE_PRIV = 1;
}
if (((((($USER_ID == $LOGIN_USER_ID) OR ($DOWN_ARRAY[0] == 'ALL_DEPT')) OR find_id ($DOWN_ARRAY[0], $LOGIN_DEPT_ID)) OR find_id ($DOWN_ARRAY[1], $LOGIN_USER_PRIV)) OR find_id ($DOWN_ARRAY[2], $LOGIN_USER_ID)))
{
$DOWN_PRIV = 1;
}
if (((((($USER_ID == $LOGIN_USER_ID) OR ($NEW_ARRAY[0] == 'ALL_DEPT')) OR find_id ($NEW_ARRAY[0], $LOGIN_DEPT_ID)) OR find_id ($NEW_ARRAY[1], $LOGIN_USER_PRIV)) OR find_id ($NEW_ARRAY[2], $LOGIN_USER_ID)))
{
$NEW_PRIV = 1;
break;
}
break;
}
continue;
}
continue;
}
continue;
}
continue;
}
continue;
}
}
break;
}
if ((0 < $CONTENT_COUNT))
{
echo ' </table>
';
message ('', (('<br>共找到'.$CONTENT_COUNT).'个符合条件的文件'));
}
else
{
message ('', '<br>未找到符合条件的文件');
}
echo '
<br>
<div align="center">
<input type="button" value="返回" class="BigButton" onclick="location=\'global_query.php?FILE_SORT=';
echo $FILE_SORT;
echo '\'">
</div>
';
echo '<s';
echo 'cript>
function delete_content(CONTENT_ID,SORT_ID)
{
msg="确定要删除该文件吗?这将不可恢复!";
if(window.confirm(msg))
{
URL="delete.php?FILE_SORT=';
echo $FILE_SORT;
echo '&SORT_ID=" + SORT_ID +"&start=';
echo $start;
echo '&CONTENT_ID=" + CONTENT_ID;
window.location=URL;
}
}
</script>
</body>
</html>';
?>
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -