vote.php

通达OA官方提供的30源代码,感觉很实在

<?
include_once("inc/auth.php");
include_once("inc/utility_all.php");
?>

<html>
<head>
<title>投票</title>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<body class="bodycolor" topmargin="5">
<?
$query = "select READERS from VOTE_TITLE  where VOTE_ID='$VOTE_ID' and PUBLISH='1' and (TO_ID='ALL_DEPT' or find_in_set('$LOGIN_DEPT_ID',TO_ID)".dept_other_sql("TO_ID")." or find_in_set('$LOGIN_USER_ID',USER_ID) or find_in_set('$LOGIN_USER_PRIV',PRIV_ID)".priv_other_sql("PRIV_ID").")";
$cursor=exequery($connection,$query);
if($ROW=mysql_fetch_array($cursor))
   $READERS=$ROW["READERS"];
else
   exit;
if(!find_id($READERS,$LOGIN_USER_ID))
{
   $READERS.=$LOGIN_USER_ID.",";
   $query = "update VOTE_TITLE set READERS='$READERS'  where VOTE_ID='$VOTE_ID'";
   exequery($connection,$query);
}
else
{
   Message("错误","您已经进行过投票");
   Button_Back();
   exit;
}

$TOK=strtok($ITEM_ID,",");
while($TOK!="")
{
   $query = "select VOTE_USER from VOTE_ITEM  where ITEM_ID='$TOK'";
   $cursor=exequery($connection,$query);
   if($ROW=mysql_fetch_array($cursor))
      $VOTE_USER=$ROW["VOTE_USER"];
   if($ANONYMITY=="1"||find_id($VOTE_USER,$LOGIN_USER_ID))
      $query = "update VOTE_ITEM set VOTE_COUNT=VOTE_COUNT+1 where ITEM_ID='$TOK'";
   else
      $query = "update VOTE_ITEM set VOTE_COUNT=VOTE_COUNT+1,VOTE_USER='$VOTE_USER".$LOGIN_USER_ID.",' where ITEM_ID='$TOK'";
   exequery($connection,$query);
   $TOK=strtok(",");
}

while (list($key, $value) = each($_POST))
{
   $ARRAY=explode("_", substr($key, 10));
   if(substr($key, 0, 10)!="VOTE_DATA_" || !find_id($ITEM_ID, $ARRAY[0])&&$ARRAY[1]!=0)
      continue;
   
   $query = "insert into VOTE_DATA (USER_ID, ITEM_ID, FIELD_NAME, FIELD_DATA) values('$LOGIN_USER_ID', '$ARRAY[0]', '$ARRAY[1]', '$value')";
   exequery($connection,$query);
}
Message("","投票完成");
?>

<center><input type="button" class="BigButton" value="返回" onclick="location='read_vote.php?VOTE_ID=<?=$VOTE_ID?>';"></center>