function hBrowseChild($filters = array()) { // Pull the rows so we know how many we have if (count($filters) != 0) { $filters = ConSet('table', $this->table_id, 'search', $filters); processPost_TableSearchResultsClear($this->table_id); } $rows = rowsFromUserSearch($this->table, $this->projections['_uisearch']); // Pull the nav bar. Do this after pulling rows so we // know how many rows there are, what page we're on, etc. $hNavBar = $this->hBrowse_NavBar(); // Generate the table header $cols1 = array('Edit'); $cols2 = asliceValsFromKeys($this->table['flat'], 'description', $this->projections['_uisearch']); $cols = array_merge($cols1, $cols2); if (count($rows) == 0) { $hContent = "<tr><td colspan=99 class=\"dlite\">" . "<b>There are no records to display</b>" . "</td></tr>\n"; } else { // Convert first column to hyperlink to that page/row $hContent = ''; foreach ($rows as $index => $row) { // The edit button $slipin = hLinkPostFromArray('', 'Edit', array('gp_dd_page' => $this->table_id, 'gp_skey' => $row['skey'], 'gp_mode' => 'upd')); $slipin = array('_edit' => $slipin); if (isset($row['skey'])) { unset($rows[$index]['skey']); } $rows[$index] = array_merge($slipin, $rows[$index]); } $hContent = hTBodyFromRows('', $rows); } $hNew = hLinkPostFromArray('', 'New Entry', array('gp_dd_page' => $this->table_id, 'gp_mode' => 'ins')); $hDsc = "<span class=\"x2menubar_text\">" . $this->table['description'] . '</span>'; ob_start(); ?> <br> <div class="x2menubar" style="text-align: left"> <?php echo $hDsc . ' ' . $hNew; ?> </div> <table cellpadding=0 cellspacing=0 width=100%> <?php echo hTRFromArray('dhead', $cols); ?> <?php echo $hContent; ?> <tr> <td colspan=99 class='dhead'> </td> </tr> </table> <?php return ob_get_clean(); }
function rowsFromFilters(&$table, $filters, $cols, $matches = array()) { $tabflat = $table['flat']; $table_id = $table['table_id']; $view_id = DDTable_IDResolve($table_id); //echo SessionGet("GROUP_ID_EFF"); // Set user-requested filters $sw = array(); foreach ($tabflat as $colname => $colinfo) { if (isset($matches[$colname])) { $tcv = trim($matches[$colname]); if ($tcv != "") { $tcsql = SQL_Format($colinfo["type_id"], $tcv); $sw[] = $colname . "=" . $tcsql; //$sql_where.=ListDelim($sql_where," AND ").$colname."=".$tcsql; } } elseif (isset($filters[$colname])) { $tcv = trim($filters[$colname]); $tid = $colinfo['type_id']; if ($tid == 'dtime' || $tid == 'date') { $tcv = dEnsureTS($tcv); } if ($tcv != "") { // trap for a % sign in non-string $sw[] = '(' . sqlFilter($colinfo, $tcv) . ')'; } } } $sql_where = implode(' AND ', $sw); // Set identity-security filters // NOPE, Rem'd out 10/26/06 when moved server-side //$sql_where2 = S*QLX_Filters($tabflat); //if ($sql_where2!="") { // $sql_where.=ListDelim($sql_where," AND ").$sql_where2; //} if ($sql_where != "") { $sql_where = " WHERE " . $sql_where; } // KFD 10/24/07. ASC/DESC used to be after the clause below, // but we need to get it first because we have // to assign it to each column $obasc = ConGet("table", $table_id, "orderasc"); if ($obasc == "") { $obasc = "ASC"; ConSet("table", $table_id, "orderasc", $obasc); } $SQLOB = $obasc; // KFD: 10/24/07. Order by all columns, not just the // the selected one. But order by the selected one // first. $ob = ConGet("table", $table_id, "orderby"); $lob = explode(',', $table['projections']['_uisearch']); if ($ob == '') { foreach ($lob as $onecol) { $aid = $table['flat'][$onecol]['automation_id']; if (in_array($aid, array('SEQUENCE', 'SEQDEFAULT'))) { continue; } $ob = $onecol; ConSet('table', $table_id, 'orderby', $ob); } } $sob = $ob . ' ' . $obasc; foreach ($lob as $onecol) { $aid = $table['flat'][$onecol]['automation_id']; if (in_array($aid, array('SEQUENCE', 'SEQDEFAULT'))) { continue; } if ($onecol != $ob) { $sob .= "\n, " . $onecol . ' ' . $obasc; } } ConSet('table', $table_id, 'complex_orderby', $sob); // Retrieve the limit as a vgaget, defaulting to 300 // DJO 4-8-2008 Allow for system variable override, 0 would be all records /** * DJO 8-15-2008 No longer needed because of the Config System */ //$SQL_Limit = OptionGet( 'SQL_LIMIT', vgaGet( 'SQL_Limit', 300 ) ); $SQL_Limit = configGet('sql_limit', 300); // Execute the sql, pull down the skey values $skeys = array(); $sq = "SELECT " . $cols . " FROM " . $view_id . $sql_where . " ORDER BY " . $sob . ($SQL_Limit > 0 ? " LIMIT " . $SQL_Limit : ''); $rows = SQL_ALLRows($sq); $retval = $rows === false ? array() : $rows; return $retval; }
function index_hidden_page() { global $AG; $sessok = !LoggedIn() ? false : true; // KFD 3/6/08, moved here from the main stream of index_hidden // because these are relevant only to page processing if (gpExists('x_module')) { SessionSet('AGMENU_MODULE', gp('x_module')); } elseif (vgaGet('nomodule') != '' && SessionGet('AGMENU_MODULE') == '') { SessionSet('AGMENU_MODULE', vgaGet('nomodule')); } // If the search flag is set, we need to know what class for this // application handles searchs if (gpExists('gp_search')) { gpSet('gp_page', vgaGet('SEARCH_CLASS')); } // Load up a list of pages that public users are allowed to see, // with home and password always there. global $MPPages; // allows it to be in applib $MP = array(); //$MPPages= array(); // This is the old method, load $MPPages from its own file if (file_exists_incpath('appPublicMenu.php')) { include_once 'appPublicMenu.php'; } if (!is_array($MPPages)) { $MPPages = array(); } $MPPages['x_home'] = 'Home Page'; $MPPages['x_login'] = '******'; $MPPages['x_noauth'] = 'Authorization Required'; $MPPages['x_password'] = "******"; $MPPages['x_mpassword'] = "******"; $MPPages['x_paypalipn'] = 'Paypal IPN'; // If the install page exists, it will be used, no getting // around it. $install = $GLOBALS['AG']['dirs']['application'] . 'install.php'; $instal2 = $GLOBALS['AG']['dirs']['application'] . 'install.done.php'; if (file_exists($install)) { if (gp('gp_install') == 'finish') { rename($install, $instal2); } else { $MPPages['install'] = 'install'; gpSet('gp_page', 'install'); } } // First pass is to look for the "flaglogin" flag. This says save all // current page settings and go to login screen. They will be restored // on a successful login. Very useful for links that say "Login to // see nifty stuff..." if (gp('gp_flaglogin') == '1') { gpSet('gp_flaglogin', ''); gpToSession(); gpSet('gp_page', 'x_login'); } // Second pass redirection, pick default page if there // is none, and verify public pages. // $gp_page = gp('gp_page'); if ($gp_page == '') { if (vgfGet('LoginAttemptOK') === true && vgfGet('x4') === true) { $gp_page = 'x4init'; gpSet('gp_page', 'x4init'); SessionSet('TEMPLATE', 'x4'); } else { if (function_exists('appNoPage')) { $gp_page = appNoPage(); } else { if (!LoggedIn()) { $gp_page = FILE_EXISTS_INCPATH('x_home.php') ? 'x_home' : 'x_login'; } else { // KFD 3/2/07, pull vga stuff to figure defaults if (vgaGet('nopage') != '') { $gp_page = vgaGet('nopage'); } else { $gp_page = 'x_welcome'; } } } } } // If they are trying to access a restricted page and are not // logged in, cache their request and redirect to login page if (!$sessok && !isset($MPPages[$gp_page])) { if (vgfGet('loglogins', false)) { fwLogEntry('1014', 'Page access w/o login', $gp_page); } gpToSession(); $gp_page = 'x_login'; } // If pos is activated and the current requested page does not // match what they are cleared for, redirect to login if (vgaGet('POS_SECURITY', false) == true && SessionGet('ADMIN') == false) { if (SessionGet('POS_PAGE', '', 'FW') != $gp_page) { gpToSession(); $gp_page = 'x_login'; } } gpSet('gp_page', $gp_page); // Make any database saves. Do this universally, even if save // was not selected. If errors, reset to previous request. //if(gp('gp_save')=='1') processPost(); processPost(); if (Errors()) { gpSetFromArray('gp_', aFromGp('gpx_')); } // Put Userid where HTML forms can find it //vgfSet("UID",SessionGet("UID")); //if (vgfSet("UID")=="") { vgfSet("UID","Not Logged In"); } // THIS IS NEWER X_TABLE2 version of drilldown commands, // considerably simpler than the older ones. It makes use of // three gp_dd variables. // // Notice how we process drillbacks FIRST, allowing a link // to contain both drillback and drilldown, for the super-nifty // effect of a "drill-across" hidden('gp_dd_page'); hidden('gp_dd_skey'); hidden('gp_dd_back'); if (intval(gp('gp_dd_back')) > 0 && $sessok) { // this is drillback $dd = ContextGet('drilldown', array()); $back = intval(gp('gp_dd_back')); if (count($dd) >= $back) { $spot = count($dd) - $back; $aback = $dd[$spot]; gpSet('gp_skey', $aback['skey']); gpSet('gp_page', $aback['page']); $gp_page = $aback['page']; gpSet('gpx_skey', $aback['skey']); gpSet('gpx_page', $aback['page']); gpSetFromArray('parent_', $aback['parent']); if (!gpExists('gp_mode')) { gpSet('gp_mode', 'upd'); } $dd = $spot == 0 ? array() : array_slice($dd, 0, $spot); ContextSet('drilldown', $dd); ContextSet('drilldown_top', $aback['page']); //ContextSet('drilldown_level',count($dd)); } } if (gp('gp_dd_page') != '' && $sessok) { // this is drilldown... $matches = DrillDownMatches(); $matches = array_merge($matches, aFromGP('parent_')); $dd = ContextGet('drilldown', array()); $newdd = array('matches' => $matches, 'parent' => aFromGP('parent_'), 'skey' => gp('gpx_skey'), 'page' => gp('gpx_page')); $dd[] = $newdd; ContextSet('drilldown', $dd); ContextSet('drilldown_top', gp('gp_dd_page')); //ContextSet('drilldown_level',count($dd)); // having saved the stack, redirect to new page. $tnew = gp('gp_dd_page'); $gp_page = $tnew; gpSet('gp_page', $tnew); if (gp('gp_dd_skey') != '') { gpSet('gp_skey', gp('gp_dd_skey')); gpSet('gp_mode', 'upd'); } // Clear search of new page, set filters to blank processPost_TableSearchResultsClear($tnew); ConSet('table', $tnew, 'search', array()); } // If no drilldown commands were received, and we are not on // the page that is the top, user must have picked a new page // altogether, wipe out the drilldown stack if (gp('gp_page') != ContextGet('drilldown_top', '')) { ContextSet('drilldown', array()); ContextSet('drilldown_top', ''); } // Must always have these on the user's form. These can // be retired with x_Table, they are for old drilldown // hidden("dd_page", ""); hidden("dd_ddc", ""); hidden("dd_ddv", ""); hidden("dd_ddback", ""); hidden("dd_action", "searchexecute"); hidden("dd_skey", ""); // Load user preferences just before display UserPrefsLoad(); $dir = $GLOBALS['AG']['dirs']['root'] . 'application/'; if (file_exists($dir . $gp_page . ".page.yaml")) { include 'androPage.php'; $obj_page = new androPage(); if ($obj_page->flag_buffer) { ob_start(); } $obj_page->main($gp_page); if ($obj_page->flag_buffer) { vgfSet("HTML", ob_get_clean()); //ob_end_clean(); } vgfSet("PageSubtitle", $obj_page->PageSubtitle); } else { $obj_page = DispatchObject($gp_page); if ($obj_page->flag_buffer) { ob_start(); } $obj_page->main(); if ($obj_page->flag_buffer && vgfGet('HTML') == '') { vgfSet("HTML", ob_get_contents()); ob_end_clean(); } vgfSet("PageSubtitle", $obj_page->PageSubtitle); } // Save context onto the page. Note that it is not really // protected by these methods, just compressed and obscured. // $t2 = serialize($GLOBALS['AG']['clean']['gpContext']); $t2 = gzcompress($t2); $t2 = base64_encode($t2); Hidden('gpContext', $t2); // KFD 3/7/07, give the app the final opportunity to process // things before the display, while logged in. if (function_exists('appdisplaypre')) { appDisplayPre(); } // ...and write output and we are done. Assume if there was // no buffering that the output is already done. if ($obj_page->flag_buffer != false) { // Work out what template we are using index_hidden_template('x2'); // KFD 5/30/07, send back only main content if asked if (gp('ajxBUFFER') == 1) { echo "andromeda_main_content|"; ehStandardContent(); echo "|-|_focus|" . vgfGet('HTML_focus'); $ajax = ElementReturn('ajax', array()); echo '|-|' . implode('|-|', $ajax); echo '|-|_title|' . vgfGet('PageTitle'); } elseif (defined('_VALID_MOS')) { // This is the default branch, using a Joomla template // DUPLICATE ALERT: This code copied into // index_hidden_x4Dispatch() above global $J; $mainframe = $J['mainframe']; $my = $J['my']; $mosConfig_absolute_path = $J['mC_absolute_path']; $mosConfig_live_site = $J['mC_live_site']; $template_color = $J['template_color']; $template_color = 'red'; $file = $GLOBALS['AG']['dirs']['root'] . '/templates/' . $mainframe->GetTemplate() . "/index.php"; include $file; } elseif ($obj_page->html_template !== '') { // This is newer style, let the class specify the template. include $obj_page->html_template . '.php'; } else { // This is old style, defaults to "html_main.php", can be // set also by vgaSet() or by gp(gp_out) $html_main = vgaGet('html_main') == '' ? 'html_main' : vgaGet('html_main'); switch (CleanGet("gp_out", "", false)) { case "print": include "html_print.php"; break; case "info": include "html_info.php"; break; case "": include $html_main . ".php"; break; default: } } } }