function suggestValue($value, $searchFor, &$response, &$row) { if (!GetGlobalData("handleSearchSuggestInLookup", true)) { parent::suggestValue($value, $searchFor, $response, $row); return; } global $conn; $lookupSQL = buildLookupSQL($this->lookupPageType, $this->field, $this->pageObject->tName, "", $value, false, true, false, true, true, true); $this->fillLookupFieldsIndexes(); $rs_lookup = db_query($lookupSQL, $conn); if ($data = db_fetch_numarray($rs_lookup)) { if ($this->isDisplayFieldEncrypted) { $lookup_value = $this->ciphererDisplay->DecryptField($this->lookupType == LT_QUERY ? $this->displayFieldName : $this->field, $data[$this->displayFieldIndex]); } else { $lookup_value = $data[$this->displayFieldIndex]; } parent::suggestValue($lookup_value, $searchFor, $response, $row); } }
/** * Fill the response array with the suggest values * * @param String value * Note: value is preceeded with "_" * @param String searchFor * @param &Array response * @param &Array row */ function suggestValue($value, $searchFor, &$response, &$row) { if (!GetGlobalData("handleSearchSuggestInLookup", true) || $this->lookupType == LT_LISTOFVALUES || $this->isSearchByDispalyedFieldAllowed()) { parent::suggestValue($value, $searchFor, $response, $row); return; } // "_" is added to convert number type to string in lookupsuggest.php ($value) $lookupSQL = $this->getLookupSQL("", substr($value, 1), false, true, false, true, true); $this->fillLookupFieldsIndexes(); $qResult = $this->lookupConnection->query($lookupSQL); if ($data = $qResult->fetchNumeric()) { // "_" is added to convert number type to string if ($this->isDisplayFieldEncrypted) { $displayFieldName = $this->lookupType == LT_QUERY ? $this->displayFieldName : $this->field; $lookup_value = $this->ciphererDisplay->DecryptField($displayFieldName, "_" . $data[$this->displayFieldIndex]); } else { $lookup_value = "_" . $data[$this->displayFieldIndex]; } parent::suggestValue($lookup_value, $searchFor, $response, $row); } }
$strSQL = $gQuery->gSQLWhere_having_fromQuery("", $where, $having); $strSQL = "SELECT DISTINCT st." . $_connection->addFieldWrappers($f) . " from (" . $strSQL . ") st"; } else { $strSQL = SQLQuery::gSQLWhere_having($sqlHead, $fromClause, $gQuery->WhereToSql(), $gQuery->GroupByToSql(), $gQuery->Having()->toSql($gQuery), $where, $having); } if ($_connection->dbType == nDATABASE_MySQL || $_connection->dbType == nDATABASE_PostgreSQL) { $strSQL .= " LIMIT " . $numberOfSuggests; } elseif ($_connection->dbType == nDATABASE_MSSQLServer || $_connection->dbType == nDATABASE_Access) { $strSQL = "select top " . $numberOfSuggests . " * from (" . $strSQL . ") st"; } elseif ($_connection->dbType == nDATABASE_Oracle) { $strSQL = AddRowNumber($strSQL, $numberOfSuggests); } $qResult = $_connection->query($strSQL); // fill $response array with the field's suggest value while (($row = $qResult->fetchNumeric()) && count($response) < $numberOfSuggests) { $val = $cipherer->DecryptField($f, $row[0]); if (IsGuid($fType)) { $val = substr($val, 1, -1); } // "_" is added to conver number type to string $fieldControl->suggestValue("_" . $val, $searchFor, $response, $row); } } $_connection->close(); ksort($response, SORT_STRING); foreach ($response as $value => $realValue) { if (count($result) > $numberOfSuggests) { break; } $strValue = $value[0] == '_' ? substr($value, 1) : $value; // .net compatibility issue
} else { $strUsername = make_db_value("username", $username); } $sql = "select " . $pageObject->getFieldSQLDecrypt("password") . " from " . $pageObject->connection->addTableWrappers("ConsolidatedStockEnquiry_users") . " where " . $pageObject->getFieldSQLDecrypt("username") . "=" . $strUsername; $qResult = $pageObject->connection->query($sql); $verified = false; if (!$qResult) { echo "Invalid validation code."; return; } $data = $qResult->fetchNumeric(); if (!$data) { echo "Invalid validation code."; return; } $dbPassword = $regCipherer->DecryptField("password", $data[0]); $usercode = $username . md5($dbPassword); if ($code != md5($usercode)) { echo "Invalid validation code."; return; } $sql = "update " . $pageObject->connection->addTableWrappers("ConsolidatedStockEnquiry_users") . " set " . $pageObject->connection->addFieldWrappers("active1") . "=1 " . " where " . $pageObject->getFieldSQLDecrypt("username") . "=" . $strUsername; $pageObject->connection->exec($sql); $pageObject->updatePageLayoutAndCSS('', 'success'); $pageObject->body["begin"] .= "<form method=\"POST\" action=\"" . GetTableLink("login") . "\" name=\"loginform\">\n\t<input type=\"Hidden\" name=\"username\" value=\"" . runner_htmlspecialchars($username) . "\">"; $pageObject->body["begin"] .= "<input type=\"Hidden\" name=\"password\" value=\"" . runner_htmlspecialchars($data["password"]) . "\">"; $pageObject->body["begin"] .= "</form>"; $xt->assign("body", $pageObject->body); $xt->assign("registered_block", true); $xt->assign("loginlink_attrs", "onclick=\"document.forms.loginform.submit();return false;\" id=\"ProceedToLogin\""); return $pageObject->display(GetTemplateName("", "register_success"));
} } } if (strlen(GetLWWhere($f, $pageType, $strTableName))) { $hasWhere = true; } break; } $lookupIndexes = GetLookupFieldsIndexes($gSettings, $lookupField); $linkFieldIndex = $lookupIndexes["linkFieldIndex"]; $displayFieldIndex = $lookupIndexes["displayFieldIndex"]; $rs = db_query($LookupSQL, $conn); while ($data = db_fetch_numarray($rs)) { if ($LookupType == LT_QUERY && $gSettings->isLookupUnique($f)) { if (!isset($uniqueArray)) { $uniqueArray = array(); } if (in_array($data[$displayFieldIndex], $uniqueArray)) { continue; } $uniqueArray[] = $data[$displayFieldIndex]; } $data[$linkFieldIndex] = $cipherer->DecryptField($f, $data[$linkFieldIndex]); if ($LookupType == LT_QUERY) { $data[$displayFieldIndex] = $cipherer->DecryptField($displayFieldName, $data[$displayFieldIndex]); } $response[] = $data[$linkFieldIndex]; $response[] = $data[$displayFieldIndex]; } $respObj = array('success' => true, 'data' => array_slice($response, 0, 40)); echo "<textarea>" . htmlspecialchars(my_json_encode($respObj)) . "</textarea>";