function main()
{
// ------------------------------------------------
// Branch out to ajax handling functions
if (gpExists('fwajax')) {
return $this->FWAjax();
}
// ...early return
// ------------------------------------------------
// Public sites can turn off table maintenance pages
if (vgfGet('suppress_maintenance', false)) {
return;
}
vgfset('maintenance', true);
# KFD 2/17/09 Sourceforge 2546056
# If we are in default main code branch, and
# there is no data dictionary, the user has
# called a bad page.
if (!isset($this->table['projections'])) {
?>
<h1>Bad Page Request</h1>
<p>There is no page <?php
echo hx(gp('gp_page'));
?>
<?php
return;
}
// If a "fk jump", retrieve skey and make it look
// like an edit call.
if (gp('gp_pk') != '') {
$pkval = gp("gp_pk");
$pkcol = $this->table["pks"];
$pktyp = $this->table['flat'][$pkcol]["type_id"];
$table_id = $this->table["table_id"];
// KFD 10/26/06, used to be $table_id
$sq = "SELECT skey FROM " . $this->view_id . " WHERE " . $pkcol . " = " . SQL_Format($pktyp, $pkval);
gpSet('gp_skey', SQL_OneValue('skey', $sq));
gpSet('gp_mode', 'upd');
}
// If we were invoked by a child table, don't do this
if (is_null($this->table_obj_child)) {
// KFD 10/26/06, keep as $table_id
Hidden('gp_page', $this->table_id);
// always return to same page
Hidden('gp_mode', '');
Hidden('gp_skey', '');
Hidden('gp_action', '');
Hidden('gp_save', '');
hidden('gp_copy', '');
}
// Work out what to do if mode is blank. Might mean
// upd, might mean browse.
$mode = gp('gp_mode');
$skey = gp('gp_skey');
if ($mode == '') {
$mode = $this->MainCheckForMover();
if ($mode == '') {
$mode = $skey == '' ? 'browse' : 'upd';
gpSet('gp_mode', $mode);
}
}
$this->mode = $mode;
// KFD 8/13/07, Experimental COPY ability
if (gp('gp_action') == 'copy') {
$mode = 'ins';
gpSet('gp_mode', 'ins');
}
switch ($mode) {
case 'search':
$this->PageSubtitle .= " (Lookup Mode)";
break;
case 'ins':
$this->PageSubtitle .= " (New Entry)";
break;
}
// ----------------------------------------------
// Generate the main HTML elements
if ($mode == 'browse') {
$this->hBrowse();
} elseif ($mode == 'mover') {
$this->hMover();
} else {
$this->hBoxes($mode);
}
if ($mode != "mover") {
$this->hButtonBar($mode);
}
$this->hLinks($mode);
$this->hExtra($mode);
// Now if this is a child table in a 1:M, it will not actually
// output its own stuff, it will invoke its parent, so let's
// buffer the output
if ($this->table_id_parent != '') {
ob_start();
}
// Echo out the HTML
$this->ehMain();
// Put this out at end, after all HTML has been output
if ($mode == "search") {
//$controls=vgfGet('gpControls');
$controls = ContextGet('OldRow');
$hScript = '';
foreach ($controls as $key => $info) {
$hScript .= "\nob('x2t_{$key}').value='';";
}
jqDocReady("function clearBoxes() { \n" . $hScript . "}\n\n");
}
// Again, if this is a child table in a 1:M, capture the output and
// make it the responsibility of the parent
if ($this->table_id_parent != '') {
$this->h['Complete'] = ob_get_clean();
// Wipe out and replace all gp variables, fool the parent object
$OldRow = ContextGet('OldRow', array());
$gpsave = aFromGP('gp_');
gpUnsetPrefix('gp_');
$dd = ContextGet('drilldown', array());
$dd1 = array_pop($dd);
gpSet('gp_skey', $dd1['skey']);
// Now invoke the parent object, tell it about us
$object = objPage($this->table_id_parent);
$object->table_obj_child = $this;
$object->main();
// Replace the wiped out gp variables
gpUnsetPrefix('gp_');
gpSetFromArray('gp_', $gpsave);
ContextSet('OldRow', $OldRow);
// Force the menu to come from the parent
vgaSet('menu_selected', $this->table_id_parent);
}
}
function index_hidden_page()
{
global $AG;
$sessok = !LoggedIn() ? false : true;
// KFD 3/6/08, moved here from the main stream of index_hidden
// because these are relevant only to page processing
if (gpExists('x_module')) {
SessionSet('AGMENU_MODULE', gp('x_module'));
} elseif (vgaGet('nomodule') != '' && SessionGet('AGMENU_MODULE') == '') {
SessionSet('AGMENU_MODULE', vgaGet('nomodule'));
}
// If the search flag is set, we need to know what class for this
// application handles searchs
if (gpExists('gp_search')) {
gpSet('gp_page', vgaGet('SEARCH_CLASS'));
}
// Load up a list of pages that public users are allowed to see,
// with home and password always there.
global $MPPages;
// allows it to be in applib
$MP = array();
//$MPPages= array();
// This is the old method, load $MPPages from its own file
if (file_exists_incpath('appPublicMenu.php')) {
include_once 'appPublicMenu.php';
}
if (!is_array($MPPages)) {
$MPPages = array();
}
$MPPages['x_home'] = 'Home Page';
$MPPages['x_login'] = '******';
$MPPages['x_noauth'] = 'Authorization Required';
$MPPages['x_password'] = "******";
$MPPages['x_mpassword'] = "******";
$MPPages['x_paypalipn'] = 'Paypal IPN';
// If the install page exists, it will be used, no getting
// around it.
$install = $GLOBALS['AG']['dirs']['application'] . 'install.php';
$instal2 = $GLOBALS['AG']['dirs']['application'] . 'install.done.php';
if (file_exists($install)) {
if (gp('gp_install') == 'finish') {
rename($install, $instal2);
} else {
$MPPages['install'] = 'install';
gpSet('gp_page', 'install');
}
}
// First pass is to look for the "flaglogin" flag. This says save all
// current page settings and go to login screen. They will be restored
// on a successful login. Very useful for links that say "Login to
// see nifty stuff..."
if (gp('gp_flaglogin') == '1') {
gpSet('gp_flaglogin', '');
gpToSession();
gpSet('gp_page', 'x_login');
}
// Second pass redirection, pick default page if there
// is none, and verify public pages.
//
$gp_page = gp('gp_page');
if ($gp_page == '') {
if (vgfGet('LoginAttemptOK') === true && vgfGet('x4') === true) {
$gp_page = 'x4init';
gpSet('gp_page', 'x4init');
SessionSet('TEMPLATE', 'x4');
} else {
if (function_exists('appNoPage')) {
$gp_page = appNoPage();
} else {
if (!LoggedIn()) {
$gp_page = FILE_EXISTS_INCPATH('x_home.php') ? 'x_home' : 'x_login';
} else {
// KFD 3/2/07, pull vga stuff to figure defaults
if (vgaGet('nopage') != '') {
$gp_page = vgaGet('nopage');
} else {
$gp_page = 'x_welcome';
}
}
}
}
}
// If they are trying to access a restricted page and are not
// logged in, cache their request and redirect to login page
if (!$sessok && !isset($MPPages[$gp_page])) {
if (vgfGet('loglogins', false)) {
fwLogEntry('1014', 'Page access w/o login', $gp_page);
}
gpToSession();
$gp_page = 'x_login';
}
// If pos is activated and the current requested page does not
// match what they are cleared for, redirect to login
if (vgaGet('POS_SECURITY', false) == true && SessionGet('ADMIN') == false) {
if (SessionGet('POS_PAGE', '', 'FW') != $gp_page) {
gpToSession();
$gp_page = 'x_login';
}
}
gpSet('gp_page', $gp_page);
// Make any database saves. Do this universally, even if save
// was not selected. If errors, reset to previous request.
//if(gp('gp_save')=='1') processPost();
processPost();
if (Errors()) {
gpSetFromArray('gp_', aFromGp('gpx_'));
}
// Put Userid where HTML forms can find it
//vgfSet("UID",SessionGet("UID"));
//if (vgfSet("UID")=="") { vgfSet("UID","Not Logged In"); }
// THIS IS NEWER X_TABLE2 version of drilldown commands,
// considerably simpler than the older ones. It makes use of
// three gp_dd variables.
//
// Notice how we process drillbacks FIRST, allowing a link
// to contain both drillback and drilldown, for the super-nifty
// effect of a "drill-across"
hidden('gp_dd_page');
hidden('gp_dd_skey');
hidden('gp_dd_back');
if (intval(gp('gp_dd_back')) > 0 && $sessok) {
// this is drillback
$dd = ContextGet('drilldown', array());
$back = intval(gp('gp_dd_back'));
if (count($dd) >= $back) {
$spot = count($dd) - $back;
$aback = $dd[$spot];
gpSet('gp_skey', $aback['skey']);
gpSet('gp_page', $aback['page']);
$gp_page = $aback['page'];
gpSet('gpx_skey', $aback['skey']);
gpSet('gpx_page', $aback['page']);
gpSetFromArray('parent_', $aback['parent']);
if (!gpExists('gp_mode')) {
gpSet('gp_mode', 'upd');
}
$dd = $spot == 0 ? array() : array_slice($dd, 0, $spot);
ContextSet('drilldown', $dd);
ContextSet('drilldown_top', $aback['page']);
//ContextSet('drilldown_level',count($dd));
}
}
if (gp('gp_dd_page') != '' && $sessok) {
// this is drilldown...
$matches = DrillDownMatches();
$matches = array_merge($matches, aFromGP('parent_'));
$dd = ContextGet('drilldown', array());
$newdd = array('matches' => $matches, 'parent' => aFromGP('parent_'), 'skey' => gp('gpx_skey'), 'page' => gp('gpx_page'));
$dd[] = $newdd;
ContextSet('drilldown', $dd);
ContextSet('drilldown_top', gp('gp_dd_page'));
//ContextSet('drilldown_level',count($dd));
// having saved the stack, redirect to new page.
$tnew = gp('gp_dd_page');
$gp_page = $tnew;
gpSet('gp_page', $tnew);
if (gp('gp_dd_skey') != '') {
gpSet('gp_skey', gp('gp_dd_skey'));
gpSet('gp_mode', 'upd');
}
// Clear search of new page, set filters to blank
processPost_TableSearchResultsClear($tnew);
ConSet('table', $tnew, 'search', array());
}
// If no drilldown commands were received, and we are not on
// the page that is the top, user must have picked a new page
// altogether, wipe out the drilldown stack
if (gp('gp_page') != ContextGet('drilldown_top', '')) {
ContextSet('drilldown', array());
ContextSet('drilldown_top', '');
}
// Must always have these on the user's form. These can
// be retired with x_Table, they are for old drilldown
//
hidden("dd_page", "");
hidden("dd_ddc", "");
hidden("dd_ddv", "");
hidden("dd_ddback", "");
hidden("dd_action", "searchexecute");
hidden("dd_skey", "");
// Load user preferences just before display
UserPrefsLoad();
$dir = $GLOBALS['AG']['dirs']['root'] . 'application/';
if (file_exists($dir . $gp_page . ".page.yaml")) {
include 'androPage.php';
$obj_page = new androPage();
if ($obj_page->flag_buffer) {
ob_start();
}
$obj_page->main($gp_page);
if ($obj_page->flag_buffer) {
vgfSet("HTML", ob_get_clean());
//ob_end_clean();
}
vgfSet("PageSubtitle", $obj_page->PageSubtitle);
} else {
$obj_page = DispatchObject($gp_page);
if ($obj_page->flag_buffer) {
ob_start();
}
$obj_page->main();
if ($obj_page->flag_buffer && vgfGet('HTML') == '') {
vgfSet("HTML", ob_get_contents());
ob_end_clean();
}
vgfSet("PageSubtitle", $obj_page->PageSubtitle);
}
// Save context onto the page. Note that it is not really
// protected by these methods, just compressed and obscured.
//
$t2 = serialize($GLOBALS['AG']['clean']['gpContext']);
$t2 = gzcompress($t2);
$t2 = base64_encode($t2);
Hidden('gpContext', $t2);
// KFD 3/7/07, give the app the final opportunity to process
// things before the display, while logged in.
if (function_exists('appdisplaypre')) {
appDisplayPre();
}
// ...and write output and we are done. Assume if there was
// no buffering that the output is already done.
if ($obj_page->flag_buffer != false) {
// Work out what template we are using
index_hidden_template('x2');
// KFD 5/30/07, send back only main content if asked
if (gp('ajxBUFFER') == 1) {
echo "andromeda_main_content|";
ehStandardContent();
echo "|-|_focus|" . vgfGet('HTML_focus');
$ajax = ElementReturn('ajax', array());
echo '|-|' . implode('|-|', $ajax);
echo '|-|_title|' . vgfGet('PageTitle');
} elseif (defined('_VALID_MOS')) {
// This is the default branch, using a Joomla template
// DUPLICATE ALERT: This code copied into
// index_hidden_x4Dispatch() above
global $J;
$mainframe = $J['mainframe'];
$my = $J['my'];
$mosConfig_absolute_path = $J['mC_absolute_path'];
$mosConfig_live_site = $J['mC_live_site'];
$template_color = $J['template_color'];
$template_color = 'red';
$file = $GLOBALS['AG']['dirs']['root'] . '/templates/' . $mainframe->GetTemplate() . "/index.php";
include $file;
} elseif ($obj_page->html_template !== '') {
// This is newer style, let the class specify the template.
include $obj_page->html_template . '.php';
} else {
// This is old style, defaults to "html_main.php", can be
// set also by vgaSet() or by gp(gp_out)
$html_main = vgaGet('html_main') == '' ? 'html_main' : vgaGet('html_main');
switch (CleanGet("gp_out", "", false)) {
case "print":
include "html_print.php";
break;
case "info":
include "html_info.php";
break;
case "":
include $html_main . ".php";
break;
default:
}
}
}
}
