window.location=url; <?php } else { ?> alert('У Вас нет прав на выполнение операции'); <?php } ?> } function DeleteAction(id) { <?php if (access_enable($STORAGE, $STORAGE['module'], 'edit')) { ?> if (confirm('После проведения операции, восстановление будет невозможно. Вы действительно хотите продолжить?')) { var w = 1; var h = 1; var param = ''; var url = '<?php echo SITE_HTTP_ROOT; echo $STORAGE['module']; ?> /delete/id/' + id + '/callback/Refresh/'; OpenPopupWindow(url, w, h, param); } <?php } else { ?>
OpenPopupWindow(url, w, h, param); <?php } else { ?> alert('У Вас нет прав на выполнение операции'); <?php } ?> } tree=new dhtmlXTreeObject("file-tree","100%","100%","root"); tree.attachEvent("onClick", InitButtons); tree.attachEvent("onDblClick", ViewFile); <?php if (access_enable($STORAGE, 'file', 'edit')) { ?> tree.attachEvent("onDrag", CheckMove); tree.attachEvent("onDrop", MoveItem); tree.enableDragAndDrop(true); tree.enableImageDrag(true); <?php } ?> tree.setImagePath("<?php echo SITE_URI_ROOT; ?> js/dhtmlx/imgs/csh_vista/"); tree.enableCheckBoxes(false); tree.enableTreeLines(true);
/edit/id/' + id + '/callback/Refresh/'; OpenPopupWindow(url, w, h, param); <?php } else { ?> alert('У Вас нет прав на выполнение операции'); <?php } ?> } function DeleteAction(id) { <?php if (access_enable($STORAGE, $STORAGE['module'], 'delete')) { ?> if (confirm('После проведения операции, восстановление будет невозможно. Вы действительно хотите продолжить?')) { var w = 1; var h = 1; var param = ''; var url = '<?php echo SITE_HTTP_ROOT; echo $STORAGE['module']; ?> /delete/id/' + id + '/callback/Refresh/'; OpenPopupWindow(url, w, h, param); } <?php } else { ?>
{ document.editform['all_employees[]'].options[i].selected = true; } } moveOption( document.editform.elements['all_employees[]'], document.editform.elements['report_employees[]']); } function DetailAction(id) { <?php if (access_enable($STORAGE, $STORAGE['module'], 'detail')) { ?> var url = '<?php echo SITE_HTTP_ROOT; echo $STORAGE['module']; ?> /detail/id/' + id + '/'; window.location=url; <?php } else { ?> alert('У Вас нет прав на выполнение операции'); <?php } ?> }
public function CheckActionEnable(&$STORAGE, $action) { if (check_current_employee_admin($STORAGE)) { return true; } if (!access_enable($STORAGE, 'organizer', $action)) { return false; } $db = db_class::get_instance(); switch ($action) { case 'view': case 'edit': case 'delete': return true; default: return false; } return false; }
echo $employee->id_employee; ?> );" <?php echo $employee->photo_flag == 'yes' ? '' : ' disabled'; ?> ><img src="<?php echo SITE_URI_ROOT; ?> img/iconDelete.gif" title="Удалить фотографию" />Удалить</button> </td> </tr> </table> </td> </tr> <?php if (access_enable($STORAGE, $STORAGE['module'], 'role')) { ?> <tr> <td colspan="2" valign="top"> <span class="label required">Принадлежность к ролям:</span><br/> <table cellpadding="0" cellspacing="0" border="0" width="100%" class="switchLists"> <tr> <td width="49%"> <select name="enabled_employee_roles[]" size="5" class="wide" multiple> <?php for ($i = 0; $i < count($roles); $i++) { if (!key_exists($roles[$i]->id_role, $enabled_employee_roles)) { continue; } ?> <option value="<?php
$photo = 'no'; } if (substr_count($columns, 'name') > 0) { $name = 'no'; } if (substr_count($columns, 'department') > 0) { $department = 'no'; } if (substr_count($columns, 'post') > 0) { $post = 'no'; } if (substr_count($columns, 'email') > 0) { $email = 'no'; } if (substr_count($columns, 'office_phone') > 0) { $office_phone = 'no'; } if (substr_count($columns, 'room') > 0) { $room = 'no'; } } $is_enabled_employee_edit = access_enable($STORAGE, $STORAGE['module'], 'edit'); $is_enabled_employee_delete = access_enable($STORAGE, $STORAGE['module'], 'delete'); $is_enabled_rows_conf = access_enable($STORAGE, $STORAGE['module'], 'rows_conf'); if ($include_header_footer) { include SITE_FILE_ROOT . 'template/header.php'; } include SITE_FILE_ROOT . 'template/' . $STORAGE['module'] . '/' . $STORAGE['action'] . '.php'; if ($include_header_footer) { include SITE_FILE_ROOT . 'template/footer.php'; }
if ($date) { $linedate = $date; } else { $linedate = date('Y-m-d', time()); } $startdate = format_date('{Y}-{m}-01', $linedate); $enddate = format_date('{Y}-{m}-31', $linedate); $month = format_date('{m}', $linedate); $year = format_date('{Y}', $linedate); if (!checkdate($month, $day, $year) && $month != 2) { $enddate = format_date('{Y}-{m}-30', $linedate); } else { $enddate = format_date('{Y}-{m}-23', $linedate); } $query = 'SELECT news_date FROM ' . TABLE_NEWS . ' WHERE news_date>=\'' . $startdate . '\' AND news_date<=\'' . $enddate . '\' GROUP BY news_date '; $db->query($query); $news_dates = $db->value; $query = 'SELECT * FROM ' . TABLE_NEWS . ' WHERE news_date = \'' . $linedate . '\' ORDER BY news_id DESC'; $db->query($query); $newses = $db->value; $is_enabled_news_edit = access_enable($STORAGE, $STORAGE['module'], 'edit'); $is_enabled_news_delete = access_enable($STORAGE, $STORAGE['module'], 'delete'); include SITE_FILE_ROOT . 'template/header.php'; include SITE_FILE_ROOT . 'template/' . $STORAGE['module'] . '/' . $STORAGE['action'] . '-list.php'; include SITE_FILE_ROOT . 'template/footer.php'; } else { $title = 'Редактирование объявления'; include SITE_FILE_ROOT . 'template/header.php'; include SITE_FILE_ROOT . 'template/' . $STORAGE['module'] . '/' . $STORAGE['action'] . '-id.php'; include SITE_FILE_ROOT . 'template/footer.php'; }
<?php if (count($show_files) > 0 || access_enable($STORAGE, $type, 'file-attach')) { ?> <fieldset> <legend><?php echo $legend_title; ?> </legend> <div id="attach-toolbar" class="toolbar right"> <?php if ($obj2attach->CheckActionEnable($STORAGE, 'file-attach')) { ?> <button id="attach" onclick="return FileAttachAction('<?php echo htmlspecialchars($type); ?> ', <?php echo $item_id; ?> );"><img src="<?php echo SITE_URI_ROOT; ?> img/iconNew.gif" title="Присоединить файлы">Присоединить файлы</button> <?php } else { ?> <button id="attach" disabled><img src="<?php echo SITE_URI_ROOT; ?> img/iconNew.gif" title="Присоединить файлы">Присоединить файлы</button> <?php
var sDate; if (p_aArgs) { aDate = p_aArgs[0][0]; var year = aDate[0], month = aDate[1], day = aDate[2]; if (month<10) month = "0" + month; if (day<10) day = "0" + day; sDate = year + "-" + month + "-" + day ; window.location="<?php echo SITE_HTTP_ROOT; ?> organizer/day/date/"+sDate+"/"; } } <?php if (access_enable($STORAGE, 'organizer', 'day')) { ?> YAHOO.yui.quarter.cal3.selectEvent.subscribe(YAHOO.yui.quarter.selectDate); <?php } ?> } YAHOO.util.Event.onDOMReady(YAHOO.yui.quarter.init); </script> <?php $ids = calendar::getIdsForEmployee($STORAGE['current_employee']->login); $ids[] = 0; $ids = join(',', $ids);
window.location=url; <?php } else { ?> alert('У Вас нет прав на выполнение операции'); <?php } ?> } function FileAction(id) { <?php if (access_enable($STORAGE, $STORAGE['module'], 'files')) { ?> var url = '<?php echo SITE_HTTP_ROOT; echo $STORAGE['module']; ?> /files/id/' + id + '/'; window.location=url; <?php } else { ?> alert('У Вас нет прав на выполнение операции'); <?php } ?> }
<?php header("Content-Type: text/xml; charset=utf-8"); $id = get_request_variable('id', 'root'); $complete_flag = ''; $id = html_entity_decode(preg_replace('~%(u[a-f\\d]{4}|[a-f\\d]{2})~ie', '"&#".hexdec("$1").";"', $id), ENT_NOQUOTES, "utf-8"); $id = str_replace('..', '', $id); $db = db_class::get_instance(); echo '<?xml version="1.0" encoding="UTF-8"?>' . "\n"; echo '<tree id="' . escape($id) . '">' . "\n"; $id = mb_convert_encoding($id, 'windows-1251', 'utf-8'); file_put_contents('C:\\Temp\\aaa.txt', SITE_PROJECT_FILE_ROOT . $id); if ($id === 'root') { if (access_enable($STORAGE, 'project', 'view')) { $status = 'active'; $where = array(); $where[] = '"status"=\'' . $db->str2base($status) . '\''; $query = 'SELECT * FROM "' . TABLE_PROJECT . '"'; if ($complete_flag != '') { $where[] = '"complete_flag"=\'' . db_class::str2base($complete_flag) . '\''; } if (!check_current_employee_admin($STORAGE)) { $query .= ' LEFT JOIN "' . TABLE_PROJECT_EMPLOYEE . '" ON "id_project"="project_id"'; $where[] = '"employee_id"=' . $STORAGE['current_employee']->id_employee; } if (count($where) > 0) { $query .= ' WHERE ' . join(' AND ', $where); } $db->query($query); $projects = $db->value; for ($i = 0; $i < count($projects); $i++) {