}
if (!$_SESSION['rlvs'][$module]) {
unset($_SESSION['rlvs']);
}
if (isset($_REQUEST['record']) && $_REQUEST['record'] != '') {
$userid = $current_user->id;
$sql = "select fieldname from vtiger_field where uitype = '13' and tabid = 7 and vtiger_field.presence in (0,2)";
$result = $adb->pquery($sql, array());
$num_fieldnames = $adb->num_rows($result);
for ($i = 0; $i < $num_fieldnames; $i++) {
$fieldname = $adb->query_result($result, $i, "fieldname");
$permit = getFieldVisibilityPermission("Leads", $userid, $fieldname);
}
}
$smarty->assign("TODO_PERMISSION", CheckFieldPermission('parent_id', 'Calendar'));
$smarty->assign("EVENT_PERMISSION", CheckFieldPermission('parent_id', 'Events'));
$smarty->assign("CATEGORY", $category);
$parent_email = getEmailParentsList('Leads', $focus->id, $focus);
$smarty->assign("HIDDEN_PARENTS_LIST", $parent_email);
// Module Sequence Numbering
$mod_seq_field = getModuleSequenceField($currentModule);
if ($mod_seq_field != null) {
$mod_seq_id = $focus->column_fields[$mod_seq_field['name']];
} else {
$mod_seq_id = $focus->id;
}
$smarty->assign('MOD_SEQ_ID', $mod_seq_id);
// END
$smarty->assign("ID", $focus->id);
$smarty->assign("NAME", $focus->lastname . ' ' . $focus->firstname);
$smarty->assign("EMAIL", $focus->column_fields['email']);
/** Function to get the selected columns list for a selected vtiger_report
* This function accepts the vtiger_reportid as the argument and get the selected columns
* for the given vtiger_reportid and it forms a combo lists and returns
* HTML of the combo values
*/
function getSelectedColumnsList($reportid)
{
global $adb;
global $modules;
global $log, $current_user;
$ssql = "select vtiger_selectcolumn.* from vtiger_report inner join vtiger_selectquery on vtiger_selectquery.queryid = vtiger_report.queryid";
$ssql .= " left join vtiger_selectcolumn on vtiger_selectcolumn.queryid = vtiger_selectquery.queryid";
$ssql .= " where vtiger_report.reportid = ?";
$ssql .= " order by vtiger_selectcolumn.columnindex";
$result = $adb->pquery($ssql, array($reportid));
$permitted_fields = array();
$selected_mod = split(":", $this->secmodule);
array_push($selected_mod, $this->primodule);
$inventoryModules = getInventoryModules();
while ($columnslistrow = $adb->fetch_array($result)) {
$fieldname = "";
$fieldcolname = $columnslistrow["columnname"];
$selmod_field_disabled = true;
foreach ($selected_mod as $smod) {
if (stripos($fieldcolname, ":" . $smod . "__") > -1 && vtlib_isModuleActive($smod)) {
$selmod_field_disabled = false;
break;
}
}
if ($selmod_field_disabled == false) {
list($tablename, $colname, $module_field, $fieldname, $single) = split(":", $fieldcolname);
require 'user_privileges/user_privileges_' . $current_user->id . '.php';
list($module, $field) = split("__", $module_field);
if (sizeof($permitted_fields) == 0 && $is_admin == false && $profileGlobalPermission[1] == 1 && $profileGlobalPermission[2] == 1) {
$permitted_fields = $this->getaccesfield($module);
}
$querycolumns = $this->getEscapedColumns($selectedfields);
$fieldlabel = trim(str_replace($module, " ", $module_field));
$mod_arr = explode('__', $fieldlabel);
$mod = $mod_arr[0] == '' ? $module : $mod_arr[0];
$fieldlabel = trim(str_replace("__", " ", $fieldlabel));
//modified code to support i18n issue
$mod_lbl = getTranslatedString($mod, $module);
//module
$fld_lbl = getTranslatedString($fieldlabel, $module);
//fieldlabel
$fieldlabel = $mod_lbl . " " . $fld_lbl;
if (in_array($mod, $inventoryModules) && $fieldname == 'serviceid') {
$shtml .= "<option permission='yes' value=\"" . $fieldcolname . "\">" . $fieldlabel . "</option>";
} else {
if (CheckFieldPermission($fieldname, $mod) != 'true' && $colname != "crmid") {
$shtml .= "<option permission='no' value=\"" . $fieldcolname . "\" disabled = 'true'>" . $fieldlabel . "</option>";
} else {
$shtml .= "<option permission='yes' value=\"" . $fieldcolname . "\">" . $fieldlabel . "</option>";
}
}
}
//end
}
$log->info("ReportRun :: Successfully returned getQueryColumnsList" . $reportid);
return $shtml;
}
function CheckColumnPermission($tablename, $columnname, $module)
{
global $adb;
static $cache = array();
$cachekey = $module . ":" . $tablename . ":" . $columnname;
if (!array_key_exists($cachekey, $cache)) {
$res = $adb->pquery("select fieldname from vtiger_field where tablename=? and columnname=? and vtiger_field.presence in (0,2)", array($tablename, $columnname));
$fieldname = $adb->query_result($res, 0, 'fieldname');
$cache[$cachekey] = CheckFieldPermission($fieldname, $module);
}
return $cache[$cachekey];
}
function GetFirstSortByField($reportid)
{
$adb = PearDatabase::getInstance();
$groupByField = "";
$sortFieldQuery = "SELECT * FROM vtiger_reportsortcol\n LEFT JOIN vtiger_reportgroupbycolumn ON (vtiger_reportsortcol.sortcolid = vtiger_reportgroupbycolumn.sortid and vtiger_reportsortcol.reportid = vtiger_reportgroupbycolumn.reportid)\n WHERE columnname!='none' and vtiger_reportsortcol.reportid=? ORDER By sortcolid";
$sortFieldResult = $adb->pquery($sortFieldQuery, array($reportid));
$inventoryModules = getInventoryModules();
if ($adb->num_rows($sortFieldResult) > 0) {
$fieldcolname = $adb->query_result($sortFieldResult, 0, 'columnname');
list($tablename, $colname, $module_field, $fieldname, $typeOfData) = explode(":", $fieldcolname);
list($modulename, $fieldlabel) = explode('__', $module_field, 2);
$groupByField = $module_field;
if ($typeOfData == "D") {
$groupCriteria = $adb->query_result($sortFieldResult, 0, 'dategroupbycriteria');
if (strtolower($groupCriteria) != 'none') {
if (in_array($groupCriteria, array_keys($this->groupByTimeParent))) {
$parentCriteria = $this->groupByTimeParent[$groupCriteria];
foreach ($parentCriteria as $criteria) {
$groupByCondition[] = $this->GetTimeCriteriaCondition($criteria, $groupByField);
}
}
$groupByCondition[] = $this->GetTimeCriteriaCondition($groupCriteria, $groupByField);
$groupByField = implode(", ", $groupByCondition);
}
} elseif (CheckFieldPermission($fieldname, $modulename) != 'true') {
if (!(in_array($modulename, $inventoryModules) && $fieldname == 'serviceid')) {
$groupByField = $tablename . "." . $colname;
}
}
}
return $groupByField;
}
function getValue($field_result, $list_result, $fieldname, $focus, $module, $entity_id, $list_result_count, $mode, $popuptype, $returnset = '', $viewid = '')
{
global $log, $listview_max_textlength, $app_strings, $current_language, $currentModule;
$log->debug("Entering getValue(" . $field_result . "," . $list_result . "," . $fieldname . "," . get_class($focus) . "," . $module . "," . $entity_id . "," . $list_result_count . "," . $mode . "," . $popuptype . "," . $returnset . "," . $viewid . ") method ...");
global $adb, $current_user, $default_charset;
require 'user_privileges/user_privileges_' . $current_user->id . '.php';
$tabname = getParentTab();
$tabid = getTabid($module);
$current_module_strings = return_module_language($current_language, $module);
$uicolarr = $field_result[$fieldname];
foreach ($uicolarr as $key => $value) {
$uitype = $key;
$colname = $value;
}
//added for getting event status in Custom view - Jaguar
if ($module == 'Calendar' && ($colname == "status" || $colname == "eventstatus")) {
$colname = "activitystatus";
}
//Ends
$field_val = $adb->query_result($list_result, $list_result_count, $colname);
if (stristr(html_entity_decode($field_val), "<a href") === false && $uitype != 8) {
$temp_val = textlength_check($field_val);
} elseif ($uitype != 8) {
$temp_val = html_entity_decode($field_val, ENT_QUOTES);
} else {
$temp_val = $field_val;
}
// vtlib customization: New uitype to handle relation between modules
if ($uitype == '10') {
$parent_id = $field_val;
if (!empty($parent_id)) {
$parent_module = getSalesEntityType($parent_id);
$valueTitle = $parent_module;
if ($app_strings[$valueTitle]) {
$valueTitle = $app_strings[$valueTitle];
}
$displayValueArray = getEntityName($parent_module, $parent_id);
if (!empty($displayValueArray)) {
foreach ($displayValueArray as $key => $value) {
$displayValue = $value;
}
}
$value = "<a href='index.php?module={$parent_module}&action=DetailView&record={$parent_id}' title='{$valueTitle}'>{$displayValue}</a>";
} else {
$value = '';
}
} else {
if ($uitype == 53) {
$value = textlength_check($adb->query_result($list_result, $list_result_count, 'user_name'));
// When Assigned To field is used in Popup window
if ($value == '') {
$user_id = $adb->query_result($list_result, $list_result_count, 'smownerid');
if ($user_id != null && $user_id != '') {
$value = getOwnerName($user_id);
}
}
} elseif ($uitype == 52) {
$value = getUserName($adb->query_result($list_result, $list_result_count, $colname));
} elseif ($uitype == 51) {
$parentid = $adb->query_result($list_result, $list_result_count, "parentid");
if ($module == 'Accounts') {
$entity_name = textlength_check(getAccountName($parentid));
} elseif ($module == 'Products') {
$entity_name = textlength_check(getProductName($parentid));
}
$value = '<a href="index.php?module=' . $module . '&action=DetailView&record=' . $parentid . '&parenttab=' . $tabname . '" style="' . $P_FONT_COLOR . '">' . $entity_name . '</a>';
} elseif ($uitype == 77) {
$value = getUserName($adb->query_result($list_result, $list_result_count, 'inventorymanager'));
} elseif ($uitype == 5 || $uitype == 6 || $uitype == 23 || $uitype == 70) {
if ($temp_val != '' && $temp_val != '0000-00-00') {
$value = getDisplayDate($temp_val);
} elseif ($temp_val == '0000-00-00') {
$value = '';
} else {
$value = $temp_val;
}
} elseif ($uitype == 15 || $uitype == 55 && $fieldname == "salutationtype") {
$temp_val = decode_html($adb->query_result($list_result, $list_result_count, $colname));
if ($is_admin == false && $profileGlobalPermission[1] == 1 && $profileGlobalPermission[2] == 1 && $temp_val != '') {
$temp_acttype = $adb->query_result($list_result, $list_result_count, 'activitytype');
if ($temp_acttype != 'Task' && $fieldname == "taskstatus") {
$temptable = "eventstatus";
} else {
$temptable = $fieldname;
}
$roleid = $current_user->roleid;
$roleids = array();
$subrole = getRoleSubordinates($roleid);
if (count($subrole) > 0) {
$roleids = $subrole;
}
array_push($roleids, $roleid);
//here we are checking wheather the table contains the sortorder column .If sortorder is present in the main picklist table, then the role2picklist will be applicable for this table...
$sql = "select * from vtiger_{$temptable} where {$temptable}=?";
$res = $adb->pquery($sql, array(decode_html($temp_val)));
$picklistvalueid = $adb->query_result($res, 0, 'picklist_valueid');
if ($picklistvalueid != null) {
$pick_query = "select * from vtiger_role2picklist where picklistvalueid={$picklistvalueid} and roleid in (" . generateQuestionMarks($roleids) . ")";
$res_val = $adb->pquery($pick_query, array($roleids));
$num_val = $adb->num_rows($res_val);
}
if ($num_val > 0 || $temp_acttype == 'Task' && $fieldname == 'activitytype') {
$temp_val = $temp_val;
} else {
$temp_val = "<font color='red'>" . $app_strings['LBL_NOT_ACCESSIBLE'] . "</font>";
}
}
$value = $current_module_strings[$temp_val] != '' ? $current_module_strings[$temp_val] : ($app_strings[$temp_val] != '' ? $app_strings[$temp_val] : $temp_val);
if ($value != "<font color='red'>" . $app_strings['LBL_NOT_ACCESSIBLE'] . "</font>") {
$value = textlength_check($value);
}
} elseif ($uitype == 16) {
$value = getTranslatedString($temp_val, $currentModule);
} elseif ($uitype == 71 || $uitype == 72) {
if ($temp_val != '') {
if ($fieldname == 'unit_price') {
$currency_id = getProductBaseCurrency($entity_id, $module);
$cursym_convrate = getCurrencySymbolandCRate($currency_id);
$value = "<font style='color:grey;'>" . $cursym_convrate['symbol'] . "</font> " . $temp_val;
} else {
$rate = $user_info['conv_rate'];
//changes made to remove vtiger_currency symbol infront of each vtiger_potential amount
if ($temp_val != 0) {
$value = convertFromDollar($temp_val, $rate);
} else {
$value = $temp_val;
}
}
} else {
$value = '';
}
} elseif ($uitype == 17) {
$value = '<a href="http://' . $field_val . '" target="_blank">' . $temp_val . '</a>';
} elseif ($uitype == 13 || $uitype == 104 && ($_REQUEST['action'] != 'Popup' && $_REQUEST['file'] != 'Popup')) {
if ($_SESSION['internal_mailer'] == 1) {
//check added for email link in user detailview
if ($module == 'Calendar') {
if (getActivityType($entity_id) == 'Task') {
$tabid = 9;
} else {
$tabid = 16;
}
} else {
$tabid = getTabid($module);
}
$fieldid = getFieldid($tabid, $fieldname);
if (empty($popuptype)) {
$value = '<a href="javascript:InternalMailer(' . $entity_id . ',' . $fieldid . ',\'' . $fieldname . '\',\'' . $module . '\',\'record_id\');">' . $temp_val . '</a>';
} else {
$value = $temp_val;
}
} else {
$value = '<a href="mailto:' . $field_val . '">' . $temp_val . '</a>';
}
} elseif ($uitype == 56) {
if ($temp_val == 1) {
$value = $app_strings['yes'];
} elseif ($temp_val == 0) {
$value = $app_strings['no'];
} else {
$value = '';
}
} elseif ($uitype == 57) {
if ($temp_val != '') {
$sql = "SELECT * FROM vtiger_contactdetails WHERE contactid=?";
$result = $adb->pquery($sql, array($temp_val));
$value = '';
if ($adb->num_rows($result)) {
$name = getFullNameFromQResult($result, 0, "Contacts");
$value = '<a href=index.php?module=Contacts&action=DetailView&record=' . $temp_val . '>' . $name . '</a>';
}
} else {
$value = '';
}
} elseif ($uitype == 58) {
if ($temp_val != '') {
$sql = "SELECT * FROM vtiger_campaign WHERE campaignid=?";
$result = $adb->pquery($sql, array($temp_val));
$campaignname = $adb->query_result($result, 0, "campaignname");
$value = '<a href=index.php?module=Campaigns&action=DetailView&record=' . $temp_val . '>' . $campaignname . '</a>';
} else {
$value = '';
}
} elseif ($uitype == 59) {
if ($temp_val != '') {
$value = getProductName($temp_val);
} else {
$value = '';
}
} elseif ($uitype == 61) {
$attachmentid = $adb->query_result($adb->pquery("SELECT * FROM vtiger_seattachmentsrel WHERE crmid = ?", array($entity_id)), 0, 'attachmentsid');
$value = '<a href = "index.php?module=uploads&action=downloadfile&return_module=' . $module . '&fileid=' . $attachmentid . '&filename=' . $temp_val . '">' . $temp_val . '</a>';
} elseif ($uitype == 62) {
$parentid = $adb->query_result($list_result, $list_result_count, "parent_id");
$parenttype = $adb->query_result($list_result, $list_result_count, "parent_type");
if ($parenttype == "Leads") {
$tablename = "vtiger_leaddetails";
$fieldname = "lastname";
$idname = "leadid";
}
if ($parenttype == "Accounts") {
$tablename = "vtiger_account";
$fieldname = "accountname";
$idname = "accountid";
}
if ($parenttype == "Products") {
$tablename = "vtiger_products";
$fieldname = "productname";
$idname = "productid";
}
if ($parenttype == "HelpDesk") {
$tablename = "vtiger_troubletickets";
$fieldname = "title";
$idname = "ticketid";
}
if ($parenttype == "Invoice") {
$tablename = "vtiger_invoice";
$fieldname = "subject";
$idname = "invoiceid";
}
if ($parentid != '') {
$sql = "SELECT * FROM {$tablename} WHERE {$idname} = ?";
$fieldvalue = $adb->query_result($adb->pquery($sql, array($parentid)), 0, $fieldname);
$value = '<a href=index.php?module=' . $parenttype . '&action=DetailView&record=' . $parentid . '&parenttab=' . urlencode($tabname) . '>' . $fieldvalue . '</a>';
} else {
$value = '';
}
} elseif ($uitype == 66) {
$parentid = $adb->query_result($list_result, $list_result_count, "parent_id");
$parenttype = $adb->query_result($list_result, $list_result_count, "parent_type");
if ($parenttype == "Leads") {
$tablename = "vtiger_leaddetails";
$fieldname = "lastname";
$idname = "leadid";
}
if ($parenttype == "Accounts") {
$tablename = "vtiger_account";
$fieldname = "accountname";
$idname = "accountid";
}
if ($parenttype == "HelpDesk") {
$tablename = "vtiger_troubletickets";
$fieldname = "title";
$idname = "ticketid";
}
if ($parentid != '') {
$sql = "SELECT * FROM {$tablename} WHERE {$idname} = ?";
$fieldvalue = $adb->query_result($adb->pquery($sql, array($parentid)), 0, $fieldname);
$value = '<a href=index.php?module=' . $parenttype . '&action=DetailView&record=' . $parentid . '&parenttab=' . urlencode($tabname) . '>' . $fieldvalue . '</a>';
} else {
$value = '';
}
} elseif ($uitype == 67) {
$parentid = $adb->query_result($list_result, $list_result_count, "parent_id");
$parenttype = $adb->query_result($list_result, $list_result_count, "parent_type");
if ($parenttype == "Leads") {
$tablename = "vtiger_leaddetails";
$fieldname = "lastname";
$idname = "leadid";
}
if ($parenttype == "Contacts") {
$tablename = "vtiger_contactdetails";
$fieldname = "contactname";
$idname = "contactid";
}
if ($parentid != '') {
$sql = "SELECT * FROM {$tablename} WHERE {$idname} = ?";
$fieldvalue = $adb->query_result($adb->pquery($sql, array($parentid)), 0, $fieldname);
$value = '<a href=index.php?module=' . $parenttype . '&action=DetailView&record=' . $parentid . '&parenttab=' . urlencode($tabname) . '>' . $fieldvalue . '</a>';
} else {
$value = '';
}
} elseif ($uitype == 68) {
$parentid = $adb->query_result($list_result, $list_result_count, "parent_id");
$parenttype = $adb->query_result($list_result, $list_result_count, "parent_type");
if ($parenttype == '' && $parentid != '') {
$parenttype = getSalesEntityType($parentid);
}
if ($parenttype == "Contacts") {
$tablename = "vtiger_contactdetails";
$fieldname = "contactname";
$idname = "contactid";
}
if ($parenttype == "Accounts") {
$tablename = "vtiger_account";
$fieldname = "accountname";
$idname = "accountid";
}
if ($parentid != '') {
$sql = "SELECT * FROM {$tablename} WHERE {$idname} = ?";
$fieldvalue = $adb->query_result($adb->pquery($sql, array($parentid)), 0, $fieldname);
$value = '<a href=index.php?module=' . $parenttype . '&action=DetailView&record=' . $parentid . '&parenttab=' . urlencode($tabname) . '>' . $fieldvalue . '</a>';
} else {
$value = '';
}
} elseif ($uitype == 78) {
if ($temp_val != '') {
$quote_name = getQuoteName($temp_val);
$value = '<a href=index.php?module=Quotes&action=DetailView&record=' . $temp_val . '&parenttab=' . urlencode($tabname) . '>' . textlength_check($quote_name) . '</a>';
} else {
$value = '';
}
} elseif ($uitype == 79) {
if ($temp_val != '') {
$purchaseorder_name = getPoName($temp_val);
$value = '<a href=index.php?module=PurchaseOrder&action=DetailView&record=' . $temp_val . '&parenttab=' . urlencode($tabname) . '>' . textlength_check($purchaseorder_name) . '</a>';
} else {
$value = '';
}
} elseif ($uitype == 80) {
if ($temp_val != '') {
$salesorder_name = getSoName($temp_val);
$value = "<a href=index.php?module=SalesOrder&action=DetailView&record={$temp_val}&parenttab=" . urlencode($tabname) . ">" . textlength_check($salesorder_name) . '</a>';
} else {
$value = '';
}
} elseif ($uitype == 75 || $uitype == 81) {
if ($temp_val != '') {
$vendor_name = getVendorName($temp_val);
$value = '<a href=index.php?module=Vendors&action=DetailView&record=' . $temp_val . '&parenttab=' . urlencode($tabname) . '>' . textlength_check($vendor_name) . '</a>';
} else {
$value = '';
}
} elseif ($uitype == 98) {
$value = '<a href="index.php?action=RoleDetailView&module=Settings&parenttab=Settings&roleid=' . $temp_val . '">' . textlength_check(getRoleName($temp_val)) . '</a>';
} elseif ($uitype == 33) {
$value = $temp_val != "" ? str_ireplace(' |##| ', ', ', $temp_val) : "";
if (!$is_admin && $value != '') {
$value = $field_val != "" ? str_ireplace(' |##| ', ', ', $field_val) : "";
if ($value != '') {
$value_arr = explode(',', trim($value));
$roleid = $current_user->roleid;
$subrole = getRoleSubordinates($roleid);
if (count($subrole) > 0) {
$roleids = $subrole;
array_push($roleids, $roleid);
} else {
$roleids = $roleid;
}
if (count($roleids) > 0) {
$pick_query = "select distinct {$fieldname} from vtiger_{$fieldname} inner join vtiger_role2picklist on vtiger_role2picklist.picklistvalueid = vtiger_{$fieldname}.picklist_valueid where roleid in (" . generateQuestionMarks($roleids) . ") and picklistid in (select picklistid from vtiger_{$fieldname}) order by {$fieldname} asc";
$params = array($roleids);
} else {
$pick_query = "select distinct {$fieldname} from vtiger_{$fieldname} inner join vtiger_role2picklist on vtiger_role2picklist.picklistvalueid = vtiger_{$fieldname}.picklist_valueid where picklistid in (select picklistid from vtiger_{$fieldname}) order by {$fieldname} asc";
$params = array();
}
$pickListResult = $adb->pquery($pick_query, $params);
$picklistval = array();
for ($i = 0; $i < $adb->num_rows($pickListResult); $i++) {
$picklistarr[] = $adb->query_result($pickListResult, $i, $fieldname);
}
$value_temp = array();
$string_temp = '';
$str_c = 0;
foreach ($value_arr as $ind => $val) {
$notaccess = '<font color="red">' . $app_strings['LBL_NOT_ACCESSIBLE'] . "</font>";
if (!$listview_max_textlength || !(strlen(preg_replace("/(<\\/?)(\\w+)([^>]*>)/i", "", $string_temp)) > $listview_max_textlength)) {
$value_temp1 = in_array(trim($val), $picklistarr) ? $val : $notaccess;
if ($str_c != 0) {
$string_temp .= ' , ';
}
$string_temp .= $value_temp1;
$str_c++;
} else {
$string_temp .= '...';
}
}
$value = $string_temp;
}
}
} elseif ($uitype == 85) {
$value = $temp_val != "" ? "<a href='skype:{$temp_val}?call'>{$temp_val}</a>" : "";
} elseif ($uitype == 116) {
$value = $temp_val != "" ? getCurrencyName($temp_val) : "";
} elseif ($uitype == 117) {
// NOTE: Without symbol the value could be used for filtering/lookup hence avoiding the translation
$value = $temp_val != "" ? getCurrencyName($temp_val, false) : "";
} elseif ($uitype == 26) {
$sql = "select foldername from vtiger_attachmentsfolder where folderid = ?";
$res = $adb->pquery($sql, array($temp_val));
$foldername = $adb->query_result($res, 0, 'foldername');
$value = $foldername;
} elseif ($uitype == 11) {
// Fix added for Trac Id: 6139
if (vtlib_isModuleActive('PBXManager')) {
$value = "<a href='javascript:;' onclick='startCall("{$temp_val}", "{$entity_id}")'>" . $temp_val . "</a>";
} else {
$value = $temp_val;
}
} elseif ($uitype == 25) {
$contactid = $_REQUEST['record'];
$emailid = $adb->query_result($list_result, $list_result_count, "activityid");
$result = $adb->pquery("SELECT access_count FROM vtiger_email_track WHERE crmid=? AND mailid=?", array($contactid, $emailid));
$value = $adb->query_result($result, 0, "access_count");
if (!$value) {
$value = 0;
}
} elseif ($uitype == 8) {
if (!empty($temp_val)) {
$temp_val = html_entity_decode($temp_val, ENT_QUOTES, $default_charset);
$json = new Zend_Json();
$value = vt_suppressHTMLTags(implode(',', $json->decode($temp_val)));
}
} else {
if ($fieldname == $focus->list_link_field) {
if ($mode == "search") {
if ($popuptype == "specific" || $popuptype == "toDospecific") {
// Added for get the first name of contact in Popup window
if ($colname == "lastname" && $module == 'Contacts') {
$temp_val = getFullNameFromQResult($list_result, $list_result_count, "Contacts");
}
$slashes_temp_val = popup_from_html($temp_val);
$slashes_temp_val = htmlspecialchars($slashes_temp_val, ENT_QUOTES, $default_charset);
//Added to avoid the error when select SO from Invoice through AjaxEdit
if ($module == 'SalesOrder') {
$value = '<a href="javascript:window.close();" onclick=\'set_return_specific("' . $entity_id . '", "' . nl2br(decode_html($slashes_temp_val)) . '","' . $_REQUEST['form'] . '");\'>' . $temp_val . '</a>';
} elseif ($module == 'Contacts') {
require_once 'modules/Contacts/Contacts.php';
$cntct_focus = new Contacts();
$cntct_focus->retrieve_entity_info($entity_id, "Contacts");
$slashes_temp_val = popup_from_html($temp_val);
//ADDED TO CHECK THE FIELD PERMISSIONS FOR
$xyz = array('mailingstreet', 'mailingcity', 'mailingzip', 'mailingpobox', 'mailingcountry', 'mailingstate', 'otherstreet', 'othercity', 'otherzip', 'otherpobox', 'othercountry', 'otherstate');
for ($i = 0; $i < 12; $i++) {
if (getFieldVisibilityPermission($module, $current_user->id, $xyz[$i]) == '0') {
$cntct_focus->column_fields[$xyz[$i]] = $cntct_focus->column_fields[$xyz[$i]];
} else {
$cntct_focus->column_fields[$xyz[$i]] = '';
}
}
// For ToDo creation the underlying form is not named as EditView
$form = !empty($_REQUEST['form']) ? $_REQUEST['form'] : '';
if (!empty($form)) {
$form = htmlspecialchars($form, ENT_QUOTES, $default_charset);
}
$value = '<a href="javascript:window.close();" onclick=\'set_return_contact_address("' . $entity_id . '", "' . nl2br(decode_html($slashes_temp_val)) . '", "' . popup_decode_html($cntct_focus->column_fields['mailingstreet']) . '", "' . popup_decode_html($cntct_focus->column_fields['otherstreet']) . '", "' . popup_decode_html($cntct_focus->column_fields['mailingcity']) . '", "' . popup_decode_html($cntct_focus->column_fields['othercity']) . '", "' . popup_decode_html($cntct_focus->column_fields['mailingstate']) . '", "' . popup_decode_html($cntct_focus->column_fields['otherstate']) . '", "' . popup_decode_html($cntct_focus->column_fields['mailingzip']) . '", "' . popup_decode_html($cntct_focus->column_fields['otherzip']) . '", "' . popup_decode_html($cntct_focus->column_fields['mailingcountry']) . '", "' . popup_decode_html($cntct_focus->column_fields['othercountry']) . '","' . popup_decode_html($cntct_focus->column_fields['mailingpobox']) . '", "' . popup_decode_html($cntct_focus->column_fields['otherpobox']) . '","' . $form . '");\'>' . $temp_val . '</a>';
} else {
if ($popuptype == 'toDospecific') {
$value = '<a href="javascript:window.close();" onclick=\'set_return_toDospecific("' . $entity_id . '", "' . nl2br(decode_html($slashes_temp_val)) . '");\'>' . $temp_val . '</a>';
} else {
$value = '<a href="javascript:window.close();" onclick=\'set_return_specific("' . $entity_id . '", "' . nl2br(decode_html($slashes_temp_val)) . '");\'>' . $temp_val . '</a>';
}
}
} elseif ($popuptype == "detailview") {
if ($colname == "lastname" && ($module == 'Contacts' || $module == 'Leads')) {
$temp_val = getFullNameFromQResult($list_result, $list_result_count, $module);
}
$slashes_temp_val = popup_from_html($temp_val);
$slashes_temp_val = htmlspecialchars($slashes_temp_val, ENT_QUOTES, $default_charset);
$focus->record_id = $_REQUEST['recordid'];
if ($_REQUEST['return_module'] == "Calendar") {
$value = '<a href="javascript:window.close();" id="calendarCont' . $entity_id . '" LANGUAGE=javascript onclick=\'add_data_to_relatedlist_incal("' . $entity_id . '","' . decode_html($slashes_temp_val) . '");\'>' . $temp_val . '</a>';
} else {
$value = '<a href="javascript:window.close();" onclick=\'add_data_to_relatedlist("' . $entity_id . '","' . $focus->record_id . '","' . $module . '");\'>' . $temp_val . '</a>';
}
} elseif ($popuptype == "formname_specific") {
$slashes_temp_val = popup_from_html($temp_val);
$slashes_temp_val = htmlspecialchars($slashes_temp_val, ENT_QUOTES, $default_charset);
$value = '<a href="javascript:window.close();" onclick=\'set_return_formname_specific("' . $_REQUEST['form'] . '", "' . $entity_id . '", "' . nl2br(decode_html($slashes_temp_val)) . '");\'>' . $temp_val . '</a>';
} elseif ($popuptype == "inventory_prod") {
$row_id = $_REQUEST['curr_row'];
//To get all the tax types and values and pass it to product details
$tax_str = '';
$tax_details = getAllTaxes();
for ($tax_count = 0; $tax_count < count($tax_details); $tax_count++) {
$tax_str .= $tax_details[$tax_count]['taxname'] . '=' . $tax_details[$tax_count]['percentage'] . ',';
}
$tax_str = trim($tax_str, ',');
$rate = $user_info['conv_rate'];
if (getFieldVisibilityPermission('Products', $current_user->id, 'unit_price') == '0') {
$unitprice = $adb->query_result($list_result, $list_result_count, 'unit_price');
if ($_REQUEST['currencyid'] != null) {
$prod_prices = getPricesForProducts($_REQUEST['currencyid'], array($entity_id));
$unitprice = $prod_prices[$entity_id];
}
} else {
$unit_price = '';
}
$sub_products = '';
$sub_prod = '';
$sub_prod_query = $adb->pquery("SELECT vtiger_products.productid,vtiger_products.productname,vtiger_products.qtyinstock,vtiger_crmentity.description from vtiger_products INNER JOIN vtiger_crmentity ON vtiger_crmentity.crmid=vtiger_products.productid INNER JOIN vtiger_seproductsrel on vtiger_seproductsrel.crmid=vtiger_products.productid WHERE vtiger_seproductsrel.productid=? and vtiger_seproductsrel.setype='Products'", array($entity_id));
for ($i = 0; $i < $adb->num_rows($sub_prod_query); $i++) {
//$sub_prod=array();
$id = $adb->query_result($sub_prod_query, $i, "productid");
$str_sep = '';
if ($i > 0) {
$str_sep = ":";
}
$sub_products .= $str_sep . $id;
$sub_prod .= $str_sep . " - " . $adb->query_result($sub_prod_query, $i, "productname");
}
$sub_det = $sub_products . "::" . str_replace(":", "<br>", $sub_prod);
$qty_stock = $adb->query_result($list_result, $list_result_count, 'qtyinstock');
//fix for T6943
$slashes_temp_val = popup_from_html($field_val);
$slashes_temp_val = htmlspecialchars($slashes_temp_val, ENT_QUOTES, $default_charset);
$description = popup_from_html($adb->query_result($list_result, $list_result_count, 'description'));
$slashes_temp_desc = decode_html(htmlspecialchars($description, ENT_QUOTES, $default_charset));
$slashes_desc = str_replace(array("\r", "\n"), array('\\r', '\\n'), $slashes_temp_desc);
$tmp_arr = array("entityid" => $entity_id, "prodname" => "" . stripslashes(decode_html(nl2br($slashes_temp_val))) . "", "unitprice" => "{$unitprice}", "qtyinstk" => "{$qty_stock}", "taxstring" => "{$tax_str}", "rowid" => "{$row_id}", "desc" => "{$slashes_desc}", "subprod_ids" => "{$sub_det}");
require_once 'include/Zend/Json.php';
$prod_arr = Zend_Json::encode($tmp_arr);
$value = '<a href="javascript:window.close();" id=\'popup_product_' . $entity_id . '\' onclick=\'set_return_inventory("' . $entity_id . '", "' . decode_html(nl2br($slashes_temp_val)) . '", "' . $unitprice . '", "' . $qty_stock . '","' . $tax_str . '","' . $row_id . '","' . $slashes_desc . '","' . $sub_det . '");\' vt_prod_arr=\'' . $prod_arr . '\' >' . $temp_val . '</a>';
} elseif ($popuptype == "inventory_prod_po") {
$row_id = $_REQUEST['curr_row'];
//To get all the tax types and values and pass it to product details
$tax_str = '';
$tax_details = getAllTaxes();
for ($tax_count = 0; $tax_count < count($tax_details); $tax_count++) {
$tax_str .= $tax_details[$tax_count]['taxname'] . '=' . $tax_details[$tax_count]['percentage'] . ',';
}
$tax_str = trim($tax_str, ',');
$rate = $user_info['conv_rate'];
if (getFieldVisibilityPermission($module, $current_user->id, 'unit_price') == '0') {
$unitprice = $adb->query_result($list_result, $list_result_count, 'unit_price');
if ($_REQUEST['currencyid'] != null) {
$prod_prices = getPricesForProducts($_REQUEST['currencyid'], array($entity_id), $module);
$unitprice = $prod_prices[$entity_id];
}
} else {
$unit_price = '';
}
$sub_products = '';
$sub_prod = '';
$sub_prod_query = $adb->pquery("SELECT vtiger_products.productid,vtiger_products.productname,vtiger_products.qtyinstock,vtiger_crmentity.description from vtiger_products INNER JOIN vtiger_crmentity ON vtiger_crmentity.crmid=vtiger_products.productid INNER JOIN vtiger_seproductsrel on vtiger_seproductsrel.crmid=vtiger_products.productid WHERE vtiger_seproductsrel.productid=? and vtiger_seproductsrel.setype='Products'", array($entity_id));
for ($i = 0; $i < $adb->num_rows($sub_prod_query); $i++) {
//$sub_prod=array();
$id = $adb->query_result($sub_prod_query, $i, "productid");
$str_sep = '';
if ($i > 0) {
$str_sep = ":";
}
$sub_products .= $str_sep . $id;
$sub_prod .= $str_sep . " - {$id}." . $adb->query_result($sub_prod_query, $i, "productname");
}
$sub_det = $sub_products . "::" . str_replace(":", "<br>", $sub_prod);
$slashes_temp_val = popup_from_html($field_val);
$slashes_temp_val = htmlspecialchars($slashes_temp_val, ENT_QUOTES, $default_charset);
$description = popup_from_html($adb->query_result($list_result, $list_result_count, 'description'));
$slashes_temp_desc = decode_html(htmlspecialchars($description, ENT_QUOTES, $default_charset));
$slashes_desc = str_replace(array("\r", "\n"), array('\\r', '\\n'), $slashes_temp_desc);
$tmp_arr = array("entityid" => $entity_id, "prodname" => "" . stripslashes(decode_html(nl2br($slashes_temp_val))) . "", "unitprice" => "{$unitprice}", "qtyinstk" => "{$qty_stock}", "taxstring" => "{$tax_str}", "rowid" => "{$row_id}", "desc" => "{$slashes_desc}", "subprod_ids" => "{$sub_det}");
require_once 'include/Zend/Json.php';
$prod_arr = Zend_Json::encode($tmp_arr);
$value = '<a href="javascript:window.close();" id=\'popup_product_' . $entity_id . '\' onclick=\'set_return_inventory_po("' . $entity_id . '", "' . decode_html(nl2br($slashes_temp_val)) . '", "' . $unitprice . '", "' . $tax_str . '","' . $row_id . '","' . $slashes_desc . '","' . $sub_det . '"); \' vt_prod_arr=\'' . $prod_arr . '\' >' . $temp_val . '</a>';
} elseif ($popuptype == "inventory_service") {
$row_id = $_REQUEST['curr_row'];
//To get all the tax types and values and pass it to product details
$tax_str = '';
$tax_details = getAllTaxes();
for ($tax_count = 0; $tax_count < count($tax_details); $tax_count++) {
$tax_str .= $tax_details[$tax_count]['taxname'] . '=' . $tax_details[$tax_count]['percentage'] . ',';
}
$tax_str = trim($tax_str, ',');
$rate = $user_info['conv_rate'];
if (getFieldVisibilityPermission('Services', $current_user->id, 'unit_price') == '0') {
$unitprice = $adb->query_result($list_result, $list_result_count, 'unit_price');
if ($_REQUEST['currencyid'] != null) {
$prod_prices = getPricesForProducts($_REQUEST['currencyid'], array($entity_id), $module);
$unitprice = $prod_prices[$entity_id];
}
} else {
$unit_price = '';
}
$slashes_temp_val = popup_from_html($field_val);
$slashes_temp_val = htmlspecialchars($slashes_temp_val, ENT_QUOTES, $default_charset);
$description = popup_from_html($adb->query_result($list_result, $list_result_count, 'description'));
$slashes_temp_desc = decode_html(htmlspecialchars($description, ENT_QUOTES, $default_charset));
$slashes_desc = str_replace(array("\r", "\n"), array('\\r', '\\n'), $slashes_temp_desc);
$tmp_arr = array("entityid" => $entity_id, "prodname" => "" . stripslashes(decode_html(nl2br($slashes_temp_val))) . "", "unitprice" => "{$unitprice}", "taxstring" => "{$tax_str}", "rowid" => "{$row_id}", "desc" => "{$slashes_desc}");
require_once 'include/Zend/Json.php';
$prod_arr = Zend_Json::encode($tmp_arr);
$value = '<a href="javascript:window.close();" id=\'popup_product_' . $entity_id . '\' onclick=\'set_return_inventory("' . $entity_id . '", "' . decode_html(nl2br($slashes_temp_val)) . '", "' . $unitprice . '", "' . $tax_str . '","' . $row_id . '","' . $slashes_desc . '");\' vt_prod_arr=\'' . $prod_arr . '\' >' . $temp_val . '</a>';
} elseif ($popuptype == "inventory_pb") {
$prod_id = $_REQUEST['productid'];
$flname = $_REQUEST['fldname'];
$listprice = getListPrice($prod_id, $entity_id);
$temp_val = popup_from_html($temp_val);
$value = '<a href="javascript:window.close();" onclick=\'set_return_inventory_pb("' . $listprice . '", "' . $flname . '"); \'>' . $temp_val . '</a>';
} elseif ($popuptype == "specific_account_address") {
require_once 'modules/Accounts/Accounts.php';
$acct_focus = new Accounts();
$acct_focus->retrieve_entity_info($entity_id, "Accounts");
$slashes_temp_val = popup_from_html($temp_val);
$slashes_temp_val = htmlspecialchars($slashes_temp_val, ENT_QUOTES, $default_charset);
$xyz = array('bill_street', 'bill_city', 'bill_code', 'bill_pobox', 'bill_country', 'bill_state', 'ship_street', 'ship_city', 'ship_code', 'ship_pobox', 'ship_country', 'ship_state');
for ($i = 0; $i < 12; $i++) {
if (getFieldVisibilityPermission($module, $current_user->id, $xyz[$i]) == '0') {
$acct_focus->column_fields[$xyz[$i]] = $acct_focus->column_fields[$xyz[$i]];
} else {
$acct_focus->column_fields[$xyz[$i]] = '';
}
}
$bill_street = str_replace(array("\r", "\n"), array('\\r', '\\n'), popup_decode_html($acct_focus->column_fields['bill_street']));
$ship_street = str_replace(array("\r", "\n"), array('\\r', '\\n'), popup_decode_html($acct_focus->column_fields['ship_street']));
$value = '<a href="javascript:window.close();" onclick=\'set_return_address("' . $entity_id . '", "' . nl2br(decode_html($slashes_temp_val)) . '", "' . $bill_street . '", "' . $ship_street . '", "' . popup_decode_html($acct_focus->column_fields['bill_city']) . '", "' . popup_decode_html($acct_focus->column_fields['ship_city']) . '", "' . popup_decode_html($acct_focus->column_fields['bill_state']) . '", "' . popup_decode_html($acct_focus->column_fields['ship_state']) . '", "' . popup_decode_html($acct_focus->column_fields['bill_code']) . '", "' . popup_decode_html($acct_focus->column_fields['ship_code']) . '", "' . popup_decode_html($acct_focus->column_fields['bill_country']) . '", "' . popup_decode_html($acct_focus->column_fields['ship_country']) . '","' . popup_decode_html($acct_focus->column_fields['bill_pobox']) . '", "' . popup_decode_html($acct_focus->column_fields['ship_pobox']) . '");\'>' . $temp_val . '</a>';
} elseif ($popuptype == "specific_contact_account_address") {
require_once 'modules/Accounts/Accounts.php';
$acct_focus = new Accounts();
$acct_focus->retrieve_entity_info($entity_id, "Accounts");
$slashes_temp_val = popup_from_html($temp_val);
$slashes_temp_val = htmlspecialchars($slashes_temp_val, ENT_QUOTES, $default_charset);
$bill_street = str_replace(array("\r", "\n"), array('\\r', '\\n'), popup_decode_html($acct_focus->column_fields['bill_street']));
$ship_street = str_replace(array("\r", "\n"), array('\\r', '\\n'), popup_decode_html($acct_focus->column_fields['ship_street']));
$value = '<a href="javascript:window.close();" onclick=\'set_return_contact_address("' . $entity_id . '", "' . nl2br(decode_html($slashes_temp_val)) . '", "' . $bill_street . '", "' . $ship_street . '", "' . popup_decode_html($acct_focus->column_fields['bill_city']) . '", "' . popup_decode_html($acct_focus->column_fields['ship_city']) . '", "' . popup_decode_html($acct_focus->column_fields['bill_state']) . '", "' . popup_decode_html($acct_focus->column_fields['ship_state']) . '", "' . popup_decode_html($acct_focus->column_fields['bill_code']) . '", "' . popup_decode_html($acct_focus->column_fields['ship_code']) . '", "' . popup_decode_html($acct_focus->column_fields['bill_country']) . '", "' . popup_decode_html($acct_focus->column_fields['ship_country']) . '","' . popup_decode_html($acct_focus->column_fields['bill_pobox']) . '", "' . popup_decode_html($acct_focus->column_fields['ship_pobox']) . '");\'>' . $temp_val . '</a>';
} elseif ($popuptype == "specific_potential_account_address") {
$slashes_temp_val = popup_from_html($temp_val);
$slashes_temp_val = htmlspecialchars($slashes_temp_val, ENT_QUOTES, $default_charset);
// For B2C support, Potential was enabled to be linked to Contacts also.
// Hence we need case handling for it.
$relatedid = $adb->query_result($list_result, $list_result_count, "related_to");
$relatedentity = getSalesEntityType($relatedid);
if ($relatedentity == 'Accounts') {
require_once 'modules/Accounts/Accounts.php';
$acct_focus = new Accounts();
$acct_focus->retrieve_entity_info($relatedid, "Accounts");
$account_name = getAccountName($relatedid);
$slashes_account_name = popup_from_html($account_name);
$slashes_account_name = htmlspecialchars($slashes_account_name, ENT_QUOTES, $default_charset);
$xyz = array('bill_street', 'bill_city', 'bill_code', 'bill_pobox', 'bill_country', 'bill_state', 'ship_street', 'ship_city', 'ship_code', 'ship_pobox', 'ship_country', 'ship_state');
for ($i = 0; $i < 12; $i++) {
if (getFieldVisibilityPermission('Accounts', $current_user->id, $xyz[$i]) == '0') {
$acct_focus->column_fields[$xyz[$i]] = $acct_focus->column_fields[$xyz[$i]];
} else {
$acct_focus->column_fields[$xyz[$i]] = '';
}
}
$bill_street = str_replace(array("\r", "\n"), array('\\r', '\\n'), popup_decode_html($acct_focus->column_fields['bill_street']));
$ship_street = str_replace(array("\r", "\n"), array('\\r', '\\n'), popup_decode_html($acct_focus->column_fields['ship_street']));
$value = '<a href="javascript:window.close();" onclick=\'set_return_address("' . $entity_id . '", "' . nl2br(decode_html($slashes_temp_val)) . '", "' . $relatedid . '", "' . nl2br(decode_html($slashes_account_name)) . '", "' . $bill_street . '", "' . $ship_street . '", "' . popup_decode_html($acct_focus->column_fields['bill_city']) . '", "' . popup_decode_html($acct_focus->column_fields['ship_city']) . '", "' . popup_decode_html($acct_focus->column_fields['bill_state']) . '", "' . popup_decode_html($acct_focus->column_fields['ship_state']) . '", "' . popup_decode_html($acct_focus->column_fields['bill_code']) . '", "' . popup_decode_html($acct_focus->column_fields['ship_code']) . '", "' . popup_decode_html($acct_focus->column_fields['bill_country']) . '", "' . popup_decode_html($acct_focus->column_fields['ship_country']) . '","' . popup_decode_html($acct_focus->column_fields['bill_pobox']) . '", "' . popup_decode_html($acct_focus->column_fields['ship_pobox']) . '");\'>' . $temp_val . '</a>';
} else {
if ($relatedentity == 'Contacts') {
require_once 'modules/Contacts/Contacts.php';
$contact_name = getContactName($relatedid);
$slashes_contact_name = popup_from_html($contact_name);
$slashes_contact_name = htmlspecialchars($slashes_contact_name, ENT_QUOTES, $default_charset);
$value = '<a href="javascript:window.close();" onclick=\'set_return_contact("' . $entity_id . '", "' . nl2br(decode_html($slashes_temp_val)) . '", "' . $relatedid . '", "' . nl2br(decode_html($slashes_contact_name)) . '");\'>' . $temp_val . '</a>';
} else {
$value = $temp_val;
}
}
} elseif ($popuptype == "set_return_emails") {
if ($module == 'Accounts') {
$name = $adb->query_result($list_result, $list_result_count, 'accountname');
$accid = $adb->query_result($list_result, $list_result_count, 'accountid');
if (CheckFieldPermission('email1', $module) == "true") {
$emailaddress = $adb->query_result($list_result, $list_result_count, "email1");
$email_check = 1;
} else {
$email_check = 0;
}
if ($emailaddress == '') {
if (CheckFieldPermission('email2', $module) == 'true') {
$emailaddress2 = $adb->query_result($list_result, $list_result_count, "email2");
$email_check = 2;
} else {
if ($email_check == 1) {
$email_check = 4;
} else {
$email_check = 3;
}
}
}
$querystr = "SELECT fieldid,fieldlabel,columnname FROM vtiger_field WHERE tabid=? and uitype=13 and vtiger_field.presence in (0,2)";
$queryres = $adb->pquery($querystr, array(getTabid($module)));
//Change this index 0 - to get the vtiger_fieldid based on email1 or email2
$fieldid = $adb->query_result($queryres, 0, 'fieldid');
$slashes_name = popup_from_html($name);
$slashes_name = htmlspecialchars($slashes_name, ENT_QUOTES, $default_charset);
$value = '<a href="javascript:window.close();" onclick=\'return set_return_emails(' . $entity_id . ',' . $fieldid . ',"' . decode_html($slashes_name) . '","' . $emailaddress . '","' . $emailaddress2 . '","' . $email_check . '"); \'>' . textlength_check($name) . '</a>';
} elseif ($module == 'Vendors') {
$name = $adb->query_result($list_result, $list_result_count, 'vendorname');
$venid = $adb->query_result($list_result, $list_result_count, 'vendorid');
if (CheckFieldPermission('email', $module) == "true") {
$emailaddress = $adb->query_result($list_result, $list_result_count, "email");
$email_check = 1;
} else {
$email_check = 0;
}
$querystr = "SELECT fieldid,fieldlabel,columnname FROM vtiger_field WHERE tabid=? and uitype=13 and vtiger_field.presence in (0,2)";
$queryres = $adb->pquery($querystr, array(getTabid($module)));
//Change this index 0 - to get the vtiger_fieldid based on email1 or email2
$fieldid = $adb->query_result($queryres, 0, 'fieldid');
$slashes_name = popup_from_html($name);
$slashes_name = htmlspecialchars($slashes_name, ENT_QUOTES, $default_charset);
$value = '<a href="javascript:window.close();" onclick=\'return set_return_emails(' . $entity_id . ',' . $fieldid . ',"' . decode_html($slashes_name) . '","' . $emailaddress . '","' . $emailaddress2 . '","' . $email_check . '"); \'>' . textlength_check($name) . '</a>';
} elseif ($module == 'Contacts' || $module == 'Leads') {
$name = getFullNameFromQResult($list_result, $list_result_count, $module);
if (CheckFieldPermission('email', $module) == "true") {
$emailaddress = $adb->query_result($list_result, $list_result_count, "email");
$email_check = 1;
} else {
$email_check = 0;
}
if ($emailaddress == '') {
if (CheckFieldPermission('yahooid', $module) == 'true') {
$emailaddress2 = $adb->query_result($list_result, $list_result_count, "yahooid");
$email_check = 2;
} else {
if ($email_check == 1) {
$email_check = 4;
} else {
$email_check = 3;
}
}
}
$querystr = "SELECT fieldid,fieldlabel,columnname FROM vtiger_field WHERE tabid=? and uitype=13 and vtiger_field.presence in (0,2)";
$queryres = $adb->pquery($querystr, array(getTabid($module)));
//Change this index 0 - to get the vtiger_fieldid based on email or yahooid
$fieldid = $adb->query_result($queryres, 0, 'fieldid');
$slashes_name = popup_from_html($name);
$slashes_name = htmlspecialchars($slashes_name, ENT_QUOTES, $default_charset);
$value = '<a href="javascript:window.close();" onclick=\'return set_return_emails(' . $entity_id . ',' . $fieldid . ',"' . decode_html($slashes_name) . '","' . $emailaddress . '","' . $emailaddress2 . '","' . $email_check . '"); \'>' . $name . '</a>';
} else {
$firstname = $adb->query_result($list_result, $list_result_count, "first_name");
$lastname = $adb->query_result($list_result, $list_result_count, "last_name");
$name = $lastname . ' ' . $firstname;
$emailaddress = $adb->query_result($list_result, $list_result_count, "email1");
$slashes_name = popup_from_html($name);
$slashes_name = htmlspecialchars($slashes_name, ENT_QUOTES, $default_charset);
$email_check = 1;
$value = '<a href="javascript:window.close();" onclick=\'return set_return_emails(' . $entity_id . ',-1,"' . decode_html($slashes_name) . '","' . $emailaddress . '","' . $emailaddress2 . '","' . $email_check . '"); \'>' . textlength_check($name) . '</a>';
}
} elseif ($popuptype == "specific_vendor_address") {
require_once 'modules/Vendors/Vendors.php';
$acct_focus = new Vendors();
$acct_focus->retrieve_entity_info($entity_id, "Vendors");
$slashes_temp_val = popup_from_html($temp_val);
$slashes_temp_val = htmlspecialchars($slashes_temp_val, ENT_QUOTES, $default_charset);
$xyz = array('street', 'city', 'postalcode', 'pobox', 'country', 'state');
for ($i = 0; $i < 6; $i++) {
if (getFieldVisibilityPermission($module, $current_user->id, $xyz[$i]) == '0') {
$acct_focus->column_fields[$xyz[$i]] = $acct_focus->column_fields[$xyz[$i]];
} else {
$acct_focus->column_fields[$xyz[$i]] = '';
}
}
$bill_street = str_replace(array("\r", "\n"), array('\\r', '\\n'), popup_decode_html($acct_focus->column_fields['street']));
$value = '<a href="javascript:window.close();" onclick=\'set_return_address("' . $entity_id . '", "' . nl2br(decode_html($slashes_temp_val)) . '", "' . $bill_street . '", "' . popup_decode_html($acct_focus->column_fields['city']) . '", "' . popup_decode_html($acct_focus->column_fields['state']) . '", "' . popup_decode_html($acct_focus->column_fields['postalcode']) . '", "' . popup_decode_html($acct_focus->column_fields['country']) . '","' . popup_decode_html($acct_focus->column_fields['pobox']) . '");\'>' . $temp_val . '</a>';
} elseif ($popuptype == "specific_campaign") {
$slashes_temp_val = popup_from_html($temp_val);
$slashes_temp_val = htmlspecialchars($slashes_temp_val, ENT_QUOTES, $default_charset);
$value = '<a href="javascript:window.close();" onclick=\'set_return_specific_campaign("' . $entity_id . '", "' . nl2br(decode_html($slashes_temp_val)) . '");\'>' . $temp_val . '</a>';
} else {
if ($colname == "lastname") {
$temp_val = getFullNameFromQResult($list_result, $list_result_count, $module);
}
$slashes_temp_val = popup_from_html($temp_val);
$slashes_temp_val = htmlspecialchars($slashes_temp_val, ENT_QUOTES, $default_charset);
$log->debug("Exiting getValue method ...");
if ($_REQUEST['maintab'] == 'Calendar') {
$value = '<a href="javascript:window.close();" onclick=\'set_return_todo("' . $entity_id . '", "' . nl2br(decode_html($slashes_temp_val)) . '");\'>' . $temp_val . '</a>';
} else {
$value = '<a href="javascript:window.close();" onclick=\'set_return("' . $entity_id . '", "' . nl2br(decode_html($slashes_temp_val)) . '");\'>' . $temp_val . '</a>';
}
}
} else {
if ($module == "Leads" && $colname == "lastname" || $module == "Contacts" && $colname == "lastname") {
$value = '<a href="index.php?action=DetailView&module=' . $module . '&record=' . $entity_id . '&parenttab=' . $tabname . '">' . $temp_val . '</a>';
} elseif ($module == "Calendar") {
$actvity_type = $adb->query_result($list_result, $list_result_count, 'activitytype');
$actvity_type = $actvity_type != '' ? $actvity_type : $adb->query_result($list_result, $list_result_count, 'type');
if ($actvity_type == "Task") {
$value = '<a href="index.php?action=DetailView&module=' . $module . '&record=' . $entity_id . '&activity_mode=Task&parenttab=' . $tabname . '">' . $temp_val . '</a>';
} else {
$value = '<a href="index.php?action=DetailView&module=' . $module . '&record=' . $entity_id . '&activity_mode=Events&parenttab=' . $tabname . '">' . $temp_val . '</a>';
}
} elseif ($module == "Vendors") {
$value = '<a href="index.php?action=DetailView&module=Vendors&record=' . $entity_id . '&parenttab=' . $tabname . '">' . $temp_val . '</a>';
} elseif ($module == "PriceBooks") {
$value = '<a href="index.php?action=DetailView&module=PriceBooks&record=' . $entity_id . '&parenttab=' . $tabname . '">' . $temp_val . '</a>';
} elseif ($module == "SalesOrder") {
$value = '<a href="index.php?action=DetailView&module=SalesOrder&record=' . $entity_id . '&parenttab=' . $tabname . '">' . $temp_val . '</a>';
} elseif ($module == 'Emails') {
$value = $temp_val;
} else {
$value = '<a href="index.php?action=DetailView&module=' . $module . '&record=' . $entity_id . '&parenttab=' . $tabname . '">' . $temp_val . '</a>';
}
}
} elseif ($fieldname == 'expectedroi' || $fieldname == 'actualroi' || $fieldname == 'actualcost' || $fieldname == 'budgetcost' || $fieldname == 'expectedrevenue') {
$rate = $user_info['conv_rate'];
$value = convertFromDollar($temp_val, $rate);
} elseif (($module == 'Invoice' || $module == 'Quotes' || $module == 'PurchaseOrder' || $module == 'SalesOrder') && ($fieldname == 'hdnGrandTotal' || $fieldname == 'hdnSubTotal' || $fieldname == 'txtAdjustment' || $fieldname == 'hdnDiscountAmount' || $fieldname == 'hdnS_H_Amount')) {
$currency_info = getInventoryCurrencyInfo($module, $entity_id);
$currency_id = $currency_info['currency_id'];
$currency_symbol = $currency_info['currency_symbol'];
$value = $currency_symbol . $temp_val;
} else {
$value = $temp_val;
}
}
}
// Mike Crowe Mod --------------------------------------------------------Make right justified and vtiger_currency value
if (in_array($uitype, array(71, 72, 7, 9, 90))) {
$value = '<span align="right">' . $value . '</div>';
}
$log->debug("Exiting getValue method ...");
return $value;
}
function GetPicklistValues($username, $sessionid, $tablename)
{
global $current_user, $log, $adb;
if (!validateSession($username, $sessionid)) {
return null;
}
require_once "modules/Users/Users.php";
$seed_user = new Users();
$user_id = $seed_user->retrieve_user_id($username);
$current_user = $seed_user;
$current_user->retrieve_entity_info($user_id, 'Users');
require_once "include/utils/UserInfoUtil.php";
$roleid = fetchUserRole($user_id);
checkFileAccessForInclusion('user_privileges/user_privileges_' . $current_user->id . '.php');
require 'user_privileges/user_privileges_' . $current_user->id . '.php';
if ($is_admin == true || $profileGlobalPermission[1] == 0 || $profileGlobalPermission[2] == 0) {
$query = "select " . $adb->sql_escape_string($tablename) . " from vtiger_" . $adb->sql_escape_string($tablename);
$result1 = $adb->pquery($query, array());
for ($i = 0; $i < $adb->num_rows($result1); $i++) {
$output[$i] = decode_html($adb->query_result($result1, $i, $tablename));
}
} else {
if (isPermitted("HelpDesk", "EditView") == "yes" && CheckFieldPermission($tablename, 'HelpDesk') == 'true') {
$query = "select " . $adb->sql_escape_string($tablename) . " from vtiger_" . $adb->sql_escape_string($tablename) . " inner join vtiger_role2picklist on vtiger_role2picklist.picklistvalueid = vtiger_" . $adb->sql_escape_string($tablename) . ".picklist_valueid where roleid=? and picklistid in (select picklistid from vtiger_" . $adb->sql_escape_string($tablename) . " ) order by sortid";
$result1 = $adb->pquery($query, array($roleid));
for ($i = 0; $i < $adb->num_rows($result1); $i++) {
$output[$i] = decode_html($adb->query_result($result1, $i, $tablename));
}
} else {
$output[] = 'Not Accessible';
}
}
return $output;
}
function getQueryColumnsList($reportid, $outputformat = '')
{
// Have we initialized information already?
if ($this->_columnslist !== false) {
return $this->_columnslist;
}
global $adb;
global $modules;
global $log, $current_user, $current_language;
$ssql = "select vtiger_pdfmaker_relblockcol.* from vtiger_pdfmaker_relblocks ";
$ssql .= " left join vtiger_pdfmaker_relblockcol on vtiger_pdfmaker_relblockcol.relblockid = vtiger_pdfmaker_relblocks.relblockid";
$ssql .= " where vtiger_pdfmaker_relblocks.relblockid = ?";
$ssql .= " order by vtiger_pdfmaker_relblockcol.colid";
$result = $adb->pquery($ssql, array($reportid));
$permitted_fields = array();
while ($columnslistrow = $adb->fetch_array($result)) {
$fieldname = "";
$fieldcolname = $columnslistrow["columnname"];
list($tablename, $colname, $module_field, $fieldname, $single) = split(":", $fieldcolname);
list($module, $field) = split("_", $module_field, 2);
$inventory_fields = array('serviceid');
$inventory_modules = getInventoryModules();
require 'user_privileges/user_privileges_' . $current_user->id . '.php';
if (sizeof($permitted_fields[$module]) == 0 && $is_admin == false && $profileGlobalPermission[1] == 1 && $profileGlobalPermission[2] == 1) {
$permitted_fields[$module] = $this->getaccesfield($module);
}
if (in_array($module, $inventory_modules)) {
if (!empty($permitted_fields)) {
foreach ($inventory_fields as $value) {
array_push($permitted_fields[$module], $value);
}
}
}
$selectedfields = explode(":", $fieldcolname);
if ($is_admin == false && $profileGlobalPermission[1] == 1 && $profileGlobalPermission[2] == 1 && !in_array($selectedfields[3], $permitted_fields[$module])) {
//user has no access to this field, skip it.
continue;
}
$concatSql = getSqlForNameInDisplayFormat(array('first_name' => $selectedfields[0] . ".first_name", 'last_name' => $selectedfields[0] . ".last_name"), 'Users');
$querycolumns = $this->getEscapedColumns($selectedfields);
if (isset($module) && $module != "") {
$mod_strings = return_module_language($current_language, $module);
}
$targetTableName = $tablename;
$fieldname = $selectedfields[3];
$fieldlabel = trim(preg_replace("/{$module}/", " ", $selectedfields[2], 1));
$mod_arr = explode('_', $fieldlabel);
$fieldlabel = trim(str_replace("_", " ", $fieldlabel));
//modified code to support i18n issue
$fld_arr = explode(" ", $fieldlabel);
if ($mod_arr[0] == '') {
$mod = $module;
$mod_lbl = $this->getTranslatedString($module, $module);
//module
} else {
$mod = $mod_arr[0];
array_shift($fld_arr);
$mod_lbl = $this->getTranslatedString($fld_arr[0], $mod);
//module
}
$fld_lbl_str = implode(" ", $fld_arr);
$fld_lbl = $this->getTranslatedString($fld_lbl_str, $module);
//fieldlabel
$fieldlabel = $mod . "_" . $fieldname;
if ($selectedfields[0] == "vtiger_usersRel1" && $selectedfields[1] == 'user_name' && $selectedfields[2] == 'Quotes_Inventory_Manager') {
$columnslist[$fieldcolname] = "trim( {$concatSql} ) as " . $module . "_Inventory_Manager";
$this->queryPlanner->addTable($selectedfields[0]);
continue;
}
if (CheckFieldPermission($fieldname, $mod) != 'true' && $colname != "crmid" && (!in_array($fieldname, $inventory_fields) && in_array($module, $inventory_modules)) || empty($fieldname)) {
continue;
} else {
$this->labelMapping[$selectedfields[2]] = str_replace(" ", "_", $fieldlabel);
$header_label = $fieldlabel;
// To check if the field in the report is a custom field
// and if yes, get the label of this custom field freshly from the vtiger_field as it would have been changed.
// Asha - Reference ticket : #4906
if ($querycolumns == "") {
if ($selectedfields[4] == 'C') {
$field_label_data = split("_", $selectedfields[2]);
$module = $field_label_data[0];
if ($module != $this->primarymodule) {
$columnslist[$fieldcolname] = "case when (" . $selectedfields[0] . "." . $selectedfields[1] . "='1')then 'yes' else case when (vtiger_crmentity{$module}.crmid !='') then 'no' else '-' end end as '{$fieldlabel}'";
$this->queryPlanner->addTable("vtiger_crmentity{$module}");
} else {
$columnslist[$fieldcolname] = "case when (" . $selectedfields[0] . "." . $selectedfields[1] . "='1')then 'yes' else case when (vtiger_crmentity.crmid !='') then 'no' else '-' end end as '{$fieldlabel}'";
$this->queryPlanner->addTable("vtiger_crmentity{$module}");
}
} elseif ($selectedfields[0] == 'vtiger_activity' && $selectedfields[1] == 'status') {
$columnslist[$fieldcolname] = " case when (vtiger_activity.status not like '') then vtiger_activity.status else vtiger_activity.eventstatus end as Calendar_Status";
} elseif ($selectedfields[0] == 'vtiger_activity' && $selectedfields[1] == 'date_start') {
if ($module == 'Emails') {
$columnslist[$fieldcolname] = "cast(concat(vtiger_activity.date_start,' ',vtiger_activity.time_start) as DATE) as Emails_Date_Sent";
} else {
$columnslist[$fieldcolname] = "cast(concat(vtiger_activity.date_start,' ',vtiger_activity.time_start) AS DATETIME) AS Calendar_date_start";
}
} elseif (stristr($selectedfields[0], "vtiger_users") && $selectedfields[1] == 'user_name') {
$temp_module_from_tablename = str_replace("vtiger_users", "", $selectedfields[0]);
if ($module != $this->primarymodule) {
$condition = "and vtiger_crmentity" . $module . ".crmid!=''";
$this->queryPlanner->addTable("vtiger_crmentity{$module}");
} else {
$condition = "and vtiger_crmentity.crmid!=''";
}
if ($temp_module_from_tablename == $module) {
$columnslist[$fieldcolname] = " case when(" . $selectedfields[0] . ".last_name NOT LIKE '' {$condition} ) THEN " . $concatSql . " else vtiger_groups" . $module . ".groupname end as '" . $module . "_{$field}'";
$this->queryPlanner->addTable('vtiger_groups' . $module);
// Auto-include the dependent module table.
} else {
$columnslist[$fieldcolname] = $selectedfields[0] . ".user_name as '" . $header_label . "'";
}
} elseif (stristr($selectedfields[0], "vtiger_crmentity") && $selectedfields[1] == 'modifiedby') {
$targetTableName = 'vtiger_lastModifiedBy' . $module;
$concatSql = getSqlForNameInDisplayFormat(array('last_name' => $targetTableName . '.last_name', 'first_name' => $targetTableName . '.first_name'), 'Users');
$columnslist[$fieldcolname] = "trim({$concatSql}) as {$header_label}";
$this->queryPlanner->addTable("vtiger_crmentity{$module}");
$this->queryPlanner->addTable($targetTableName);
} elseif ($selectedfields[0] == "vtiger_crmentity" . $this->primarymodule) {
$columnslist[$fieldcolname] = "vtiger_crmentity." . $selectedfields[1] . " AS '" . $header_label . "'";
} elseif ($selectedfields[0] == 'vtiger_products' && $selectedfields[1] == 'unit_price') {
$columnslist[$fieldcolname] = "concat(" . $selectedfields[0] . ".currency_id,'::',innerProduct.actual_unit_price) as '" . $header_label . "'";
$this->queryPlanner->addTable("innerProduct");
} elseif (in_array($selectedfields[2], $this->append_currency_symbol_to_value)) {
if ($selectedfields[1] == 'discount_amount') {
$columnslist[$fieldcolname] = "CONCAT(" . $selectedfields[0] . ".currency_id,'::', IF(" . $selectedfields[0] . ".discount_amount != ''," . $selectedfields[0] . ".discount_amount, (" . $selectedfields[0] . ".discount_percent/100) * " . $selectedfields[0] . ".subtotal)) AS " . $header_label;
} else {
$columnslist[$fieldcolname] = "concat(" . $selectedfields[0] . ".currency_id,'::'," . $selectedfields[0] . "." . $selectedfields[1] . ") as '" . $header_label . "'";
}
} elseif ($selectedfields[0] == 'vtiger_notes' && ($selectedfields[1] == 'filelocationtype' || $selectedfields[1] == 'filesize' || $selectedfields[1] == 'folderid' || $selectedfields[1] == 'filestatus')) {
if ($selectedfields[1] == 'filelocationtype') {
$columnslist[$fieldcolname] = "case " . $selectedfields[0] . "." . $selectedfields[1] . " when 'I' then 'Internal' when 'E' then 'External' else '-' end as '{$selectedfields['2']}'";
} else {
if ($selectedfields[1] == 'folderid') {
$columnslist[$fieldcolname] = "vtiger_attachmentsfolder.foldername as '{$selectedfields['2']}'";
} elseif ($selectedfields[1] == 'filestatus') {
$columnslist[$fieldcolname] = "case " . $selectedfields[0] . "." . $selectedfields[1] . " when '1' then 'yes' when '0' then 'no' else '-' end as '{$selectedfields['2']}'";
} elseif ($selectedfields[1] == 'filesize') {
$columnslist[$fieldcolname] = "case " . $selectedfields[0] . "." . $selectedfields[1] . " when '' then '-' else concat(" . $selectedfields[0] . "." . $selectedfields[1] . "/1024,' ','KB') end as '{$selectedfields['2']}'";
}
}
} elseif ($selectedfields[0] == 'vtiger_inventoryproductrel') {
if ($selectedfields[1] == 'discount_amount') {
$columnslist[$fieldcolname] = " case when (vtiger_inventoryproductrel{$module}.discount_amount != '') then vtiger_inventoryproductrel{$module}.discount_amount else ROUND((vtiger_inventoryproductrel{$module}.listprice * vtiger_inventoryproductrel{$module}.quantity * (vtiger_inventoryproductrel{$module}.discount_percent/100)),3) end as '" . $header_label . "'";
$this->queryPlanner->addTable($selectedfields[0] . $module);
} else {
if ($selectedfields[1] == 'productid') {
$columnslist[$fieldcolname] = "vtiger_products{$module}.productname as '" . $header_label . "'";
$this->queryPlanner->addTable("vtiger_products{$module}");
} else {
if ($selectedfields[1] == 'serviceid') {
$columnslist[$fieldcolname] = "vtiger_service{$module}.servicename as '" . $header_label . "'";
$this->queryPlanner->addTable("vtiger_service{$module}");
} else {
if ($selectedfields[1] == 'listprice') {
$moduleInstance = CRMEntity::getInstance($module);
$columnslist[$fieldcolname] = $selectedfields[0] . $module . "." . $selectedfields[1] . "/" . $moduleInstance->table_name . ".conversion_rate as '" . $header_label . "'";
$this->queryPlanner->addTable($selectedfields[0] . $module);
} else {
$columnslist[$fieldcolname] = $selectedfields[0] . $module . "." . $selectedfields[1] . " as '" . $header_label . "'";
$this->queryPlanner->addTable($selectedfields[0] . $module);
}
}
}
}
} elseif (stristr($selectedfields[1], 'cf_') == true && stripos($selectedfields[1], 'cf_') == 0) {
$columnslist[$fieldcolname] = $selectedfields[0] . "." . $selectedfields[1] . " AS '" . $adb->sql_escape_string(decode_html($header_label)) . "'";
} else {
$columnslist[$fieldcolname] = $selectedfields[0] . "." . $selectedfields[1] . " AS '" . $header_label . "'";
}
} else {
$columnslist[$fieldcolname] = $querycolumns;
}
$this->queryPlanner->addTable($targetTableName);
}
}
// Save the information
$this->_columnslist = $columnslist;
$log->info("ReportRun :: Successfully returned getQueryColumnsList" . $reportid);
return $columnslist;
}
/**
* Function returns Report Selected Fields
* @return <Array>
*/
function getSelectedFields()
{
$db = PearDatabase::getInstance();
$result = $db->pquery("SELECT vtiger_selectcolumn.columnname FROM vtiger_report\n\t\t\t\t\tINNER JOIN vtiger_selectquery ON vtiger_selectquery.queryid = vtiger_report.queryid\n\t\t\t\t\tINNER JOIN vtiger_selectcolumn ON vtiger_selectcolumn.queryid = vtiger_selectquery.queryid\n\t\t\t\t\tWHERE vtiger_report.reportid = ? ORDER BY vtiger_selectcolumn.columnindex", array($this->getId()));
$selectedColumns = array();
for ($i = 0; $i < $db->num_rows($result); $i++) {
$column = $db->query_result($result, $i, 'columnname');
list($tableName, $columnName, $moduleFieldLabel, $fieldName, $type) = split(':', $column);
$fieldLabel = explode('__', $moduleFieldLabel);
$module = $fieldLabel[0];
$dbFieldLabel = trim(str_replace(array($module, '__'), " ", $moduleFieldLabel));
$translatedFieldLabel = vtranslate($dbFieldLabel, $module);
if (CheckFieldPermission($fieldName, $module) == 'true' && $columnName != 'crmid') {
$selectedColumns[$translatedFieldLabel] = $column;
}
}
return $selectedColumns;
}
/** Function to get getGroupingList for the given reportid
* @ param $reportid : Type Integer
* returns the $grouplist Array in the following format
* $grouplist = Array($tablename:$columnname:$fieldlabel:fieldname:typeofdata=>$tablename:$columnname $sorder,
* $tablename1:$columnname1:$fieldlabel1:fieldname1:typeofdata1=>$tablename1:$columnname1 $sorder,
* $tablename2:$columnname2:$fieldlabel2:fieldname2:typeofdata2=>$tablename2:$columnname2 $sorder)
* This function also sets the return value in the class variable $this->groupbylist
*/
function getGroupingList($reportid)
{
global $adb;
global $modules;
global $log;
// Have we initialized information already?
if ($this->_groupinglist !== false) {
return $this->_groupinglist;
}
$sreportsortsql = "select vtiger_reportsortcol.* from vtiger_report";
$sreportsortsql .= " inner join vtiger_reportsortcol on vtiger_report.reportid = vtiger_reportsortcol.reportid";
$sreportsortsql .= " where vtiger_report.reportid =? AND vtiger_reportsortcol.columnname IN (SELECT columnname from vtiger_selectcolumn WHERE queryid=?) order by vtiger_reportsortcol.sortcolid";
$result = $adb->pquery($sreportsortsql, array($reportid, $reportid));
while ($reportsortrow = $adb->fetch_array($result)) {
$fieldcolname = $reportsortrow["columnname"];
list($tablename, $colname, $module_field, $fieldname, $single) = split(":", $fieldcolname);
$sortorder = $reportsortrow["sortorder"];
if ($sortorder == "Ascending") {
$sortorder = "ASC";
} elseif ($sortorder == "Descending") {
$sortorder = "DESC";
}
if ($fieldcolname != "none") {
$selectedfields = explode(":", $fieldcolname);
if ($selectedfields[0] == "vtiger_crmentity" . $this->primarymodule) {
$selectedfields[0] = "vtiger_crmentity";
}
if (stripos($selectedfields[1], 'cf_') == 0 && stristr($selectedfields[1], 'cf_') == true) {
$sqlvalue = "'" . $adb->sql_escape_string(decode_html($selectedfields[2])) . "' " . $sortorder;
} else {
$sqlvalue = "'" . $selectedfields[2] . "' " . $sortorder;
}
$grouplist[$fieldcolname] = $sqlvalue;
$temp = split("_", $selectedfields[2], 2);
$module = $temp[0];
if (CheckFieldPermission($fieldname, $module) == 'true') {
$this->groupbylist[$fieldcolname] = $selectedfields[0] . "." . $selectedfields[1] . " " . $selectedfields[2];
}
}
}
// Save the information
$this->_groupinglist = $grouplist;
$log->info("ReportRun :: Successfully returned getGroupingList" . $reportid);
return $grouplist;
}
function CheckColumnPermission($tablename, $columnname, $module)
{
global $adb;
$res = $adb->pquery("select fieldname from vtiger_field where tablename=? and columnname=? and vtiger_field.presence in (0,2)", array($tablename, $columnname));
$fieldname = $adb->query_result($res, 0, 'fieldname');
return CheckFieldPermission($fieldname, $module);
}
function getSelectedQFColumnsArray($reportid)
{
global $modules;
$adb = PearDatabase::getInstance();
$ssql = "select its4you_reports4you_selectqfcolumn.* from its4you_reports4you";
$ssql .= " left join its4you_reports4you_selectqfcolumn on its4you_reports4you_selectqfcolumn.queryid = its4you_reports4you.reports4youid";
$ssql .= " where its4you_reports4you.reports4youid = ?";
$ssql .= " order by its4you_reports4you_selectqfcolumn.columnindex";
$result = $adb->pquery($ssql, array($reportid));
$permitted_fields = array();
$selected_mod = split(":", $this->relatedmodulesstring);
array_push($selected_mod, $this->primarymoduleid);
$sarray = array();
while ($columnslistrow = $adb->fetch_array($result)) {
$fieldname = "";
$fieldcolname = $columnslistrow["columnname"];
$selmod_field_disabled = true;
foreach ($selected_mod as $smod) {
$smodule = vtlib_getModuleNameById($smod);
if (stripos($fieldcolname, ":" . $smodule . "_") > -1 && vtlib_isModuleActive($smodule)) {
$selmod_field_disabled = false;
break;
}
}
if ($selmod_field_disabled == false) {
list($tablename, $colname, $module_field, $fieldname, $single) = split(":", $fieldcolname);
$user_privileges_path = 'user_privileges/user_privileges_' . $this->current_user->id . '.php';
if (file_exists($user_privileges_path)) {
require $user_privileges_path;
}
list($module, $field) = split("_", $module_field);
if (sizeof($permitted_fields) == 0 && $is_admin == false && $profileGlobalPermission[1] == 1 && $profileGlobalPermission[2] == 1) {
$permitted_fields = $this->getaccesfield($module);
}
$querycolumns = $this->getEscapedColumns($selectedfields);
$fieldlabel = trim(str_replace($module, " ", $module_field));
$mod_arr = explode('_', $fieldlabel);
$mod = $mod_arr[0] == '' ? $module : $mod_arr[0];
$fieldlabel = trim($fieldlabel);
//modified code to support i18n issue
$mod_lbl = vtranslate($mod, $module);
//module
$fld_lbl = vtranslate($fieldlabel, $module);
//fieldlabel
$fieldlabel = $mod_lbl . " " . $fld_lbl;
// ITS4YOU-UP SlOl 4. 9. 2013 15:32:14 disabled options changed / we will remove options which are users not permited to view
/* if(CheckFieldPermission($fieldname,$mod) != 'true' && $colname!="crmid" && !in_array($fieldname,array('prodname','quantity','listprice','discount','comment'))
{
$shtml .= "<option permission='no' value=\"".$fieldcolname."\" disabled = 'true'>".$fieldlabel."</option>";
}
else
{
$shtml .= "<option permission='yes' value=\"".$fieldcolname."\" ".$selected.">".$fieldlabel."</option>";
} */
if (CheckFieldPermission($fieldname, $mod) == 'true' || $colname == "crmid" || in_array($fieldname, self::$intentory_fields)) {
$selected = "";
$sarray[] = array("fieldcolname" => $fieldcolname, "selected" => $selected, "fieldlabel" => $fieldlabel);
}
// ITS4YOU-END 4. 9. 2013 15:33:15
}
//end
}
return $sarray;
}
private function getSelectedColumnsList($primodule, $secmodule, $relblockid, $current_user)
{
$adb = PearDatabase::getInstance();
global $modules;
$ssql = "select vtiger_pdfmaker_relblockcol.* from vtiger_pdfmaker_relblocks";
$ssql .= " left join vtiger_pdfmaker_relblockcol on vtiger_pdfmaker_relblockcol.relblockid = vtiger_pdfmaker_relblocks.relblockid";
$ssql .= " where vtiger_pdfmaker_relblocks.relblockid = ?";
$ssql .= " order by vtiger_pdfmaker_relblockcol.colid";
$result = $adb->pquery($ssql, array($relblockid));
$permitted_fields = array();
$selected_mod = split(":", $secmodule);
array_push($selected_mod, $primodule);
while ($columnslistrow = $adb->fetch_array($result)) {
$fieldname = "";
$fieldcolname = $columnslistrow["columnname"];
$selmod_field_disabled = true;
foreach ($selected_mod as $smod) {
if (stripos($fieldcolname, ":" . $smod . "_") > -1 && vtlib_isModuleActive($smod)) {
$selmod_field_disabled = false;
break;
}
}
if ($selmod_field_disabled == false) {
list($tablename, $colname, $module_field, $fieldname, $single) = split(":", $fieldcolname);
require 'user_privileges/user_privileges_' . $current_user->getId() . '.php';
list($module, $field) = split("_", $module_field);
if (sizeof($permitted_fields) == 0 && $is_admin == false && $profileGlobalPermission[1] == 1 && $profileGlobalPermission[2] == 1) {
$permitted_fields = $this->getaccesfield($module, $primodule, $secmodule);
}
$querycolumns = $this->getEscapedColumns($selectedfields, $primodule, $secmodule);
$fieldlabel = trim(str_replace($module, " ", $module_field));
$mod_arr = explode('_', $fieldlabel);
$mod = $mod_arr[0] == '' ? $module : $mod_arr[0];
$fieldlabel = trim(str_replace("_", " ", $fieldlabel));
//modified code to support i18n issue
//$mod_lbl = getTranslatedString($mod,$module); //module
//$fld_lbl = getTranslatedString($fieldlabel,$module); //fieldlabel
//$fieldlabel = $mod_lbl." ".$fld_lbl;
$fieldlabel = getTranslatedString($fieldlabel, $module);
//fieldlabel
if (CheckFieldPermission($fieldname, $mod) != 'true' && $colname != "crmid") {
$shtml .= "<option permission='no' value=\"" . $fieldcolname . "\" disabled = 'true'>" . $fieldlabel . "</option>";
} else {
$shtml .= "<option permission='yes' value=\"" . $fieldcolname . "\">" . $fieldlabel . "</option>";
}
}
//end
}
return $shtml;
}
