?? customer_info.php
字號:
<?php
function default_validate( )
{
global $connection;
global $customer_id;
global $customer_name;
global $manage_user;
$query2 = "select up.* from user_priv as up, user as u where up.USER_PRIV=u.USER_PRIV and u.USER_ID='".$manage_user."'";
$cursor2 = exequery( $connection, $query2 );
if ( $row2 = mysql_fetch_array( $cursor2 ) )
{
$priv_no = $row2['PRIV_NO'];
}
$query3 = "select up.* from user_priv as up, user as u where up.USER_PRIV=u.USER_PRIV and u.USER_ID='".$_SESSION['LOGIN_USER_ID']."'";
$cursor3 = exequery( $connection, $query3 );
if ( $row3 = mysql_fetch_array( $cursor3 ) )
{
$login_priv_no = $row3['PRIV_NO'];
}
if ( $login_priv_no < $priv_no )
{
$purview_ses = "<a href=\"#\" onclick=\"customer_detail('".$customer_id."');\">".$customer_name."</a>";
}
else
{
$purview_ses = false;
}
return $purview_ses;
}
function dept_validate( )
{
global $connection;
global $purview_dept;
if ( $purview_dept == "ALL_DEPT" )
{
return true;
}
$query2 = "select d.* from department as d, user as u where u.DEPT_ID=d.DEPT_ID and u.USER_ID='".$_SESSION['LOGIN_USER_ID']."'";
$cursor2 = exequery( $connection, $query2 );
if ( $row2 = mysql_fetch_array( $cursor2 ) )
{
$dept_id = $row2['DEPT_ID'];
}
if ( array_search( $dept_id, explode( ",", $purview_dept ) ) !== false )
{
return true;
}
else
{
return false;
}
}
function role_validate( )
{
global $connection;
global $purview_role;
$query2 = "select up.* from user_priv as up, user as u where up.USER_PRIV=u.USER_PRIV and u.USER_ID='".$_SESSION['LOGIN_USER_ID']."'";
$cursor2 = exequery( $connection, $query2 );
if ( $row2 = mysql_fetch_array( $cursor2 ) )
{
$login_priv_no = $row2['USER_PRIV'];
}
if ( array_search( $login_priv_no, explode( ",", $purview_role ) ) !== false )
{
return true;
}
else
{
return false;
}
}
function user_validate( )
{
global $connection;
global $purview_user;
if ( array_search( $_SESSION['LOGIN_USER_ID'], explode( ",", $purview_user ) ) !== false )
{
return true;
}
else
{
return false;
}
}
include_once( "inc/auth.php" );
$connection = openconnection( );
$query = "SELECT c.*, u.USER_NAME FROM customer as c, USER as u WHERE c.MANAGE_USER=u.USER_ID group by c.CUSTOMER_NAME";
switch ( $_REQUEST['order'] )
{
case "customer_name" :
$query .= " order by c.CUSTOMER_NAME";
break;
case "tel_no" :
$query .= " order by c.TEL_NO";
break;
default :
$query .= " order by c.CUSTOMER_ID";
break;
}
$query .= $_REQUEST['sens'] ? " ASC" : " DESC";
$cursor = exequery( $connection, $query );
while ( $row = mysql_fetch_array( $cursor ) )
{
$customer_id = $row['CUSTOMER_ID'];
$old_customer_name = $row['CUSTOMER_NAME'];
$tel_no = $row['TEL_NO'];
$fax_no = $row['FAX_NO'];
$customer_www = $row['CUSTOMER_WWW'];
$email = $row['EMAIL'];
$customer_add = $row['CUSTOMER_ADD'];
$postalcode = $row['POSTALCODE'];
$memo = $row['MEMO'];
$manage_user = $row['MANAGE_USER'];
$user_name = $row['USER_NAME'];
$customer_type = $row['CUSTOMER_TYPE'];
$purview = $row['PURVIEW'];
$purview_dept = $row['PURVIEW_DEPT'];
$purview_role = $row['PURVIEW_ROLE'];
$purview_user = $row['PURVIEW_USER'];
$query2 = "select LINKMAN_ID, LINKMAN_NAME from linkman where CUSTOMER_ID=".$customer_id;
$cursor2 = exequery( $connection, $query2 );
if ( $row2 = mysql_fetch_row( $cursor2 ) )
{
$linkman_id = $row2[0];
$linkman_name = $row2[1];
}
switch ( $purview )
{
case "1" :
$purview_ses = default_validate( );
break;
case "2" :
$purview_ses = "<a href=\"#\" onclick=\"customer_detail('".$customer_id."');\">".$customer_name."</a>";
break;
case "3" :
$dept_validate = dept_validate( );
$role_validate = role_validate( );
$user_validate = user_validate( );
if ( ( $dept_validate || $role_validate || $user_validate ) === false )
{
$purview_ses = default_validate( );
}
else
{
$purview_ses = "<a href=\"#\" onclick=\"customer_detail('".$customer_id."');\">".$customer_name."</a>";
}
}
if ( $manage_user == $_SESSION['LOGIN_USER_ID'] || $manage_user == "" )
{
$purview_ses = "<a href=\"#\" onclick=\"customer_detail('".$customer_id."');\">".$customer_name."</a>";
}
if ( $purview_ses == false )
{
}
else
{
$str_customer_id .= $customer_id.",";
}
}
$str_customer_id = substr( $str_customer_id, 0, -1 );
echo "\r\n<html>\r\n<head>\r\n<title>選擇客戶</title>\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=gb2312\">\r\n";
include_once( "inc/menu_button.js" );
echo "\r\n";
echo "<s";
echo "cript Language=\"JavaScript\">\r\nvar parent_window = parent.dialogArguments;\r\n\r\nfunction add_customer(customer_id,customer_name)\r\n{\r\n parent_window.form1.CUSTOMER_ID.value=\"\";\r\n\tparent_window.form1.CUSTOMER_NAME.value=\"\";\r\n\t\r\n CUSTOMER_VAL=parent_window.form1.CUSTOMER_ID.value;\r\n if(CUSTOMER_VAL.indexOf(\",\"+customer_id+\",\")<0 && CUSTOMER_VAL.indexOf(customer_id+\",\")!=0 && (parent_window.form1.CUSTO";
echo "MER_ID.value!=\"ALL_CUSTOMER\"))\r\n {\r\n parent_window.form1.CUSTOMER_ID.value+=customer_id;\r\n parent_window.form1.CUSTOMER_NAME.value+=customer_name;\r\n }\r\n}\r\n\r\n</script>\r\n</head>\r\n\r\n<body class=\"bodycolor\" onMouseover=\"borderize_on(event)\" onMouseout=\"borderize_off(event)\" onclick=\"borderize_on1(event)\" topmargin=\"0\" leftmargin=\"0\">\r\n\r\n";
$str_customer_id = $str_customer_id == "" ? 0 : $str_customer_id;
$connection = openconnection( );
$query = "SELECT * from CUSTOMER where CUSTOMER_NAME like '%{$CUSTOMER_NAME}%' order by CUSTOMER_NAME AND CUSTOMER_ID IN(".$str_customer_id.")";
$cursor = exequery( $connection, $query );
$CUSTOMER_COUNT = 0;
while ( $ROW = mysql_fetch_array( $cursor ) )
{
$customer_id = $ROW['CUSTOMER_ID'];
$customer_name = $ROW['CUSTOMER_NAME'];
$manage_user = $ROW['MANAGE_USER'];
$purview = $ROW['PURVIEW'];
$purview_dept = $ROW['PURVIEW_DEPT'];
$purview_role = $ROW['PURVIEW_ROLE'];
$purview_user = $ROW['PURVIEW_USER'];
switch ( $purview )
{
case "1" :
$purview_ses = default_validate( );
break;
case "2" :
$purview_ses = "<a href=\"#\" onclick=\"customer_detail('".$customer_id."');\">".$customer_name."</a>";
break;
case "3" :
$dept_validate = dept_validate( );
$role_validate = role_validate( );
$user_validate = user_validate( );
if ( ( $dept_validate || $role_validate || $user_validate ) === false )
{
$purview_ses = default_validate( );
}
else
{
$purview_ses = "<a href=\"#\" onclick=\"customer_detail('".$customer_id."');\">".$customer_name."</a>";
}
}
if ( $manage_user == $_SESSION['LOGIN_USER_ID'] || $manage_user == "" )
{
$purview_ses = "<a href=\"#\" onclick=\"customer_detail('".$customer_id."');\">".$customer_name."</a>";
}
if ( $purview_ses == false )
{
}
else
{
++$CUSTOMER_COUNT;
if ( $CUSTOMER_COUNT == 1 )
{
echo "\t<table border=\"0\" cellspacing=\"1\" width=\"95%\" class=\"small\" cellpadding=\"5\" bordercolorlight=\"#000000\" bordercolordark=\"#FFFFFF\" align=\"center\">\r\n\t\t<tr class=\"TableHeader\">\r\n\t\t <th>選擇客戶</th>\r\n\t\t</tr>\r\n\t";
}
echo "<tr class=\"TableLine1\">\r\n <td align=\"center\" onclick=\"javascript:add_customer('";
echo $customer_id;
echo "','";
echo $customer_name;
echo "')\" style=\"cursor:hand\">";
echo $customer_name;
echo "</a></td>\r\n</tr>\r\n";
}
}
if ( 0 < $CUSTOMER_COUNT )
{
echo "</table>\r\n";
}
echo "\r\n";
if ( $CUSTOMER_COUNT == 0 )
{
message( "提示", "沒有定義客戶" );
}
echo "</body>\r\n</html>\r\n";
?>
?? 快捷鍵說明
復制代碼
Ctrl + C
搜索代碼
Ctrl + F
全屏模式
F11
切換主題
Ctrl + Shift + D
顯示快捷鍵
?
增大字號
Ctrl + =
減小字號
Ctrl + -