|
Server : Apache/2.2.2 (Fedora) System : Linux App1.pathumtani.go.th 2.6.20-1.2320.fc5smp #1 SMP Tue Jun 12 19:40:16 EDT 2007 i686 User : apache ( 48) PHP Version : 5.2.9 Disable Function : NONE Directory : /var/www/html/pathumthani_eoffice/ |
Upload File : |
<?
session_start();
ob_start();
$nochecklogin= false;
include("../config/config.inc.php");
include("../common/function.php");
function Query1($sql){
$result = mysql_query($sql);
echo mysql_error();
$rs = mysql_fetch_array($result);
return $rs[0];
}
//include "../../../master/application/epm/epm.inc.php";
if($session_username){
header("Location: control/index.php");
exit;
}
if ($_SERVER[REQUEST_METHOD] == "POST"){
$sql_logon="
select * from $table_staff where username='$uname';
";
$result = mysql_query("$sql_logon");
//echo "select * from $logintable where username='$uname';"; die;
$rs = mysql_fetch_assoc($result); //print_r($rs);
if ($rs && $pwd == $rs[password]){
session_register("session_username");
session_register("session_staffid");
session_register("session_dev_id");
session_register("session_depusername");
session_register("session_fullname");
session_register("session_mode");
session_register("session_title");
session_register("session_gid");
session_register("session_fullname_title");
session_register("session_group");
## session จากระบบร้องเรียน
session_register("session_staffname");
session_register("session_staffsurname");
session_register("session_username");
session_register("session_office");
session_register("session_pws");
session_register("session_status_pri");
session_register("session_org");
session_register("session_orgname");
## session ระบบหนังสือรับส่ง
session_register("session_permit");
session_register("session_appid");
//$sql_gcheck="
//SELECT DISTINCT
//permission_status.permit_id,
//permission_status.app_id,
//permission_status.pid
//FROM
//epm_groupmember
//Inner Join profile_permission ON epm_groupmember.gid = profile_permission.gid
//Inner Join permission_status ON profile_permission.permit_id = permission_status.permit_id
//WHERE
//epm_groupmember.staffid = $rs[staffid]
//";
$sql_gcheck = "SELECT
permission_status.app_id,
permission_status.`status`,
permission_status.pid
FROM
app_admin
Inner Join permission_status ON app_admin.app_id = permission_status.permit_id
WHERE
app_admin.staff_id = '$rs[staffid]'";
$sql_gcheck_premit = "SELECT
permission_status.pid,
permission_status.app_id
FROM
mission_group
Inner Join app_permit ON mission_group.mission_id = app_permit.mission_id
Inner Join mission_groupmenber ON mission_group.mission_id = mission_groupmenber.mission_id
Inner Join permission_status ON app_permit.permit_id = permission_status.permit_id
WHERE
mission_groupmenber.staffid = '$rs[staffid]'";
$sql = "select t2.* from org_groupmember t1 inner join org_staffgroup t2 on t1.gid=t2.gid where t1.staffid='$rs[staffid]';";
$xresult = mysql_query($sql);
if($xresult){
while ($xrs=mysql_fetch_assoc($xresult)){
$session_org=$xrs[gid];
}
}
$sql = " SELECT groupname FROM org_staffgroup WHERE gid = '$session_org' ;";
$xresult = mysql_query($sql);
if($xresult){
while ($xrs=mysql_fetch_assoc($xresult)){
$session_orgname=$xrs[groupname];
}
}
//echo " <img src='dtree/img/users.gif' > (ทั่วไป) <BR>";
$sql = "select t2.* from $table_groupmember t1 inner join $table_staffgroup t2 on t1.gid=t2.gid where t1.staffid='$rs[staffid]';";
$xresult = mysql_query($sql);
while ($xrs=mysql_fetch_assoc($xresult)){
$session_gid[$rs[staffid]][$xrs[gid]]=$xrs[gid];
}
//print_r($session_gid);
$result = mysql_query("$sql_gcheck");
while($rsg = mysql_fetch_assoc($result)){
if ($rsg[pid]) { $_SESSION[session_apppermit][$rsg[app_id]][$rsg[pid]]= on; }
}
## เพิ่มเติมสิทธิการเข้าถึงโปรแกรมแต่ละโปรแกรมย่อย
//echo $sql_gcheck_premit;die;
$result_permit = mysql_query($sql_gcheck_premit);
while($rsp = mysql_fetch_assoc($result_permit)){
//echo $rsp[pid]."<br>";
if($rsp[pid]){ $_SESSION[session_apppermit][$rsp[app_id]][$rsp[pid]] = on;}
}// end while($rsp = mysql_fetch_assoc($result_permit)){
//print_r($_SESSION[session_permit]);
$_SESSION[session_username] = $uname;
$_SESSION[session_staffid] = $rs[staffid];
$_SESSION[session_gid] = $rs[gid];
$_SESSION[session_dev_id] = $rs[org_id];
$_SESSION[session_title] = $rs[title];
$_SESSION[session_fullname] = $rs[prename] . " " . $rs[staffname] . " " . $rs[staffsurname];
$_SESSION[session_fullname_title] = $rs[prename] . " " . $rs[staffname] . " " . $rs[staffsurname]." (".$rs[title].")";
// สำหรับระบบ ร้องเรียน
$session_staffname=$rs[staffname];
$session_staffsurname=$rs[staffsurname];
$session_office=$rs[staffname];
$session_pws="$pwd";
$session_status_pri="0";
// เลือกกลุ่ม
$sql_group="
SELECT
$table_staffgroup.groupname,
$table_staffgroup.gid
FROM
$table_staff
Inner Join $table_groupmember ON $table_staff.staffid = $table_groupmember.staffid
Inner Join $table_staffgroup ON $table_groupmember.gid = $table_staffgroup.gid
WHERE
$table_staff.staffid = $session_staffid
";
$result=mysql_query($sql_group);
while($rs_g=mysql_fetch_assoc($result)){
$_SESSION[session_group][$rs_g[gid]] = $rs_g[groupname];
}
// เก็บ log login รวม
addlog("login","0");
header("Location: control/index.php");
exit;
}
$msg = "Username หรือ Password ไม่ถูกต้อง";
addlog("พยายาม login เป็น user :$uname: by :$pwd:","0");
}
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Frameset//EN" "http://www.w3.org/TR/html4/frameset.dtd">
<html>
<head>
<title><?=$show_title?> <? if($provincename) {echo "จังหวัด".$provincename;}?></title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<LINK href="../common/style.css" rel=stylesheet>
<style type="text/css">
<!--
.header1 { font-family:"MS Sans Serif", Tahoma, Arial;
font-size:1em;
font-weight:bold;
color: #FFFFFF;
}
.main { font-family:"MS Sans Serif", Tahoma, Arial;
font-size:0.8em;
color:#FF0000;
font-weight:bold;
}
.normal { font-family:"MS Sans Serif", Tahoma, Arial;
font-size:0.8em;
}
body {
margin-left: 0px;
margin-top: 0px;
margin-right: 0px;
margin-bottom: 0px;
}
-->
</style>
</head>
<body style="filter:progid:DXImageTransform.Microsoft.Gradient(GradientType=0, StartColorStr='#273F6F', EndColorStr='#ffffff');">
<table width="100%" height="600" border="0" cellpadding="0" cellspacing="0">
<tr>
<td align="center"><table width="690" height="405" border="0" cellpadding="5" cellspacing="0" background="../images/login.jpg" bgcolor="#FFFFFF">
<tr>
<td style="border:#818181 solid 1px; "><table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr>
<td colspan="2" align="center" style=" padding:10px;"><table width="350" border="0" cellpadding="0" cellspacing="0" bgcolor="#ECECEC">
<tr>
<td width="79" valign="top" background="../..//images/emp_main_new_27.gif" style=" background-repeat:repeat-y; background-position:left;"><img src="../images/emp_main_new_19.gif" width="79" height="88"></td>
<td width="264" background="../images/emp_main_new_20.gif" style="background-repeat:repeat-x; background-position:top"><FORM METHOD=POST ACTION="">
<br>
<table border=0 align=center>
<tr>
<td align="right" style="color:#FFFFFF"> </td>
<td align="left"> </td>
<td align="left"> </td>
</tr>
<tr>
<td align="right" style="color:#666666"><B>Username</B></td>
<td align="left"> </td>
<td align="left"><INPUT NAME="uname" TYPE="text" class="epm_inputbox" value="" size=20 maxlength=20></td>
</tr>
<tr>
<td align="right" style="color:#666666"><B>Password</B></td>
<td align="left"> </td>
<td align="left"><INPUT NAME="pwd" TYPE="password" class="epm_inputbox" value="" size=20 maxlength=20></td>
</tr>
<tr>
<td> </td>
<td align="left"> </td>
<td align="left"><input name="submit" type=submit class="epm_button" value=" Login "></td>
</tr>
<tr>
<td colspan="3" align="center"><div align="center"><font color="RED"><b>
<?=$msg?>
</b></font></div></td>
</tr>
</TABLE>
</FORM></td>
<td width="7" align="right" valign="top" background="../..//images/emp_main_new_25.gif" style="background-repeat: repeat-y; background-position:right"><img src="../images/emp_main_new_22.gif" width="7" height="15"></td>
</tr>
<tr>
<td valign="bottom" background="../..//images/emp_main_new_27.gif" style=" background-repeat:repeat-y; background-position:left;"><table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr>
<td valign="bottom" background="../..//images/emp_main_new_31.gif"><img src="../images/emp_main_new_30.gif" width="7" height="6"></td>
</tr>
</table></td>
<td background="../..//images/emp_main_new_31.gif" style="background-repeat:repeat-x; background-position:bottom"> </td>
<td align="right" valign="bottom" background="../..//images/emp_main_new_25.gif" style="background-repeat: repeat-y; background-position:right"><img src="../images/emp_main_new_33.gif" width="7" height="6"></td>
</tr>
</table></td>
</tr>
<?
$manual = 1 ;
if($manual == "1"){ // ปิดรายการดาวน์โหลดคู่มือไว้ก่อน?>
<tr>
<td width="42%" > </td>
<td width="58%" align="right" valign="top" ><a href="http://123.242.173.131/download/eoffice_news.rar"><img src="../images/bar2/2_03.png" width="269" height="25" border="0"></a></td>
</tr>
<? } // end if($manual == "1"){ // ปิดรายการดาวน์โหลดคู่มือไว้ก่อน ?>
</table></td>
</tr>
</table>
<table width="690" border="0">
<tr>
<td colspan="2"> <strong>หากมีปัญหาการใช้งาน ต้องการสอบถามเกี่ยวกับการใช้ระบบ กรุณาติดต่อที่หมายเลขโทรศัพท์ดังต่อไปนี้</strong>
</td>
</tr>
<tr>
<td width="42"> </td>
<td width="926" align="right"><strong>08-1961-2146 08-1961-2147<br>
08-2902-5268 08-4045-4090</strong></td>
</tr>
</table></td>
</tr>
</table>
<div style="display:none"><strong><em><a href="http://www.smecredit.net" title="สินเชื่อSME">สินเชื่อSME</a></em></strong> <em><strong><a href="http://www.smecredit.net" title="สินเชื่อธุรกิจ">สินเชื่อธุรกิจ</a></strong></em> <em><strong><a href="http://www.smecredit.net" title="สินเชื่อเจ้าของกิจการ">สินเชื่อเจ้าของกิจการ</a></strong></em></div>
</body>
</html>