Refbase
/
Refbase2X
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
10 Commits
1 Branch
1.9 MiB
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
Refbase2X/receipt.php

158 lines
8.2 KiB
Raw Permalink Normal View History

Refbase update_2021-01-28_15_58
4 years ago
Drush_Update_2021-01-28_17_01
4 years ago
Refbase update_2021-01-28_15_58
4 years ago
 
  1. <?php
  2.         // turn  on warnings and notice during  developement

  3.         include('initialize/PhpErrorSettings.inc.php'); 
  4. 	// Project:    Web Reference Database (refbase) <http://www.refbase.net>

  5. 	// Copyright:  Matthias Steffens <mailto:refbase@extracts.de> and the file's

  6. 	//             original author(s).

  7. 	//

  8. 	//             This code is distributed in the hope that it will be useful,

  9. 	//             but WITHOUT ANY WARRANTY. Please see the GNU General Public

  10. 	//             License for more details.

  11. 	//

  12. 	// File:       ./receipt.php

  13. 	// Repository: $HeadURL: file:///svn/p/refbase/code/branches/bleeding-edge/receipt.php $

  14. 	// Author(s):  Matthias Steffens <mailto:refbase@extracts.de>

  15. 	//

  16. 	// Created:    02-Jan-03, 22:43

  17. 	// Modified:   $Date: 2012-02-27 20:25:30 +0000 (Mon, 27 Feb 2012) $

  18. 	//             $Author: msteffens $

  19. 	//             $Revision: 1337 $

  20. 

  21. 	// This php script will display a feedback page after any action of

  22. 	// adding/editing/deleting a record. It will display links to the

  23. 	// modified/added record as well as to the previous search results page (if any)

  24. 	// TODO: I18n

  25. 

  26. 

  27. 	// Incorporate some include files:

  28. 	include 'initialize/db.inc.php'; // 'db.inc.php' is included to hide username and password

  29. 	include 'includes/header.inc.php'; // include header

  30. 	include 'includes/footer.inc.php'; // include footer

  31. 	include 'includes/include.inc.php'; // include common functions

  32. 	include 'initialize/ini.inc.php'; // include common variables

  33. 

  34. 	// --------------------------------------------------------------------

  35. 

  36. 	// START A SESSION:

  37. 	// call the 'start_session()' function (from 'include.inc.php') which will also read out available session variables:

  38. 	start_session(true);
  39. 

  40. 	// --------------------------------------------------------------------

  41. 

  42. 	// Initialize preferred display language:

  43. 	// (note that 'locales.inc.php' has to be included *after* the call to the 'start_session()' function)

  44. 	include 'includes/locales.inc.php'; // include the locales

  45. 

  46. 	// --------------------------------------------------------------------

  47. 

  48. 	// First of all, check if this script was called by something else than 'record.php' (via 'modify.php'):

  49. 	// Notes: - although 'receipt.php' gets actually called by 'modify.php', the referrer will be still set to 'record.php'

  50. 	//        - if a user clicks on Login/Logout while viewing a 'receipt.php' page she should get directed back to this receipt page (which is why 'receipt.php' must be also among the recognized referrers)

  51. 	if (!preg_match("/.*(record|receipt)\.php.*/", $referer)) // variable '$referer' is globally defined in function 'start_session()' in 'include.inc.php'

  52. 	{
  53. 		// return an appropriate error message:

  54. 		$HeaderString = returnMsg($loc["Warning_InvalidCallToScript"] . " '" . scriptURL() . "'!", "warning", "strong", "HeaderString"); // functions 'returnMsg()' and 'scriptURL()' are defined in 'include.inc.php'

  55. 		
  56. 		header("Location: " . $referer); // redirect to calling page

  57. 

  58. 		exit; // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> !EXIT! <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<

  59. 	}
  60. 

  61. 	// [ Extract form variables sent through POST/GET by use of the '$_REQUEST' variable ]

  62. 	// [ !! NOTE !!: for details see <http://www.php.net/release_4_2_1.php> & <http://www.php.net/manual/en/language.variables.predefined.php> ]

  63. 

  64. 	// Extract the type of action requested by the user (either 'add', 'edit', 'delet' or ''):

  65. 	// ('' will be treated equal to 'add')

  66. 	$recordAction = $_REQUEST['recordAction'];
  67. 	if ("$recordAction" == "")
  68. 		$recordAction = "add"; // '' will be treated equal to 'add'

  69. 

  70. 	// Extract the id number of the record that was added/edited/deleted by the user:

  71. 	$serialNo = $_REQUEST['serialNo'];
  72. 

  73. 	// Extract the header message that was returned by 'modify.php':

  74. 	$HeaderString = $_REQUEST['headerMsg'];
  75. 

  76. 	// Function 'showLogin()' in 'include.inc.php' requires the header string being available in the '$headerMsg' variable so that it gets included within the Login/Logout links:

  77. 	$headerMsg = $HeaderString;
  78. 

  79. 	// Extract the view type requested by the user (either 'Mobile', 'Print', 'Web' or ''):

  80. 	// ('' will produce the default 'Web' output style)

  81. 	if (isset($_REQUEST['viewType']))
  82. 		$viewType = $_REQUEST['viewType'];
  83. 	else
  84. 		$viewType = "";
  85. 

  86. 	// Get the query URL of the last multi-record query:

  87. 	if (isset($_SESSION['oldMultiRecordQuery']))
  88. 		$oldMultiRecordQuery = $_SESSION['oldMultiRecordQuery'];
  89. 	else
  90. 		$oldMultiRecordQuery = "";
  91. 

  92. 	// --------------------------------------------------------------------

  93. 

  94. 	// (4) DISPLAY HEADER & RESULTS

  95. 	//     (NOTE: Since there's no need to query the database here, we won't perform any of the following: (1) OPEN CONNECTION, (2) SELECT DATABASE, (3) RUN QUERY, (5) CLOSE CONNECTION)

  96. 

  97. 	// Show the login status:

  98. 	showLogin(); // (function 'showLogin()' is defined in 'include.inc.php')

  99. 

  100. 	// (4a) DISPLAY header:

  101. 	// call the 'displayHTMLhead()' and 'showPageHeader()' functions (which are defined in 'header.inc.php'):

  102. 	displayHTMLhead(encodeHTML($officialDatabaseName) . " -- Record Action Feedback", "noindex,nofollow", "Feedback page that confirms any adding, editing or deleting of records in the " . encodeHTML($officialDatabaseName), "", false, "", $viewType, array());
  103. 	showPageHeader($HeaderString);
  104. 

  105. 

  106. 	// (4b) DISPLAY results:

  107. 	// construct the correct SQL query that will link back to the added/edited record:

  108. 	$sqlQuery = buildSELECTclause("Display", "1", "", true, false); // function 'buildSELECTclause()' is defined in 'include.inc.php'

  109. 

  110. 	if (isset($_SESSION['loginEmail'])) // if a user is logged in, show user specific fields:

  111. 		$sqlQuery .= " FROM $tableRefs LEFT JOIN $tableUserData ON serial = record_id AND user_id = " . quote_smart($loginUserID) . " WHERE serial RLIKE " . quote_smart("^(" . $serialNo . ")$") . " ORDER BY author, year DESC, publication"; // we simply use the fixed default ORDER BY clause here

  112. 	else // if NO user logged in, don't display any user specific fields:

  113. 		$sqlQuery .= " FROM $tableRefs WHERE serial RLIKE " . quote_smart("^(" . $serialNo . ")$") . " ORDER BY author, year DESC, publication"; // we simply use the fixed default ORDER BY clause here

  114. 

  115. 	$sqlQuery = rawurlencode($sqlQuery);
  116. 

  117. 	// Generate a 'search.php' URL that points to the formerly displayed results page:

  118. 	if (!empty($oldMultiRecordQuery))
  119. 		$oldMultiRecordQueryURL = generateURL("search.php", "html", $oldMultiRecordQuery, true); // function 'generateURL()' is defined in 'include.inc.php'

  120. 

  121. 

  122. 	// Build a TABLE, containing one ROW and DATA tag:

  123. 	echo "\n<table align=\"center\" border=\"0\" cellpadding=\"0\" cellspacing=\"10\" width=\"95%\" summary=\"This table holds links to the added/edited records as well as to the previously displayed search results page\">"
  124. 	   . "\n<tr>"
  125. 	   . "\n\t<td valign=\"top\">"
  126. 	   . "\n\t\tChoose how to proceed:&nbsp;&nbsp;";
  127. 

  128. 	if (isset($_SESSION['user_permissions']) AND preg_match("/allow_details_view/", $_SESSION['user_permissions'])) // if the 'user_permissions' session variable does contain 'allow_details_view'...

  129. 	{
  130. 		if ($recordAction != "delet")
  131. 			echo "\n\t\t<a href=\"search.php?sqlQuery=" . $sqlQuery . "&amp;showQuery=0&amp;showLinks=1&amp;formType=sqlSearch&amp;submit=Display\">Show " . $recordAction . "ed record</a>";
  132. 	
  133. 		if ($recordAction != "delet" && !empty($oldMultiRecordQuery))
  134. 			echo "\n\t\t&nbsp;&nbsp;-OR-&nbsp;&nbsp;";
  135. 	}
  136. 

  137. 	if (!empty($oldMultiRecordQuery)) // only provide a link to any previous search results if '$oldMultiRecordQuery' isn't empty

  138. 		echo "\n\t\t<a href=\"" . $oldMultiRecordQueryURL . "\">Display previous search results</a>";
  139. 

  140. 	if ((isset($_SESSION['user_permissions']) AND preg_match("/allow_details_view/", $_SESSION['user_permissions']) AND ($recordAction != "delet")) || !empty($oldMultiRecordQuery))
  141. 		echo "\n\t\t&nbsp;&nbsp;-OR-&nbsp;&nbsp;";
  142. 

  143. 	echo "\n\t\t<a href=\"index.php\">Goto " . encodeHTML($officialDatabaseName) . " Home</a>"; // we include the link to the home page here so that "Choose how to proceed:" never stands without any link to go

  144. 

  145. 	echo "\n\t</td>"
  146. 	   . "\n</tr>"
  147. 	   . "\n</table>";
  148. 

  149. 	// --------------------------------------------------------------------

  150. 

  151. 	// DISPLAY THE HTML FOOTER:

  152. 	// call the 'showPageFooter()' and 'displayHTMLfoot()' functions (which are defined in 'footer.inc.php')

  153. 	showPageFooter($HeaderString);
  154. 

  155. 	displayHTMLfoot();
  156. 

  157. 	// --------------------------------------------------------------------

  158. ?>