trailer.php | searchcode

/WebCalendar-1.2.5/includes/trailer.php

#
PHP | 335 lines | 317 code | 10 blank | 8 comment | 26 complexity | a5ae9839e4740678dea7a619db0f1199 MD5 | raw file
Possible License(s): LGPL-2.1

<?php
/* $Id: trailer.php,v 1.128.2.3 2008/02/27 00:33:40 cknudsen Exp $*/
defined ( '_ISVALID' ) or die ( 'You cannot access this file directly!' );

// NOTE: This file is included within the print_trailer function found in
// includes/init.php. If you add a global variable somewhere in this file, be
// sure to declare it global in the print_trailer function or use $GLOBALS[].
$tret = '';
if ( access_can_access_function ( ACCESS_TRAILER ) ) {
  $tret .= '
    <div id="trailer">
      <div id="menu">' . "\n";

  $goto_link = $manage_calendar_link = $reports_link = $views_link = array ();

  $myCalStr = translate ( 'My Calendar' );
  $todayStr = translate ( 'Today' );
  $adminStr = translate ( 'Admin' );
  $unapprovedStr = translate ( 'Unapproved Entries' );
  $searchStr = translate ( 'Search' );
  $importStr = translate ( 'Import' );
  $exportStr = translate ( 'Export' );
  $addNewEntryStr = translate ( 'Add New Entry' );
  $addNewTaskStr = translate ( 'Add New Task' );
  $loginStr = translate ( 'Login' );
  $logoutStr = translate ( 'Logout' );
  $currentUserStr = translate ( 'Current User' );
  $helpStr = translate ( 'Help' );
  $publicStr = $PUBLIC_ACCESS_FULLNAME;
  if ( empty ( $readonly ) || $readonly != 'Y' )
    $readonly = 'N';
  // Go To links.
  $can_add = true;
  if ( $readonly == 'Y' )
    $can_add = false;
  else
  if ( access_is_enabled () )
    $can_add = access_can_access_function ( ACCESS_EVENT_EDIT );
  else {
    if ( $login == '__public__' )
      $can_add = ( $GLOBALS['PUBLIC_ACCESS_CAN_ADD'] == 'Y' );

    if ( $is_nonuser )
      $can_add = false;
  }

  // Get HOME URL and text.
  if ( ! empty ( $GLOBALS['HOME_LINK'] ) ) {
    $home = $GLOBALS['HOME_LINK'];
    $homeStr = translate ( 'Home' );
    $goto_link[] = '<a title="' . $homeStr . '" class="bold" href=" '
     . "$home\">$homeStr" . '</a>';
  }

  $mycal = ( empty ( $GLOBALS['STARTVIEW'] )
    ? 'index.php' : $GLOBALS['STARTVIEW'] );
  $mycal .= ( strpos ( $mycal, '.php' )? '' : '.php' );

  // Calc URL to today.
  $reqURI = 'month.php';
  if ( ! empty ( $GLOBALS['SCRIPT_NAME'] ) )
    $reqURI = $GLOBALS['SCRIPT_NAME'];
  else
  if ( ! empty ( $_SERVER['SCRIPT_NAME'] ) )
    $reqURI = $_SERVER['SCRIPT_NAME'];

  $todayURL = ( ! strstr ( $reqURI, 'day.php' ) && !
    strstr ( $reqURI, 'month.php' ) && ! strstr ( $reqURI, 'week.php' )
    ? 'day.php' : $reqURI );

  if ( ! access_can_view_page ( $todayURL ) )
    $todayURL = '';

  if ( $single_user != 'Y' ) {
    $goto_link[] = '<a title="' . $myCalStr . '" class="bold" href="'
     . "$mycal\">" . ( ! empty ( $user ) && $user != $login
      ? translate ( 'Back to My Calendar' ) : $myCalStr ) . '</a>';

    if ( ! empty ( $todayURL ) ) {
      if ( ! empty ( $user ) && $user != $login )
        $todayURL .= '?user=' . $user;

      $goto_link[] = '<a title="' . $todayStr . '" class="bold" href="'
       . "$todayURL\">$todayStr" . '</a>';
    }
    if ( $login != '__public__' ) {
      if ( ! $is_nonuser && $readonly == 'N' ) {
        if ( ( ! access_is_enabled () ||
              access_can_access_function ( ACCESS_ADMIN_HOME ) ||
              access_can_access_function ( ACCESS_PREFERENCES ) ) )
          $goto_link[] = '<a title="' . $adminStr
           . '" class="bold" href="adminhome.php'
           . ( $is_nonuser_admin ? '?user=' . $user : '' )
           . "\">$adminStr" . '</a>';

        if ( $REQUIRE_APPROVALS == 'Y' || $PUBLIC_ACCESS == 'Y' )
          $goto_link[] = '<a title="' . $unapprovedStr
           . '" href="list_unapproved.php'
           . ( $is_nonuser_admin ? '?user=' . getValue ( 'user' ) : '' )
           . "\">$unapprovedStr" . '</a>';
      }
    } 
    if (  $login == '__public__' && $PUBLIC_ACCESS_OTHERS != 'Y' ||
      ( $is_nonuser && ! access_is_enabled () ) ) {
      // Don't allow them to see other people's calendar.
    } else
    if ( ( $ALLOW_VIEW_OTHER == 'Y' || $is_admin ) &&
        // Also, make sure they able to access either day/week/month/year view.
        // If not, the only way to view another user's calendar is a custom view.
        ( ! access_is_enabled () ||
          access_can_access_function ( ACCESS_ANOTHER_CALENDAR ) ) ) {
      // Get count of users this user can see. If > 1, then...
      $ulist = array_merge ( get_my_users (), get_my_nonusers ( $login, true ) );
      if ( count ( $ulist ) > 1 ) {
        $calStr = translate ( 'Another Users Calendar' );
        $goto_link[] = '<a title="' . $calStr . '" href="select_user.php">'
         . $calStr . '</a>';
      }
    }
  } else {
    $goto_link[] = '<a title="' . $myCalStr . '" class="bold" href="'
     . "$mycal\">$myCalStr" . '</a>';
    $goto_link[] = '<a title="' . $todayStr . '" class="bold" href="'
     . "$todayURL\">$todayStr" . '</a>';

    if ( $readonly == 'N' )
      $goto_link[] = '<a title="' . $adminStr
       . '" class="bold" href="adminhome.php">' . $adminStr . '</a>';
  }
  // Only display some links if we're viewing our own calendar.
  if ( empty ( $user ) || $user == $login ) {
    if ( access_can_access_function ( ACCESS_SEARCH ) )
      $goto_link[] = '<a title="' . $searchStr . '" href="search.php">'
       . $searchStr . '</a>';

    if ( $login != '__public__' && ! $is_nonuser && $readonly != 'Y' ) {
      if ( access_can_access_function ( ACCESS_IMPORT ) )
        $goto_link[] = '<a title="' . $importStr . '" href="import.php">'
         . $importStr . '</a>';

      if ( access_can_access_function ( ACCESS_EXPORT ) )
        $goto_link[] = '<a title="' . $exportStr . '" href="export.php">'
         . $exportStr . '</a>';
    }
    if ( $can_add ) {
      if ( ! empty ( $thisyear ) )
        $tmpYrStr = 'year=' . $thisyear
         . ( ! empty ( $thismonth ) ? '&amp;month=' . $thismonth : '' )
         . ( ! empty ( $thisday ) ? '&amp;day=' . $thisday : '' );

      $goto_link[] = '<a title="' . $addNewEntryStr . '" href="edit_entry.php'
       . ( ! empty ( $thisyear ) ? '?' . $tmpYrStr : '' )
       . '">' . $addNewEntryStr . '</a>';

      if ( $DISPLAY_TASKS_IN_GRID == 'Y' || $DISPLAY_TASKS == 'Y' )
        $goto_link[] = '<a title="' . $addNewTaskStr
         . '" href="edit_entry.php?eType=task'
         . ( ! empty ( $thisyear ) ? '&amp;' . $tmpYrStr : '' )
         . '">' . $addNewTaskStr . '</a>';
    }
  }
  $showHelp = ( access_is_enabled ()
    ? access_can_access_function ( ACCESS_HELP )
    : ( $login != '__public__' && ! $is_nonuser ) );

  if ( $showHelp )
    $goto_link[] = '<a title="' . $helpStr
     . '" href="#" onclick="javascript:openHelp()" '
     . 'onmouseover="window.status=\'\'; return true">' . $helpStr . '</a>';

  if ( count ( $goto_link ) > 0 ) {
    $tret .= '<span class="prefix">' . translate ( 'Go to' ) . ':</span>' . "\n";
    $gotocnt = count ( $goto_link );
    for ( $i = 0; $i < $gotocnt; $i++ ) {
      $tret .= ( $i > 0 ? ' | ' : '' ) . $goto_link[$i] . "\n";
    }
  }

  $tret .= '<!-- VIEWS -->' . "\n";

  $viewcnt = count ( $views );
  if ( ( access_can_access_function ( ACCESS_VIEW ) && $ALLOW_VIEW_OTHER != 'N' ) && $viewcnt > 0 ) {
    for ( $i = 0; $i < $viewcnt; $i++ ) {
      $views_link[] = '<a title="' . htmlspecialchars ( $views[$i]['cal_name'] )
       . '" href="' . $views[$i]['url']
       . ( ! empty ( $thisdate ) ? '&amp;date=' . $thisdate : '' )
       . '">' . htmlspecialchars ( $views[$i]['cal_name'] ) . "</a>\n";
    }
  }
  $views_linkcnt = count ( $views_link );
  if ( $views_linkcnt > 0 ) {
    $tret .= '<br /><span class="prefix">' . translate ( 'Views' )
     . ':</span>&nbsp;' . "\n";
    for ( $i = 0; $i < $views_linkcnt; $i++ ) {
      $tret .= ( $i > 0 ? ' | ' : '' ) . $views_link[$i];
    }
  }

  $tret .= '<!-- REPORTS -->' . "\n";

  if ( ! empty ( $REPORTS_ENABLED ) && $REPORTS_ENABLED == 'Y' &&
      access_can_access_function ( ACCESS_REPORT ) ) {
    $reports_link = array ();
    $rows = dbi_get_cached_rows ( 'SELECT cal_report_name, cal_report_id
      FROM webcal_report WHERE cal_login = ? OR ( cal_is_global = \'Y\'
      AND cal_show_in_trailer = \'Y\' ) ORDER BY cal_report_id',
      array ( $login ) );
    if ( $rows ) {
      for ( $i = 0, $cnt = count ( $rows ); $i < $cnt; $i++ ) {
        $row = $rows[$i];
        $reports_link[] = '<a title="' . htmlspecialchars ( $row[0] )
         . '" href="report.php?report_id=' . $row[1]
         . ( ! empty ( $user ) && $user != $login ? '&amp;user=' . $user : '' )
         . '">' . htmlspecialchars ( $row[0] ) . '</a>';
      }
    }
    $reports_linkcnt = count ( $reports_link );
    if ( $reports_linkcnt > 0 ) {
      $tret .= '<br /><span class="prefix">' . translate ( 'Reports' )
       . ':</span>&nbsp;' . "\n";
      for ( $i = 0; $i < $reports_linkcnt; $i++ ) {
        $tret .= ( $i > 0 ? ' | ' : '' ) . $reports_link[$i] . "\n";
      }
    }
  }

  $tret .= '<!-- CURRENT USER -->' . "\n";

  if ( ! $use_http_auth ) {
    $login_url = $logout_url = 'login.php';
    if ( empty ( $login_return_path ) )
      $logout_url .= '?action=logout';
    else {
      $login_url .= '?return_path=' . $login_return_path;
      $logout_url .= $login_url . '&action=logout';
    }

    // Should we use another application's login/logout pages?
    if ( substr ( $GLOBALS['user_inc'], 0, 9 ) == 'user-app-' ) {
      global $app_login_page, $app_logout_page;
      $logout_url = $app_logout_page;
      $login_url = 'login-app.php'
       . ( $login_return_path != '' && $app_login_page['return'] != ''
        ? '?return_path=' . $login_return_path : '' );
    }

    if ( $readonly != 'Y' )
      $tret .= '<br /><span class="prefix">' . $currentUserStr . ':</span>&nbsp;'
       . ( strlen ( $login ) && $login != '__public__'
        ? $fullname . '&nbsp;(<a title="' . $logoutStr . '" href="'
         . $logout_url . '">' . $logoutStr
        : // For public user (who did not actually login).
        $publicStr . '&nbsp;(<a title="' . $loginStr . '" href="' . $login_url
         . '">' . $loginStr ) . "</a>)\n" ;
  }

  // Manage Calendar links.
  if ( ! empty ( $NONUSER_ENABLED ) && $NONUSER_ENABLED == 'Y' )
    $admincals = get_nonuser_cals ( $login );
  // Make sure they have access to either month/week/day view. If they do not,
  // then we cannot create a URL that shows just the boss' events. So, we
  // would not include any of the "manage calendar of" links.
  $have_boss_url = true;
  if ( ! access_can_access_function ( ACCESS_MONTH ) && !
      access_can_access_function ( ACCESS_WEEK ) && !
      access_can_access_function ( ACCESS_DAY ) )
    $have_boss_url = false;
  if ( $have_boss_url && ( $has_boss || ! empty ( $admincals[0] ) ||
        ( $is_admin && $PUBLIC_ACCESS ) ) ) {
    $grouplist = user_get_boss_list ( $login );
    if ( ! empty ( $admincals[0] ) )
      $grouplist = array_merge ( $admincals, $grouplist );

    if ( $is_admin && $PUBLIC_ACCESS == 'Y' ) {
      $public = array (
        'cal_login' => '__public__',
        'cal_fullname' => $publicStr
        );
      array_unshift ( $grouplist, $public );
    }
    $groups = '';
    for ( $i = 0, $cnt = count ( $grouplist ); $i < $cnt; $i++ ) {
      $l = $grouplist[$i]['cal_login'];
      $f = $grouplist[$i]['cal_fullname'];
      // don't display current $user in group list
      if ( ! empty ( $user ) && $user == $l )
        continue;

      // Use the preferred view if it is day/week/month/year.php. Try not to
      // use a user-created view because it might not display the proper user's
      // events. (Fallback to month.php if this is true.)  Of course, if this
      // user cannot view any of the standard D/W/M/Y pages, that will force us
      // to use the view.
      $xurl = get_preferred_view ( '', 'user=' . $l );
      if ( strstr ( $xurl, 'view_' ) ) {
        if ( access_can_access_function ( ACCESS_MONTH ) )
          $xurl = 'month.php?user=' . $l;
        elseif ( access_can_access_function ( ACCESS_WEEK ) )
          $xurl = 'week.php?user=' . $l;
        elseif ( access_can_access_function ( ACCESS_DAY ) )
          $xurl = 'day.php?user=' . $l;
        // Year does not show events, so you cannot manage someone's cal.
      }
      $groups .= ( $i > 0 && $groups != '' ? ", \n" : '' )
       . '<a title="' . "$f\" href=\"$xurl\">$f".'</a>';
    }
    if ( ! empty ( $groups ) )
      $tret .= '<br /><span class="prefix">'
       . translate ( 'Manage calendar of' ) . ':</span>&nbsp;' . $groups;
  }

  // WebCalendar Info...
  $tret .= '<br /><br />
<a title="' . $GLOBALS['PROGRAM_NAME'] . '" id="programname" href="'
   . $GLOBALS['PROGRAM_URL'] . '" target="_blank">' . $GLOBALS['PROGRAM_NAME']
   . "</a>\n" . '</div></div>
<!-- /TRAILER -->' . "\n";
}
$tret .= '<!-- Db queries: ' . dbi_num_queries () . '   Cached queries: '
 . dbi_num_cached_queries () . " -->\n";
if ( dbi_get_debug () ) {
  $tret .= '<blockquote style="border:1px solid #ccc; background:#eee;">
<b>Executed queries:' . dbi_num_queries ()
   . '&nbsp;&nbsp; <b>Cached queries:</b>' . dbi_num_cached_queries ()
   . "<br /><ol>\n";
  $log = $GLOBALS['SQLLOG'];
  // $log=0;
  $logcnt = count ( $log );
  for ( $i = 0; $i < $logcnt; $i++ ) {
    $tret .= '<li>' . $log[$i] . '</li>';
  }
  $tret .= "</ol>\n</blockquote>\n";
}

?>