X-Git-Url: https://delta.frontaccounting.com/gitweb/?a=blobdiff_plain;f=includes%2Fui%2Fui_controls.inc;h=bbe4c7f5142f3680055589e48ecbe906daaca390;hb=063c5f22068dbbd6adccacaf5bd0f66b2eda8e4f;hp=1883ba2aeafc12ebdff7334f7161f8ddb0aa1ac8;hpb=d4f3d658b9c4767aba1f02bfc8e1581c29d231b1;p=fa-stable.git
diff --git a/includes/ui/ui_controls.inc b/includes/ui/ui_controls.inc
index 1883ba2a..bbe4c7f5 100644
--- a/includes/ui/ui_controls.inc
+++ b/includes/ui/ui_controls.inc
@@ -1,20 +1,47 @@
.
+***********************************************************************/
+/*
+ Retrieve value of POST variable(s).
+ For $name passed as array $dflt is not used,
+ default values can be passed as values with non-numeric keys instead.
+ If some field have user formatted numeric value, pass float default value to
+ convert automatically to POSIX.
+*/
+function get_post($name, $dflt='')
+{
+ if (is_array($name)) {
+ $ret = array();
+ foreach($name as $key => $dflt)
+ if (!is_numeric($key)) {
+ $ret[$key] = is_float($dflt) ? input_num($key, $dflt) : get_post($key, $dflt);
+ } else {
+ $ret[$dflt] = get_post($dflt, null);
+ }
+ return $ret;
+ } else
+ return is_float($dflt) ? input_num($name, $dflt) :
+ ((!isset($_POST[$name]) || $_POST[$name] === '') ? $dflt : $_POST[$name]);
+}
//---------------------------------------------------------------------------------
-function start_form($multi=false, $sid=false, $action="", $name="")
+function start_form($multi=false, $dummy=false, $action="", $name="")
{
+ // $dummy - leaved for compatibility with 2.0 API
+
if ($name != "")
$name = "name='$name'";
if ($action == "")
$action = $_SERVER['PHP_SELF'];
- if ($sid)
- {
- if (strpos($action, "?"))
- $action .= "&" . SID;
- else
- $action .= "?" . SID;
- }
+
if ($multi)
echo "
\n";
+ $Ajax->activate('token');
+}
+
+function check_csrf_token()
+{
+ if ($_SESSION['csrf_token'] != @$_POST['_token'])
+ {
+ display_error(_("Request from outside of this page is forbidden."));
+ error_log(_("CSRF attack detected from: ").@$_SERVER['HTTP_HOST'].' ('.@$_SERVER['HTTP_REFERER'].')');
+ return false;
+ }
+ return true;
}
-function start_table($extra="", $padding='2', $spacing='0')
+function start_table($class=false, $extra="", $padding='2', $spacing='0')
{
echo "\n";
@@ -47,6 +97,41 @@ function end_table($breaks=0)
br($breaks);
}
+function start_outer_table($class=false, $extra="", $padding='2', $spacing='0', $br=false)
+{
+ if ($br)
+ br();
+ start_table($class, $extra, $padding, $spacing);
+ echo "\n"; // outer table
+}
+
+function table_section($number=1, $width=false)
+{
+ if ($number > 1)
+ {
+ echo " |
\n";
+ $width = ($width ? "width=$width" : "");
+ //echo "\n"; // outer table
+ echo " | \n"; // outer table
+ }
+ echo "\n";
+}
+
+function end_outer_table($breaks=0, $close_table=true)
+{
+ if ($close_table)
+ echo " \n";
+ echo " | \n";
+ end_table($breaks);
+}
+//
+// outer table spacer
+//
+function vertical_space($params='')
+{
+ echo "";
+}
+
function meta_forward($forward_to, $params="")
{
global $Ajax;
@@ -59,13 +144,52 @@ function meta_forward($forward_to, $params="")
}
//-----------------------------------------------------------------------------------
+// Find and replace hotkey marker.
+// if $clean == true marker is removed and clean label is returned
+// (for use in wiki help system), otherwise result is array of label
+// with underlined hotkey letter and access property string.
+//
+function access_string($label, $clean=false)
+{
+ $access = '';
+ $slices = array();
+
+ if (preg_match('/(.*)&([a-zA-Z0-9])(.*)/', $label, $slices))
+ {
+ $label = $clean ? $slices[1].$slices[2].$slices[3] :
+ $slices[1].''.$slices[2].''.$slices[3];
+ $access = " accesskey='".strtoupper($slices[2])."'";
+ }
+
+ $label = str_replace( '&&', '&', $label);
+
+ return $clean ? $label : array($label, $access);
+}
-function hyperlink_back($center=true)
+function hyperlink_back($center=true, $no_menu=true, $type_no=0, $trans_no=0, $final=false)
{
+ global $path_to_root;
+
if ($center)
echo "";
- //echo ""._("Back")."\n";
- echo " "._("Back")." \n";
+ $id = 0;
+ if ($no_menu && $trans_no != 0)
+ {
+ include_once($path_to_root."/admin/db/attachments_db.inc");
+ $id = has_attachment($type_no, $trans_no);
+ }
+ $width = ($id != 0 ? "30%" : "20%");
+ start_table(false, "width=$width");
+ start_row();
+ if ($no_menu)
+ {
+ if ($id != 0)
+ echo ""._("View Attachment")." | \n";
+ echo ""._("Print")." | \n";
+ }
+ echo "".($no_menu ? _("Close") : _("Back"))." | \n";
+ end_row();
+ end_table();
if ($center)
echo "";
echo " ";
@@ -73,9 +197,13 @@ function hyperlink_back($center=true)
function hyperlink_no_params($target, $label, $center=true)
{
+ $id = default_focus();
+ $pars = access_string($label);
+ if ($target == '')
+ $target = $_SERVER['PHP_SELF'];
if ($center)
echo " ";
- echo "$label\n";
+ echo "$pars[0]\n";
if ($center)
echo "";
}
@@ -87,13 +215,63 @@ function hyperlink_no_params_td($target, $label)
echo " | \n";
}
+function viewer_link($label, $url='', $class='', $id='', $icon=null)
+{
+ global $path_to_root;
+
+ if ($class != '')
+ $class = " class='$class'";
+
+ if ($id != '')
+ $class = " id='$id'";
+
+ if ($url != "")
+ {
+ $pars = access_string($label);
+ if (user_graphic_links() && $icon)
+ $pars[0] = set_icon($icon, $pars[0]);
+ $preview_str = "$pars[0]";
+ }
+ else
+ $preview_str = $label;
+ return $preview_str;
+}
+
+function menu_link($url, $label, $id=null)
+{
+
+ $id = default_focus($id);
+ $pars = access_string($label);
+ return "";
+}
+
+function submenu_option($title, $url, $id=null)
+{
+ global $path_to_root;
+ display_note(menu_link($path_to_root . $url, $title, $id), 0, 1);
+}
+
+function submenu_view($title, $type, $number, $id=null)
+{
+ display_note(get_trans_view_str($type, $number, $title, false, 'viewlink', $id), 0, 1);
+}
+
+function submenu_print($title, $type, $number, $id=null, $email=0, $extra=0)
+{
+ display_note(print_document_link($number, $title, true, $type, false, 'printlink', $id, $email, $extra), 0, 1);
+}
//-----------------------------------------------------------------------------------
function hyperlink_params($target, $label, $params, $center=true)
{
+ $id = default_focus();
+
+ $pars = access_string($label);
+ if ($target == '')
+ $target = $_SERVER['PHP_SELF'];
if ($center)
echo "
";
- echo "$label\n";
+ echo "$pars[0]\n";
if ($center)
echo "";
}
@@ -109,9 +287,12 @@ function hyperlink_params_td($target, $label, $params)
function hyperlink_params_separate($target, $label, $params, $center=false)
{
+ $id = default_focus();
+
+ $pars = access_string($label);
if ($center)
echo "
";
- echo "$label\n";
+ echo "$pars[0]\n";
if ($center)
echo "";
}
@@ -139,48 +320,18 @@ function alt_table_row_color(&$k)
}
}
-function table_section_title($msg)
+function table_section_title($msg, $colspan=2)
{
- echo "
|
\n";
+ echo "
\n";
}
-function table_header($labels)
+function table_header($labels, $params='')
{
start_row();
foreach ($labels as $label)
- labelheader_cell($label);
+ labelheader_cell($label, $params);
end_row();
}
-
-function edit_link_cell($param, $title=false)
-{
- label_cell("" . _("Edit") . "", "nowrap");
-}
-
-function delete_link_cell($param, $title=false)
-{
- label_cell("" . _("Delete") . "", "nowrap");
-}
-
-function edit_button($name, $value, $title=false)
-{
-// php silently changes dots,spaces,'[' and characters 128-159
-// to underscore in POST names, to maintain compatibility with register_globals
- echo "'=2E',' '=>'=20','='=>'=3D','['=>'=5B')))
- ."\" value=\"$value\""
- .($title ? " title='$title'":'')." />\n";
-}
-
-function edit_button_cell($name, $value, $title=false)
-{
- echo "";
- edit_button($name, $value, $title);
- echo " | ";
-}
-
//-----------------------------------------------------------------------------------
function start_row($param="")
@@ -231,6 +382,102 @@ function div_end()
}
}
+//-----------------------------------------------------------------------------
+// Tabbed area:
+// $name - prefix for widget internal elements:
+// Nth tab submit name: {$name}_N
+// div id: _{$name}_div
+// sel (hidden) name: _{$name}_sel
+// $tabs - array of tabs; string: tab title or array(tab_title, enabled_status)
+
+function tabbed_content_start($name, $tabs, $dft='') {
+ global $Ajax;
+
+ $selname = '_'.$name.'_sel';
+ $div = '_'.$name.'_div';
+
+ $sel = find_submit($name.'_', false);
+ if($sel==null)
+ $sel = get_post($selname, (string)($dft==='' ? key($tabs) : $dft));
+
+ if ($sel!==@$_POST[$selname])
+ $Ajax->activate($name);
+
+ $_POST[$selname] = $sel;
+
+ div_start($name);
+ $str = "\n";
+ foreach($tabs as $tab_no => $tab) {
+
+ $acc = access_string(is_array($tab) ? $tab[0] : $tab);
+ $disabled = (is_array($tab) && !$tab[1]) ? 'disabled ' : '';
+ $str .= ( "- "
+ ."\n"
+ ."
\n" );
+ }
+
+ $str .= "
\n";
+ $str .= "\n";
+ $str .= "\n";
+ $str .= "\n";
+ echo $str;
+}
+
+function tabbed_content_end() {
+ echo "
"; // content box (don't change to div_end() unless div_start() is used above)
+ div_end(); // tabs widget
+}
+
+function tab_changed($name)
+{
+ $to = find_submit("{$name}_", false);
+ if (!$to) return null;
+
+ return array('from' => $from = get_post("_{$name}_sel"),
+ 'to' => $to);
+}
+
+/* Table editor interfaces. Key is editor type
+ 0 => url of editor page
+ 1 => hotkey code
+ 2 => context help
+*/
+$popup_editors = array(
+ 'customer' => array('/sales/manage/customers.php?debtor_no=',
+ 113, _("Customers"), 900, 500),
+ 'branch' => array('/sales/manage/customer_branches.php?SelectedBranch=',
+ 114, _("Branches"), 900, 700),
+ 'supplier' => array('/purchasing/manage/suppliers.php?supplier_id=',
+ 113, _("Suppliers"), 900, 700),
+ 'item' => array('/inventory/manage/items.php?stock_id=',
+ 115, _("Items"), 800, 600)
+);
+/*
+ Bind editors for various selectors.
+ $type - type of editor
+ $input - name of related input field
+ $caller - optional function key code (available values F1-F12: 112-123,
+ true: default)
+*/
+function set_editor($type, $input, $caller=true)
+{
+ global $path_to_root, $Editors, $popup_editors, $Pagehelp;
+
+ $key = $caller===true ? $popup_editors[$type][1] : $caller;
+
+ $Editors[$key] = array( $path_to_root . $popup_editors[$type][0], $input,
+ $popup_editors[$type][3], $popup_editors[$type][4]);
+
+ $help = 'F' . ($key - 111) . ' - ';
+ $help .= $popup_editors[$type][2];
+ $Pagehelp[] = $help;
+}
+//------------------------------------------------------------------------------
+// Procedures below are now obsolete. Preserved for eventual future use.
+
/*
External page call with saving current context.
$call - url of external page
@@ -297,12 +544,79 @@ function context_reset()
{
$_SESSION['Context'] = array();
}
-
/*
Context stack initialization
*/
if (!isset($_SESSION['Context'])) {
context_reset();
}
+/*
+ Redirector for selector F4 calls.
+ $sel_editors is array of selname=>editor_page
+*/
+function editor_redirect($sel_editors, $save_fun='') {
+ foreach ($sel_editors as $selname=>$editor)
+ if (isset($_POST['_'.$selname.'_editor'])) {
+ if (function_exists($save_fun))
+ $save_fun();
+ unset($_POST['_'.$selname.'_editor']);
+ context_call($editor, array_keys($_POST));
+ }
+}
+/*
+ Return procedure for selector F4 calls
+*/
+function editor_return($vars, $restore_fun='') {
+ if (function_exists($restore_fun))
+ $restore_fun();
+
+ if ($ret = context_restore()) {
+ foreach ($vars as $postname=>$retname)
+ if (isset($ret[$retname])) {
+ $_POST[$postname] = $ret[$retname];
+ set_focus($postname);
+ }
+ }
+}
+
+function confirm_dialog($submit, $msg) {
+ if (find_post($submit)) {
+ display_warning($msg);
+ br();
+ submit_center_first('DialogConfirm', _("Proceed"), '', true);
+ submit_center_last('DialogCancel', _("Cancel"), '', 'cancel');
+ return 0;
+ } else
+ return get_post('DialogConfirm', 0);
+}
+
+/*
+ Block menu/shortcut links during transaction procesing.
+*/
+function page_processing($msg = false)
+{
+ global $Ajax;
+
+ if ($msg === true)
+ $msg = _('Entered data has not been saved yet.\nDo you want to abandon changes?');
+
+ $js = "_validate._processing=" . (
+ $msg ? '\''.strtr($msg, array("\n"=>'\\n')) . '\';' : 'null;');
+ if (in_ajax()) {
+ $Ajax->addScript(true, $js);
+ } else
+ add_js_source($js);
+}
+
+function page_modified($status = true)
+{
+ global $Ajax;
+
+ $js = "_validate._modified=" . ($status ? 1:0).';';
+ if (in_ajax()) {
+ $Ajax->addScript(true, $js);
+ } else
+ add_js_source($js);
+}
?>
\ No newline at end of file