| Server IP : 37.220.80.31 / Your IP : 3.128.31.194 Web Server : Apache/2.4.52 (Ubuntu) System : Linux 3051455-guretool.twc1.net 5.15.0-107-generic #117-Ubuntu SMP Fri Apr 26 12:26:49 UTC 2024 x86_64 User : www-root ( 1010) PHP Version : 7.4.33 Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority, MySQL : OFF | cURL : ON | WGET : OFF | Perl : OFF | Python : OFF | Sudo : OFF | Pkexec : OFF Directory : /var/www/www-root/data/www/dev.artlot24.ru/bitrix/modules/form/classes/mysql/ |
Upload File : |
<?php
class CFormResult extends CAllFormResult
{
public static function err_mess()
{
$module_id = "form";
@include($_SERVER["DOCUMENT_ROOT"]."/bitrix/modules/".$module_id."/install/version.php");
return "<br>Module: ".$module_id." (".$arModuleVersion["VERSION"].")<br>Class: CFormResult<br>File: ".__FILE__;
}
public static function GetList($WEB_FORM_ID, $by = 's_timestamp', $order = 'desc', $arFilter = [], $is_filtered = null, $CHECK_RIGHTS = "Y", $records_limit = false)
{
$err_mess = (CFormResult::err_mess())."<br>Function: GetList<br>Line: ";
global $DB, $USER, $strError;
$CHECK_RIGHTS = ($CHECK_RIGHTS=="Y") ? "Y" : "N";
$WEB_FORM_ID = intval($WEB_FORM_ID);
$F_RIGHT = CForm::GetPermission($WEB_FORM_ID);
$USER_ID = intval($USER->GetID());
$arSqlSearch = array();
$arr["FIELDS"] = array();
if (is_array($arFilter))
{
$arFilter = CFormResult::PrepareFilter($WEB_FORM_ID, $arFilter);
$z = CForm::GetByID($WEB_FORM_ID);
$form = $z->Fetch();
/***********************/
$z = CFormField::GetList($WEB_FORM_ID, "");
while ($zr=$z->Fetch())
{
$arPARAMETER_NAME = array("ANSWER_TEXT", "ANSWER_VALUE", "USER");
CFormField::GetFilterTypeList($arrUSER, $arrANSWER_TEXT, $arrANSWER_VALUE, $arrFIELD);
foreach ($arPARAMETER_NAME as $PARAMETER_NAME)
{
switch ($PARAMETER_NAME)
{
case "ANSWER_TEXT":
$arFILTER_TYPE = $arrANSWER_TEXT["reference_id"];
break;
case "ANSWER_VALUE":
$arFILTER_TYPE = $arrANSWER_VALUE["reference_id"];
break;
case "USER":
$arFILTER_TYPE = $arrUSER["reference_id"];
break;
}
foreach ($arFILTER_TYPE as $FILTER_TYPE)
{
$arrUF = array();
$arrUF["ID"] = $zr["ID"];
$arrUF["PARAMETER_NAME"] = $PARAMETER_NAME;
$arrUF["FILTER_TYPE"] = $FILTER_TYPE;
$FID = $form["SID"]."_".$zr["SID"]."_".$PARAMETER_NAME."_".$FILTER_TYPE;
if ($FILTER_TYPE=="date" || $FILTER_TYPE=="integer")
{
$arrUF["SIDE"] = "1";
$arrFORM_FILTER[$FID."_1"] = $arrUF;
$arrUF["SIDE"] = "2";
$arrFORM_FILTER[$FID."_2"] = $arrUF;
$arrUF["SIDE"] = "0";
$arrFORM_FILTER[$FID."_0"] = $arrUF;
}
else $arrFORM_FILTER[$FID] = $arrUF;
}
}
}
if (is_array($arrFORM_FILTER)) $arrFORM_FILTER_KEYS = array_keys($arrFORM_FILTER);
$t = 0;
$filter_keys = array_keys($arFilter);
$keyCount = count($filter_keys);
for ($i=0; $i<$keyCount; $i++)
{
$key = $filter_keys[$i];
$val = $arFilter[$filter_keys[$i]];
if(is_array($val))
{
if(empty($val))
continue;
}
else
{
if((string)$val == '' || $val === "NOT_REF")
continue;
}
$match_value_set = (in_array($key."_EXACT_MATCH", $filter_keys));
$key = strtoupper($key);
switch($key)
{
case "ID":
$match = ($arFilter[$key."_EXACT_MATCH"]=="N" && $match_value_set) ? "Y" : "N";
$arSqlSearch[] = GetFilterQuery("R.ID", $val, $match);
break;
case "STATUS":
$arSqlSearch[] = "R.STATUS_ID='".intval($val)."'";
break;
case "STATUS_ID":
$match = ($arFilter[$key."_EXACT_MATCH"]=="N" && $match_value_set) ? "Y" : "N";
$arSqlSearch[] = GetFilterQuery("R.STATUS_ID", $val, $match);
break;
case "TIMESTAMP_1":
$arSqlSearch[] = "R.TIMESTAMP_X>=".$DB->CharToDateFunction($val, "SHORT");
break;
case "TIMESTAMP_2":
$arSqlSearch[] = "R.TIMESTAMP_X<".$DB->CharToDateFunction($val, "SHORT")." + INTERVAL 1 DAY";
break;
case "DATE_CREATE_1":
$arSqlSearch[] = "R.DATE_CREATE>=".$DB->CharToDateFunction($val, "SHORT");
break;
case "DATE_CREATE_2":
$arSqlSearch[] = "R.DATE_CREATE<".$DB->CharToDateFunction($val, "SHORT")." + INTERVAL 1 DAY";
break;
case "TIME_CREATE_1":
$arSqlSearch[] = "R.DATE_CREATE>=".$DB->CharToDateFunction($val, "FULL");
break;
case "TIME_CREATE_2":
$arSqlSearch[] = "R.DATE_CREATE<".$DB->CharToDateFunction($val, "FULL");
break;
case "REGISTERED":
$arSqlSearch[] = ($val=="Y") ? "R.USER_ID>0" : "(R.USER_ID<=0 or R.USER_ID is null)";
break;
case "USER_AUTH":
$arSqlSearch[] = ($val=="Y") ? "(R.USER_AUTH='Y' and R.USER_ID>0)" : "(R.USER_AUTH='N' and R.USER_ID>0)";
break;
case "USER_ID":
$match = ($arFilter[$key."_EXACT_MATCH"]=="N" && $match_value_set) ? "Y" : "N";
$arSqlSearch[] = GetFilterQuery("R.USER_ID", $val, $match);
break;
case "GUEST_ID":
$match = ($arFilter[$key."_EXACT_MATCH"]=="N" && $match_value_set) ? "Y" : "N";
$arSqlSearch[] = GetFilterQuery("R.STAT_GUEST_ID", $val, $match);
break;
case "SESSION_ID":
$match = ($arFilter[$key."_EXACT_MATCH"]=="N" && $match_value_set) ? "Y" : "N";
$arSqlSearch[] = GetFilterQuery("R.STAT_SESSION_ID", $val, $match);
break;
case "SENT_TO_CRM":
$arSqlSearch[] = GetFilterQuery("R.SENT_TO_CRM", $val, "Y");
break;
default:
if (is_array($arrFORM_FILTER))
{
$key = $filter_keys[$i];
if (in_array($key, $arrFORM_FILTER_KEYS))
{
$arrF = $arrFORM_FILTER[$key];
if (is_array($arr["FIELDS"]) && !in_array($arrF["ID"],$arr["FIELDS"]))
{
$t++;
$A = "A".$t;
$arr["TABLES"][] = "b_form_result_answer ".$A;
$arr["WHERE"][] = "(".$A.".RESULT_ID=R.ID and ".$A.".FIELD_ID='".$arrF["ID"]."')";
$arr["FIELDS"][] = $arrF["ID"];
}
switch(mb_strtoupper($arrF["FILTER_TYPE"]))
{
case "EXIST":
if($arrF["PARAMETER_NAME"] == "ANSWER_TEXT")
{
$arSqlSearch[] = "length(".$A.".ANSWER_TEXT)+0>0";
}
elseif($arrF["PARAMETER_NAME"] == "ANSWER_VALUE")
{
$arSqlSearch[] = "length(".$A.".ANSWER_VALUE)+0>0";
}
elseif($arrF["PARAMETER_NAME"] == "USER")
{
$arSqlSearch[] = "length(".$A.".USER_TEXT)+0>0";
}
break;
case "TEXT":
$match = ($arFilter[$key."_exact_match"] == "Y")? "N" : "Y";
$sql = "";
if($arrF["PARAMETER_NAME"] == "ANSWER_TEXT")
{
$sql = GetFilterQuery($A.".ANSWER_TEXT_SEARCH", ToUpper($val), $match);
}
elseif($arrF["PARAMETER_NAME"] == "ANSWER_VALUE")
{
$sql = GetFilterQuery($A.".ANSWER_VALUE_SEARCH", ToUpper($val), $match);
}
elseif($arrF["PARAMETER_NAME"] == "USER")
{
$sql = GetFilterQuery($A.".USER_TEXT_SEARCH", ToUpper($val), $match);
}
if($sql !== "0" && trim($sql) <> '')
{
$arSqlSearch[] = $sql;
}
break;
case "DROPDOWN":
case "ANSWER_ID":
$arSqlSearch[] = $A.".ANSWER_ID=".intval($val);
break;
case "DATE":
if($arrF["PARAMETER_NAME"] == "USER")
{
if(CheckDateTime($val))
{
if($arrF["SIDE"] == "1")
{
$arSqlSearch[] = $A.".USER_DATE>=".$DB->CharToDateFunction($val, "SHORT");
}
elseif($arrF["SIDE"] == "2")
{
$arSqlSearch[] = $A.".USER_DATE<".$DB->CharToDateFunction($val, "SHORT")." + INTERVAL 1 DAY";
}
elseif($arrF["SIDE"] == "0")
{
$arSqlSearch[] = $A.".USER_DATE=".$DB->CharToDateFunction($val);
}
}
}
break;
case "INTEGER":
if($arrF["PARAMETER_NAME"] == "USER")
{
if($arrF["SIDE"] == "1")
{
$arSqlSearch[] = $A.".USER_TEXT+0>=".intval($val);
}
elseif($arrF["SIDE"] == "2")
{
$arSqlSearch[] = $A.".USER_TEXT+0<=".intval($val);
}
elseif($arrF["SIDE"] == "0")
{
$arSqlSearch[] = $A.".USER_TEXT='".intval($val)."'";
}
}
elseif($arrF["PARAMETER_NAME"] == "ANSWER_TEXT")
{
if($arrF["SIDE"] == "1")
{
$arSqlSearch[] = $A.".ANSWER_TEXT+0>=".intval($val);
}
elseif($arrF["SIDE"] == "2")
{
$arSqlSearch[] = $A.".ANSWER_TEXT+0<=".intval($val);
}
elseif($arrF["SIDE"] == "0")
{
$arSqlSearch[] = $A.".ANSWER_TEXT='".intval($val)."'";
}
}
elseif($arrF["PARAMETER_NAME"] == "ANSWER_VALUE")
{
if($arrF["SIDE"] == "1")
{
$arSqlSearch[] = $A.".ANSWER_VALUE+0>=".intval($val);
}
elseif($arrF["SIDE"] == "2")
{
$arSqlSearch[] = $A.".ANSWER_VALUE+0<=".intval($val);
}
elseif($arrF["SIDE"] == "0")
{
$arSqlSearch[] = $A.".ANSWER_VALUE='".intval($val)."'";
}
}
break;
}
}
}
}
}
}
if ($by == "s_id") $strSqlOrder = "ORDER BY R.ID";
elseif ($by == "s_date_create") $strSqlOrder = "ORDER BY R.DATE_CREATE";
elseif ($by == "s_timestamp") $strSqlOrder = "ORDER BY R.TIMESTAMP_X";
elseif ($by == "s_user_id") $strSqlOrder = "ORDER BY R.USER_ID";
elseif ($by == "s_guest_id") $strSqlOrder = "ORDER BY R.STAT_GUEST_ID";
elseif ($by == "s_session_id") $strSqlOrder = "ORDER BY R.STAT_SESSION_ID";
elseif ($by == "s_status") $strSqlOrder = "ORDER BY R.STATUS_ID";
elseif ($by == "s_sent_to_crm") $strSqlOrder = "ORDER BY R.SENT_TO_CRM";
else
{
$strSqlOrder = "ORDER BY R.TIMESTAMP_X";
}
if ($order != "asc")
{
$strSqlOrder .= " desc ";
}
$strSqlSearch = GetFilterSqlSearch($arSqlSearch);
if (is_array($arr["TABLES"]))
$str1 = implode(",\n ",$arr["TABLES"]);
if (is_array($arr["WHERE"]))
$str2 = implode("\n and ",$arr["WHERE"]);
if ($str1 <> '') $str1 = ",\n ".$str1;
if ($str2 <> '') $str2 = "\n and ".$str2;
if ($records_limit===false)
{
$records_limit = "LIMIT ".intval(COption::GetOptionString("form","RECORDS_LIMIT"));
}
else
{
$records_limit = intval($records_limit);
if ($records_limit>0)
{
$records_limit = "LIMIT ".$records_limit;
}
}
if ($CHECK_RIGHTS!="Y" || $F_RIGHT >= 30 || CForm::IsAdmin())
{
$strSql = "
SELECT
R.ID, R.USER_ID, R.USER_AUTH, R.STAT_GUEST_ID, R.STAT_SESSION_ID, R.STATUS_ID, R.SENT_TO_CRM,
".$DB->DateToCharFunction("R.DATE_CREATE")." DATE_CREATE,
".$DB->DateToCharFunction("R.TIMESTAMP_X")." TIMESTAMP_X,
S.TITLE STATUS_TITLE,
S.CSS STATUS_CSS
FROM
b_form_result R,
b_form_status S
$str1
WHERE
$strSqlSearch
$str2
and R.FORM_ID = '$WEB_FORM_ID'
and S.ID = R.STATUS_ID
GROUP BY
R.ID, R.USER_ID, R.USER_AUTH, R.STAT_GUEST_ID, R.STAT_SESSION_ID, R.DATE_CREATE, R.STATUS_ID, R.SENT_TO_CRM
$strSqlOrder
$records_limit
";
$res = $DB->Query($strSql, false, $err_mess.__LINE__);
}
elseif ($F_RIGHT>=15)
{
$arGroups = $USER->GetUserGroupArray();
if (!is_array($arGroups)) $arGroups[] = 2;
if (is_array($arGroups) && count($arGroups)>0) $groups = implode(",",$arGroups);
if ($F_RIGHT<20) $str3 = "and ifnull(R.USER_ID,0) = $USER_ID";
$strSql = "
SELECT
R.ID, R.USER_ID, R.USER_AUTH, R.STAT_GUEST_ID, R.STAT_SESSION_ID, R.STATUS_ID, R.SENT_TO_CRM,
".$DB->DateToCharFunction("R.DATE_CREATE")." DATE_CREATE,
".$DB->DateToCharFunction("R.TIMESTAMP_X")." TIMESTAMP_X,
S.TITLE STATUS_TITLE,
S.CSS STATUS_CSS
FROM
b_form_result R,
b_form_status S,
b_form_status_2_group G$str1
WHERE
$strSqlSearch
$str2
$str3
and R.FORM_ID = '$WEB_FORM_ID'
and S.ID = R.STATUS_ID
and G.STATUS_ID = S.ID
and (
(G.GROUP_ID in ($groups)) or
(G.GROUP_ID in ($groups,0) and ifnull(R.USER_ID,0) = $USER_ID and $USER_ID>0)
)
and G.PERMISSION in ('VIEW', 'EDIT', 'DELETE')
GROUP BY
R.ID, R.USER_ID, R.USER_AUTH, R.STAT_GUEST_ID,
R.STAT_SESSION_ID, R.SENT_TO_CRM, R.DATE_CREATE, R.STATUS_ID, R.SENT_TO_CRM
$strSqlOrder
$records_limit
";
$res = $DB->Query($strSql, false, $err_mess.__LINE__);
}
else
{
$res = new CDBResult();
$res->InitFromArray(array());
}
return $res;
}
public static function GetByID($ID)
{
global $DB, $strError;
$err_mess = (CFormResult::err_mess())."<br>Function: GetByID<br>Line: ";
$ID = intval($ID);
$strSql = "
SELECT
R.*,
".$DB->DateToCharFunction("R.DATE_CREATE")." DATE_CREATE,
".$DB->DateToCharFunction("R.TIMESTAMP_X")." TIMESTAMP_X,
F.IMAGE_ID, F.DESCRIPTION, F.DESCRIPTION_TYPE, F.SHOW_RESULT_TEMPLATE, F.PRINT_RESULT_TEMPLATE, F.EDIT_RESULT_TEMPLATE, F.NAME,
F.SID,
F.SID VARNAME,
S.TITLE STATUS_TITLE,
S.DESCRIPTION STATUS_DESCRIPTION,
S.CSS STATUS_CSS
FROM
b_form_result R,
b_form_status S,
b_form F
WHERE
R.ID = $ID
and F.ID = R.FORM_ID
and R.STATUS_ID = S.ID
";
$res = $DB->Query($strSql, false, $err_mess.__LINE__);
return $res;
}
public static function GetPermissions($RESULT_ID, &$CURRENT_STATUS_ID = null)
{
$err_mess = (CFormResult::err_mess())."<br>Function: GetPermissions<br>Line: ";
global $DB, $USER, $strError;
$USER_ID = intval($USER->GetID());
$RESULT_ID = intval($RESULT_ID);
$arrReturn = array();
$arGroups = $USER->GetUserGroupArray();
if (!is_array($arGroups)) $arGroups[] = 2;
if (CForm::IsAdmin()) return CFormStatus::GetMaxPermissions();
else
{
$arr = array();
if (is_array($arGroups) && count($arGroups)>0) $groups = implode(",",$arGroups);
$strSql = "
SELECT
G.PERMISSION,
R.STATUS_ID
FROM
b_form_result R,
b_form_status_2_group G
WHERE
R.ID = $RESULT_ID
and R.STATUS_ID = G.STATUS_ID
and (
(G.GROUP_ID in ($groups) and ifnull(R.USER_ID,0) <> $USER_ID) or
(G.GROUP_ID in ($groups,0) and ifnull(R.USER_ID,0) = $USER_ID)
)
";
$z = $DB->Query($strSql, false, $err_mess.__LINE__);
while ($zr = $z->Fetch())
{
$arrReturn[] = $zr["PERMISSION"];
$CURRENT_STATUS_ID = $zr["STATUS_ID"];
}
}
return $arrReturn;
}
public static function AddAnswer($arFields)
{
$err_mess = (CFormResult::err_mess())."<br>Function: AddAnswer<br>Line: ";
global $DB, $strError;
$arInsert = $DB->PrepareInsert("b_form_result_answer", $arFields, "form");
$strSql = "INSERT INTO b_form_result_answer (".$arInsert[0].") VALUES (".$arInsert[1].")";
$DB->Query($strSql, false, $err_mess.__LINE__);
return intval($DB->LastID());
}
public static function UpdateField($arFields, $RESULT_ID, $FIELD_ID)
{
$err_mess = (CFormResult::err_mess())."<br>Function: UpdateField<br>Line: ";
global $DB, $strError;
$RESULT_ID = intval($RESULT_ID);
$FIELD_ID = intval($FIELD_ID);
$strUpdate = $DB->PrepareUpdate("b_form_result_answer", $arFields, "form");
$strSql = "UPDATE b_form_result_answer SET ".$strUpdate." WHERE RESULT_ID=".$RESULT_ID." and FIELD_ID=".$FIELD_ID;
$DB->Query($strSql, false, $err_mess.__LINE__);
}
}