Portions created by the Initial Developer are Copyright (C) 2008-2013 the Initial Developer. All Rights Reserved. Contributor(s): Mark J Crane */ require_once "root.php"; require_once "resources/require.php"; require_once "resources/check_auth.php"; if (permission_exists('contact_view')) { //access granted } else { echo "access denied"; exit; } //add multi-lingual support require_once "app_languages.php"; foreach($text as $key => $value) { $text[$key] = $value[$_SESSION['domain']['language']['code']]; } require_once "resources/header.php"; $document['title'] = $text['title-contacts']; require_once "resources/paging.php"; //get the search criteria $search_all = strtolower(check_str($_GET["search_all"])); $phone_number = check_str($_GET["phone_number"]); //get variables used to control the order $order_by = check_str($_GET["order_by"]); $order = check_str($_GET["order"]); //show the content echo "\n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo "
\n"; echo " ".$text['header-contacts']."
\n"; echo " ".$text['description-contacts']."

\n"; echo " 		\n"; echo "
\n"; echo " \n"; echo " \n"; if (permission_exists('contact_add')) { echo ""; } echo "
\n"; echo "
\n"; echo "
\n"; //retrieve current user's assigned groups (uuids) foreach ($_SESSION['groups'] as $group_data) { $user_group_uuids[] = $group_data['group_uuid']; } //add user's uuid to group uuid list to include private (non-shared) contacts $user_group_uuids[] = $_SESSION["user_uuid"]; //prepare to page the results $sql = "select count(*) as num_rows from v_contacts "; $sql .= "where domain_uuid = '".$_SESSION['domain_uuid']."' "; if (sizeof($user_group_uuids) > 0) { //only show contacts assigned to current user's group(s) and those not assigned to any group $sql .= "and ( \n"; $sql .= " contact_uuid in ( \n"; $sql .= " select contact_uuid from v_contact_groups "; $sql .= " where group_uuid in ('".implode("','", $user_group_uuids)."') "; $sql .= " and domain_uuid = '".$_SESSION['domain_uuid']."' "; $sql .= " ) \n"; $sql .= " or \n"; $sql .= " contact_uuid not in ( \n"; $sql .= " select contact_uuid from v_contact_groups "; $sql .= " where domain_uuid = '".$_SESSION['domain_uuid']."' "; $sql .= " ) \n"; $sql .= ") \n"; } if (strlen($phone_number) > 0) { $phone_number = preg_replace('{\D}', '', $phone_number); $sql .= "and contact_uuid in ( "; $sql .= " select contact_uuid from v_contact_phones "; $sql .= " where phone_number like '%".$phone_number."%' "; $sql .= ") \n"; } else { if (strlen($search_all) > 0) { if (is_numeric($search_all)) { $sql .= "and contact_uuid in ( \n"; $sql .= " select contact_uuid from v_contact_phones "; $sql .= " where phone_number like '%".$search_all."%' "; $sql .= ") \n"; } else { $sql .= "and contact_uuid in ( \n"; $sql .= " select contact_uuid from v_contacts "; $sql .= " where domain_uuid = '".$_SESSION['domain_uuid']."' \n"; $sql .= " and ( \n"; $sql .= " lower(contact_organization) like '%".$search_all."%' or \n"; $sql .= " lower(contact_name_given) like '%".$search_all."%' or \n"; $sql .= " lower(contact_name_family) like '%".$search_all."%' or \n"; $sql .= " lower(contact_nickname) like '%".$search_all."%' or \n"; $sql .= " lower(contact_title) like '%".$search_all."%' or \n"; $sql .= " lower(contact_category) like '%".$search_all."%' or \n"; $sql .= " lower(contact_role) like '%".$search_all."%' or \n"; $sql .= " lower(contact_email) like '%".$search_all."%' or \n"; $sql .= " lower(contact_url) like '%".$search_all."%' or \n"; $sql .= " lower(contact_time_zone) like '%".$search_all."%' or \n"; $sql .= " lower(contact_note) like '%".$search_all."%' or \n"; $sql .= " lower(contact_type) like '%".$search_all."%' \n"; $sql .= " ) \n"; $sql .= ") \n"; } } } if (strlen($order_by) > 0) { $sql .= "order by ".$order_by." ".$order." "; } else { $sql .= "order by contact_organization asc, contact_name_given asc, contact_name_family asc "; } $prep_statement = $db->prepare($sql); if ($prep_statement) { $prep_statement->execute(); $row = $prep_statement->fetch(PDO::FETCH_ASSOC); if ($row['num_rows'] > 0) { $num_rows = $row['num_rows']; } else { $num_rows = '0'; } } //prepare to page the results $rows_per_page = 150; $param = ""; $page = $_GET['page']; if (strlen($page) == 0) { $page = 0; $_GET['page'] = 0; } list($paging_controls, $rows_per_page, $var_3) = paging($num_rows, $param, $rows_per_page); $offset = $rows_per_page * $page; //get the list $sql = str_replace('count(*) as num_rows', '*', $sql); // modify query created above $sql .= "limit ".$rows_per_page." offset ".$offset." "; $prep_statement = $db->prepare(check_sql($sql)); $prep_statement->execute(); $result = $prep_statement->fetchAll(PDO::FETCH_NAMED); $result_count = count($result); unset ($prep_statement, $sql); $c = 0; $row_style["0"] = "row_style0"; $row_style["1"] = "row_style1"; echo "
\n"; echo "\n"; echo "\n"; echo th_order_by('contact_type', $text['label-contact_type'], $order_by, $order); echo th_order_by('contact_organization', $text['label-contact_organization'], $order_by, $order); echo th_order_by('contact_name_given', $text['label-contact_name_given'], $order_by, $order); echo th_order_by('contact_name_family', $text['label-contact_name_family'], $order_by, $order); echo th_order_by('contact_nickname', $text['label-contact_nickname'], $order_by, $order); echo th_order_by('contact_title', $text['label-contact_title'], $order_by, $order); //echo th_order_by('contact_category', $text['label-contact_category'], $order_by, $order); echo th_order_by('contact_role', $text['label-contact_role'], $order_by, $order); //echo th_order_by('contact_email', $text['label-contact_email'], $order_by, $order); //echo th_order_by('contact_url', $text['label-contact_url'], $order_by, $order); //echo th_order_by('contact_time_zone', $text['label-contact_time_zone'], $order_by, $order); //echo th_order_by('contact_note', $text['label-contact_note'], $order_by, $order); echo "\n"; echo "\n"; if ($result_count > 0) { foreach($result as $row) { $tr_link = "href='contact_edit.php?id=".$row['contact_uuid']."&query_string=".urlencode($_SERVER["QUERY_STRING"])."'"; echo "\n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; //echo " \n"; echo " \n"; //echo " \n"; //echo " \n"; //echo " \n"; //echo " \n"; echo " \n"; echo "\n"; if ($c==0) { $c=1; } else { $c=0; } } //end foreach unset($sql, $result, $row_count); } //end if results echo "\n"; echo "\n"; echo "\n"; echo "
"; echo "$v_link_label_add"; echo "
".ucwords($row['contact_type'])." ".$row['contact_organization']." ".$row['contact_name_given']." ".$row['contact_name_family']." ".$row['contact_nickname']." ".$row['contact_title']." ".$row['contact_category']." ".$row['contact_role']." ".$row['contact_email']." ".$row['contact_url']." ".$row['contact_time_zone']." ".$row['contact_note']." "; echo "$v_link_label_edit"; echo "$v_link_label_delete"; echo "
\n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo "
 $paging_controls"; echo "$v_link_label_add"; echo "
\n"; echo "
"; //include the footer require_once "resources/footer.php"; ?>