<?php
/*
 $Rev$ | $LastChangedBy$
 $LastChangedDate$
 +-------------------------------------------------------------------------+
 | Copyright (c) 2004 - 2010, Kreotek LLC                                  |
 | All rights reserved.                                                    |
 +-------------------------------------------------------------------------+
 |                                                                         |
 | Redistribution and use in source and binary forms, with or without      |
 | modification, are permitted provided that the following conditions are  |
 | met:                                                                    |
 |                                                                         |
 | - Redistributions of source code must retain the above copyright        |
 |   notice, this list of conditions and the following disclaimer.         |
 |                                                                         |
 | - Redistributions in binary form must reproduce the above copyright     |
 |   notice, this list of conditions and the following disclaimer in the   |
 |   documentation and/or other materials provided with the distribution.  |
 |                                                                         |
 | - Neither the name of Kreotek LLC nor the names of its contributore may |
 |   be used to endorse or promote products derived from this software     |
 |   without specific prior written permission.                            |
 |                                                                         |
 | THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS     |
 | "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT       |
 | LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A |
 | PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT      |
 | OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,   |
 | SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT        |
 | LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,   |
 | DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY   |
 | THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT     |
 | (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE   |
 | OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.    |
 |                                                                         |
 +-------------------------------------------------------------------------+
*/
	require_once("include/session.php");
	require_once("include/search_class.php");

	if(!isset($_GET["id"]))
	    $error = new appError(100,"Passed Parameter not present.");

	$_GET["id"] = mysql_real_escape_string($_GET["id"]);

	$displayTable= new displaySearchTable($db);

	//initialize the object
	$displayTable->initialize($_GET["id"]);

	if (isset($passedjoinclause)) $_SESSION["passedjoinclause"] = $passedjoinclause;
 	if (isset($passedjoinwhere)) $_SESSION["passedjoinwhere"] = $passedjoinwhere;


	//process commands...
	if(!isset($_POST["othercommands"])) $_POST["othercommands"]="";
	if(!isset($_POST["relationship"])) $_POST["relationship"]="";
	if(!isset($_POST["advancedsearch"])) $_POST["advancedsearch"]="";
	if(!isset($_POST["advancedsort"])) $_POST["advancedsort"]="";

	if(isset($_POST["doprint"]))
		if($_POST["doprint"] == "print")
			$_POST["command"]="print";

	if(isset($_POST["deleteCommand"]))
		if($_POST["deleteCommand"]) $_POST["command"]=$_POST["deleteCommand"];
	if($_POST["othercommands"]) $_POST["command"]="other";
	if($_POST["relationship"]) $_POST["command"]="relate records";
	if($_POST["advancedsearch"]) $_POST["command"]="advanced search";
	if($_POST["advancedsort"]) $_POST["command"]="advanced sort";


	if(isset($_POST["command"])){

		switch($_POST["command"]){
			//command switches go here
		case "print":
			// run the print routine
			//=====================================================================================================
			$displayTable->querytype="print";

			if($_POST["theids"] === "")
			    $_POST["theids"]="-100";

			$theids=explode(",",$_POST["theids"]);
			$_SESSION["printing"]["tableid"] = $displayTable->thetabledef["uuid"];
			$_SESSION["printing"]["maintable"] = $displayTable->thetabledef["maintable"];
			$_SESSION["printing"]["theids"]=$theids;
			goURL("print.php");
			break;

		case "delete":
			//=====================================================================================================

			$_POST["othercommands"] = -1;

		case "other":
			// process table specific commands (passed by settings)
			//=====================================================================================================
			$displayTable->recordoffset=0;
			$theids=explode(",",$_POST["theids"]);

			//grab the method name
			if(((int) $_POST["othercommands"]) === -1){

			    $functionname = "delete_record";

			} else {

				$querystatement = "
					SELECT
						name,
                                                roleid
					FROM
						tableoptions
					WHERE id = ".((int) $_POST["othercommands"]);

				$queryresult = $db->query($querystatement);

				$therecord = $db->fetchArray($queryresult);

				$functionname = $therecord["name"];

                                if(!hasRights($therecord["roleid"]))
                            	    goURL(APP_PATH."noaccess.php");

			}//endif

			/**
			  *  If the command is a push command, include tables.php
			  */
			if(strpos($functionname, ":") !== false)
				include("include/tables.php");

			//try to include table specific functions
			if(file_exists("modules/".$displayTable->thetabledef["name"]."/include/".$displayTable->thetabledef["maintable"].".php"))
				include("modules/".$displayTable->thetabledef["name"]."/include/".$displayTable->thetabledef["maintable"].".php");

			//next, see if the searchclass exists
			if(class_exists($displayTable->thetabledef["maintable"]."SearchFunctions")){

				$classname = $displayTable->thetabledef["maintable"]."SearchFunctions";
				$searchFunctions = new $classname($db,$displayTable->thetabledef["uuid"],$theids);

			} else
				$searchFunctions = new searchFunctions($db,$displayTable->thetabledef["uuid"],$theids);

			if(!preg_match("/\:/", $functionname)){

				if(method_exists($searchFunctions,$functionname))
					$statusmessage = $searchFunctions->$functionname();
				else
					$statusmessage = "Function ".$functionname." not defined";

			}else{

				if(moduleExists("mod:b2d42220-443b-fe74-dbdb-ed2c0968c38c", $phpbms->modules))
					$statusmessage = $searchFunctions->runPush($therecord["name"]);

			}//end if
			break;

		case "search":
			$displayTable->recordoffset=0;
			$displayTable->buildSearch($_POST);
			break;

		case "reset":
			$displayTable->recordoffset=0;
			$displayTable->resetQuery();
			break;

		case "omit":
			// omit selected from current query
			//=====================================================================================================
			$displayTable->recordoffset = 0;
			$tempwhere = "";
			$theids = explode(",",$_POST["theids"]);

                        foreach($theids as $theid)
			    $tempwhere.=" OR ".$displayTable->thetabledef["maintable"].".id=".((int) $theid);

			$tempwhere = substr($tempwhere,3);

                        $displayTable->querywhereclause="(".$displayTable->querywhereclause.") AND NOT (".$tempwhere.")";
			break;

		case "keep":
			// keep only those ids
			//=====================================================================================================
			$displayTable->recordoffset = 0;
			$tempwhere = "";
			$theids = explode(",",$_POST["theids"]);

			foreach($theids as $theid)
                            $tempwhere.=" or ".$displayTable->thetabledef["maintable"].".id=".((int) $theid);

			$tempwhere=substr($tempwhere,3);

			$displayTable->querywhereclause = $tempwhere;

			break;

		case "advanced search":

                        if(!hasRights($displayTable->thetabledef["advsearchroleid"]))
                	    goURL(APP_PATH."noaccess.php");

			$displayTable->recordoffset=0;
			$displayTable->querywhereclause=stripslashes($_POST["advancedsearch"]);
			$displayTable->querytype="advanced search";
			break;

                case "run search":
                    /**
                     * Run a loaded search
                     */

                        if(!hasRights($displayTable->thetabledef["advsearchroleid"])){
                            /**
                             * Need to load search from id, because the
                             * person does not have rights to override loaded
                             * searches
                             */

                            $querystatement="
                                SELECT
                                        sqlclause
                                FROM
                                        usersearches
                                WHERE id=".((int) $_POST["LSList"]);

                            $queryresult = $db->query($querystatement);

                            $therecord = $db->fetchArray($queryresult);

                            $_POST["LSSQL"] = $therecord["sqlclause"];

                        }//endif

			$displayTable->recordoffset=0;
			$displayTable->querywhereclause=stripslashes($_POST["LSSQL"]);
			$displayTable->querytype="advanced search";
			break;
                    break;

		case "advanced sort":
			$displayTable->showGroupings = 0;
			$displayTable->recordoffset = 0;
			$displayTable->querysortorder = $_POST["advancedsort"];
			break;

		case "relate records":
			include("include/relationships.php");

			$theids = explode(",",$_POST["theids"]);

			$relationship = new relationship($db, $_POST["relationship"]);
			$newURL = $relationship->execute($theids);

			$_SESSION["temp_relateto"] = $displayTable->thetabledef["displayname"];

			$displayTable->querytype="relate";

			goURL($newURL);
			break;

		}//end switch
	}//end if

	//on the fly sorting... this needs to be done after command processing or the querystatement will not work.
	if(!isset($_POST["newsort"])) $_POST["newsort"]="";
	if(!isset($_POST["desc"])) $_POST["desc"]="";

	if($_POST["newsort"]!="") {
		//$displayTable->setSort($_POST["newsort"]);
		$displayTable->recordoffset=0;
		$displayTable->showGroupings = false;
		foreach ($displayTable->thecolumns as $therow){
			if ($_POST["newsort"]==$therow["name"]) $therow["sortorder"]? $displayTable->querysortorder=$therow["sortorder"] : $displayTable->querysortorder=$therow["column"];
		}
		$_POST["startnum"]=1;
	} elseif($_POST["desc"]!="") {

		$displayTable->showGroupings = false;
		$displayTable->querysortorder.=" DESC";
		$displayTable->recordoffset=0;

	}

if($displayTable->querytype!="print" and $displayTable->querytype!="relate" and $displayTable->querytype!="new" and $displayTable->querytype!="edit") {

	//Check for passed join clause from relationships
	//==============================================================
	if(isset($_SESSION["passedjoinclause"])) {
		$displayTable->recordoffset=0;
		$displayTable->queryjoinclause=$_SESSION["passedjoinclause"];
		session_unregister("passedjoinclause");
	}

	//Check for passed whereclause
	//==============================================================
	if(isset($_SESSION["passedjoinwhere"])) {
		$displayTable->recordoffset=0;
		//gettin kinda ugly here... maybe there's a better solution somewhere?
		$displayTable->querywhereclause=$_SESSION["passedjoinwhere"];
		session_unregister("passedjoinwhere");

		//keeping settings
		$displayTable->querytype="related records from ".$_SESSION["temp_relateto"];
		session_unregister("temp_relateto");
	}

	//record offset?
	if(isset($_POST["offset"])) if($_POST["offset"]!="") $displayTable->recordoffset=$_POST["offset"];

	$displayTable->issueQuery();

	$pageTitle = $displayTable->thetabledef["displayname"];

	$phpbms->cssIncludes[] = "pages/search.css";

	$phpbms->jsIncludes[] = "common/javascript/queryfunctions.js";

	include("header.php");

	?><div class="bodyline">
	<h1 id="srchScreen<?php echo $displayTable->thetabledef["id"] ?>"><?php echo $displayTable->thetabledef["displayname"] ?></h1>
	<?php
			//Search//select
				$displayTable->displaySearch();
				$displayTable->displayQueryButtons();

				$displayTable->displayResultTable();

				$displayTable->showRelationships();

				$displayTable->saveQueryParameters();
		?>
	</div>
	<?php include("footer.php");}?>