?
áEÓê¤ÎïLwebshll2019
<?php
if (!defined('IN_WWW'))
exit();
if (!$_Connected)
{
//exit('Espace r?serv? : acc?s interdit');
?><script type="text/javascript">
alert('Espace réservé : accès interdit');
document.location.href="http://web4yoo.com/myagenda/";
</script><?
}
$site_Content .= '<h2><img src="http://web4yoo.com/myagenda/images/Paste-64.png" align="absmiddle" class="rotate"/> Mes taches</h2>
<p><a href="./?a=events&op=all" style="padding:12px 26px;background: url(http://web4yoo.com/myagenda/images/submit.png) no-repeat scroll 0 0 transparent; border: 0 none; cursor: pointer; height: 39px; width: 168px;">Toutes mes taches</a> | <a href="./?a=events" style="padding:12px 26px;background: url(http://web4yoo.com/myagenda/images/submit.png) no-repeat scroll 0 0 transparent; border: 0 none; cursor: pointer; height: 39px; width: 168px;">Mes taches à venir</a></p>';
if(isset($_POST['search']))
{
$disp = 'block';
}else
{
$disp = 'none';
}
$site_Content .= '<br><br><br><span id="bt_rech" style="cursor:pointer;font-size:14px; font-weight:bold;"><img src="http://web4yoo.com/myagenda/images/FilterList-32.png" align="absmiddle" class="rotate"/> → Cibler une tache précise (par le titre)</span><br>
<form name="form2" id="form2" method="post" action="./?a=events&op=all2" style="display:'.$disp.';border: 2px solid rgb(255, 255, 255); border-radius: 4px 4px 4px 4px; padding: 5px; margin: 5px; width: 52%;">
<br>Titre de la tache : <input name="search" type="hidden" id="search" value="'.$_POST['titre'].'" /><input name="titre_tache" type="text" value="'.$_POST['titre_tache'].'" style="width:194px;"/><br><br><input type="submit" name="Submit" value="Chercher" /><a href="./?a=search" style="padding:12px 26px;background: url(http://web4yoo.com/myagenda/images/submit.png) no-repeat scroll 0 0 transparent; border: 0 none; cursor: pointer; height: 39px; width: 168px;">Recherche Avancée</a>
</form>';
$today = mktime(0, 0, 0, date('m'), date('d'), date('Y'));
if (!isset($_GET['l']))
$limite = 0;
else
$limite = (int)$_GET['l'];
$nombre = 5;
if (!isset($_GET['op']))
{
$site_Content .= '<br /><span class="operation">Mes taches à venir:</span><br /><br />';
if(is_admin())
{
$extraire = mysql_query("SELECT id,date FROM agenda_events WHERE date>'$today'");
}else
{
$extraire = mysql_query("select * FROM agenda_events ae, agenda_dept ad, agenda_membre am
WHERE ae.num_dept = ad.num_dept
AND ad.id_membre = am.id
AND ae.date>'$today'
AND ad.id_membre='{$_SESSION['mbr_id']}'");
}
$total = mysql_numrows($extraire);
$verifLimite = verifLimite($limite, $total, $nombre);
if (!$verifLimite) {
$limite = 0;
}
if ($total > $nombre) {
$site_Content .= '<p>Pages : ';
$site_Content .= affichePages($nombre, $total, $limite, "./?a=events&l=[l]").'</p>';
}
if(is_admin())
{
$select = "select * FROM agenda_events WHERE date>='$today' ORDER BY date LIMIT $limite,$nombre";
}else
{
$select = "select ae.id as ide,ae.* FROM agenda_events ae, agenda_dept ad, agenda_membre am
WHERE ae.num_dept = ad.num_dept
AND ad.id_membre = am.id
AND ae.date>='$today'
AND ad.id_membre='{$_SESSION['mbr_id']}'
ORDER BY ae.date LIMIT $limite,$nombre";
}
$result = mysql_query($select) or die('<b>Erreur MySQL [Sélection des taches]</b> : <br />' . mysql_error());
$nbrEvents = mysql_num_rows($result);
if ($nbrEvents > 0)
{
$site_Content .= '<table class="tableau" width="100%"><tr valign="top" style="height:26px; background:#DEDEDE;">
<td>
Détails
</td>
<td align="center">
Actions
</td>
</tr>';
while ($row = mysql_fetch_array($result))
{
$id = $row["ide"];
$titre = safest($row["titre"]);
$type = safest($row["type"]);
$texte = safest($row["texte"]);
$idDept = $row["num_dept"];
$date = $row["date"];
$texteDate = date('d', $date) . ' / ' . date('m', $date) . ' / ' . date('Y', $date);
$req = "SELECT am.login FROM agenda_membre am, agenda_dept ad WHERE ad.id_membre = am.id AND ad.num_dept ='".$idDept."'";
$sql = mysql_query($req);
$User = mysql_fetch_assoc($sql);
$site_Content .= '
<tr valign="top">
<td>
<p style="margin-bottom:0"><b>' . $titre . '</b>, affecté a ' . safest($User['login']) . ' pour le <i><b>' . $texteDate . '</b></i></p>
</td>
<td align="center">
<a href="./?a=events&op=edit&k=' . $id . '" title="Editer cette tache">Modifier</a> |
<a href="./?a=events&op=erase&k=' . $id . '" title="Supprimer cette tache">Supprimer</a>
</td>
</tr>';
}
$site_Content .= '</table>';
} else {
$site_Content .= 'Aucune tache enregistrée';
}
}
elseif (!empty($_GET['op']) && $_GET['op'] == 'all')
{
$site_Content .= '<br /><span class="operation">Toutes mes taches:</span><br /><br />';
if(is_admin())
{
$extraire = mysql_query("SELECT id FROM agenda_events");
}else
{
//echo 'test'.$_SESSION['mbr_id'];exit;
$extraire = mysql_query("select ae.id FROM agenda_events ae, agenda_dept ad, agenda_membre am
WHERE ae.num_dept = ad.num_dept
AND ad.id_membre = am.id
AND am.id ='{$_SESSION['mbr_id']}'");
}
$total = mysql_numrows($extraire);
$verifLimite = verifLimite($limite, $total, $nombre);
if (!$verifLimite) {
$limite = 0;
}
if ($total > $nombre) {
$site_Content .= '<p>Pages : ';
$site_Content .= affichePages($nombre, $total, $limite, "./?a=events&op=all&l=[l]").'</p>';
}
if(is_admin())
{
$select = "select * FROM agenda_events ORDER BY date LIMIT $limite,$nombre";
}else
{
$select = "select ae.id as ide,ae.*,ad.*,am.* FROM agenda_events ae, agenda_dept ad, agenda_membre am
WHERE ae.num_dept = ad.num_dept
AND ad.id_membre = am.id
AND ad.id_membre='{$_SESSION['mbr_id']}'
ORDER BY ae.date LIMIT $limite,$nombre";
}
$result = mysql_query($select) or die('<b>Erreur MySQL [Sélection des taches]</b> : <br />' . mysql_error());
$nbrEvents = mysql_numrows($result);
if ($nbrEvents > 0)
{
$site_Content .= '<table class="tableau" width="100%"><tr valign="top" style="height:26px; background:#DEDEDE;">
<td>
Détails
</td>
<td align="center">
Actions
</td>
</tr>';
while ($row = mysql_fetch_array($result))
{
$id = $row["ide"];
$titre = safest($row["titre"]);
$type = safest($row["type"]);
$texte = safest($row["texte"]);
$idM = $row["id_membre"];
$date = $row["date"];
$texteDate = date('d', $date) . ' / ' . date('m', $date) . ' / ' . date('Y', $date);
$req = "SELECT id,login FROM agenda_membre WHERE id='".(int)$idM."'";
$sql = mysql_query($req);
$User = mysql_fetch_assoc($sql);
$site_Content .= '
<tr valign="top">
<td>
<p style="margin-bottom:0"><b>' . $titre . '</b>, affecté a ' . safest($User['login']) . ' pour le <i><b>' . $texteDate . '</b></i></p>
</td>
<td align="center">
<b><span><a href="./?a=events&op=edit&k=' . $id . '" title="Editer cette tache">Modifier</a> |
<a href="./?a=events&op=erase&k=' . $id . '" title="Supprimer cette tache">Supprimer</a></span></b>
</td>
</tr>';
}
$site_Content .= '</table>';
} else {
$site_Content .= 'Aucune tache enregistrée';
}
}elseif (!empty($_GET['op']) && $_GET['op'] == 'all2')
{
$site_Content .= '<br /><span class="operation">Toutes les taches de votre recherche:</span><br /><br />';
//print_r($_POST);
if(isset($_POST['search']))
{
$_SESSION['titre_tache'] = $_POST['titre_tache'];
}
//echo $_SESSION['titre_tache'];
$extraire = mysql_query("select ae.id FROM agenda_events ae, agenda_dept ad, agenda_membre am
WHERE ae.num_dept = ad.num_dept
AND ad.id_membre = am.id
AND am.id ='{$_SESSION['mbr_id']}'
AND titre like '%".$_SESSION['titre_tache']."%'");
// $extraire = mysql_query("SELECT id FROM agenda_events WHERE titre like '%".$_SESSION['titre_tache']."%'");
$total = mysql_numrows($extraire);
$verifLimite = verifLimite($limite, $total, $nombre);
if (!$verifLimite) {
$limite = 0;
}
if ($total > $nombre) {
$site_Content .= '<p>Pages : ';
$site_Content .= affichePages($nombre, $total, $limite, "./?a=events&op=all2&l=[l]").'</p>';
}
$select = "select ae.id as ide,ae.*,ad.*,am.* FROM agenda_events ae, agenda_dept ad, agenda_membre am
WHERE ae.num_dept = ad.num_dept
AND ad.id_membre = am.id
AND ad.id_membre='{$_SESSION['mbr_id']}'
AND titre like '%".$_SESSION['titre_tache']."%'
ORDER BY ae.date LIMIT $limite,$nombre";
//$select = "select * FROM agenda_events WHERE titre like '%".$_SESSION['titre_tache']."%' ORDER BY date LIMIT $limite,$nombre";
$result = mysql_query($select) or die('<b>Erreur MySQL [Sélection des taches]</b> : <br />' . mysql_error());
$nbrEvents = mysql_numrows($result);
if ($nbrEvents > 0)
{
$site_Content .= '<table class="tableau" width="100%"><tr valign="top" style="height:26px; background:#DEDEDE;">
<td>
Détails
</td>
<td align="center">
Actions
</td>
</tr>';
while ($row = mysql_fetch_array($result))
{
$id = $row["ide"];
$titre = safest($row["titre"]);
$type = safest($row["type"]);
$texte = safest($row["texte"]);
$idM = $row["id_membre"];
$date = $row["date"];
$texteDate = date('d', $date) . ' / ' . date('m', $date) . ' / ' . date('Y', $date);
$req = "SELECT id,login FROM agenda_membre WHERE id='".(int)$idM."'";
$sql = mysql_query($req);
$User = mysql_fetch_assoc($sql);
$site_Content .= '
<tr valign="top">
<td>
<p style="margin-bottom:0"><b>' . $titre . '</b>, affecté a ' . safest($User['login']) . ' pour le <i><b>' . $texteDate . '</b></i></p>
</td>
<td align="center">
<span><a href="./?a=events&op=edit&k=' . $id . '" title="Editer cette tache">Modifier</a> |
<a href="./?a=events&op=erase&k=' . $id . '" title="Supprimer cette tache">Supprimer</a></span><b>
</td>
</tr>';
}
$site_Content .= '</table>';
} else {
$site_Content .= 'Aucune tache trouvée';
}
}
elseif(!empty($_GET['op']) && $_GET['op'] == "edit" && !empty($_GET['k']))
{
$id = (int)$_GET['k'];
if (!$_POST)
{
$extraire = mysql_query("SELECT id FROM agenda_events WHERE id='$id'");
$nbr = mysql_numrows($extraire);
if ($nbr != 1) {
$site_Content .= '<br /><span class="erreurTexte">Référence invalide.</span>';
}
else
{
$select = "SELECT * FROM agenda_events WHERE id='$id' LIMIT 0,1";
$result = mysql_query($select);
$row = mysql_fetch_array($result);
$titreEvents = safest($row['titre']);
$texteEvents = safest($row['texte']);
$date = date("d/m/Y", $row['date']);
$type = $row['type'];
$idEvents = $row['id'];
$numdep = $row['num_dept'];
$numarr = $row['dept_arrivee'];
$nom = $row['nom'];
$prenom = $row['prenom'];
$email = $row['email'];
$commentaires = $row['commentaires'];
$historique = $row['historique'];
$date_crea = date("d/m/Y", $row['date_crea']);
$listeSelect = '';
$select = "SELECT * FROM agenda_theme ORDER BY titre ASC";
$result = mysql_query($select) or die('<b>Erreur MySQL [Sélection des thèmes]</b> : <br />' . mysql_error());
$nbr = mysql_numrows($result);
if ($nbr > 0)
{
while ($row = mysql_fetch_array($result))
{
$idCat = $row["id"];
$titre = safest($row["titre"]);
if ($idCat == $type)
$listeSelect.='<option value="' . $idCat . '" selected="selected">' . $titre . '</option>';
else
$listeSelect.='<option value="' . $idCat . '">' . $titre . '</option>';
}
}
$listeDept = '';
$selectdep = "SELECT * FROM agenda_dept ORDER BY num_dept ASC";
$resultdep = mysql_query($selectdep);
$nbrdep = mysql_numrows($resultdep);
if ($nbrdep > 0)
{
while ($rowdep = mysql_fetch_assoc($resultdep))
{
$idDept = $rowdep["num_dept"];
if ($idDept == $numdep)
$listeDept.='<option value="' . $rowdep["num_dept"] . '" selected="selected">' . safest($rowdep["num_dept"]) . '</option>';
else
$listeDept.='<option value="' . $rowdep["num_dept"] . '">' . safest($rowdep["num_dept"]) . '</option>';
}
}
$selectarr = "SELECT * FROM agenda_dept ORDER BY num_dept ASC";
$resultarr = mysql_query($selectarr);
$nbrarr = mysql_numrows($resultarr);
if ($nbrarr > 0)
{
while ($rowarr = mysql_fetch_assoc($resultarr))
{
$idArr = $rowarr["num_dept"];
if ($idArr == $numarr)
$listeArr.='<option value="' . $rowarr["num_dept"] . '" selected="selected">' . safest($rowarr["num_dept"]) . '</option>';
else
$listeArr.='<option value="' . $rowarr["num_dept"] . '">' . safest($rowarr["num_dept"]) . '</option>';
}
}
$site_Content .= '<br /><br /><span style="font-size:14px; font-weight:bold;">Edition de la tache <span style="color:#f8a51a">' . $idEvents . '</span> (' . $titreEvents . ') </span><br />';
$site_Content .= '
<form name="form2" id="form2" method="post" action="">
<table width="250" border="0" cellspacing="0" cellpadding="0">
<tr>
<td width="206" height="30">Titre</td>
<td width="169" height="31"><input name="titre" type="text" id="titre" value="' . stripslashes($titreEvents) . '" /></td>
</tr>
<tr>
<td height="30">Statut</td>
<td width="169" height="31"><select name="type" id="select">' . $listeSelect . '</select></td>
</tr>
<tr>
<td height="30">Département Départ</td>
<td width="169" height="31"><select name="dept" id="dept">' . $listeDept . '</select></td>
</tr>
<tr>
<td colspan="2" ><br><br>
<div id="bloc_lead1" style="text-align: left; font-size: 12px; padding: 10px; border: 1px solid white; background: none repeat scroll 0px 0px #A3A3A3;">
<p style="font-weight:bold">Détails du Lead</p>
<table border="0" cellspacing="0" cellpadding="0">
<tr>
<td width="238">Lead créé le:</td>
<td><input name="date_c" type="text" value="'.$date_crea.'" disabled="disabled" /><input name="date_crea" type="hidden" value="'.$date_crea.'" /></td>
</tr>
<tr>
<td>Type Prospect:</td>
<td><select name="prospect"><option value="1">Particulier</option><option value="2">Societe</option><option value="3">International</option></select></td>
</tr>
<tr>
<td>Nom:</td>
<td><input name="nom" type="text" value="'.$nom.'"/></td>
</tr>
<tr>
<td>Prenom:</td>
<td><input name="prenom" type="text" value="'.$prenom.'" /></td>
</tr>
<tr>
<td>Email:</td>
<td><input name="email" type="text" value="'.$email.'" /></td>
</tr>
<tr>
<td>Département Arrivée:</td>
<td><select name="dept_arrivee" id="dept_arrivee">' . $listeArr . '</select></td>
</tr>
<tr>
<td>Commentaires Client:</td>
<td><textarea name="commentaires" id="textarea" disabled="disabled" COLS=30 ROWS=6 wrap="on">' . stripslashes($commentaires) . '</textarea></td>
</tr>
</table>
</div><br><br>
</td>
</tr>
<tr>
<td colspan="2" ><br><br>
<div id="bloc_lead2" style="text-align: left; font-size: 12px; padding: 10px; border: 1px solid white; background: none repeat scroll 0px 0px #A3A3A3;">
<p style="font-weight:bold">Suivi du Lead</p>
<span style="font-weight:bold">Historique de la tache liée au lead:</span>
<textarea name="historique" id="textarea" disabled="disabled" COLS=80 ROWS=6 wrap="on">' . stripslashes($historique) . '</textarea>
<span style="font-weight:bold">Ajouter les nouvelles modifications:</span>
<textarea name="newhistorique" id="textarea" COLS=80 ROWS=3></textarea>
</div>
<br><br>
</td>
</tr>
<tr>
<td><div align="left">Date de relance</div></td>
<td width="169"><input name="datepicker" type="text" id="datepicker" value="' .$date. '" /></td>
</tr>
<tr>
<td></td>
<td width="169"><input type="submit" name="Submit" value="Envoyer" /></td>
</tr>
</table>
</form>';
}
}
else
{
if(!empty($_POST['titre']))
{
$date = (int)$_GET['date'];
$type = (int)$_POST['type'];
$dept = $_POST['dept'];
$titre = smartQuote($_POST['titre']);
$nom = smartQuote($_POST['nom']);
$prenom = smartQuote($_POST['prenom']);
$email = smartQuote($_POST['email']);
$dept_arrivee = smartQuote($_POST['dept_arrivee']);
$historique = smartQuote($_POST['historique']);
$datenow = time();
$seltype = "SELECT * FROM agenda_events WHERE titre='$titre'";
$restype = mysql_query($seltype);
$rowtype = mysql_fetch_assoc($restype);
$num_relance = $rowtype['num_relance'];
if($rowtype['type']==$type)
{
$selectcat = "SELECT titre FROM agenda_theme WHERE id=".$type;
$resultcat = mysql_query($selectcat);
$rowcat = mysql_fetch_assoc($resultcat);
$statut = "Statut inchangé: ".$rowcat['titre'];
}else
{
$selectcat = "SELECT titre FROM agenda_theme WHERE id=".$type;
$resultcat = mysql_query($selectcat);
$rowcat = mysql_fetch_assoc($resultcat);
$statut = "Nouveau Statut: ".$rowcat['titre'];
}
$newhistorique = smartQuote($_POST['newhistorique']);
if($newhistorique!="")
{
$modif = "---------Modification du ".date('d/m/Y h:i:s')."---------\n";
$modif .= $statut."\n";
$modif .= $newhistorique;
$selhisto = ", historique=CONCAT(historique,'\n\n$modif')";
}else
{
$selhisto = "";
}
$exp = explode("/", $_POST['datepicker']);
$j = $exp[0];
$m = $exp[1];
$a = $exp[2];
$date = mktime(0, 0, 0, $m, $j,$a);
if (mysql_query("UPDATE agenda_events SET titre='$titre', type='$type',nom='$nom',prenom='$prenom',email='$email', date='$date' $selhisto, num_dept='$dept',dept_arrivee='$dept_arrivee' WHERE id='$id'"))
{
$site_Content .= '<br /><center><span class="erreurTexte">Tache' . $id . ' bien mise à jour.</span><br /><br /><a href="./?a=events">Retour aux taches</a><br /><br /><a href="/myagenda/?a=agenda">Retour a l\'agenda</a></center>';
if(($type==2 || $type==3) && $email!="")
{
$headers = "MIME-Version: 1.0\r\n";
$headers .= "Content-type: text/html; charset=UTF-8\r\n";
$headers .= "From: contact@lacompagnieeuropeenne.com\r\n";
$result = mysql_query("SELECT * FROM agenda_type_mail WHERE id={$type}");
$row = mysql_fetch_assoc($result);
$message = $row['message'];
//echo $type;
//echo '<br>'.$num_relance;
if( ($type==2 && $num_relance < 2) || ($type==3 && $num_relance < 3))
{
//echo '<br>envoi';
if(!mail($email, "Relance - La Compagnie Europeenne de Stockage", $message, $headers)) {
$error = "Echec d'envoi du mail. Verifiez la validite de l'adresse du client.";
}else
{
mysql_query("UPDATE agenda_events SET num_relance='{$type}' WHERE id='$id'");
}
//exit;
}
}
}
}
else
{
$site_Content .= 'Paramètres absents ...';
}
}
//Cas ou l'on supprime un events
}
elseif (!empty($_GET['op']) && $_GET['op'] == "erase" && !empty($_GET['k']))
{
$id = (int)$_GET['k'];
$extraire = mysql_query("SELECT id FROM agenda_events WHERE id='$id'");
if (mysql_numrows($extraire) != 1) {
Exit("Cette tache n'existe pas");
}
if (empty($_GET['verif']))
{
$site_Content .= '<br /><br />Confirmez-vous la suppression ? - <a href="?a=events&op=erase&k='.$id.'&verif=1">Oui</a> - <a href="./?a=events&op=all">Non</a>';
}
else
{
if (mysql_query("DELETE FROM agenda_events WHERE id='$id'")) {
$site_Content .= '<br /><center><span class="erreurTexte">Tache ' . $id . ' bien supprimée.</span> <br />
<a href="./?a=events">Retour</a></center>';
}
}
}