db=Zend_Registry::get('db'); $this->view->config = Zend_Registry::get('config'); $this->messenger=$this->_helper->getHelper('FlashMessenger'); $this->view->messages = $this->messenger->getMessages(); } function postDispatch() { //$this->view->messages = $this->messenger->getMessages(); } /* * indexAction() 元数据评审管理首页 * */ function indexAction() { $sql = "select m.id,md.title,u.username,u.realname,m.status from mdstatus m left join metadata md on md.uuid=m.uuid left join users u on u.id=m.userid order by m.id desc limit 10 "; $re = $this->db->query($sql); $queue = $re->fetchAll(); foreach ($queue as $k=>$v) { $queue[$k]['status']=$this->rewritestatus($v['status']); } $this->view->queue = $queue; $auth = Zend_Auth::getInstance(); if($auth->hasIdentity()) { $user = $auth->getIdentity(); $userid = $user->id; } $sql = "select m.id,md.title,u.username,u.realname,m.status from mdstatus m left join metadata md on md.uuid=m.uuid left join users u on u.id=m.userid where u.id='$userid'"; $re = $this->db->query($sql); $rows = $re->fetchAll(); $this->view->my = $rows; }//indexAction /* * rewritestatus() 将评审状态转化为文字说明 * * @param $status int * * return string */ function rewritestatus($status){ if($status==-1) {return "取消评审";} else if($status==0) {return "初始状态";} else if($status==1) {return "接受元数据评审";} else if($status==2) {return "开始邀请专家";} else if($status==3) {return "专家接受邀请";} else if($status==4) {return "专家反馈";} else if($status==5) {return "已发布";} else {return "";} } /* * changestatus() 更改mdstatus中的status字段 * * @param int $id //要更改状态的mdstatus记录的ID * @param int $status //状态 * * return bool */ function changestatus($id,$status){ $stvalues = array( -1, //取消评审 0, //初始状态 1, //接受元数据评审,进入评审阶段 2, //开始邀请专家,送审阶段 3, //专家接受邀请,在审阶段 4, //专家反馈,在审 5 //评审结束,发布 ); if(empty($id) || !isset($status) || !in_array($status,$stvalues)) { return false; } else { if($status==1) {$sql = "update mdstatus set status='$status',ts_accepted='now()' where id in ($id)"; } else if($status==5) {$sql = "update mdstatus set status='$status',ts_finished='now()' where id in ($id)";} else {$sql = "update mdstatus set status='$status' where id in ($id)";} try{ if($this->db->exec($sql)>0) { return true; } } catch(Exception $e) { return false; } } }//changestatus 更改状态 /* * acceptAction()待审元数据 * * @param string $search //搜索 * @param string $cancel //取消 * @param string $keyword //搜索关键词 * @param string $page //列表分页 * * return view */ function acceptAction() { $search = $this->_request->getParam('search'); $cancel = $this->_request->getParam('cancel'); $update = $this->_request->getParam('update'); $invite = $this->_request->getParam('invite'); if($cancel>0) { if($this->changestatus($cancel,-1)) { $this->messenger->addMessage('操作成功:已取消该数据的评审'); $this->_redirect("/admin/review/accept"); } else{ $this->messenger->addMessage('操作失败'); $this->_redirect("/admin/review/accept"); } }//取消元数据评审 if($search) { $keyword = $this->_request->getParam('keyword'); if(!empty($keyword)) { $sql = "select m.*,u.username,u.realname from mdstatus m left join metadata md on md.uuid=m.uuid left join users u on u.id=m.userid where m.status=1 and md.title like '%$keyword%' "; $re = $this->db->query($sql); $rows = $re->fetchAll(); $paginator = Zend_Paginator::factory($rows); $paginator->setCurrentPageNumber($this->_getParam('page')); $paginator->setItemCountPerPage($this->view->config->page->max); $paginator->setView($this->view); Zend_View_Helper_PaginationControl::setDefaultViewPartial('pagination_param.phtml'); $this->view->paginator=$paginator; } }//搜索 else { $sql = "select m.*,md.title,u.username,u.realname from mdstatus m left join metadata md on md.uuid=m.uuid left join users u on u.id=m.userid where m.status=1"; $re = $this->db->query($sql); $rows = $re->fetchAll(); $paginator = Zend_Paginator::factory($rows); $paginator->setCurrentPageNumber($this->_getParam('page')); $paginator->setItemCountPerPage($this->view->config->page->max); $paginator->setView($this->view); Zend_View_Helper_PaginationControl::setDefaultViewPartial('pagination_param.phtml'); $this->view->paginator=$paginator; }//列表 }//acceptAction /* * inreviewAction() 在审元数据查看 * * @param int $show //查看详细 * @param int $search //搜索 * @param string keyword //关键字 * * * return view */ function inreviewAction(){ $show = $this->_request->getParam('show'); $search = $this->_request->getParam('search'); $keyword = $this->_request->getParam('keyword'); if($show>0) { $sql = "select m.*,md.*,u.realname from mdstatus m left join metadata md on md.uuid=m.uuid left join users u on u.id=m.userid where m.id=$show "; $rs = $this->db->query($sql); $rows = $rs->fetch(); $sql = "select exp.*,u.* from mdexpertreview exp left join users u on u.id=exp.id where exp.uuid='{$rows['uuid']}'"; $rs = $this->db->query($sql); $exps = $rs->fetchAll(); $expname = array(); foreach ($exps as $k=>$v) { if($v['id']!='') { if($v['status']==1) { $v['status']="接受邀请"; }else if($v['status']==-1) { $v['status']="拒绝邀请"; }else if(empty($v['status'])) { $v['status']="未答复"; } $expname[] = '
  • '.$v['realname'].' [状态:'.$v['status'].'] [再次发送邀请邮件]
  • '; } } if(count($expname>0)) {$rows['exps'] = join('',$expname);} $rows['status'] = $this->rewritestatus($rows['status']); $this->view->info = $rows; $this->_helper->viewRenderer('inreviewshow'); }//查看详细 else { $searchjoin = ""; if(!empty($search) && !empty($keyword)) { $searchjoin = " and md.title like '%$keyword%'"; $this->view->keyword = $keyword; } $sql = "select m.id,md.title,m.status,m.uuid from mdstatus m left join metadata md on md.uuid=m.uuid where m.status in (2,3,4) $searchjoin"; $rs = $this->db->query($sql); $rows = $rs->fetchAll(); foreach ($rows as $k=>$v) { $rows[$k]['status']=$this->rewritestatus($v['status']); } $paginator = Zend_Paginator::factory($rows); $paginator->setCurrentPageNumber($this->_getParam('page')); $paginator->setItemCountPerPage($this->view->config->page->max); $paginator->setView($this->view); Zend_View_Helper_PaginationControl::setDefaultViewPartial('pagination_param.phtml'); $this->view->paginator=$paginator; }//列表 }//在审元数据 /* * inviteAction() 专家 * * @param int id //评审ID * @param int $user //用户 * @param int search //搜索 * @param int keyword //关键词 * @param $submit //提交判断 * @param array $exps //专家ID * * return view * * 管理员可以邀请专家评审属于自己管理的元数据,在列表中包含表单,表单中提交专家ID(这与用户表中的ID对应) * 邀请邮件由邮件模板实现,需要数据库中存在 invite-expert-review 模板 */ function inviteAction(){ $id = $this->_request->getParam('id'); $user = $this->_request->getParam('user'); if(empty($id)) { $this->_redirect("/admin/review"); } $search = $this->_request->getParam('search'); $keyword = $this->_request->getParam('keyword'); $submit = $this->_request->getParam('submit'); $exps = $this->_request->getParam('exps'); $stid = $this->_request->getParam('stid'); $uid = $this->_request->getParam('uid'); $this->view->id = $id; if(!empty($submit)) { if(is_array($exps)) { $sql = "select m.uuid,m.title,s.status from metadata m left join mdstatus s on s.uuid=m.uuid where s.id='$id'"; $rs = $this -> db -> query($sql); $md = $rs -> fetch(); $uuid = $md['uuid']; foreach ($exps as $v) { $sql = "select m.id,u.realname,m.uuid,u.email from mdexpertreview m left join users u on m.id=u.id where m.uuid='$uuid' and m.id='$v'"; $rs = $this->db->query($sql); $rows = $rs->fetch(); if($rows['id']!='') { $this->messenger->addMessage('已经邀请过专家:'.$rows['realname']); }//已经有评审记录 else { $sql = "insert into mdexpertreview (id,uuid) values ('$v','$uuid')"; $expinfo="select realname,email from users where id='$v'"; $rs = $this->db->query($expinfo); $expinfo = $rs->fetch(); try{ if($this->db->exec($sql)>0) { if($md['status']<2) { $update = "update mdstatus set status=2 where uuid='$uuid'"; @$this->db->exec($update); } //实例化EmailText $mailtp=new EmailText($this->db,'invite-expert-review',array('user'=>$expinfo['realname'],'uuid'=>$uuid,'title'=>$md['title'],'userid'=>$v)); $mail=new WestdcMailer($this->view->config->smtp); $mail->setBodyText($mailtp->getBody()); $mail->setFrom($this->view->config->service->email,'西部数据中心服务组'); $mail->addTo($expinfo['email']); $mail->setSubject($mailtp->getSubject()); $filecontent=file_get_contents("http://" . $_SERVER['HTTP_HOST'].'/data/doc/review/1/uuid/'.$uuid); $mail->createAttachment($filecontent,'application/octet-stream',Zend_Mime::DISPOSITION_ATTACHMENT, Zend_Mime::ENCODING_BASE64, $md['title'].'.doc'); $filecontent=file_get_contents("http://" . $_SERVER['HTTP_HOST'].'/service/pdf/uuid/'.$uuid); $mail->createAttachment($filecontent,'application/octet-stream',Zend_Mime::DISPOSITION_ATTACHMENT, Zend_Mime::ENCODING_BASE64, $md['title'].'.pdf'); if($mail->send()) { $this->messenger->addMessage('成功邀请专家:'.$expinfo['realname']); }else { $this->messenger->addMessage('邀请专家'.$expinfo['realname'].'的邮件发送失败,请尝试手动发送邀请邮件'); } } }catch(Exception $e){ $this->messenger->addMessage('邀请失败:'.$e->getMessage()); } }//不存在原来的记录 }//循环结束 $this->_redirect("/admin/review/invite/?id=$id"); } else { $this->messenger->addMessage('请选择要邀请的专家'); $this->_redirect("/admin/review/invite/?id=$id"); } } elseif ($user>0) { $uuid=$this->_request->getParam('uuid'); $sql="update mdexpertreview set ts_modified=now() where id='$user' and uuid='$uuid'"; $this->db->exec($sql); $sql="select realname,email,(select title from metadata where uuid='$uuid') as title from users where id='$user'"; $row=$this->db->fetchRow($sql); //实例化EmailText $mailtp=new EmailText($this->db,'invite-expert-review',array('user'=>$row['realname'],'uuid'=>$uuid,'title'=>$row['title'],'userid'=>$user)); $mail=new WestdcMailer($this->view->config->smtp); $mail->setBodyText($mailtp->getBody()); $mail->setFrom($this->view->config->service->email,'西部数据中心服务组'); $mail->addTo($row['email']); $mail->setSubject($mailtp->getSubject()); $filecontent=file_get_contents("http://" . $_SERVER['HTTP_HOST'].'/service/doc/review/1/uuid/'.$uuid); $mail->createAttachment($filecontent,'application/octet-stream',Zend_Mime::DISPOSITION_ATTACHMENT, Zend_Mime::ENCODING_BASE64, $row['title'].'.doc'); $filecontent=file_get_contents("http://" . $_SERVER['HTTP_HOST'].'/service/pdf/uuid/'.$uuid); $mail->createAttachment($filecontent,'application/octet-stream',Zend_Mime::DISPOSITION_ATTACHMENT, Zend_Mime::ENCODING_BASE64, $row['title'].'.pdf'); if($mail->send()) { $this->messenger->addMessage('成功再次邀请专家:'.$row['realname']); $this->_redirect("/admin/review/inreview/show/$id"); }else { $this->messenger->addMessage('邀请专家'.$row['realname'].'的邮件发送失败,请尝试手动发送邀请邮件'); $this->_redirect("/admin/review/inreview/show/$id"); } } $searchjoin = ""; if(!empty($search) && !empty($keyword)) { $searchjoin = " where u.username like '%$keyword%' or u.realname like '%$keyword%' or u.unit like '%$keyword%' or u.email like '%$keyword%'"; $this->view->keyword = $keyword; } $sql = "select me.id,u.username,u.realname,u.unit,u.phone,u.email from users u right join mdexperts me on u.id=me.id $searchjoin"; $re = $this->db->query($sql); $rows = $re->fetchAll(); $paginator = Zend_Paginator::factory($rows); $paginator->setCurrentPageNumber($this->_getParam('page')); $paginator->setItemCountPerPage($this->view->config->page->max); $paginator->setView($this->view); Zend_View_Helper_PaginationControl::setDefaultViewPartial('pagination_param.phtml'); $this->view->paginator=$paginator; $sql = "select m.title from metadata m left join mdstatus s on s.uuid=m.uuid where s.id='$id'"; $re = $this->db->query($sql); $title = $re->fetch(); $this->view->md=$title; }//邀请专家 /* * changeadminAction() 更改管理员 * * @param int id //评审ID * @param int uid //管理员ID * * return view * * 每一条评审的元数据都有对应的管理员,通过changeadminAction()更改管理员 */ function changeadminAction(){ $id = $this->_request->getParam('id'); $uid = $this->_request->getParam('uid'); if(empty($id)) { $this->_redirect("/admin/review"); } $this->view->id = $id; if(!empty($uid)) { $sql = "update mdstatus set userid='$uid' where id='$id'"; if($this->db->exec($sql)>0) { $this->messenger->addMessage('更改管理员成功'); $this->_redirect("/admin/review/changeadmin/?id=$id"); } } $sql = "select u.* from users u where usertype='administrator'"; $re = $this->db->query($sql); $rows = $re->fetchAll(); $paginator = Zend_Paginator::factory($rows); $paginator->setCurrentPageNumber($this->_getParam('page')); $paginator->setItemCountPerPage($this->view->config->page->max); $paginator->setView($this->view); Zend_View_Helper_PaginationControl::setDefaultViewPartial('pagination_param.phtml'); $this->view->paginator=$paginator; }//改变管理员 /* * addonAction() 将元数据加入评审 * * @param $uuid //元数据UUID * * return view */ function addonAction(){ $uuid=$this->_request->getParam('uuid'); $sql = "select * from mdstatus where uuid='$uuid'"; $re = $this->db->query($sql); $row = $re->fetch(); if(empty($row['id'])) { $auth = Zend_Auth::getInstance(); if($auth->hasIdentity()) { $user = $auth->getIdentity(); $userid = $user->id; $sql = "insert into mdstatus (uuid,userid,ts_scheduled,status) values ('$uuid','$userid','".date("Y-m-d H:i:s")."','0')"; try{ if($this->db->exec($sql)>0) { $this->messenger->addMessage('操作成功!该数据已放入评审'); $this->_redirect("/admin/review/draft"); } }catch( Exception $e){ $this->messenger->addMessage('操作失败:'.$e->getMessage()); $this->_redirect("/admin/review/draft"); } } } else { $this->messenger->addMessage('该数据已放入评审'); $this->_redirect("/admin/data/md"); } }//将数据放入评审 /* * myreviewAction() 我负责的元数据 * * @param $search //搜索 * @param string $keyword //关键词 * * return view * * 相比在审元数据列表,我负责的元数据列表的管理功能更多,而且独有 */ function myreviewAction(){ $auth = Zend_Auth::getInstance(); if($auth->hasIdentity()) { $user = $auth->getIdentity(); $userid = $user->id; } $search=$this->_request->getParam('search'); $keyword = $this->_request->getParam('keyword'); $searchjoin = ""; if(!empty($search) && !empty($keyword)) { $searchjoin = " and md.title like '%$keyword%'"; $this->view->keyword = $keyword; } $sql = "select m.id,md.uuid,md.title,u.username,u.realname,m.status from mdstatus m left join metadata md on md.uuid=m.uuid left join users u on u.id=m.userid where m.status in (0,1,2,3,4) and u.id='$userid' $searchjoin order by m.status desc"; $re = $this->db->query($sql); $rows = $re->fetchAll(); $paginator = Zend_Paginator::factory($rows); $paginator->setCurrentPageNumber($this->_getParam('page')); $paginator->setItemCountPerPage($this->view->config->page->max); $paginator->setView($this->view); Zend_View_Helper_PaginationControl::setDefaultViewPartial('pagination_param.phtml'); $this->view->paginator=$paginator; }//我管理的元数据 /* * checkmailAction() * * @param int id * * return view * * 选择需要发送邮件的邮箱,需要视图中配合提交表单实现 */ function checkmailAction(){ $id = $this->view->id = $this->_request->getParam('id'); $sql="select m.title,m.uuid,array_to_string(array(select distinct(email) from role r left join responsible rs on r.resid=rs.id where r.uuid=m.uuid and length(rs.email)>4),',') as emails from mdstatus s left join metadata m on s.uuid=m.uuid where s.id=?"; $res=$this->db->fetchRow($this->db->quoteInto($sql,$id)); $rv=explode(',',$res['emails']); $rows = array(); foreach ($rv as $k=>$v) { $rows[$k]['id'] = $k; $rows[$k]['email'] = $v; } $this->view->paginator = $rows; } /* * postAction() 元数据评审通过 * * @param int id //评审ID * @param string emails //要通知的邮件地址 * * return view * * 要通知的邮箱地址通过邮件地址列表选择,即checkmailAction()中列出的可选择的邮箱地址 */ function postAction(){ $id = $this->_request->getParam('id'); $emails = $this->_request->getParam('emails'); $auth = Zend_Auth::getInstance(); if($auth->hasIdentity()) { $user = $auth->getIdentity(); $userid = $user->id; $sql = "select id from mdstatus where userid='$userid'"; $rs = $this->db->query($sql); $row = $rs->fetch(); if(!empty($row['id'])) { if($this->changestatus($id,5)) { $this->messenger->addMessage('操作成功:该元数据成功发布'); //email message $mail=new WestdcMailer($this->view->config->smtp); $mailtp=new EmailText($this->db,'metadata-publish',array('uuid'=>$res['uuid'],'title'=>$res['title'])); $mail->setBodyText($mailtp->getBody()); $mail->setFrom($this->view->config->service->email,'西部数据中心服务组'); $mail->addTo($emails); $mail->setSubject($mailtp->getSubject()); $mail->send(); $this->_redirect("/admin/review/myreview"); }else{ $this->messenger->addMessage('操作失败'); $this->_redirect("/admin/review/myreview"); } }else{ $this->messenger->addMessage('您没有权限操作其他管理员管理的元数据评审'); $this->_redirect("/admin/review/myreview"); } }else { $this->messenger->addMessage('权限读取失败'); $this->_redirect("/admin/review/myreview"); } }//发布元数据 /* * rollbackAction() 重新评审 * * @param int id * * return view * * 对需要重新评审的元数据进行回滚,即状态为3 */ function rollbackAction(){ $id=$this->_request->getParam('id'); if($this->changestatus($id,3)) { $this->messenger->addMessage('操作成功!'); $this->_redirect("/admin/review/reviewed"); } else{ $this->messenger->addMessage('操作失败'.$id); $this->_redirect("/admin/review/reviewed"); } }//重新评审 /* * draftAction() 投稿元数据 * * @param search //搜索 * @param string keyword //关键词 * @param array update //进入评审的id ,数组形式 * * retrun view * */ function draftAction(){ $search=$this->_request->getParam('search'); $keyword = $this->_request->getParam('keyword'); $update = $this->_request->getParam('update'); if($update>0 || is_array($update)) { $ids = ''; if(is_array($update))$ids = join(',',$update); else $ids=$update; if($this->changestatus($ids,1)) { $this->messenger->addMessage('操作成功!'); $this->_redirect("/admin/review/draft"); } else{ $this->messenger->addMessage('操作失败'); $this->_redirect("/admin/review/accept"); } }//开始评审 $searchjoin = ""; if(!empty($search) && !empty($keyword)) { $searchjoin = " and md.title like '%$keyword%'"; $this->view->keyword = $keyword; } $sql = "select m.id,md.title,md.uuid,u.username,u.realname,m.status,m.ts_created from mdstatus m left join metadata md on md.uuid=m.uuid left join users u on u.id=m.userid where status=0 $searchjoin"; $re = $this->db->query($sql); $rows = $re->fetchAll(); $paginator = Zend_Paginator::factory($rows); $paginator->setCurrentPageNumber($this->_getParam('page')); $paginator->setItemCountPerPage($this->view->config->page->max); $paginator->setView($this->view); Zend_View_Helper_PaginationControl::setDefaultViewPartial('pagination_param.phtml'); $this->view->paginator=$paginator; }// draftAction 投稿元数据 /* * canceledAction() 取消元数据评审 * * @param search //搜索 * @param string keyword //关键词 * @param array update //进入评审的id ,数组形式 * * return view * * 这里的取消不等于删除,评审记录不能随意删除 */ function canceledAction(){ $search=$this->_request->getParam('search'); $keyword = $this->_request->getParam('keyword'); $update = $this->_request->getParam('update'); if($update>0 || is_array($update)) { $ids = ''; if(is_array($update))$ids = join(',',$update); else $ids=$update; if($this->changestatus($ids,0)) { $this->messenger->addMessage('操作成功!'); $this->_redirect("/admin/review/canceled"); } else{ $this->messenger->addMessage('操作失败'.$ids); $this->_redirect("/admin/review/canceled"); } }//取消评审 $searchjoin = ""; if(!empty($search) && !empty($keyword)) { $searchjoin = " and md.title like '%$keyword%'"; $this->view->keyword = $keyword; } $sql = "select m.id,md.title,md.uuid,u.username,u.realname,m.status from mdstatus m left join metadata md on md.uuid=m.uuid left join users u on u.id=m.userid where status=-1 $searchjoin"; $re = $this->db->query($sql); $rows = $re->fetchAll(); $paginator = Zend_Paginator::factory($rows); $paginator->setCurrentPageNumber($this->_getParam('page')); $paginator->setItemCountPerPage($this->view->config->page->max); $paginator->setView($this->view); Zend_View_Helper_PaginationControl::setDefaultViewPartial('pagination_param.phtml'); $this->view->paginator=$paginator; }//被取消评审的元数据 /* * reviewedAction() 已结束评审的元数据列表 * * @param search //搜索 * @param string keyword //关键词 * * return view * * */ function reviewedAction(){ $search=$this->_request->getParam('search'); $keyword = $this->_request->getParam('keyword'); $searchjoin = ""; if(!empty($search) && !empty($keyword)) { $searchjoin = " and md.title like '%$keyword%'"; $this->view->keyword = $keyword; } $sql = "select m.id,md.title,md.uuid,u.username,u.realname,m.status,m.ts_finished from mdstatus m left join metadata md on md.uuid=m.uuid left join users u on u.id=m.userid where status=5 $searchjoin"; $re = $this->db->query($sql); $rows = $re->fetchAll(); $paginator = Zend_Paginator::factory($rows); $paginator->setCurrentPageNumber($this->_getParam('page')); $paginator->setItemCountPerPage($this->view->config->page->max); $paginator->setView($this->view); Zend_View_Helper_PaginationControl::setDefaultViewPartial('pagination_param.phtml'); $this->view->paginator=$paginator; }//已结束评审 /* * deleteAction() 删除元数据评审记录 * * @param $id //评审记录的ID * * return view * * 删除功能需要权限判断,没个管理员只能删除自己管理的评审元数据 */ function deleteAction(){ $id=$this->_request->getParam('id'); try{ $auth = Zend_Auth::getInstance(); if($auth->hasIdentity()) { $user = $auth->getIdentity(); $userid = $user->id; $sql = "select id from mdstatus where userid='$userid' and id='$id'"; $rs = $this->db->query($sql); $row = $rs->fetch(); if(!empty($row['id'])) { $sql = "delete from mdstatus where id='$id'"; if($this->db->exec($sql)) { $this->messenger->addMessage('删除成功'); $this->_redirect("/admin/review/myreview"); }else{ $this->messenger->addMessage('删除失败'); $this->_redirect("/admin/review/myreview"); } }else{ $this->messenger->addMessage('您没有权限操作其他管理员管理的元数据评审'); $this->_redirect("/admin/review/myreview"); } }else { $this->messenger->addMessage('权限读取失败'); $this->_redirect("/admin/review/myreview"); } }catch(Exception $e){ $this->messenger->addMessage('删除失败:'.$e->getMessage()); $this->_redirect("/admin/review/myreview"); } } /* * expertsAction() 评审专家管理 * * @param $search //搜索 * @param string $keyword //关键词 * @param string $submit //添加新专家时的提交动作 * @param int $edit //编辑管理员 * @param int $del //删除 * * * return view */ function expertsAction() { $search = $this->_request->getParam('search'); $keyword= $this->_request->getParam('keyword'); $submit = $this->_request->getParam('submit'); $edit = $this->_request->getParam('edit'); $del = $this->_request->getParam('del'); $add = $this->_request->getParam('add'); if($add) { if(!empty($submit)) { foreach($_POST as $k=>$v) { $$k=$v; } $speciality = $_POST['speciality']; $chars = array( "a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k", "l", "m", "n", "o", "p", "q", "r", "s", "t", "u", "v", "w", "x", "y", "z", "A", "B", "C", "D", "E", "F", "G", "H", "I", "J", "K", "L", "M", "N", "O", "P", "Q", "R", "S", "T", "U", "V", "W", "X", "Y", "Z", "0", "1", "2", "3", "4", "5", "6", "7", "8", "9" ); $charsLen = count($chars) - 1; shuffle($chars); $output = ""; for ($i=0; $i<8; $i++) { $output .= $chars[mt_rand(0, $charsLen)]; } $password=$output; $testsql="select id from users where username='$username' or email='$email'"; $re=$this->db->query($testsql); $test=$re->fetch(); if(!empty($test['id'])) { $this->messenger->addMessage('用户名或邮箱重复'); $this->_redirect("/admin/review/experts"); } else { $data = array( 'username' => $username, 'realname' => $realname, 'email' => $email, 'unit' => $unit, 'address' => $address, 'phone' => $phone, 'project' => $project, 'password' => md5($password) ); if($this->db->insert('users',$data)) { $mail=new WestdcMailer($this->view->config->smtp); $mailtp=new EmailText($this->db,'expert-register',array('user'=>$username,'password'=>$password)); $mail->setBodyText($mailtp->getBody()); $mail->setFrom($this->view->config->service->email,'西部数据中心服务组'); $mail->addTo($email); $mail->setSubject($mailtp->getSubject()); $mail->send(); $sql="select id from users where username='{$data['username']}'"; $re=$this->db->query($sql); $row = $re->fetch(); $sql="insert into mdexperts (id,speciality) values ('{$row['id']}','$speciality')"; if($this->db->exec($sql)>0) { $this->messenger->addMessage('成功添加评审专家'); $this->_redirect("/admin/review/experts"); } } } } else { $this->_helper->viewRenderer('expertsadd'); } } if($del>0) { $sql="delete from mdexperts where id='$del'"; if($this->db->exec($sql)>0) { $this->messenger->addMessage('删除成功!'); $this->_redirect('/admin/review/experts'); } } if($edit>0) { if(!empty($submit)) { $speciality = $this->_request->getParam('speciality'); $sql = "update mdexperts set speciality='$speciality',ts_modified='".date("Y-m-d H:i:s",time())."' where id='$edit'"; if($this->db->exec($sql)>0) { $this->messenger->addMessage('编辑成功!'); $this->_redirect('/admin/review/experts'); } } else { $sql = "select m.*,m.id as mid,u.* from mdexperts m left join users u on u.id=m.id where m.id='$edit'"; $re = $this->db->query($sql); $row = $re->fetch(); $this->view->infos = $row; $this->view->id=$edit; $this->_helper->viewRenderer('expertsedit'); } }//编辑 if($search) { $sql = "select m.*,m.id as mid,u.* from mdexperts m left join users u on u.id=m.id where u.realname like '%$keyword%' or m.speciality like '%$keyword%' or u.unit like '%$keyword%'"; $re = $this->db->query($sql); $rows = $re->fetchAll(); $paginator = Zend_Paginator::factory($rows); $paginator->setCurrentPageNumber($this->_getParam('page')); $paginator->setItemCountPerPage($this->view->config->page->max); $paginator->setView($this->view); Zend_View_Helper_PaginationControl::setDefaultViewPartial('pagination_param.phtml'); $this->view->paginator=$paginator; }//搜索 else { $sql="select m.*,m.id as mid,u.* from mdexperts m left join users u on u.id=m.id"; $re = $this->db->query($sql); $rows = $re->fetchAll(); $paginator = Zend_Paginator::factory($rows); $paginator->setCurrentPageNumber($this->_getParam('page')); $paginator->setItemCountPerPage($this->view->config->page->max); $paginator->setView($this->view); Zend_View_Helper_PaginationControl::setDefaultViewPartial('pagination.phtml'); $this->view->paginator=$paginator; }//列表 }//expertsAction 专家库 /* * commentsAction() 评审意见 * * @param string $ac //动作: view 查看(详细单条) * list 评审意见列表 * listbyuser 按用户查看评审意见列表 * del 删除评审意见 * rollback 重置为草稿状态 * @param $uuid //评审元数据uuid * @param $id //评审id * @param $q //搜索关键词 * @param $search //搜索 * * return view * * 默认视图是评审意见列表视图 * */ function commentsAction(){ $ac = $this->_request->getParam('ac'); $uuid = $this->_request->getParam('uuid'); $id = $this->_request->getParam('id'); $q = $this->_request->getParam('q'); $search = $this->_request->getParam('search'); if($ac=='view' && !empty($id)) { $redirect = "/admin/review/comments/ac/view/id/$id"; if(!is_numeric($id)) { $this->messenger->addMessage('参数不正确,请按正确的步骤进行访问'); $this->_redirect($redirect); } $sql = "select r.*,md.title,u.realname,u.id as uid from mdreview r left join metadata md on md.uuid=r.uuid left join users u on u.id=r.userid where r.id='$id' "; $rs = $this->db->query($sql); $row = $rs->fetch(); if(empty($row['id'])) { $this->messenger->addMessage('该评审不存在或者已删除'); $this->_redirect($redirect); } $sql = "select att.realname,att.id from attachments att left join mdreviewattach ratt on att.id=ratt.attachid where ratt.reviewid=$id"; $rs = $this->db->query($sql); $rows = $rs->fetchAll(); $row['attid'] = ""; if(!empty($rows)) { foreach($rows as $v) { $row['attid'] .= '
  • '.$v['realname'].'下载
  • '; } } else { $row['attid'] = '无附件'; } $this->view->info = $row; $this->_helper->viewRenderer('commentsview'); }//查看单个元数据的评审 else if($ac=='list') { try{ $redirect = "/admin/review/comments/ac/list/"; $wheresql = array(); $userid = $this->_request->getParam('userid'); if(!empty($userid)) { $redirect.="/uuid/$userid"; $wheresql[] = " r.userid='$userid' "; } if(!empty($uuid)) { $redirect.="/uuid/$uuid"; $wheresql[] = " md.uuid='$uuid' "; } $wheresql[]=' r.status>-1 '; if(!empty($q) && !empty($search)) { if (preg_match("/[<|>|#|$|%|^|*|(|)|{|}|'|\"|;|:]/i",$q) || !is_numeric($search)) { $this->messenger->addMessage('您的输入的搜索条件包含非法请求,请不要输入特殊符号'); $this->_redirect($redirect); } $this->view->q = $q; $wheresql[] = " (md.title like '%$q%' or u.realname like '%$q%') "; } if(count($wheresql>0))$wheresql = join(' and ',$wheresql); else $wheresql=''; if($wheresql!='') { $wheresql = 'where '.$wheresql; } $sql = "select md.title,md.uuid,u.realname,r.id,r.ts_created,r.is_expert from mdreview r left join metadata md on md.uuid=r.uuid left join users u on u.id=r.userid $wheresql order by r.ts_created desc "; $rs = $this->db->query($sql); $rows = $rs->fetchAll(); $paginator = Zend_Paginator::factory($rows); $paginator->setCurrentPageNumber($this->_getParam('page')); $paginator->setItemCountPerPage($this->view->config->page->max); $paginator->setView($this->view); Zend_View_Helper_PaginationControl::setDefaultViewPartial('pagination.phtml'); $this->view->paginator=$paginator; }catch(Exception $e){ echo $e->getMessage().'
    '; } $this->_helper->viewRenderer('commentslist'); }//评审意见列表 or 某条元数据的评审意见列表 else if($ac=='listbyuser') { try{ $redirect = "/admin/review/comments/ac/list/"; $wheresql = array(); $wheresql[]=' r.status>-1 '; if(!empty($q) && !empty($search)) { if (preg_match("/[<|>|#|$|%|^|*|(|)|{|}|'|\"|;|:]/i",$q) || !is_numeric($search)) { $this->messenger->addMessage('您的输入的搜索条件包含非法请求,请不要输入特殊符号'); $this->_redirect($redirect); } $this->view->q = $q; $wheresql[] = " u.realname like '%$q%' "; } if(count($wheresql>0))$wheresql = join(' and ',$wheresql); else $wheresql=''; if($wheresql!='') { $wheresql = 'where '.$wheresql; } $sql = "select u.id,u.realname as title,count(r.id) as c from mdreview r left join metadata md on md.uuid=r.uuid left join users u on u.id=r.userid $wheresql GROUP BY u.id,u.realname "; $rs = $this->db->query($sql); $rows = $rs->fetchAll(); $paginator = Zend_Paginator::factory($rows); $paginator->setCurrentPageNumber($this->_getParam('page')); $paginator->setItemCountPerPage($this->view->config->page->max); $paginator->setView($this->view); Zend_View_Helper_PaginationControl::setDefaultViewPartial('pagination.phtml'); $this->view->paginator=$paginator; }catch(Exception $e){ echo $e->getMessage().'
    '; } $this->_helper->viewRenderer('commentslistbyuser'); }//按评审用户查看 else if($ac=='del' && !empty($id)) { $redirect = "/admin/review/comments/ac/list/"; if(!is_numeric($id)) { $this->messenger->addMessage('参数不正确,请按正确的步骤进行访问'); $this->_redirect($redirect); } $sql = "select r.id,att.filename,ratt.attachid as attid from mdreview r left join mdreviewattach ratt on ratt.reviewid=r.id left join attachments att on att.id=ratt.attachid where r.id='$id'"; $rs = $this->db->query($sql); $row = $rs->fetch(); if(!empty($row['filename'])) { //需要删除文件,通过Zend_Registry::get('upload')获得上传文件的根目录 $basepath = $this->view->config->upload; $filepath = $basepath.$row['filename']; if(unlink($filepath)) { $sql = "delete from mdreview where id='$id'"; if($this->db->exec($sql)>0) { $this->messenger->addMessage('评审意见删除成功!'); $this->_redirect($redirect); } } else { $sql = "delete from mdreview where id='$id'"; if($this->db->exec($sql)>0) { $this->messenger->addMessage('评审意见删除成功!但附件删除失败,请手动删除文件:'.$row['filename']); $this->_redirect($redirect); } } }else{ $sql = "delete from mdreview where id='$id'"; if($this->db->exec($sql)>0) { $this->messenger->addMessage('评审意见删除成功!'); $this->_redirect($redirect); } } }//删除评审意见 同时删除附件 else if($ac=='rollback' && !empty($id)) { $redirect = "/admin/review/comments/ac/list/"; $sql = "update mdreview set status=-1 where id=$id"; try{ if($this->db->exec($sql)) { $this->messenger->addMessage('更改成功'); $this->_redirect($redirect); }else{ $this->messenger->addMessage('更新失败'); $this->_redirect($redirect); } }catch(Exception $e){ $this->messenger->addMessage('更新失败:'.$e->getMessage()); $this->_redirect($redirect); } }//为用户重置为草稿状态 else { try{ $redirect = "/admin/review/comments"; $wheresql = array(); $wheresql[]=' r.status>-1 '; if(!empty($q) && !empty($search)) { if (preg_match("/[<|>|#|$|%|^|*|(|)|{|}|'|\"|;|:]/i",$q) || !is_numeric($search)) { $this->messenger->addMessage('您的输入的搜索条件包含非法请求,请不要输入特殊符号'); $this->_redirect($redirect); }//非法请求过滤 $this->view->q = $q; $wheresql[] = " md.title like '%$q%' "; } if(count($wheresql>0))$wheresql = join(' and ',$wheresql); else $wheresql=''; if($wheresql!='') { $wheresql = 'where '.$wheresql; } $sql = "select md.title,md.uuid,count(r.id) as c from mdreview r left join metadata md on md.uuid=r.uuid $wheresql GROUP BY md.title,md.uuid "; $rs = $this->db->query($sql); $rows = $rs->fetchAll(); $paginator = Zend_Paginator::factory($rows); $paginator->setCurrentPageNumber($this->_getParam('page')); $paginator->setItemCountPerPage($this->view->config->page->max); $paginator->setView($this->view); Zend_View_Helper_PaginationControl::setDefaultViewPartial('pagination.phtml'); $this->view->paginator=$paginator; }catch(Exception $e){ echo $e->getMessage().'
    '; } }//列表 }//commentsAction 查看所有评审意见 }