mirror of https://github.com/itflow-org/itflow
110 lines
3.2 KiB
PHP
110 lines
3.2 KiB
PHP
<?php
|
|
/*
|
|
* Filter - Head
|
|
* Sets the paging/sort for use in limit/order by
|
|
* Sets the default search query from GET to $q
|
|
*
|
|
* Should not be accessed directly, but called from other pages
|
|
*/
|
|
|
|
// Unset Array Var to prevent Duplicate Get VARs
|
|
$get_copy = $_GET; // create a copy of the $_GET array
|
|
//unset($get_copy['page']);
|
|
unset($get_copy['sort']);
|
|
unset($get_copy['order']);
|
|
|
|
// Paging
|
|
if (isset($_GET['page'])) {
|
|
$page = intval($_GET['page']);
|
|
$record_from = (($page)-1)*$user_config_records_per_page;
|
|
$record_to = $user_config_records_per_page;
|
|
} else {
|
|
$record_from = 0;
|
|
$record_to = $user_config_records_per_page;
|
|
$page = 1;
|
|
}
|
|
|
|
// Order
|
|
if (isset($_GET['order']) && $_GET['order'] == 'ASC') {
|
|
$order = "ASC";
|
|
$disp = "DESC";
|
|
} else {
|
|
$order = "DESC";
|
|
$disp = "ASC";
|
|
}
|
|
|
|
if(isset($order) && $order == "ASC") {
|
|
$disp = "DESC";
|
|
$order_icon = "<i class='fas fa-sort-down'></i>";
|
|
} else {
|
|
$disp = "ASC";
|
|
$order_icon = "<i class='fas fa-sort-up'></i>";
|
|
}
|
|
|
|
// Search
|
|
if (isset($_GET['q'])) {
|
|
$q = sanitizeInput($_GET['q']);
|
|
//Phone Numbers
|
|
$phone_query = preg_replace("/[^0-9]/", '', $q);
|
|
if (empty($phone_query)) {
|
|
$phone_query = $q;
|
|
}
|
|
} else {
|
|
$q = "";
|
|
$phone_query = "";
|
|
}
|
|
|
|
// Sortby
|
|
if (!empty($_GET['sort'])) {
|
|
$sort = sanitizeInput(preg_replace('/[^a-z_]/', '', $_GET['sort'])); // JQ 2023-05-09 - See issue #673 on GitHub to see the reasoning why we used preg_replace technically sanitizeInput() should have been enough to escape SQL Commands
|
|
}
|
|
|
|
// Date Handling
|
|
if (empty($_GET['canned_date'])) {
|
|
//Prevents lots of undefined variable errors.
|
|
// $dtf and $dtt will be set by the below else to 0000-00-00 / 9999-00-00
|
|
$_GET['canned_date'] = 'custom';
|
|
}
|
|
|
|
// Date Filter
|
|
if ($_GET['canned_date'] == "custom" && !empty($_GET['dtf'])) {
|
|
$dtf = sanitizeInput($_GET['dtf']);
|
|
$dtt = sanitizeInput($_GET['dtt']);
|
|
} elseif ($_GET['canned_date'] == "today") {
|
|
$dtf = date('Y-m-d');
|
|
$dtt = date('Y-m-d');
|
|
} elseif ($_GET['canned_date'] == "yesterday") {
|
|
$dtf = date('Y-m-d', strtotime("yesterday"));
|
|
$dtt = date('Y-m-d', strtotime("yesterday"));
|
|
} elseif ($_GET['canned_date'] == "thisweek") {
|
|
$dtf = date('Y-m-d', strtotime("monday this week"));
|
|
$dtt = date('Y-m-d');
|
|
} elseif ($_GET['canned_date'] == "lastweek") {
|
|
$dtf = date('Y-m-d', strtotime("monday last week"));
|
|
$dtt = date('Y-m-d', strtotime("sunday last week"));
|
|
} elseif ($_GET['canned_date'] == "thismonth") {
|
|
$dtf = date('Y-m-01');
|
|
$dtt = date('Y-m-d');
|
|
} elseif ($_GET['canned_date'] == "lastmonth") {
|
|
$dtf = date('Y-m-d', strtotime("first day of last month"));
|
|
$dtt = date('Y-m-d', strtotime("last day of last month"));
|
|
} elseif ($_GET['canned_date'] == "thisyear") {
|
|
$dtf = date('Y-01-01');
|
|
$dtt = date('Y-m-d');
|
|
} elseif ($_GET['canned_date'] == "lastyear") {
|
|
$dtf = date('Y-m-d', strtotime("first day of january last year"));
|
|
$dtt = date('Y-m-d', strtotime("last day of december last year"));
|
|
} else {
|
|
$dtf = "NULL";
|
|
$dtt = date('Y-m-d');
|
|
}
|
|
|
|
// Archived
|
|
if (isset($_GET['archived']) && $_GET['archived'] == 1) {
|
|
$archived = 1;
|
|
$archive_query = "archived_at IS NOT NULL";
|
|
} else {
|
|
$archived = 0;
|
|
$archive_query = "archived_at IS NULL";
|
|
}
|