X-Git-Url: http://wagnertech.de/git?a=blobdiff_plain;ds=sidebyside;f=WEB-INF%2Flib%2FttGroupExportHelper.class.php;h=cf64cede780ef01fe6912c058a1a6c239e999ac4;hb=3fe430d82ad416d1766b9f0cd558e2e1f26900a9;hp=b1aa35c035692bcb6e33d4e1699f089e622b8e6e;hpb=a4298d704504e90da27dfdae71aaf6cc2faa9844;p=timetracker.git diff --git a/WEB-INF/lib/ttGroupExportHelper.class.php b/WEB-INF/lib/ttGroupExportHelper.class.php index b1aa35c0..cf64cede 100644 --- a/WEB-INF/lib/ttGroupExportHelper.class.php +++ b/WEB-INF/lib/ttGroupExportHelper.class.php @@ -49,6 +49,7 @@ class ttGroupExportHelper { var $logMap = array(); var $customFieldMap = array(); var $customFieldOptionMap = array(); + var $favReportMap = array(); // Constructor. function __construct($group_id, $file, $indentation) { @@ -102,6 +103,9 @@ class ttGroupExportHelper { return false; } + // TODO: write a generic (private?) get function for exclusive use in this class, that obtains + // all fields from a given table. + // getRoles - obtains all roles defined for group. function getRoles() { global $user; @@ -174,13 +178,67 @@ class ttGroupExportHelper { return false; } + // getFavReports - obtains all favorite reports defined for group. + function getFavReports() { + global $user; + $mdb2 = getConnection(); + + $result = array(); + $sql = "select * from tt_fav_reports where group_id = $this->group_id and org_id = $user->org_id"; + $res = $mdb2->query($sql); + $result = array(); + if (!is_a($res, 'PEAR_Error')) { + while ($val = $res->fetchRow()) { + $result[] = $val; + } + return $result; + } + return false; + } + + // getPredefinedExpenses - obtains all predefined expenses for group. + function getPredefinedExpenses() { + global $user; + $mdb2 = getConnection(); + + $result = array(); + $sql = "select * from tt_predefined_expenses where group_id = $this->group_id and org_id = $user->org_id"; + $res = $mdb2->query($sql); + $result = array(); + if (!is_a($res, 'PEAR_Error')) { + while ($val = $res->fetchRow()) { + $result[] = $val; + } + return $result; + } + return false; + } + + // getNotifications - obtains all notifications defined for group. + function getNotifications() { + global $user; + $mdb2 = getConnection(); + + $result = array(); + $sql = "select * from tt_cron where group_id = $this->group_id and org_id = $user->org_id"; + $res = $mdb2->query($sql); + $result = array(); + if (!is_a($res, 'PEAR_Error')) { + while ($val = $res->fetchRow()) { + $result[] = $val; + } + return $result; + } + return false; + } + // writeData writes group data into file. function writeData() { // Write group info. $group = $this->getGroupData(); - $group_part = "file, $this->indentation.$group_part); + unset($group); + unset($group_part); // Prepare user map. $users = $this->getUsers(); @@ -243,35 +303,45 @@ class ttGroupExportHelper { foreach ($custom_field_options as $key=>$option) $this->customFieldOptionMap[$option['id']] = $key + 1; + // Prepare favorite report map. + $fav_reports = $this->getFavReports(); + foreach ($fav_reports as $key=>$fav_report) + $this->favReportMap[$fav_report['id']] = $key + 1; + // Write roles. fwrite($this->file, $this->indentation." \n"); foreach ($roles as $role) { $role_part = $this->indentation.' '."roleMap[$role['id']]."\""; - $role_part .= " name=\"".htmlentities($role['name'])."\""; - $role_part .= " description=\"".htmlentities($role['description'])."\""; + $role_part .= " name=\"".htmlspecialchars($role['name'])."\""; + $role_part .= " description=\"".htmlspecialchars($role['description'])."\""; $role_part .= " rank=\"".$role['rank']."\""; - $role_part .= " rights=\"".htmlentities($role['rights'])."\""; + $role_part .= " rights=\"".htmlspecialchars($role['rights'])."\""; $role_part .= " status=\"".$role['status']."\""; $role_part .= ">\n"; fwrite($this->file, $role_part); } fwrite($this->file, $this->indentation." \n"); + unset($roles); + unset($role_part); // Write tasks. fwrite($this->file, $this->indentation." \n"); foreach ($tasks as $task) { $task_part = $this->indentation.' '."taskMap[$task['id']]."\""; - $task_part .= " name=\"".htmlentities($task['name'])."\""; - $task_part .= " description=\"".htmlentities($task['description'])."\""; + $task_part .= " name=\"".htmlspecialchars($task['name'])."\""; + $task_part .= " description=\"".htmlspecialchars($task['description'])."\""; $task_part .= " status=\"".$task['status']."\""; $task_part .= ">\n"; fwrite($this->file, $task_part); } fwrite($this->file, $this->indentation." \n"); + unset($tasks); + unset($task_part); // Write projects. fwrite($this->file, $this->indentation." \n"); foreach ($projects as $project_item) { + $tasks_str = null; if($project_item['tasks']){ $tasks = explode(',', $project_item['tasks']); $tasks_mapped = array(); @@ -280,14 +350,16 @@ class ttGroupExportHelper { $tasks_str = implode(',', $tasks_mapped); } $project_part = $this->indentation.' '."projectMap[$project_item['id']]."\""; - $project_part .= " name=\"".htmlentities($project_item['name'])."\""; - $project_part .= " description=\"".htmlentities($project_item['description'])."\""; + $project_part .= " name=\"".htmlspecialchars($project_item['name'])."\""; + $project_part .= " description=\"".htmlspecialchars($project_item['description'])."\""; $project_part .= " tasks=\"".$tasks_str."\""; $project_part .= " status=\"".$project_item['status']."\""; $project_part .= ">\n"; fwrite($this->file, $project_part); } fwrite($this->file, $this->indentation." \n"); + unset($projects); + unset($project_part); // Write clients. fwrite($this->file, $this->indentation." \n"); @@ -300,8 +372,8 @@ class ttGroupExportHelper { $projects_str = implode(',', $projects_mapped); } $client_part = $this->indentation.' '."clientMap[$client_item['id']]."\""; - $client_part .= " name=\"".htmlentities($client_item['name'])."\""; - $client_part .= " address=\"".htmlentities($client_item['address'])."\""; + $client_part .= " name=\"".htmlspecialchars($client_item['name'])."\""; + $client_part .= " address=\"".htmlspecialchars($client_item['address'])."\""; $client_part .= " tax=\"".$client_item['tax']."\""; $client_part .= " projects=\"".$projects_str."\""; $client_part .= " status=\"".$client_item['status']."\""; @@ -309,14 +381,16 @@ class ttGroupExportHelper { fwrite($this->file, $client_part); } fwrite($this->file, $this->indentation." \n"); + unset($clients); + unset($client_part); // Write users. fwrite($this->file, $this->indentation." \n"); foreach ($users as $user_item) { $role_id = $user_item['rank'] == 512 ? 0 : $this->roleMap[$user_item['role_id']]; // Special role_id 0 (not null) for top manager. $user_part = $this->indentation.' '."userMap[$user_item['id']]."\""; - $user_part .= " name=\"".htmlentities($user_item['name'])."\""; - $user_part .= " login=\"".htmlentities($user_item['login'])."\""; + $user_part .= " name=\"".htmlspecialchars($user_item['name'])."\""; + $user_part .= " login=\"".htmlspecialchars($user_item['login'])."\""; $user_part .= " password=\"".$user_item['password']."\""; $user_part .= " role_id=\"".$role_id."\""; $user_part .= " client_id=\"".$this->clientMap[$user_item['client_id']]."\""; @@ -327,6 +401,8 @@ class ttGroupExportHelper { fwrite($this->file, $user_part); } fwrite($this->file, $this->indentation." \n"); + unset($users); + unset($user_part); // Write user to project binds. fwrite($this->file, $this->indentation." \n"); @@ -342,12 +418,14 @@ class ttGroupExportHelper { fwrite($this->file, $bind_part); } fwrite($this->file, $this->indentation." \n"); + unset($user_binds); + unset($bind_part); // Write invoices. fwrite($this->file, $this->indentation." \n"); foreach ($invoices as $invoice_item) { $invoice_part = $this->indentation.' '."invoiceMap[$invoice_item['id']]."\""; - $invoice_part .= " name=\"".htmlentities($invoice_item['name'])."\""; + $invoice_part .= " name=\"".htmlspecialchars($invoice_item['name'])."\""; $invoice_part .= " date=\"".$invoice_item['date']."\""; $invoice_part .= " client_id=\"".$this->clientMap[$invoice_item['client_id']]."\""; $invoice_part .= " status=\"".$invoice_item['status']."\""; @@ -355,12 +433,15 @@ class ttGroupExportHelper { fwrite($this->file, $invoice_part); } fwrite($this->file, $this->indentation." \n"); + unset($invoices); + unset($invoice_part); // Write time log entries and build logMap at the same time. fwrite($this->file, $this->indentation." \n"); $key = 0; - foreach ($users as $user_item) { - $records = ttTimeHelper::getAllRecords($user_item['id']); + foreach ($this->userMap as $key => $value) { + $user_id = $key; + $records = ttTimeHelper::getAllRecords($user_id); foreach ($records as $record) { $key++; $this->logMap[$record['id']] = $key; @@ -374,7 +455,7 @@ class ttGroupExportHelper { $log_part .= " project_id=\"".$this->projectMap[$record['project_id']]."\""; $log_part .= " task_id=\"".$this->taskMap[$record['task_id']]."\""; $log_part .= " invoice_id=\"".$this->invoiceMap[$record['invoice_id']]."\""; - $log_part .= " comment=\"".htmlentities($record['comment'])."\""; + $log_part .= " comment=\"".htmlspecialchars($record['comment'])."\""; $log_part .= " billable=\"".$record['billable']."\""; $log_part .= " paid=\"".$record['paid']."\""; $log_part .= " status=\"".$record['status']."\""; @@ -384,13 +465,14 @@ class ttGroupExportHelper { } fwrite($this->file, $this->indentation." \n"); unset($records); + unset($log_part); // Write custom fields. fwrite($this->file, $this->indentation." \n"); foreach ($custom_fields as $custom_field) { $custom_field_part = $this->indentation.' '."customFieldMap[$custom_field['id']]."\""; $custom_field_part .= " type=\"".$custom_field['type']."\""; - $custom_field_part .= " label=\"".htmlentities($custom_field['label'])."\""; + $custom_field_part .= " label=\"".htmlspecialchars($custom_field['label'])."\""; $custom_field_part .= " required=\"".$custom_field['required']."\""; $custom_field_part .= " status=\"".$custom_field['status']."\""; $custom_field_part .= ">\n"; @@ -398,18 +480,20 @@ class ttGroupExportHelper { } fwrite($this->file, $this->indentation." \n"); unset($custom_fields); + unset($custom_field_part); // Write custom field options. fwrite($this->file, $this->indentation." \n"); foreach ($custom_field_options as $option) { $custom_field_option_part = $this->indentation.' '."customFieldOptionMap[$option['id']]."\""; $custom_field_option_part .= " field_id=\"".$this->customFieldMap[$option['field_id']]."\""; - $custom_field_option_part .= " value=\"".htmlentities($option['value'])."\""; + $custom_field_option_part .= " value=\"".htmlspecialchars($option['value'])."\""; $custom_field_option_part .= ">\n"; fwrite($this->file, $custom_field_option_part); } fwrite($this->file, $this->indentation." \n"); unset($custom_field_options); + unset($custom_field_option_part); // Write custom field log. $custom_field_log = ttTeamHelper::getCustomFieldLog($this->group_id); @@ -418,13 +502,14 @@ class ttGroupExportHelper { $custom_field_log_part = $this->indentation.' '."logMap[$entry['log_id']]."\""; $custom_field_log_part .= " field_id=\"".$this->customFieldMap[$entry['field_id']]."\""; $custom_field_log_part .= " option_id=\"".$this->customFieldOptionMap[$entry['option_id']]."\""; - $custom_field_log_part .= " value=\"".htmlentities($entry['value'])."\""; + $custom_field_log_part .= " value=\"".htmlspecialchars($entry['value'])."\""; $custom_field_log_part .= " status=\"".$entry['status']."\""; $custom_field_log_part .= ">\n"; fwrite($this->file, $custom_field_log_part); } fwrite($this->file, $this->indentation." \n"); unset($custom_field_log); + unset($custom_field_log_part); // Write expense items. $expense_items = ttTeamHelper::getExpenseItems($this->group_id); @@ -434,7 +519,7 @@ class ttGroupExportHelper { $expense_item_part .= " user_id=\"".$this->userMap[$expense_item['user_id']]."\""; $expense_item_part .= " client_id=\"".$this->clientMap[$expense_item['client_id']]."\""; $expense_item_part .= " project_id=\"".$this->projectMap[$expense_item['project_id']]."\""; - $expense_item_part .= " name=\"".htmlentities($expense_item['name'])."\""; + $expense_item_part .= " name=\"".htmlspecialchars($expense_item['name'])."\""; $expense_item_part .= " cost=\"".$expense_item['cost']."\""; $expense_item_part .= " invoice_id=\"".$this->invoiceMap[$expense_item['invoice_id']]."\""; $expense_item_part .= " paid=\"".$expense_item['paid']."\""; @@ -444,6 +529,20 @@ class ttGroupExportHelper { } fwrite($this->file, $this->indentation." \n"); unset($expense_items); + unset($expense_item_part); + + // Write predefined expenses. + $predefined_expenses = $this->getPredefinedExpenses(); + fwrite($this->file, $this->indentation." \n"); + foreach ($predefined_expenses as $predefined_expense) { + $predefined_expense_part = $this->indentation.' '."file, $predefined_expense_part); + } + fwrite($this->file, $this->indentation." \n"); + unset($predefined_expenses); + unset($predefined_expense_part); // Write monthly quotas. $quotas = ttTeamHelper::getMonthlyQuotas($this->group_id); @@ -456,12 +555,94 @@ class ttGroupExportHelper { fwrite($this->file, $quota_part); } fwrite($this->file, $this->indentation." \n"); + unset($quotas); + unset($quota_part); + + // Write fav reports. + $fav_reports = $this->getFavReports(); + fwrite($this->file, $this->indentation." \n"); + foreach ($fav_reports as $fav_report) { + $user_list = ''; + if (strlen($fav_report['users']) > 0) { + $arr = explode(',', $fav_report['users']); + foreach ($arr as $k=>$v) { + if (array_key_exists($arr[$k], $this->userMap)) + $user_list .= (strlen($user_list) == 0? '' : ',').$this->userMap[$v]; + } + } + $fav_report_part = $this->indentation.' '."favReportMap[$fav_report['id']]."\""; + $fav_report_part .= " user_id=\"".$this->userMap[$fav_report['user_id']]."\""; + $fav_report_part .= " name=\"".htmlspecialchars($fav_report['name'])."\""; + $fav_report_part .= " client_id=\"".$this->clientMap[$fav_report['client_id']]."\""; + $fav_report_part .= " cf_1_option_id=\"".$this->customFieldOptionMap[$fav_report['cf_1_option_id']]."\""; + $fav_report_part .= " project_id=\"".$this->projectMap[$fav_report['project_id']]."\""; + $fav_report_part .= " task_id=\"".$this->taskMap[$fav_report['task_id']]."\""; + $fav_report_part .= " billable=\"".$fav_report['billable']."\""; + $fav_report_part .= " users=\"".$user_list."\""; + $fav_report_part .= " period=\"".$fav_report['period']."\""; + $fav_report_part .= " period_start=\"".$fav_report['period_start']."\""; + $fav_report_part .= " period_end=\"".$fav_report['period_end']."\""; + $fav_report_part .= " show_client=\"".$fav_report['show_client']."\""; + $fav_report_part .= " show_invoice=\"".$fav_report['show_invoice']."\""; + $fav_report_part .= " show_paid=\"".$fav_report['show_paid']."\""; + $fav_report_part .= " show_ip=\"".$fav_report['show_ip']."\""; + $fav_report_part .= " show_project=\"".$fav_report['show_project']."\""; + $fav_report_part .= " show_start=\"".$fav_report['show_start']."\""; + $fav_report_part .= " show_duration=\"".$fav_report['show_duration']."\""; + $fav_report_part .= " show_cost=\"".$fav_report['show_cost']."\""; + $fav_report_part .= " show_task=\"".$fav_report['show_task']."\""; + $fav_report_part .= " show_end=\"".$fav_report['show_end']."\""; + $fav_report_part .= " show_note=\"".$fav_report['show_note']."\""; + $fav_report_part .= " show_custom_field_1=\"".$fav_report['show_custom_field_1']."\""; + $fav_report_part .= " show_work_units=\"".$fav_report['show_work_units']."\""; + $fav_report_part .= " group_by1=\"".$fav_report['group_by1']."\""; + $fav_report_part .= " group_by2=\"".$fav_report['group_by2']."\""; + $fav_report_part .= " group_by3=\"".$fav_report['group_by3']."\""; + $fav_report_part .= " show_totals_only=\"".$fav_report['show_totals_only']."\""; + $fav_report_part .= ">\n"; + fwrite($this->file, $fav_report_part); + } + fwrite($this->file, $this->indentation." \n"); + unset($fav_reports); + unset($fav_report_part); + + // Write notifications. + $notifications = $this->getNotifications(); + fwrite($this->file, $this->indentation." \n"); + foreach ($notifications as $notification) { + $notification_part = $this->indentation.' '."favReportMap[$notification['report_id']]."\""; + $notification_part .= " email=\"".htmlspecialchars($notification['email'])."\""; + $notification_part .= " cc=\"".htmlspecialchars($notification['cc'])."\""; + $notification_part .= " subject=\"".htmlspecialchars($notification['subject'])."\""; + $notification_part .= " report_condition=\"".htmlspecialchars($notification['report_condition'])."\""; + $notification_part .= " status=\"".$notification['status']."\""; + $notification_part .= ">\n"; + fwrite($this->file, $notification_part); + } + fwrite($this->file, $this->indentation." \n"); + unset($notifications); + unset($notification_part); + + // We are mostly done with writing this group data, destroy all maps. + unset($this->roleMap); + unset($this->userMap); + unset($this->taskMap); + unset($this->projectMap); + unset($this->clientMap); + unset($this->invoiceMap); + unset($this->logMap); + unset($this->customFieldMap); + unset($this->customFieldOptionMap); // Call self recursively for all subgroups. foreach ($this->subgroups as $subgroup) { $subgroup_helper = new ttGroupExportHelper($subgroup['id'], $this->file, $this->indentation.' '); $subgroup_helper->writeData(); } + unset($this->subgroups); fwrite($this->file, $this->indentation."\n"); }