Joywork/admin/dischargeOrderFile.php

248 lines
11 KiB
PHP
Raw Normal View History

2026-05-22 20:21:54 +02:00
<?php
require_once($_SERVER['DOCUMENT_ROOT'] . "/config.php");
ini_set('display_errors', 1);
error_reporting(E_ALL & ~E_DEPRECATED & ~E_STRICT & ~E_NOTICE);
// закрываем доступ на выполнение запросов
if (!isset($_SESSION['superadmin'])) {
header("location:/index.php");
die("Доступ запрещён!");
}
if (isset($_POST['add_file'])) {
$err = "";
$post = clearInputData($_POST);
if ($_FILES['request_file']['name']) {
if ($_FILES['request_file']['error'] == UPLOAD_ERR_OK) {
$ext = end(explode(".", $_FILES['request_file']['name']));
$ext = mb_strtolower($ext);
$name = md5($_FILES['request_file']['tmp_name'] . time()) . "." . $ext;
if (!is_dir($_SERVER['DOCUMENT_ROOT'] . "/upload/requests")) {
mkdir($_SERVER['DOCUMENT_ROOT'] . "/upload/requests");
}
$one = mb_substr($name, 0, 1);
$file = $_SERVER['DOCUMENT_ROOT'] . "/upload/requests/$one/$name";
if (!is_dir($_SERVER['DOCUMENT_ROOT'] . "/upload/requests/$one")) {
mkdir($_SERVER['DOCUMENT_ROOT'] . "/upload/requests/$one");
}
if (move_uploaded_file($_FILES['request_file']['tmp_name'], $file)) {
$post['hidden_request_file'] = "/upload/requests/$one/$name";
}
} else {
if ($_FILES['request_file']['error'] == UPLOAD_ERR_FORM_SIZE) {
if (strlen($err) > 0) {
$err = $err . "<br/>";
}
$err .= "Превышен размер файла. Допустимый размер 1-2 Mb.";
} else {
if (strlen($err) > 0) {
$err = $err . "<br/>";
}
$err .= "Ошибка при загрузке: ".$_FILES['request_file']['error'];
}
}
if (isset($post['id'])) {
if (strlen($err) == 0) {
$sql = "select * from discharge_object_request where id= $post[id]";
$rez = mysql_query($sql);
$request = mysql_fetch_array($rez);
$sql = "UPDATE discharge_object_request SET request_file = '" . $post['hidden_request_file'] ."', state = 'done' WHERE id = '" . $post['id'] . "'";
mysql_query($sql);
$message = 'Получена выписка из ЕГРН';
if ($request['request_type'] == 'move') {
$message = $message . " о переходе прав на объект недвижимости.";
}
$message = $message . ' <a href="' . $post['hidden_request_file'] . '" target="_blank">Скачать</a>';
$sqlObj = "SELECT o.id, o.nazv, o.adres, o.cadastral_number, o.dom, o.korpus, o.litera, o.id_rf_region, rayon.rayon FROM objects o LEFT JOIN rayon rayon on o.rayon = rayon.id WHERE o.id=$request[object_id]";
$rezObj = mysql_query($sqlObj);
$obj = mysql_fetch_assoc($rezObj);
$sqlUser = new User();
$sqlUser->get($request['user_id']);
//событие в задачи
$sqlEvent = "INSERT INTO user_object_events(user_id, object_id, type, comment) VALUES($request[user_id], $request[object_id], 'comment', '$message')";
mysql_query($sqlEvent);
$noticeText = "Получена выписка из ЕГРН по объекту $obj[nazv]";
mailClientFromJoywork($sqlUser->email, "Получена выписка из ЕГРН", $noticeText);
//уведомление в телеграм
$sql = "INSERT INTO discharge_user_notice(user_id, text, sended, created_at) VALUES($request[user_id], '$noticeText', 0, NOW())";
mysql_query($sql);
header("location:/admin/dischargeOrders.php");
exit();
}
} else {
if (strlen($err) > 0) {
$err = $err . "<br/>";
}
$err .= "Не найден идентификатор Запроса в запросе.";
}
}
}
$get = clearInputData($_GET);
if (!isset($get['id'])) {
header("location:/admin/dischargeOrders.php");
}
require_once($_SERVER['DOCUMENT_ROOT'] . "/templates/header-admin.php");
if (!isset($post) && $get['id'] > 0) {
$sql = "select * from discharge_object_request where id= $get[id]";
$rez = mysql_query($sql);
$request = mysql_fetch_array($rez);
$sqlUser = new User();
$sqlUser->get($request['user_id']);
$sqlObj = "SELECT o.id, o.nazv, o.adres, o.cadastral_number, o.dom, o.korpus, o.litera, o.id_rf_region, rayon.rayon FROM objects o LEFT JOIN rayon rayon on o.rayon = rayon.id WHERE o.id=$request[object_id]";
$rezObj = mysql_query($sqlObj);
$obj = mysql_fetch_assoc($rezObj);
}
?>
<div class="main-title">
<h1>Добавление файла выписки</h1>
</div>
<div class="users fr__users" style="margin-right: 20px;">
<div class="new-object">
<form method="post" enctype="multipart/form-data" id="upload-form">
<div class="new-object__form">
<?php if (isset($err) && strlen($err) > 0) { ?>
<div class="block" style="border-bottom: none; color: red;"><?php echo $err; ?></div>
<?php } ?>
<div class="block">
<div class="line">
<div class="label">
<span>Дата выписки:</span>
</div>
<div class="inputs">
<input type="text" class="text" name="name" disabled="disabled" style="width: 75%;"
value="<? if (isset($request)) echo date_format(date_create($request['created_at']), 'd.m.Y H:i:s'); ?>">
</div>
</div>
<div class="line">
<div class="label">
<span>Тип выписки:</span>
</div>
<div class="inputs">
<input type="text" class="text" disabled="disabled" style="width: 75%;"
value="<? if (isset($request)) echo ($request['request_type'] == 'simple' ? 'Выписка из ЕГРН о характеристиках и правах' : 'Выписка из ЕГРН о переходе прав на объект недвижимости') ?>">
</div>
</div>
<div class="line">
<div class="label">
<span>Пользователь:</span>
</div>
<div class="inputs">
<input type="text" class="text" disabled="disabled" style="width: 75%;"
value="<? if (isset($sqlUser)) echo (($sqlUser->agency ? ($sqlUser->agency_name . " (" . trim($sqlUser->last_name . ' ' . $sqlUser->first_name . ' ' . $sqlUser->middle_name) .")") : trim($sqlUser->last_name . ' ' . $sqlUser->first_name . ' ' . $sqlUser->middle_name)) .
' ' . $sqlUser->phone . ' ' . $sqlUser->email) ?>">
</div>
</div>
<div class="line">
<div class="label">
<span>Объект:</span>
</div>
<div class="inputs" style="padding-top: 9px;">
<a style="margin-left: 4px;" href="/object.php?id=' . $obj['id'] . '" target="_blank"><?php if (isset($obj)) echo $obj['nazv'] ?></a>
</div>
</div>
<div class="line">
<div class="label">
<span>Номер из Росреестра:</span>
</div>
<div class="inputs">
<input type="text" class="text" disabled="disabled" style="width: 75%;" value="<? if (isset($request)) echo $request['request_number'] ?>">
</div>
</div>
<div class="line">
<div class="label">
<span>Дата из Росреестра:</span>
</div>
<div class="inputs">
<input type="text" class="text" disabled="disabled" style="width: 75%;" value="<? if (isset($request)) echo date_format(date_create($request['request_date']), 'd.m.Y H:i:s'); ?>">
</div>
</div>
<div class="line">
<div class="label">
<span>Прикрепить выписку:</span>
</div>
<div class="inputs">
<input type="hidden" name="MAX_FILE_SIZE" value="6000000"/>
<input style="border: 1px solid white;" type="file"
class="text" name="request_file"/>
<div class="text_comment" style="margin-left: 123px; font-size: 12px;">
<div id="upload-result"></div>
</div>
</div>
</div>
<div class="line" style="text-align: right">
<button type="submit" class="medium-button">Сохранить</button>
<a href="/admin/dischargeOrders.php" class="cancel-button medium-button">Закрыть</a>
</div>
<input type="hidden" name="add_file" value="1">
<input type="hidden" name="hidden_request_file" value="<?php if (isset($request)) {
echo $request['request_file'];
} else {
if (isset($post)) {
echo $post['hidden_request_file'];
}
} ?>">
<input type="hidden" name="id" value="<?php if (isset($request)) {
echo $request['id'];
} else {
if (isset($post)) {
echo $post['id'];
}
} ?>">
<div class="clear"></div>
</div>
</div>
</form>
</div>
<div class="clear"></div>
</div>
<?php
require_once($_SERVER['DOCUMENT_ROOT'] . "/templates/footer-admin.php");
?>