Joywork/admin/dischargeOrderFile.php
2026-05-22 21:21:54 +03:00

248 lines
11 KiB
PHP
Raw Permalink Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

<?php
require_once($_SERVER['DOCUMENT_ROOT'] . "/config.php");
ini_set('display_errors', 1);
error_reporting(E_ALL & ~E_DEPRECATED & ~E_STRICT & ~E_NOTICE);
// закрываем доступ на выполнение запросов
if (!isset($_SESSION['superadmin'])) {
header("location:/index.php");
die("Доступ запрещён!");
}
if (isset($_POST['add_file'])) {
$err = "";
$post = clearInputData($_POST);
if ($_FILES['request_file']['name']) {
if ($_FILES['request_file']['error'] == UPLOAD_ERR_OK) {
$ext = end(explode(".", $_FILES['request_file']['name']));
$ext = mb_strtolower($ext);
$name = md5($_FILES['request_file']['tmp_name'] . time()) . "." . $ext;
if (!is_dir($_SERVER['DOCUMENT_ROOT'] . "/upload/requests")) {
mkdir($_SERVER['DOCUMENT_ROOT'] . "/upload/requests");
}
$one = mb_substr($name, 0, 1);
$file = $_SERVER['DOCUMENT_ROOT'] . "/upload/requests/$one/$name";
if (!is_dir($_SERVER['DOCUMENT_ROOT'] . "/upload/requests/$one")) {
mkdir($_SERVER['DOCUMENT_ROOT'] . "/upload/requests/$one");
}
if (move_uploaded_file($_FILES['request_file']['tmp_name'], $file)) {
$post['hidden_request_file'] = "/upload/requests/$one/$name";
}
} else {
if ($_FILES['request_file']['error'] == UPLOAD_ERR_FORM_SIZE) {
if (strlen($err) > 0) {
$err = $err . "<br/>";
}
$err .= "Превышен размер файла. Допустимый размер 1-2 Mb.";
} else {
if (strlen($err) > 0) {
$err = $err . "<br/>";
}
$err .= "Ошибка при загрузке: ".$_FILES['request_file']['error'];
}
}
if (isset($post['id'])) {
if (strlen($err) == 0) {
$sql = "select * from discharge_object_request where id= $post[id]";
$rez = mysql_query($sql);
$request = mysql_fetch_array($rez);
$sql = "UPDATE discharge_object_request SET request_file = '" . $post['hidden_request_file'] ."', state = 'done' WHERE id = '" . $post['id'] . "'";
mysql_query($sql);
$message = 'Получена выписка из ЕГРН';
if ($request['request_type'] == 'move') {
$message = $message . " о переходе прав на объект недвижимости.";
}
$message = $message . ' <a href="' . $post['hidden_request_file'] . '" target="_blank">Скачать</a>';
$sqlObj = "SELECT o.id, o.nazv, o.adres, o.cadastral_number, o.dom, o.korpus, o.litera, o.id_rf_region, rayon.rayon FROM objects o LEFT JOIN rayon rayon on o.rayon = rayon.id WHERE o.id=$request[object_id]";
$rezObj = mysql_query($sqlObj);
$obj = mysql_fetch_assoc($rezObj);
$sqlUser = new User();
$sqlUser->get($request['user_id']);
//событие в задачи
$sqlEvent = "INSERT INTO user_object_events(user_id, object_id, type, comment) VALUES($request[user_id], $request[object_id], 'comment', '$message')";
mysql_query($sqlEvent);
$noticeText = "Получена выписка из ЕГРН по объекту $obj[nazv]";
mailClientFromJoywork($sqlUser->email, "Получена выписка из ЕГРН", $noticeText);
//уведомление в телеграм
$sql = "INSERT INTO discharge_user_notice(user_id, text, sended, created_at) VALUES($request[user_id], '$noticeText', 0, NOW())";
mysql_query($sql);
header("location:/admin/dischargeOrders.php");
exit();
}
} else {
if (strlen($err) > 0) {
$err = $err . "<br/>";
}
$err .= "Не найден идентификатор Запроса в запросе.";
}
}
}
$get = clearInputData($_GET);
if (!isset($get['id'])) {
header("location:/admin/dischargeOrders.php");
}
require_once($_SERVER['DOCUMENT_ROOT'] . "/templates/header-admin.php");
if (!isset($post) && $get['id'] > 0) {
$sql = "select * from discharge_object_request where id= $get[id]";
$rez = mysql_query($sql);
$request = mysql_fetch_array($rez);
$sqlUser = new User();
$sqlUser->get($request['user_id']);
$sqlObj = "SELECT o.id, o.nazv, o.adres, o.cadastral_number, o.dom, o.korpus, o.litera, o.id_rf_region, rayon.rayon FROM objects o LEFT JOIN rayon rayon on o.rayon = rayon.id WHERE o.id=$request[object_id]";
$rezObj = mysql_query($sqlObj);
$obj = mysql_fetch_assoc($rezObj);
}
?>
<div class="main-title">
<h1>Добавление файла выписки</h1>
</div>
<div class="users fr__users" style="margin-right: 20px;">
<div class="new-object">
<form method="post" enctype="multipart/form-data" id="upload-form">
<div class="new-object__form">
<?php if (isset($err) && strlen($err) > 0) { ?>
<div class="block" style="border-bottom: none; color: red;"><?php echo $err; ?></div>
<?php } ?>
<div class="block">
<div class="line">
<div class="label">
<span>Дата выписки:</span>
</div>
<div class="inputs">
<input type="text" class="text" name="name" disabled="disabled" style="width: 75%;"
value="<? if (isset($request)) echo date_format(date_create($request['created_at']), 'd.m.Y H:i:s'); ?>">
</div>
</div>
<div class="line">
<div class="label">
<span>Тип выписки:</span>
</div>
<div class="inputs">
<input type="text" class="text" disabled="disabled" style="width: 75%;"
value="<? if (isset($request)) echo ($request['request_type'] == 'simple' ? 'Выписка из ЕГРН о характеристиках и правах' : 'Выписка из ЕГРН о переходе прав на объект недвижимости') ?>">
</div>
</div>
<div class="line">
<div class="label">
<span>Пользователь:</span>
</div>
<div class="inputs">
<input type="text" class="text" disabled="disabled" style="width: 75%;"
value="<? if (isset($sqlUser)) echo (($sqlUser->agency ? ($sqlUser->agency_name . " (" . trim($sqlUser->last_name . ' ' . $sqlUser->first_name . ' ' . $sqlUser->middle_name) .")") : trim($sqlUser->last_name . ' ' . $sqlUser->first_name . ' ' . $sqlUser->middle_name)) .
' ' . $sqlUser->phone . ' ' . $sqlUser->email) ?>">
</div>
</div>
<div class="line">
<div class="label">
<span>Объект:</span>
</div>
<div class="inputs" style="padding-top: 9px;">
<a style="margin-left: 4px;" href="/object.php?id=' . $obj['id'] . '" target="_blank"><?php if (isset($obj)) echo $obj['nazv'] ?></a>
</div>
</div>
<div class="line">
<div class="label">
<span>Номер из Росреестра:</span>
</div>
<div class="inputs">
<input type="text" class="text" disabled="disabled" style="width: 75%;" value="<? if (isset($request)) echo $request['request_number'] ?>">
</div>
</div>
<div class="line">
<div class="label">
<span>Дата из Росреестра:</span>
</div>
<div class="inputs">
<input type="text" class="text" disabled="disabled" style="width: 75%;" value="<? if (isset($request)) echo date_format(date_create($request['request_date']), 'd.m.Y H:i:s'); ?>">
</div>
</div>
<div class="line">
<div class="label">
<span>Прикрепить выписку:</span>
</div>
<div class="inputs">
<input type="hidden" name="MAX_FILE_SIZE" value="6000000"/>
<input style="border: 1px solid white;" type="file"
class="text" name="request_file"/>
<div class="text_comment" style="margin-left: 123px; font-size: 12px;">
<div id="upload-result"></div>
</div>
</div>
</div>
<div class="line" style="text-align: right">
<button type="submit" class="medium-button">Сохранить</button>
<a href="/admin/dischargeOrders.php" class="cancel-button medium-button">Закрыть</a>
</div>
<input type="hidden" name="add_file" value="1">
<input type="hidden" name="hidden_request_file" value="<?php if (isset($request)) {
echo $request['request_file'];
} else {
if (isset($post)) {
echo $post['hidden_request_file'];
}
} ?>">
<input type="hidden" name="id" value="<?php if (isset($request)) {
echo $request['id'];
} else {
if (isset($post)) {
echo $post['id'];
}
} ?>">
<div class="clear"></div>
</div>
</div>
</form>
</div>
<div class="clear"></div>
</div>
<?php
require_once($_SERVER['DOCUMENT_ROOT'] . "/templates/footer-admin.php");
?>