"; // affichage du tableau des procédures $requete = "SELECT idproc, name, requete, comment, libproc_classement, num_classement FROM procs left join procs_classements on idproc_classement=num_classement ORDER BY libproc_classement,name "; $res = mysql_query($requete, $dbh); $nbr = mysql_num_rows($res); $class_prec=$msg[proc_clas_aucun]; $buf_tit=""; $buf_class=0; $parity=1; for($i=0;$i<$nbr;$i++) { $row=mysql_fetch_row($res); $classement=$row[4]; if ($class_prec!=$classement) { if (!$row[4]) $row[4]=$msg[proc_clas_aucun]; if ($buf_tit) { $buf_contenu="".$buf_contenu."

".$buf_tit."

"; print gen_plus("procclass".$buf_class,$buf_tit,$buf_contenu); $buf_contenu=""; } $buf_tit=$row[4]; $buf_class=$row[5]; $class_prec=$classement; } if ($parity % 2) { $pair_impair = "even"; } else { $pair_impair = "odd"; } $parity += 1; $action = "onmousedown=\"document.location='./admin.php?categ=proc&sub=proc&action=modif&id=$row[0]';\""; $tr_javascript=" onmouseover=\"this.className='surbrillance'\" onmouseout=\"this.className='$pair_impair'\" "; $buf_contenu.="\n $row[1]
$row[3] "; if (preg_match_all("|!!(.*)!!|U",$row[2],$query_parameters)) { $buf_contenu.=" ".$msg["procs_options_config_param"].""; } else { $buf_contenu.=""; } $buf_contenu.=""; $buf_contenu.=" "; } $buf_contenu="".$buf_contenu."

".$buf_tit."

"; print gen_plus("procclass".$buf_class,$buf_tit,$buf_contenu); // //Procédures Externes // $pmb_procedure_server_credentials_exploded = explode("\n", $pmb_procedure_server_credentials); if ($pmb_procedure_server_address && (count($pmb_procedure_server_credentials_exploded) == 2)) { $aremote_procedure_client = new remote_procedure_client($pmb_procedure_server_address, trim($pmb_procedure_server_credentials_exploded[0]), trim($pmb_procedure_server_credentials_exploded[1])); $procedures = $aremote_procedure_client->get_procs("AP"); if ($procedures) { if ($procedures->error_information->error_code) { $buf_contenu=$msg['remote_procedures_error_server'].":
".$procedures->error_information->error_string.""; print gen_plus("procclass_remote",$msg["remote_procedures"],$buf_contenu); } else if (isset($procedures->elements)){ $buf_contenu=""; $current_set=""; foreach ($procedures->elements as $aprocedure) { if ($aprocedure->current_attached_set != $current_set) { $parity=0; $current_set = $aprocedure->current_attached_set; $buf_contenu .= ''.htmlentities($current_set, ENT_QUOTES, $charset).''; } if ($parity % 2) {$pair_impair = "even"; } else {$pair_impair = "odd";} $parity += 1; $tr_javascript=" onmouseover=\"this.className='surbrillance'\" onmouseout=\"this.className='$pair_impair'\" "; $buf_contenu.="\n id'\" /> id';\"> ".($aprocedure->untested ? "[".$msg["remote_procedures_procedure_non_validated"]."] " : '')."$aprocedure->name
$aprocedure->comment "; //if (preg_match_all("|!!(.*)!!|U",$row[2],$query_parameters)) $buf_contenu.="".$msg["procs_options_config_param"].""; $buf_contenu.=""; $buf_contenu.="id'\" /> "; } $buf_contenu="".$buf_contenu."

"; print gen_plus("procclass_remote",$msg["remote_procedures"],$buf_contenu); } else { $buf_contenu="
".$msg["remote_procedures_no_procs"]."

"; print gen_plus("procclass_remote",$msg["remote_procedures"],$buf_contenu); } } } print "
"; } function proc_form($name='', $code='', $comment='', $id=0, $autorisations=array(), $num_classement=0,$notice_tpl=0,$notice_tpl_col='') { global $msg; global $admin_proc_form; global $charset; $admin_proc_form = str_replace('!!id!!', $id, $admin_proc_form); if (!$id) $admin_proc_form = str_replace('!!form_title!!', $msg[704], $admin_proc_form); else $admin_proc_form = str_replace('!!form_title!!', $msg["procs_modification"], $admin_proc_form); if ($id && $name && $code) $action = "./admin.php?categ=proc&sub=proc&action=modif&id=$id"; else $action = "./admin.php?categ=proc&sub=proc&action=add"; $admin_proc_form = str_replace('!!action!!', $action, $admin_proc_form); $admin_proc_form = str_replace('!!name!!', htmlentities($name,ENT_QUOTES, $charset), $admin_proc_form); $admin_proc_form = str_replace('!!name_suppr!!', htmlentities(addslashes($name),ENT_QUOTES, $charset), $admin_proc_form); $admin_proc_form = str_replace('!!code!!', htmlentities($code,ENT_QUOTES, $charset), $admin_proc_form); $admin_proc_form = str_replace('!!comment!!', htmlentities($comment,ENT_QUOTES, $charset), $admin_proc_form); $sel_notice_tpl=""; $admin_proc_form = str_replace('!!notice_tpl!!',$sel_notice_tpl, $admin_proc_form); $autorisations_users=""; $id_check_list=''; while (list($row_number, $row_data) = each($autorisations)) { $id_check="auto_".$row_data[1]; if($id_check_list)$id_check_list.='|'; $id_check_list.=$id_check; if ($row_data[0]) $autorisations_users.=" ".$row_data[2]." "; else $autorisations_users.=" ".$row_data[2]." "; } $autorisations_users.=""; $admin_proc_form = str_replace('!!autorisations_users!!', $autorisations_users, $admin_proc_form); $combo_clas= gen_liste ("SELECT idproc_classement,libproc_classement FROM procs_classements ORDER BY libproc_classement ", "idproc_classement", "libproc_classement", "form_classement", "", $num_classement, 0, $msg[proc_clas_aucun],0, $msg[proc_clas_aucun]) ; $admin_proc_form = str_replace('!!classement!!', $combo_clas, $admin_proc_form); print confirmation_delete("./admin.php?categ=proc&sub=proc&action=del&id="); print $admin_proc_form; } function run_form($id, $dbh) { global $msg; global $charset; global $force_exec; $hp=new parameters($id,"procs"); if (preg_match_all("|!!(.*)!!|U",$hp->proc->requete,$query_parameters)) $hp->gen_form("admin.php?categ=proc&sub=proc&action=final&id=".$id."&force_exec=".$force_exec); else echo ""; } function display_remote_proc($id) { global $pmb_procedure_server_credentials, $pmb_procedure_server_address; global $admin_proc_view_remote; global $type_list; global $msg,$charset; $pmb_procedure_server_credentials_exploded = explode("\n", $pmb_procedure_server_credentials); $the_procedure = 0; if ($pmb_procedure_server_address && (count($pmb_procedure_server_credentials_exploded) == 2)) { $aremote_procedure_client = new remote_procedure_client($pmb_procedure_server_address, trim($pmb_procedure_server_credentials_exploded[0]), trim($pmb_procedure_server_credentials_exploded[1])); $procedure = $aremote_procedure_client->get_proc($id,"AP"); if ($procedure["error_message"]) { $buf_contenu=htmlentities($msg["remote_procedures_error_server"], ENT_QUOTES, $charset).":
".$procedure["error_message"].""; print $buf_contenu; return; } $the_procedure = $procedure["procedure"]; } if (!$the_procedure) { echo htmlentities($msg["remote_procedures_error_client"],ENT_QUOTES, $charset); return; } global $msg; global $admin_proc_form; global $charset; $admin_proc_view_remote = str_replace('!!id!!', $id, $admin_proc_view_remote); $admin_proc_view_remote = str_replace('!!form_title!!', htmlentities($msg["remote_procedures_detail_procedure_distante"],ENT_QUOTES, $charset), $admin_proc_view_remote); $additional_information = $the_procedure->untested ? $msg["remote_procedures_procedure_non_validated_additional_information"] : ""; $admin_proc_view_remote = str_replace('!!additional_information!!', htmlentities($additional_information,ENT_QUOTES, $charset), $admin_proc_view_remote); $admin_proc_view_remote = str_replace('!!name!!', htmlentities($the_procedure->name,ENT_QUOTES, $charset), $admin_proc_view_remote); $admin_proc_view_remote = str_replace('!!name_suppr!!', htmlentities(addslashes($the_procedure->name),ENT_QUOTES, $charset), $admin_proc_view_remote); $admin_proc_view_remote = str_replace('!!code!!', htmlentities($the_procedure->sql,ENT_QUOTES, $charset), $admin_proc_view_remote); $admin_proc_view_remote = str_replace('!!comment!!', htmlentities($the_procedure->comment,ENT_QUOTES, $charset), $admin_proc_view_remote); $parameters = $the_procedure->params; $parameters = $aremote_procedure_client->parse_parameters($parameters); // highlight_string(print_r($parameters, true)); if ($parameters) { $admin_proc_view_remote = str_replace('!!parameters_title!!', "".htmlentities($msg["remote_procedures_procedure_parameters"],ENT_QUOTES, $charset)."", $admin_proc_view_remote); $parameters_display = ''; $parity = 0; foreach($parameters as $parametername => $parameter) { $pair_impair = $parity++ % 2 ? "even" : "odd"; $tr_javascript=" onmouseover=\"this.className='surbrillance'\" onmouseout=\"this.className='$pair_impair'\" "; $parameters_display .= ''; $parameters_display .= ''; $parameters_display .= ''; $parameters_display .= ''; switch ($parameter["type"]["value"]) { case "query_list": $parameters_display .= ''; break; case "text": $parameters_display .= ''; break; case "list": $parameters_display .= ''; break; case "date_box": $parameters_display .= ''; break; case "selector": $parameters_display .= ''; break; case "file_box": $parameters_display .= ''; break; default: break; } $parameters_display .= ''; } $parameters_display .= '

'.htmlentities($msg["remote_procedures_procedure_parameters_name"],ENT_QUOTES, $charset).'	'.htmlentities($msg["remote_procedures_procedure_parameters_title"],ENT_QUOTES, $charset).'	'.htmlentities($msg["remote_procedures_procedure_parameters_type"],ENT_QUOTES, $charset).'	'.htmlentities($msg["remote_procedures_procedure_parameters"],ENT_QUOTES, $charset).'
'.htmlentities($parametername,ENT_QUOTES, $charset).'	'.htmlentities($parameter["title"]['value'],ENT_QUOTES, $charset).'	'.htmlentities($type_list[$parameter["type"]["value"]],ENT_QUOTES, $charset).'	'.htmlentities($msg["procs_options_requete"], ENT_QUOTES, $charset).': '.htmlentities($parameter["options"]["QUERY"][0]["value"],ENT_QUOTES, $charset).' '.htmlentities($msg["procs_options_liste_multi"], ENT_QUOTES, $charset).': '.($parameter["options"]["MULTIPLE"][0]["value"] == "yes" ? htmlentities($msg["40"], ENT_QUOTES, $charset) : htmlentities($msg["39"], ENT_QUOTES, $charset)).'	'.htmlentities($msg["procs_options_text_taille"], ENT_QUOTES, $charset).': '.htmlentities($parameter["options"]["SIZE"][0]["value"],ENT_QUOTES, $charset).' '.htmlentities($msg["procs_options_text_max"], ENT_QUOTES, $charset).': '.($parameter["options"]["MAXSIZE"][0]["value"]).'	'; $parameters_display .= ' '.htmlentities($msg["procs_options_liste_multi"], ENT_QUOTES, $charset).': '.($parameter["options"]["MULTIPLE"][0]["value"] == "yes" ? htmlentities($msg["40"], ENT_QUOTES, $charset) : htmlentities($msg["39"], ENT_QUOTES, $charset)).' '; $parameters_display .= ' '.htmlentities($msg["procs_options_choix_vide"], ENT_QUOTES, $charset).': '.(htmlentities($parameter["options"]["UNSELECT_ITEM"][0]["value"],ENT_QUOTES, $charset)).' ('.htmlentities($parameter["options"]["UNSELECT_ITEM"][0]["VALUE"],ENT_QUOTES, $charset).') '; $choix=array(); foreach($parameter["options"]["ITEMS"][0]["ITEM"] as $achoix) { $choix[] = $achoix["value"]." (".$achoix["VALUE"].")"; } $parameters_display .= ' '.htmlentities($msg["procs_options_liste_options"], ENT_QUOTES, $charset).': '.(htmlentities(implode("; ", $choix),ENT_QUOTES, $charset)).' '; $parameters_display .= '		'; $parameters_display .= ' '.htmlentities($msg["include_option_methode"], ENT_QUOTES, $charset).': '.($parameter["options"]["METHOD"][0]["value"] == "1" ? $msg['parperso_include_option_selectors_id'] : $msg['parperso_include_option_selectors_label']).' '; $id_captions=array($msg['133'], $msg['134'], $msg['135'], $msg['136'], $msg['137'], $msg['333'], $msg['indexint_menu']); $parameters_display .= ' '.htmlentities($msg["include_option_type_donnees"], ENT_QUOTES, $charset).': '.(htmlentities($id_captions[$parameter["options"]["DATA_TYPE"][0]["value"]], ENT_QUOTES, $charset)).' '; $parameters_display .= '	'; $parameters_display .= ' '.htmlentities($msg["include_option_methode"], ENT_QUOTES, $charset).': '.($parameter["options"]["METHOD"][0]["value"] == "1" ? htmlentities($msg["57"], ENT_QUOTES, $charset) : htmlentities($msg["include_option_table"], ENT_QUOTES, $charset)).' '; $parameters_display .= ' '.htmlentities($msg["include_option_nom_table"], ENT_QUOTES, $charset).': '.(htmlentities($parameter["options"]["TEMP_TABLE_NAME"][0]["value"],ENT_QUOTES, $charset)).' '; $parameters_display .= ' '.htmlentities($msg["include_option_type_donnees"], ENT_QUOTES, $charset).': '.($parameter["options"]["DATA_TYPE"][0]["value"] == "1" ? "Chaine" : "Entier").' '; $parameters_display .= '

'; $admin_proc_view_remote = str_replace('!!parameters_content!!', $parameters_display, $admin_proc_view_remote); } $admin_proc_view_remote = str_replace('!!parameters_title!!', "", $admin_proc_view_remote); $admin_proc_view_remote = str_replace('!!parameters_content!!', "", $admin_proc_view_remote); print confirmation_delete("./admin.php?categ=proc&sub=proc&action=del&id="); print $admin_proc_view_remote; } switch($action) { case 'configure': $hp=new parameters($id_query,"procs"); $hp->show_config_screen("admin.php?categ=proc&sub=proc&action=update_config","admin.php?categ=proc&sub=proc"); break; case 'update_config': $hp=new parameters($id_query,"procs"); $hp->update_config("admin.php?categ=proc&sub=proc"); break; case 'final': $hp=new parameters($id_query,"procs"); $param_proc_hidden=""; if (preg_match_all("|!!(.*)!!|U",$hp->proc->requete,$query_parameters)) { $hp->get_final_query(); $code=$hp->final_query; $id=$id_query; $param_proc_hidden=$hp->get_hidden_values();//Je mets les paramêtres en champ caché en cas de forçage $param_proc_hidden.=""; } include("./admin/proc/execute.inc.php"); break; case 'execute': // form pour params et validation run_form($id, $dbh); break; case 'modif': if($id) { if($f_proc_name && $f_proc_code) { // faire la modification if (is_array($userautorisation)) $autorisations=implode(" ",$userautorisation); else $autorisations=''; $param_name=check_param($f_proc_code); if ($param_name!==true) { error_message_history($param_name, sprintf($msg["proc_param_check_field_name"],$param_name), 1); exit(); } $requete = "UPDATE procs SET name='$f_proc_name',requete='$f_proc_code',comment='$f_proc_comment' , autorisations='$autorisations' , num_classement='$form_classement', proc_notice_tpl='$form_notice_tpl', proc_notice_tpl_field='$form_notice_tpl_field' WHERE idproc=$id "; $res = mysql_query($requete, $dbh); show_procs($dbh); } else { // afficher le form avec les bonnes valeurs // ALTER TABLE procs ADD autorisations MEDIUMTEXT; $requete = "SELECT idproc, name, requete, comment, autorisations, num_classement, proc_notice_tpl, proc_notice_tpl_field FROM procs WHERE idproc=$id LIMIT 1 "; $res = mysql_query($requete, $dbh); $requete_users = "SELECT userid, username FROM users order by username "; $res_users = mysql_query($requete_users, $dbh); $all_users=array(); while (list($all_userid,$all_username)=mysql_fetch_row($res_users)) { $all_users[]=array($all_userid,$all_username); } if(mysql_num_rows($res)) { $row = mysql_fetch_row($res); $autorisations_donnees=explode(" ",$row[4]); for ($i=0 ; $ialert(\"$msg[709]\");"; print ""; } show_procs($dbh); } else { $requete_users = "SELECT userid, username FROM users order by username "; $res_users = mysql_query($requete_users, $dbh); $autorisation=array(); while (list($all_userid,$all_username)=mysql_fetch_row($res_users)) { $autorisation[]=array(0,$all_userid,$all_username); } proc_form("", "", "", 0, $autorisation); } break; case 'import': $import_proc_tmpl = str_replace("!!action!!", "./admin.php?categ=proc&sub=proc&action=importsuite", $import_proc_tmpl); print $import_proc_tmpl ; break; case 'importsuite': procs_create ("PROCS", "./admin.php?categ=proc&sub=proc&action=modif&id=!!id!!", "./admin.php?categ=proc&sub=proc&action=importsuite") ; break; case 'del': if($id) { $requete = "DELETE FROM procs WHERE idproc=$id "; $res = mysql_query($requete, $dbh); $requete = "OPTIMIZE TABLE procs "; $res = mysql_query($requete, $dbh); show_procs($dbh); } break; case 'view_remote': if ($id) { display_remote_proc($id); } break; case 'import_remote': if ($id) { if($do_import) { $pmb_procedure_server_credentials_exploded = explode("\n", $pmb_procedure_server_credentials); $the_procedure = 0; if ($pmb_procedure_server_address && (count($pmb_procedure_server_credentials_exploded) == 2)) { $aremote_procedure_client = new remote_procedure_client($pmb_procedure_server_address, trim($pmb_procedure_server_credentials_exploded[0]), trim($pmb_procedure_server_credentials_exploded[1])); $procedure = $aremote_procedure_client->get_proc($id,"AP"); if ($procedure["error_message"]) { $buf_contenu=htmlentities($msg["remote_procedures_error_server"], ENT_QUOTES, $charset).":
".$procedure["error_message"].""; print $buf_contenu; return; } $the_procedure = $procedure["procedure"]; } if (!$the_procedure) { echo htmlentities($msg["remote_procedures_error_client"],ENT_QUOTES, $charset); break; } $proc_classement = isset($proc_classement) ? $proc_classement : 0; $proc_classement += 0; if (is_array($userautorisation)) $autorisations=implode(" ",$userautorisation); else $autorisations=''; if ($imported_name) $the_procedure->name = $imported_name; else $the_procedure->name = mysql_escape_string($the_procedure->name); if ($imported_comment) $the_procedure->comment = $imported_comment; else $the_procedure->comment = mysql_escape_string($the_procedure->comment); $parameters=$the_procedure->params; //mise à jour de l'encodage de l'entête if($charset == 'utf-8') { $parameters = str_replace('', '', $parameters) ; } $sql = "INSERT INTO procs (name, requete, comment, autorisations, parameters, num_classement) VALUES ('".$the_procedure->name."', '".mysql_escape_string($the_procedure->sql)."', '".$the_procedure->comment."', '".mysql_escape_string($autorisations)."', '".mysql_escape_string($parameters)."', ".mysql_escape_string($proc_classement).")"; $res = mysql_query($sql, $dbh); show_procs($dbh); } else { $pmb_procedure_server_credentials_exploded = explode("\n", $pmb_procedure_server_credentials); $the_procedure = 0; if ($pmb_procedure_server_address && (count($pmb_procedure_server_credentials_exploded) == 2)) { $aremote_procedure_client = new remote_procedure_client($pmb_procedure_server_address, trim($pmb_procedure_server_credentials_exploded[0]), trim($pmb_procedure_server_credentials_exploded[1])); $procedure = $aremote_procedure_client->get_proc($id,"AP"); if ($procedure["error_message"]) { $buf_contenu=htmlentities($msg["remote_procedures_error_server"], ENT_QUOTES, $charset).":
".$procedure["error_message"].""; print $buf_contenu; return; } $the_procedure = $procedure["procedure"]; } if (!$the_procedure) { echo htmlentities($msg["remote_procedures_error_client"],ENT_QUOTES, $charset); break; } $form = "

"; $combo_clas= gen_liste ("SELECT idproc_classement,libproc_classement FROM procs_classements ORDER BY libproc_classement ", "idproc_classement", "libproc_classement", "proc_classement", "", $num_classement, 0, $msg[proc_clas_aucun],0, $msg[proc_clas_aucun]); $form .= "

>".$msg["remote_procedures_import_remote"]."

"; $form .= "

"; $form .= ''.$msg["remote_procedures_procedure_name"].':

'; $form .= ''.$msg["remote_procedures_procedure_comment"].':

'; $form .= ''.$msg["remote_procedures_putin"].':
'.$combo_clas."

"; //$form .= ''.$msg["remote_procedures_putin"].':
'.$combo_clas."

"; $requete_users = "SELECT userid, username FROM users order by username "; $res_users = mysql_query($requete_users, $dbh); $all_users=array(); while (list($all_userid,$all_username)=mysql_fetch_row($res_users)) { $all_users[]=array($all_userid,$all_username); } foreach($all_users as $a_user) { $id_check="auto_".$a_user[0]; if($id_check_list)$id_check_list.='|'; $id_check_list.=$id_check; $autorisations_users.=" ".$a_user[1]." "; } $autorisations_users.=""; $form .= "

$msg[procs_autorisations]

"; $form .= $autorisations_users; $form .= '

'; $form .= " "; $form .= " "; $form .= '

'; print $form; } } break; case 'execute_remote': if (!$id) break; $pmb_procedure_server_credentials_exploded = explode("\n", $pmb_procedure_server_credentials); $the_procedure = 0; if ($pmb_procedure_server_address && (count($pmb_procedure_server_credentials_exploded) == 2)) { $aremote_procedure_client = new remote_procedure_client($pmb_procedure_server_address, trim($pmb_procedure_server_credentials_exploded[0]), trim($pmb_procedure_server_credentials_exploded[1])); $procedure = $aremote_procedure_client->get_proc($id,"AP"); if ($procedure["error_message"]) { $buf_contenu=htmlentities($msg["remote_procedures_error_server"], ENT_QUOTES, $charset).":
".$procedure["error_message"].""; print $buf_contenu; return; } $the_procedure = $procedure["procedure"]; } if (!$the_procedure) { echo htmlentities($msg["remote_procedures_error_client"],ENT_QUOTES, $charset); break; } if ($the_procedure->params && ($the_procedure->params != "NULL")) { // $sql = "DROP TABLE IF EXISTS remote_proc"; // mysql_query($sql, $dbh) or die(mysql_error()); $sql = "CREATE TEMPORARY TABLE remote_proc LIKE procs"; mysql_query($sql, $dbh) or die(mysql_error()); $sql = "INSERT INTO remote_proc (idproc, name, requete, comment, autorisations, parameters, num_classement) VALUES (0, '".mysql_escape_string($the_procedure->name)."', '".mysql_escape_string($the_procedure->sql)."', '".mysql_escape_string($the_procedure->comment)."', '', '".mysql_escape_string($the_procedure->params)."', 0)"; mysql_query($sql, $dbh) or die(mysql_error()); $idproc = mysql_insert_id($dbh); $hp=new parameters($idproc,"remote_proc"); if (preg_match_all("|!!(.*)!!|U",$hp->proc->requete,$query_parameters)){ $hp->gen_form("admin.php?categ=proc&sub=proc&action=final_remote&id=".$id."&force_exec=".$force_exec); }else{ echo ""; } } else echo ""; break; case 'final_remote': if (!$id) break; $pmb_procedure_server_credentials_exploded = explode("\n", $pmb_procedure_server_credentials); $the_procedure = 0; if ($pmb_procedure_server_address && (count($pmb_procedure_server_credentials_exploded) == 2)) { $aremote_procedure_client = new remote_procedure_client($pmb_procedure_server_address, trim($pmb_procedure_server_credentials_exploded[0]), trim($pmb_procedure_server_credentials_exploded[1])); $procedure = $aremote_procedure_client->get_proc($id,"AP"); if ($procedure["error_message"]) { $buf_contenu=htmlentities($msg["remote_procedures_error_server"], ENT_QUOTES, $charset).":
".$procedure["error_message"].""; print $buf_contenu; return; } $the_procedure = $procedure["procedure"]; } if (!$the_procedure) { echo htmlentities($msg["remote_procedures_error_client"],ENT_QUOTES, $charset); break; } $sql = "CREATE TEMPORARY TABLE remote_proc LIKE procs"; mysql_query($sql, $dbh) or die(mysql_error()); $sql = "INSERT INTO remote_proc (idproc, name, requete, comment, autorisations, parameters, num_classement) VALUES (0, '".mysql_escape_string($the_procedure->name)."', '".mysql_escape_string($the_procedure->sql)."', '".mysql_escape_string($the_procedure->comment)."', '', '".mysql_escape_string($the_procedure->params)."', 0)"; mysql_query($sql, $dbh) or die(mysql_error()); $idproc = mysql_insert_id($dbh); $hp=new parameters($idproc,"remote_proc"); $param_proc_hidden=""; if (preg_match_all("|!!(.*)!!|U",$hp->proc->requete,$query_parameters)) { $hp->get_final_query(); $the_procedure->sql = $hp->final_query; $param_proc_hidden=$hp->get_hidden_values();//Je mets les paramêtres en champ caché en cas de forçage //$param_proc_hidden.=""; } $execute_external = true; $execute_external_procedure = $the_procedure; include("./admin/proc/execute.inc.php"); break; default: show_procs($dbh); break; }