新增上傳權限

C3/Index.php

@@ -227,8 +227,14 @@ include($_SERVER['DOCUMENT_ROOT'] . "/Authorization/script/php/permission/check_
 	<script src="/BIM-Monitor/script/js/c3.js"></script>
 
 	<script>
+		var userName = "<?php echo $_SESSION['name'] ?>";
+		var role = "<?php echo ($groupName); ?>";
+		var right = <?php echo $right; ?>;
 		vm.mount('.body');
 		addUserImage(userName.charAt(0), role);
+		if(right < 2){
+			$("#upload-btn").hide();
+		}
 	</script>
 
 	<!-- Vendor -->

R03/Index.php

@@ -219,6 +219,9 @@ include($_SERVER['DOCUMENT_ROOT'] . "/Authorization/script/php/permission/check_
 	<script src="/BIM-Monitor/script/js/r03.js"></script>
 
 	<script>
+		var userName = "<?php echo $_SESSION['name'] ?>";
+		var role = "<?php echo ($groupName); ?>";
+		var right = <?php echo $right; ?>;
 		vm.mount('.body');
 		addUserImage(userName.charAt(0), role);
 		getTable("SM");
@@ -236,6 +239,9 @@ include($_SERVER['DOCUMENT_ROOT'] . "/Authorization/script/php/permission/check_
 				console.log(error);
 			});
 		}
+		if(right < 2){
+			$("#upload-btn").hide();
+		}
 	</script>
 
 	<!-- Vendor -->

home.php

@@ -83,9 +83,15 @@ include($_SERVER['DOCUMENT_ROOT'] . "/Authorization/script/php/permission/check_
 	<!-- Main-->
 	<script src="script/js/home.js"></script>
 	<script>
+		var userName = "<?php echo $_SESSION['name'] ?>";
+		var role = "<?php echo ($groupName); ?>";
+		var right = <?php echo $right; ?>;
 		vm.mount('.body');
 		addUserImage(userName.charAt(0), role);
 		GetCheckAllAJAXValue()
+		if(right < 2){
+			$("#upload-btn").hide();
+		}
 	</script>
 
 	<!-- Vendor -->

script/js/global.js

@@ -169,7 +169,7 @@ vm.component('header-menu', {
                 </div>
             </div>
         </li>
-        <li>
+        <li id="upload-btn">
             <a href="/BIM-Monitor/upload.php" class="notification-icon" data-toggle="tooltip" title="監測查詢網上傳工具" data-placement="bottom">
                 <i class="fa fa-upload"></i>
             </a>

script/php/get_abnormal.php

@@ -65,7 +65,7 @@ while ($row = sqlsrv_fetch_array($fetchResult, SQLSRV_FETCH_NUMERIC)) {
 }*/
 $all_count = count($equipment_list[$type]);
 $normal_count = $all_count - $abnormal_count;
-if ($fetchResult === false) {
+if ($fetchResult === false) { 
     if (($errors = sqlsrv_errors()) != null) {
         foreach ($errors as $error) {
             echo "SQLSTATE: " . $error['SQLSTATE'] . "<br />";

script/php/read_excel.php

@@ -1,133 +1,135 @@
 <?php
+include($_SERVER['DOCUMENT_ROOT']."/Authorization/script/php/permission/check_right.php");
 include("./API/equipment.php");
 include("./connect_sql.php");
-session_start();
-if (0 < $_FILES['excel']['error']) {
-    echo 'Error: ' . $_FILES['excel']['error'] . '<br>';
-} else {
-    $filepath = 'uploads/' . $_FILES['excel']['name'];
-    move_uploaded_file($_FILES['excel']['tmp_name'], $filepath);
-    $projectName = $_POST['projectName'];
-    $constructionName = $_POST['constructionName'];
-}
-
 require '../../assets/vendor/autoload.php';
 
 use PhpOffice\PhpSpreadsheet\Spreadsheet;
 use PhpOffice\PhpSpreadsheet\Writer\Xlsx;
 
-$excelData = array();
-//$file = "./assets/excels/測試匯入.xlsx";
-//$file = "./assets/excels/1110801-580C-(車站區).xls";
-//$file = "./assets/excels/1110804-580C-(車站區)_unmerge.xls";
-$file = $filepath;
-
-
-$extension = pathinfo($file, PATHINFO_EXTENSION);
+session_start();
+if (isset($_POST["excel"])) {
+    if (0 < $_FILES['excel']['error']) {
+        echo 'Error: ' . $_FILES['excel']['error'] . '<br>';
+    } else {
+        $filepath = 'uploads/' . $_FILES['excel']['name'];
+        move_uploaded_file($_FILES['excel']['tmp_name'], $filepath);
+        $projectName = $_POST['projectName'];
+        $constructionName = $_POST['constructionName'];
+    }
+    $excelData = array();
+    $file = $filepath;
+    $extension = pathinfo($file, PATHINFO_EXTENSION);
 
-if ('csv' == $extension) {
-    $reader = new \PhpOffice\PhpSpreadsheet\Reader\Csv();
-} else if ('xls' == $extension) {
-    $reader = new \PhpOffice\PhpSpreadsheet\Reader\Xls();
-} else {
-    $reader = new \PhpOffice\PhpSpreadsheet\Reader\Xlsx();
-}
-$reader->setReadDataOnly(true);
-$reader->setReadEmptyCells(true);
-$spreadsheet = $reader->load($file);
-$sheetCount = $spreadsheet->getSheetCount();
+    if ('csv' == $extension) {
+        $reader = new \PhpOffice\PhpSpreadsheet\Reader\Csv();
+    } else if ('xls' == $extension) {
+        $reader = new \PhpOffice\PhpSpreadsheet\Reader\Xls();
+    } else {
+        $reader = new \PhpOffice\PhpSpreadsheet\Reader\Xlsx();
+    }
+    $reader->setReadDataOnly(true);
+    $reader->setReadEmptyCells(true);
+    $spreadsheet = $reader->load($file);
+    $sheetCount = $spreadsheet->getSheetCount();
 
-$header = $spreadsheet->getSheetByName("表頭");
-$date_value = $header->getCell('J2')->getValue();
-$timestamp = \PhpOffice\PhpSpreadsheet\Shared\Date::excelToTimestamp($date_value);
-$date = date('Y/m/d', $timestamp);
+    $header = $spreadsheet->getSheetByName("表頭");
+    $date_value = $header->getCell('J2')->getValue();
+    $timestamp = \PhpOffice\PhpSpreadsheet\Shared\Date::excelToTimestamp($date_value);
+    $date = date('Y/m/d', $timestamp);
 
-for ($s = 0; $s < $sheetCount; $s++) {
-    $data = array();
-    $sheet = $spreadsheet->getSheet($s);
-    $sheetName = $spreadsheet->getSheetNames()[$s];
-    if (array_search($sheetName, $not_read) === false) {
-        //echo ("資料表:" . $sheetName . "   ");
-        $cellCollection = $sheet->getCellCollection();
-        $column = $cellCollection->getHighestRowAndColumn();
-        $index_key = check_sheet($sheetName, $equipment_data);
-        $type = $equipment_data[$index_key]["type"];    //儀器類型
-        $startC = $equipment_data[$index_key]["startC"];    //起始欄位 EX:A
-        $endC = $equipment_data[$index_key]["endC"];    //結尾欄位 EX:H
-        $skipC = $equipment_data[$index_key]["skipC"];  //跳過欄位 EX:G
-        $startR = $equipment_data[$index_key]["startR"];    //起始列數 EX:10
-        $endR = $equipment_data[$index_key]["endR"] !== 0 ? $equipment_data[$index_key]["endR"] : $column['row'];   //結尾列數 若為0則總列數
-        for ($i = $startR; $i <= $endR; $i++) {
-            $skip = false;
-            $row = array();
-            $col_count = 0;
-            array_push($row, $date);
-            if (str_contains($sheetName, "SIS") || str_contains($sheetName, "SID")) {   //若為SIS取出儀器名稱
-                $equipment_name = explode("區", $sheetName)[1];
-                $equipment_name = str_replace(" ", "", $equipment_name);
-                $col_count++;
-                array_push($row, $equipment_name);
-            }
-            for ($j = $startC; $j <= $endC; $j++) {
-                if ($skipC != $j) {
+    for ($s = 0; $s < $sheetCount; $s++) {
+        $data = array();
+        $sheet = $spreadsheet->getSheet($s);
+        $sheetName = $spreadsheet->getSheetNames()[$s];
+        if (array_search($sheetName, $not_read) === false) {
+            //echo ("資料表:" . $sheetName . "   ");
+            $cellCollection = $sheet->getCellCollection();
+            $column = $cellCollection->getHighestRowAndColumn();
+            $index_key = check_sheet($sheetName, $equipment_data);
+            $type = $equipment_data[$index_key]["type"];    //儀器類型
+            $startC = $equipment_data[$index_key]["startC"];    //起始欄位 EX:A
+            $endC = $equipment_data[$index_key]["endC"];    //結尾欄位 EX:H
+            $skipC = $equipment_data[$index_key]["skipC"];  //跳過欄位 EX:G
+            $startR = $equipment_data[$index_key]["startR"];    //起始列數 EX:10
+            $endR = $equipment_data[$index_key]["endR"] !== 0 ? $equipment_data[$index_key]["endR"] : $column['row'];   //結尾列數 若為0則總列數
+            for ($i = $startR; $i <= $endR; $i++) {
+                $skip = false;
+                $row = array();
+                $col_count = 0;
+                array_push($row, $date);
+                if (str_contains($sheetName, "SIS") || str_contains($sheetName, "SID")) {   //若為SIS取出儀器名稱
+                    $equipment_name = explode("區", $sheetName)[1];
+                    $equipment_name = str_replace(" ", "", $equipment_name);
                     $col_count++;
-                    $key = $j . $i;
-                    $value = $sheet->getCell($key)->getCalculatedValue();
-                    if ((str_contains($sheetName, "SIS") || str_contains($sheetName, "SID")) && $j == 'C' && $value == null) {  //若為SIS且C行為空，則跳過
-                        $skip = true;
-                        break;
-                    } else if ($j == 'A' && (!str_contains($value, "-") || str_contains($value, "說明"))) { //若儀器資料不含'-'且含'說明'則跳過
-                        $skip = true;
-                        break;
-                    } else if ($j == 'A' && str_contains($sheetName, "TI")) {
-                        $value = str_replace(".", "", $value);
+                    array_push($row, $equipment_name);
+                }
+                for ($j = $startC; $j <= $endC; $j++) {
+                    if ($skipC != $j) {
+                        $col_count++;
+                        $key = $j . $i;
+                        $value = $sheet->getCell($key)->getCalculatedValue();
+                        if ((str_contains($sheetName, "SIS") || str_contains($sheetName, "SID")) && $j == 'C' && $value == null) {  //若為SIS且C行為空，則跳過
+                            $skip = true;
+                            break;
+                        } else if ($j == 'A' && (!str_contains($value, "-") || str_contains($value, "說明"))) { //若儀器資料不含'-'且含'說明'則跳過
+                            $skip = true;
+                            break;
+                        } else if ($j == 'A' && str_contains($sheetName, "TI")) {
+                            $value = str_replace(".", "", $value);
+                        }
+                        array_push($row, $value);
                     }
-                    array_push($row, $value);
                 }
-            }
-            if (!$skip) {
-                array_push($data, $row);
-                $row_merge = str_repeat(", ?", $col_count);
-                $sql = "INSERT INTO [{$type}_Data] VALUES (? {$row_merge});";
-                $stmt = sqlsrv_query($conn, $sql, $row);
-                if ($stmt === false) {
-                    if (($errors = sqlsrv_errors()) != null) {
-                        foreach ($errors as $error) {
-                            echo "SQLSTATE: " . $error['SQLSTATE'] . "<br />";
-                            echo "code: " . $error['code'] . "<br />";
-                            echo "message: " . $error['message'] . "<br />";
-                            echo ($sql . "<br />");
-                            var_dump($row);
+                if (!$skip) {
+                    array_push($data, $row);
+                    $row_merge = str_repeat(", ?", $col_count);
+                    $sql = "INSERT INTO [{$type}_Data] VALUES (? {$row_merge});";
+                    $stmt = sqlsrv_query($conn, $sql, $row);
+                    if ($stmt === false) {
+                        if (($errors = sqlsrv_errors()) != null) {
+                            foreach ($errors as $error) {
+                                echo "SQLSTATE: " . $error['SQLSTATE'] . "<br />";
+                                echo "code: " . $error['code'] . "<br />";
+                                echo "message: " . $error['message'] . "<br />";
+                                echo ($sql . "<br />");
+                                var_dump($row);
+                            }
                         }
                     }
                 }
             }
-        }
 
 
 
-        $excelData[$sheetName] = $data;
+            $excelData[$sheetName] = $data;
+        }
     }
-}
-if (isset($_SESSION['UserID'])) {
-    $user_id = $_SESSION['UserID'];
-} else {
-    $user_id = "0000";
-}
-$sql = "INSERT INTO [Update_Time] ([UserID]) VALUES (?);";
-$stmt = sqlsrv_query($conn, $sql, array($_SESSION['UserID']));
-if ($stmt === false) {
-    if (($errors = sqlsrv_errors()) != null) {
-        foreach ($errors as $error) {
-            echo "SQLSTATE: " . $error['SQLSTATE'] . "<br />";
-            echo "code: " . $error['code'] . "<br />";
-            echo "message: " . $error['message'] . "<br />";
-            echo ($sql . "<br />");
-            var_dump($row);
+    if (isset($_SESSION['UserID'])) {
+        $user_id = $_SESSION['UserID'];
+    } else {
+        $user_id = "0000";
+    }
+    $sql = "INSERT INTO [Update_Time] ([UserID]) VALUES (?);";
+    $stmt = sqlsrv_query($conn, $sql, array($_SESSION['UserID']));
+    if ($stmt === false) {
+        if (($errors = sqlsrv_errors()) != null) {
+            foreach ($errors as $error) {
+                echo "SQLSTATE: " . $error['SQLSTATE'] . "<br />";
+                echo "code: " . $error['code'] . "<br />";
+                echo "message: " . $error['message'] . "<br />";
+                echo ($sql . "<br />");
+                var_dump($row);
+            }
         }
     }
+    header("Location: ../../Upload.php?status=success");
+}else{
+    header("Location: ../../Upload.php?status=failed");
 }
-header("Location: ../../Upload.php?status=success");
+
+
+
 
 function check_sheet($sheetName, $equipment_data)
 {