| Server IP : 85.193.89.191 / Your IP : 3.137.167.89 Web Server : Apache System : Linux 956367-cx40159.tmweb.ru 3.10.0-1160.105.1.el7.x86_64 #1 SMP Thu Dec 7 15:39:45 UTC 2023 x86_64 User : bitrix ( 600) PHP Version : 8.1.27 Disable Function : NONE MySQL : OFF | cURL : OFF | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : ON Directory : /home/bitrix/www/bitrix/components/bitrix/bizproc.document/ |
Upload File : |
<?php
use Bitrix\Bizproc;
define('NO_KEEP_STATISTIC', 'Y');
define('NO_AGENT_STATISTIC', 'Y');
define('NO_AGENT_CHECK', true);
define('PUBLIC_AJAX_MODE', true);
define('DisableEventsCheck', true);
$siteID =
isset($_REQUEST['site'])
? mb_substr(preg_replace('/[^a-z0-9_]/i', '', $_REQUEST['site']), 0, 2)
: ''
;
if ($siteID !== '')
{
define('SITE_ID', $siteID);
}
require_once($_SERVER['DOCUMENT_ROOT'] . '/bitrix/modules/main/include/prolog_before.php');
if (!defined("B_PROLOG_INCLUDED") || B_PROLOG_INCLUDED !== true)
{
die();
}
/** @var CUser $user */
$user = $GLOBALS["USER"];
if (!check_bitrix_sessid() || !is_object($user) || !$user->IsAuthorized() || !CModule::IncludeModule('bizproc'))
{
die();
}
CUtil::JSPostUnescape();
$request = \Bitrix\Main\Application::getInstance()->getContext()->getRequest();
$action = $request->getPost('ajax_action');
if (empty($action))
{
die('Unknown action!');
}
$APPLICATION->ShowAjaxHead();
$action = mb_strtoupper($action);
$writeResponse = function (\Bitrix\Main\Result $data)
{
$errors = $data->getErrorMessages();
$data = $data->getData();
$result = ['data' => $data, 'errors' => $errors];
$result['success'] = count($errors) === 0;
if (!defined('PUBLIC_AJAX_MODE'))
{
define('PUBLIC_AJAX_MODE', true);
}
$GLOBALS['APPLICATION']->RestartBuffer();
Header('Content-Type: application/x-javascript; charset=' . LANG_CHARSET);
echo \Bitrix\Main\Web\Json::encode($result);
\Bitrix\Main\Application::getInstance()->end();
};
$sendData = function (array $data) use ($writeResponse)
{
$result = new \Bitrix\Main\Result();
$result->setData($data);
$writeResponse($result);
};
$sendError = function ($error) use ($writeResponse)
{
$result = new \Bitrix\Main\Result();
$errors = (array)$error;
foreach ($errors as $e)
{
$result->addError(new \Bitrix\Main\Error($e));
}
$writeResponse($result);
};
$getDocumentStates = function ($documentId) use ($user)
{
$workflows = [];
$states = CBPDocument::getActiveStates($documentId);
$userId = $user->GetID();
$userGroups = $user->GetUserGroupArray();
foreach ($states as $state)
{
if (
!CBPDocument::CanUserOperateDocument(
CBPCanUserOperateOperation::ViewWorkflow,
$userId,
$documentId,
[
"DocumentStates" => $states,
"WorkflowId" => $state["ID"],
]
)
)
{
continue;
}
$state['EVENTS'] = CBPDocument::GetAllowableEvents($userId, $userGroups, $state);
$state['TASKS'] = CBPDocument::GetUserTasksForWorkflow($userId, $state["ID"]);
$state['STATE_MODIFIED_FORMATTED'] = FormatDateFromDB($state["STATE_MODIFIED"]);
$workflows[] = $state;
}
return $workflows;
};
$getCompletedStates = function ($documentId, int $offset = 0, array $ids = null)
{
$workflows = [];
$size = 20;
$filter = [
'=MODULE_ID' => $documentId[0],
'=ENTITY' => $documentId[1],
'=DOCUMENT_ID' => $documentId[2],
'=INSTANCE.ID' => null,
];
if ($ids)
{
$filter = [
'@ID' => $ids,
'=INSTANCE.ID' => null,
];
}
$rows = Bizproc\Workflow\Entity\WorkflowStateTable::getList([
'select' => [
'ID',
'TEMPLATE_NAME' => 'TEMPLATE.NAME',
'STATE_TITLE',
'STATE_NAME' => 'STATE',
'MODIFIED',
],
'filter' => $filter,
'limit' => $size,
'offset' => $offset,
'order' => ['MODIFIED' => 'DESC'],
])->fetchAll();
foreach ($rows as $state)
{
$state['STATE_MODIFIED_FORMATTED'] = FormatDateFromDB($state["MODIFIED"]);
$workflows[] = $state;
}
return $workflows;
};
$moduleId = $request->getPost('module_id');
$entity = $request->getPost('entity');
$paramDocumentType = $request->getPost('document_type');
$paramDocumentId = $request->getPost('document_id');
if (!$moduleId || !$entity || !$paramDocumentType || !$paramDocumentId)
{
$sendError('Invalid request data');
}
$documentType = [$moduleId, $entity, $paramDocumentType];
$documentId = [$moduleId, $entity, $paramDocumentId];
$documentStates = CBPDocument::getActiveStates($documentId);
switch ($action)
{
case 'KILL_WORKFLOW':
$canKill = CBPDocument::CanUserOperateDocument(
CBPCanUserOperateOperation::CreateWorkflow,
$user->GetID(),
$documentId,
["DocumentStates" => $documentStates]
);
$workflowId = $request->getPost('workflow_id');
if (!$canKill)
{
$sendError('Access Denied');
}
else
{
$terminateWorkflow = isset($documentStates[$workflowId]['WORKFLOW_STATUS']) && $documentStates[$workflowId]['WORKFLOW_STATUS'] !== null;
$errors = CBPDocument::killWorkflow($workflowId, $terminateWorkflow, $documentId);
if (count($errors) > 0)
{
$sendError($errors[0]);
}
else
{
$sendData([
'killed' => true,
'workflows' => $getDocumentStates($documentId),
]);
}
}
break;
case 'TERMINATE_WORKFLOW':
$canTerminate = CBPDocument::CanUserOperateDocument(
CBPCanUserOperateOperation::StartWorkflow,
$user->GetID(),
$documentId,
["DocumentStates" => $documentStates]
);
$workflowId = $request->getPost('workflow_id');
if (!$canTerminate)
{
$sendError('Access Denied');
}
else
{
CBPDocument::TerminateWorkflow($workflowId, $documentId, $errors);
if (count($errors) > 0)
{
$sendError($errors[0]);
}
else
{
$sendData([
'terminated' => true,
'completedWorkflows' => $getCompletedStates($documentId, 0, [$workflowId]),
'workflows' => $getDocumentStates($documentId),
]);
}
}
break;
case 'SEND_EVENTS':
$canView = CBPDocument::CanUserOperateDocument(
CBPCanUserOperateOperation::ViewWorkflow,
$user->GetID(),
$documentId,
['DocumentStates' => $documentStates]
);
if (!$canView)
{
$sendError('Access Denied');
}
else
{
$errors = [];
$events = $request->getPost('events');
foreach ($events as $workflowId => $event)
{
$errorTmp = [];
CBPDocument::SendExternalEvent(
$workflowId,
$event,
["Groups" => $user->getUserGroupArray(), "User" => $user->getId()],
$errorTmp
);
if (count($errorTmp) > 0)
{
foreach ($errorTmp as $e)
{
$errors[] = $e['message'];
}
}
}
if (count($errors) > 0)
{
$sendError($errors);
}
else
{
$sendData([
'events_sent' => true,
'completedWorkflows' => $getCompletedStates($documentId, 0, array_keys($events)),
'workflows' => $getDocumentStates($documentId),
]);
}
}
break;
case 'GET_WORKFLOWS':
$canView = CBPDocument::CanUserOperateDocument(
CBPCanUserOperateOperation::ViewWorkflow,
$user->GetID(),
$documentId,
["DocumentStates" => $documentStates]
);
if (!$canView)
{
$sendError('Access Denied');
}
else
{
$sendData([
'workflows' => $getDocumentStates($documentId),
]);
}
break;
case 'GET_COMPLETED_WORKFLOWS':
$canView = CBPDocument::CanUserOperateDocument(
CBPCanUserOperateOperation::ViewWorkflow,
$user->GetID(),
$documentId,
["DocumentStates" => $documentStates]
);
if (!$canView)
{
$sendError('Access Denied');
}
else
{
$sendData([
'workflows' => $getCompletedStates($documentId, (int)$request->getPost('offset')),
]);
}
break;
case 'GET_COMPLETED_WORKFLOW':
$id = $request->getPost('workflowId');
$canView = CBPDocument::CanUserOperateDocument(
CBPCanUserOperateOperation::ViewWorkflow,
$user->GetID(),
$documentId,
["DocumentStates" => $documentStates]
);
if (!$canView || !$id)
{
$sendError('Access Denied');
}
else
{
$sendData([
'workflow' => current(
$getCompletedStates($documentId, 0, [$id])
),
]);
}
break;
}
$sendError('Unknown action!');