sa

admin_comments_edit.php

@@ -0,0 +1,107 @@
+<?php 
+
+@ini_set("display_errors","1");
+@ini_set("display_startup_errors","1");
+
+require_once("include/dbcommon.php");
+require_once("classes/searchclause.php");
+require_once("include/admin_comments_variables.php");
+require_once('include/xtempl.php');
+require_once('classes/editpage.php');
+
+add_nocache_headers();
+
+if( Security::hasLogin() ) {
+	if( !EditPage::processEditPageSecurity( $strTableName ) )
+		return;
+}
+
+EditPage::handleBrokenRequest();
+
+//	render all necessary layouts
+
+
+// parse control parameters
+$pageMode = EditPage::readEditModeFromRequest();
+
+$xt = new Xtempl();	
+	
+$id = postvalue_number("id");
+$id = intval($id) == 0 ? 1 : $id;
+
+
+// $keys could not be set properly if editid params were no passed
+$keys = array();
+$keys["CommentID"] = postvalue("editid1");
+
+//array of params for classes
+$params = array();
+$params["id"] = $id;
+$params["xt"] = &$xt;
+$params["keys"] = $keys;
+$params["mode"] = $pageMode;
+$params["pageType"] = PAGE_EDIT;
+$params["pageName"] = postvalue("page");
+$params["tName"] = $strTableName;
+$params["action"] = postvalue("a");
+$params["selectedFields"] = postvalue("fields");
+		
+;
+$params["captchaName"] = "captcha_1209xre";
+$params["captchaValue"] = postvalue("value_captcha_1209xre_" . $id);
+$params["selection"] = postvalue("selection");
+$params["rowIds"] = my_json_decode( postvalue("rowIds") );
+
+$params["masterTable"] = postvalue("mastertable");
+if( $params["masterTable"] )
+	$params["masterKeysReq"] = RunnerPage::readMasterKeysFromRequest();
+
+//	locking parameters
+$params["lockingAction"] = postvalue("action");
+$params["lockingSid"] = postvalue("sid");
+$params["lockingKeys"] = postvalue("keys");
+$params["lockingStart"] = postvalue("startEdit");
+
+if( $pageMode == EDIT_INLINE )
+{
+	$params["screenWidth"] = postvalue("screenWidth");
+	$params["screenHeight"] = postvalue("screenHeight");
+	$params["orientation"] = postvalue("orientation");
+}	
+
+if( $pageMode == EDIT_DASHBOARD ) 
+{
+	$params["dashElementName"] = postvalue("dashelement");
+	$params["dashTName"] = postvalue("table");
+	$params["dashPage"] = postvalue("dashPage");
+	
+	if(	postvalue("mapRefresh") )
+	{
+		$params["mapRefresh"] = true;
+		$params["vpCoordinates"] = my_json_decode( postvalue("vpCoordinates") );
+	}	
+}
+
+if(( $pageMode == EDIT_POPUP || $pageMode == EDIT_INLINE ) && postvalue("dashTName"))
+{
+	$params["dashTName"] = postvalue("dashTName");
+	$params["dashElementName"] = postvalue("dashelement");
+	$params["dashPage"] = postvalue("dashPage");
+}
+
+$params["forSpreadsheetGrid"] = postvalue("spreadsheetGrid");
+$params["hostPageName"] = postvalue("hostPageName");
+$params["listPage"] = postvalue("listPage");
+
+$pageObject = EditPage::EditPageFactory($params);
+
+if( $pageObject->isLockingRequest() )
+{
+	$pageObject->doLockingAction();
+	exit();
+}
+
+$pageObject->init();
+
+$pageObject->process();
+?>

admin_comments_list.php

@@ -0,0 +1,163 @@
+<?php
+@ini_set("display_errors","1");
+@ini_set("display_startup_errors","1");
+
+$requestTable = "admin_comments";
+$requestPage = "list";
+
+require_once("include/dbcommon.php");
+add_nocache_headers();
+
+require_once('include/xtempl.php');
+
+require_once("classes/searchcontrol.php");
+require_once("classes/searchclause.php");
+require_once("classes/panelsearchcontrol.php");
+require_once("include/admin_comments_variables.php");
+require_once('classes/listpage.php');
+require_once('include/lookuplinks.php');
+
+//	Check whether the page was called as a part of Lookup wizard - List page with search.
+//  Verify the eligibility of such a call.
+
+InitLookupLinks();
+if( Security::hasLogin() ) {
+	if( !ListPage::processListPageSecurity( $strTableName ) )
+		return;
+}
+
+if( ListPage::processSaveParams( $strTableName ) )
+	return;
+
+$options = array();
+//array of params for classes
+
+//	Include necessary files in accordance with the page displaying mode
+$mode = ListPage::readListModeFromRequest();
+if( $mode == LIST_SIMPLE )
+{
+	require_once('classes/listpage_simple.php');
+	require_once("classes/searchpanelsimple.php");
+}
+elseif( $mode == LIST_AJAX )
+{
+	require_once('classes/listpage_simple.php');
+	require_once('classes/listpage_ajax.php');
+	require_once("classes/searchpanelsimple.php");
+}
+elseif( $mode == LIST_LOOKUP )
+{	
+	require_once('classes/listpage_embed.php');
+	require_once('classes/listpage_lookup.php');
+	
+	$options["mainTable"] = postvalue("table");
+	$options["mainField"] = postvalue("field");
+	$options["mainPageType"] = postvalue("pageType");
+
+	$options["mainRecordData"] = my_json_decode( postvalue('data') );
+	$options["mainRecordMasterTable"] = postvalue('mainRecordMasterTable');
+	
+	if( postvalue("parentsExist") )
+		$options["parentCtrlsData"] = my_json_decode( postvalue("parentCtrlsData") );
+}
+elseif( $mode == LIST_POPUPDETAILS )
+{	
+	require_once('classes/listpage_embed.php');
+	require_once('classes/listpage_dpinline.php');
+	require_once('classes/listpage_dppopup.php');
+}
+elseif( $mode == LIST_DETAILS )
+{	
+	require_once('classes/listpage_embed.php');
+	require_once('classes/listpage_dpinline.php');
+	require_once('classes/listpage_dplist.php');
+}
+elseif( $mode == LIST_DASHDETAILS )
+{
+	require_once('classes/listpage_embed.php');
+	require_once('classes/listpage_dashboard.php');
+	require_once('classes/listpage_dpdash.php');
+}
+elseif( $mode == LIST_DASHBOARD )
+{
+	require_once('classes/listpage_embed.php');
+	require_once('classes/listpage_dashboard.php');
+}
+elseif( $mode == MAP_DASHBOARD )
+{
+	require_once('classes/listpage_embed.php');
+	require_once('classes/listpage_dashboard.php');
+	require_once('classes/map_dashboard.php');
+} 
+
+$xt = new Xtempl( $mode != LIST_SIMPLE ); //#9607 1. Temporary fix
+
+$options["pageName"] = postvalue("page");
+$options["pageType"] = PAGE_LIST;
+$options["id"] = postvalue_number("id") ? postvalue_number("id") : 1;
+$options["flyId"] = (int)postvalue("recordId");
+$options["mode"] = $mode;
+$options["xt"] = &$xt;
+$options["firstTime"] = postvalue("firstTime");
+$options["sortBy"] = postvalue("sortby");
+$options["requestGoto"] = postvalue_number("goto");
+
+
+$options["masterPageType"] = postvalue("masterpagetype");
+$options["masterPage"] = postvalue("masterpage");
+$options["masterId"] = postvalue("masterid");
+
+$options["masterTable"] = postvalue("mastertable");
+if( $options["masterTable"] )
+	$options["masterKeysReq"] = RunnerPage::readMasterKeysFromRequest();
+
+
+if( $mode == LIST_DASHBOARD && postvalue("nodata") && strlen($options["masterTable"]) )
+	$options["showNoData"] = true;
+
+if( $mode != LIST_LOOKUP )
+{
+	$options["dashElementName"] = postvalue("dashelement");
+	$options["dashTName"] = postvalue("table");
+	$options["dashPage"] = postvalue("dashPage");
+} 
+
+if(	postvalue("mapRefresh") )
+{
+	$options["mapRefresh"] = true;
+	$options["vpCoordinates"] = my_json_decode( postvalue("vpCoordinates") );
+}
+
+if(	postvalue("firstTime") )
+	$options["firstTime"] = true;
+
+//	Create $pageObject
+$pageObject = ListPage::createListPage($strTableName, $options);
+
+if( $pageObject->processSaveSearch() )
+	exit();
+
+if( $pageObject->updateRowOrder() )
+	exit();
+
+if ( $pageObject->processFieldFilter() )
+	exit();
+
+if( $pageObject->processTotals() ) 
+	exit();
+
+if( $mode != LIST_DETAILS && $mode != MAP_DASHBOARD && $mode != LIST_DASHBOARD ) 
+{ 
+	//maps
+}
+
+unset($_SESSION["message_add"]);
+unset($_SESSION["message_edit"]);
+
+// prepare code for build page
+$pageObject->prepareForBuildPage();
+
+// show page depends of mode
+$pageObject->showPage();
+
+?>

admin_comments_search.php

@@ -0,0 +1,95 @@
+<?php 
+@ini_set("display_errors","1");
+@ini_set("display_startup_errors","1");
+
+require_once("include/dbcommon.php");
+add_nocache_headers();
+
+require_once("classes/searchclause.php");
+require_once("include/admin_comments_variables.php");
+require_once("classes/searchcontrol.php");
+require_once("classes/advancedsearchcontrol.php");
+require_once("classes/panelsearchcontrol.php");
+
+
+Security::processLogoutRequest();
+
+if( !isLogged() )
+{ 
+	Security::saveRedirectURL();
+	redirectToLogin();
+}
+
+require_once( "include/reportfunctions.php" );
+$cname = postvalue("cname");
+$rname = postvalue("rname");
+if( $rname || $cname ) {
+	$rpt_array = wrGetEntityArray( 
+		$rname ? $rname : $cname, 
+		$rname ? WR_REPORT : WR_CHART
+	);
+	$accessGranted = @$rpt_array['status'] != "private" || @$rpt_array['owner'] != Security::getUserName();
+} else {
+	$accessGranted = CheckTablePermissions( $strTableName, "S" );
+}
+if(!$accessGranted)
+{
+	HeaderRedirect("menu");
+}
+
+
+require_once('include/xtempl.php');
+require_once('classes/searchpage.php');
+require_once('classes/searchpage_dash.php');
+
+$xt = new Xtempl();	
+$pageMode = SearchPage::readSearchModeFromRequest();
+
+if( $pageMode == SEARCH_LOAD_CONTROL )
+	$layoutVersion = postvalue("layoutVersion");
+
+
+$params = array();
+$params['xt'] = &$xt;
+$params['id'] = postvalue_number("id");
+$params['mode'] = $pageMode;
+$params['tName'] = $strTableName;
+$params["pageName"] = postvalue("page");
+$params['pageType'] = PAGE_SEARCH;
+$params['chartName'] = $cname;
+$params['reportName'] = $rname;
+$params['templatefile'] = $templatefile;
+$params['shortTableName'] = 'admin_comments';
+$params['layoutVersion'] = $layoutVersion;
+
+$params['searchControllerId'] = postvalue('searchControllerId') ? postvalue('searchControllerId') : $id;
+$params['ctrlField'] = postvalue('ctrlField');
+
+$params['needSettings'] = postvalue('isNeedSettings');
+
+if( $pageMode == SEARCH_DASHBOARD )
+{
+	$params["dashTName"] = postvalue("table");
+	$params["dashElementName"] = postvalue("dashelement");
+	$params["dashPage"] = postvalue("dashPage");
+}
+
+// e.g. crosstable params
+$params["extraPageParams"] = SearchPage::getExtraPageParams();
+
+$params["masterTable"] = postvalue("mastertable");
+if( $params["masterTable"] )
+	$params["masterKeysReq"] = RunnerPage::readMasterKeysFromRequest();
+
+
+$pageObject = new SearchPage($params);
+
+if( $pageMode == SEARCH_LOAD_CONTROL )
+{
+	$pageObject->displaySearchControl();
+	return;
+}
+
+$pageObject->init();
+$pageObject->process();
+?>

api/api.php

@@ -0,0 +1,148 @@
+<?php
+
+class API {
+	public static function sendError( $text, $responseCode = 500 ) {
+		API::sendResponse( false, array(
+			"error" => $text
+		), $responseCode );
+	}
+
+	public static function sendResponse( $success, $data, $responseCode = 0 ) {
+		if( !$responseCode ) {
+			$responseCode = $success ? 200 : 500;
+		}
+		http_response_code( $responseCode );
+		$data["success"] = $success;
+		echo my_json_encode( $data );
+		exit();
+	}
+
+	//	read one record from the result
+	public static function readRecord( $result, $pSet ) {
+		$data = $result->fetchAssoc();
+		if( !$data ) {
+			return null;
+		}
+		foreach( array_keys( $data ) as $f ) {
+			if( IsBinaryType( $pSet->getFieldType( $f ) ) && GetGlobalData("restReturnEncodedBinary") ) {
+				$data[ $f ] = base64_encode( $data[ $f ] );
+			}
+		}
+		return $data;
+	}
+
+	//	read result into array of records
+	public static function readResult( $result, $pSet, $recordLimit = 0 ) {
+		$ret = array();
+		while( ( !$recordLimit || count( $ret ) < $recordLimit  ) && ( $data = API::readRecord( $result, $pSet ) ) ) {
+			$ret[] = $data;
+		}
+		return $ret;
+	}
+
+	public static function login() {
+		if( !Security::hasLogin() ) {
+			return true;
+		}
+		$authType = GetGlobalData("restAuth");
+		if( $authType == REST_BASIC ) {
+			//	Authorization: Basic <base64_encode(username:password)>
+			$username = "";
+			$password = "";
+						$username = $_SERVER["PHP_AUTH_USER"];
+			$password = $_SERVER["PHP_AUTH_PW"];
+			if( !$username ) {
+				$loginHeader = getHttpHeader('Authorization') . "";
+				if( substr( $loginHeader, 0, 6 ) !== 'Basic ' ) {
+					header( 'WWW-Authenticate: Basic realm="REST API"');
+					return false;
+				}
+				$token = base64_decode( substr( $loginHeader, 6) );
+				$colonPos = strpos( $token, ':' );
+				if( $colonPos === false ) {
+					return false;
+				}
+				$username = substr( $token, 0, $colonPos );
+				$password = substr( $token, $colonPos + 1 );
+			}
+			return Security::login( $username, $password, false, true );
+		}
+
+		if ( $authType == REST_APIKEY ) {
+			$APIkey = "";
+			if( isset( $_SERVER["HTTP_X_AUTH_TOKEN"] ) )
+				$APIkey = $_SERVER["HTTP_X_AUTH_TOKEN"];
+			else
+				$APIkey = postvalue("apikey");
+
+			if( !strlen( $APIkey ) )
+				return false;
+
+			if( Security::hardcodedLogin() ) {
+				if( GetGlobalData("APIkey", "") == $APIkey ) {
+					Security::createHardcodedSession();
+					return true;
+				}
+				return false;
+			}
+
+			$dataSource = getLoginDataSource();
+
+			$dc = new DsCommand();
+			$dc->filter = DataCondition::FieldEquals( GetGlobalData("APIkeyField"), $APIkey );
+			$rs = $dataSource->getSingle( $dc );
+			if( !$rs )
+				return false;
+
+			$loginSet = ProjectSettings::getForLogin();
+			$cipherer = RunnerCipherer::getForLogin( $loginSet );
+			$userData = $cipherer->DecryptFetchedArray( $rs->fetchAssoc() );
+
+			return Security::login( $userData[ Security::usernameField() ], $userData[ Security::passwordField() ], true, true );
+		}
+
+		return false;
+	}
+
+	public static function keysFromRequest( $pSet ) {
+		$keys = array();
+		foreach( $pSet->getTableKeys() as $i => $k ) {
+			$keys[ $k ] = postvalue( "editid" . ( $i + 1 ) );
+		}
+		return $keys;
+	}
+
+	public static function valuesFromRequest( $pSet ) {
+		$values = array();
+		foreach( $pSet->getFieldsList() as $f ) {
+			if( postvalue( $f ) || GetUploadedFileName( $f ) ) {
+				$values[ $f ] = API::processRequestValue( $f, postvalue( $f ), $pSet );
+			}
+		}
+		
+		return $values;
+	}
+
+	protected static function processRequestValue( $fieldName, $value, $pSet ) {
+		if( IsBinaryType( $pSet->getFieldType( $fieldName ) ) ) {
+			if( $value && GetGlobalData("restAcceptEncodedBinary") ) {
+				$decodedValue = base64_decode_binary( $value );
+
+				// invalid base64 value passed
+				if( !$decodedValue ) {
+					API::sendError( "Unable to decode " .  $fieldName . " value from base64" );
+				}
+
+				return $decodedValue;
+			}
+
+			// data passed as file
+			if( GetUploadedFileName( $fieldName ) ) {
+				return GetUploadedFileContents( $fieldName );
+			}
+		}
+
+		return $value;
+	}
+}
+?>

api/v1.php

@@ -0,0 +1,278 @@
+<?php
+@ini_set("display_errors","1");
+$restApiCall = true;
+
+require_once("../include/dbcommon.php");
+add_nocache_headers();
+
+storeJSONDataFromRequest();
+
+require_once(getabspath( "api/api.php"));
+
+if( !GetGlobalData("restCreate") ) {
+	return;
+}
+
+header("Content-Type: application/json");
+
+if( !API::login() ) {
+	API::sendError( 'Access denied', 401 );
+}
+
+//	dont' remember anything
+session_destroy();
+
+$table = findTable( postvalue("table") );
+if( !$table ) {
+	API::sendError( 'Unknown table name', 403 );
+}
+
+$pSet = new ProjectSettings( $table );
+$eventsObject = &getEventObject( $table );
+$cipherer = new RunnerCipherer( $table, $pSet );
+
+$action = postvalue("action");
+
+if( $action === "list" ) {
+	if( !$pSet->pageTypeAvailable("list") ) {
+		API::sendError( "operation not supported" );
+	}
+	if( !Security::userCan( "S", $table ) ) {
+		API::sendError( "operation not allowed" );
+	}
+	$dataSource = getDataSource( $table, $pSet );
+	$srchObj = SearchClause::getSearchObject( $table );
+
+	$dc = new DsCommand();
+	$dc->filter = DataCondition::_And( array(
+		Security::SelectCondition( "S", $pSet ),
+		$srchObj->getSearchDataCondition()
+	));
+
+	$order = postvalue("orderby");
+	if( $order ) {
+		$orderFields = explode( ";", $order );
+		$projectFields = $pSet->getFieldsList();
+		$dc->order[] = array();
+
+		foreach( $orderFields as $f ) {
+			$dir = substr( $f, 0, 1 ) == "d" ? "desc": "asc";
+			$field = trim( substr( $f, 1 ) );
+			if( in_array( $field, $projectFields ) ) {
+				$dc->order[] = array("column" => $field, "dir" => $dir);
+			}
+		}
+	}
+
+	if( postvalue( "skip" ) ) {
+		$dc->startRecord = (int)postvalue( "skip" );
+	}
+	if( postvalue( "records" ) ) {
+		$dc->reccount = (int)postvalue( "records" );
+	} else {
+		$dc->reccount = 200;
+	}
+	$rs = $dataSource->getList( $dc );
+	if( !$rs ) {
+		API::sendError( $dataSource->lastError() );
+	}
+	API::sendResponse( true, array("data" => API::readResult( $rs, $pSet, $dc->reccount ) ) );
+}
+
+if( $action === "view" ) {
+	if( !$pSet->pageTypeAvailable("view") ) {
+		API::sendError( "operation not supported" );
+	}
+	if( !Security::userCan( "S", $table ) ) {
+		API::sendError( "operation not allowed" );
+	}
+	$dataSource = getDataSource( $table, $pSet );
+	$dc = new DsCommand();
+	$dc->keys = API::keysFromRequest( $pSet );
+	$dc->filter = Security::SelectCondition( "S", $pSet );
+	$rs = $dataSource->getSingle( $dc );
+	if( !$rs ) {
+		API::sendError( $dataSource->lastError() );
+	}
+	API::sendResponse( true, array("data" => API::readRecord( $rs, $pSet ) ) );
+}
+
+if( $action === "update" ) {
+	if( !$pSet->pageTypeAvailable("edit") ) {
+		API::sendError( "operation not supported" );
+	}
+	if( !Security::userCan( "E", $table ) ) {
+		API::sendError( "operation not allowed" );
+	}
+
+	$dataSource = getDataSource( $table, $pSet );
+
+	$oldKeys = API::keysFromRequest( $pSet );
+	$newRecordData = API::valuesFromRequest( $pSet );
+
+	$oldRecordData = null;
+	if( $eventsObject->exists("BeforeEdit") || $eventsObject->exists("AfterEdit") ) {
+		$dc = new DsCommand();
+		$dc->filter = Security::SelectCondition( "E", $pSet );
+		$dc->keys = $oldKeys;
+		$fetchedArray = $dataSource->getSingle( $dc )->fetchAssoc();
+		$oldRecordData = $cipherer->DecryptFetchedArray( $fetchedArray );
+	}
+
+	$sqlValues = array();
+	if( $eventsObject->exists("BeforeEdit") ) {
+		$usermessage = "";
+		$keyWhereClause = KeyWhere( $oldKeys, $table );
+		$pageObj = null;
+
+		$beforeEdit = $eventsObject->BeforeEdit( $newRecordData,
+			$sqlValues,
+			$keyWhereClause,
+			$oldRecordData,
+			$oldKeys,
+			$usermessage,
+			false,
+			$pageObj );
+
+		if( !$beforeEdit ) {
+			API::sendResponse( false, array( "success" => false, "error" => $usermessage ) );
+		}
+	}
+
+	$dc = new DsCommand();
+	$dc->keys = $oldKeys;
+	$dc->filter = Security::SelectCondition( "E", $pSet );
+	$dc->values = $newRecordData;
+	
+	$dc->advValues = array();
+	foreach( $sqlValues as $field => $sqlValue ) {
+		$dc->advValues[ $field ] =  new DsOperand( dsotSQL, $sqlValue );
+	}
+	
+	$ret = $dataSource->updateSingle( $dc );
+
+	if( $ret && $eventsObject->exists("AfterEdit") ) {
+		$keys = $oldKeys;
+		foreach( $newRecordData as $f => $v ) {
+			if( isset( $keys[ $f ] ) ) {
+				$keys[ $f ] = $v;
+			}
+		}
+
+		$keyWhereClause = KeyWhere( $keys, $table );
+		$pageObj = null;
+
+		$eventsObject->AfterEdit( $newRecordData,
+			$keyWhereClause,
+			$oldRecordData,
+			$keys,
+			false,
+			$pageObj );
+	}
+
+	if( $ret ) {
+		API::sendResponse( true, array( "success" => true ) );
+	} else {
+		API::sendResponse( false, array( "success" => false, "error" => $dataSource->lastError() ) );
+	}
+	API::sendResponse( $ret["success"], $ret );
+}
+
+if( $action === "insert" ) {
+	if( !$pSet->pageTypeAvailable("add") ) {
+		API::sendError( "operation not supported" );
+	}
+
+	if( !Security::userCan( "A", $table ) ) {
+		API::sendError( "operation not allowed" );
+	}
+
+	$newRecordData = API::valuesFromRequest( $pSet );
+
+	$sqlValues = array();
+	if( $eventsObject->exists("BeforeAdd") ) {
+		$usermessage = "";
+		$pageObj = null;
+
+		if( !$eventsObject->BeforeAdd( $newRecordData, $sqlValues, $usermessage, false, $pageObj ) ) {
+			API::sendResponse( false, array( "success" => false, "error" => $usermessage ) );
+		}
+	}
+
+	$dataSource = getDataSource( $table, $pSet );
+	$dc = new DsCommand();
+	$dc->values = $newRecordData;
+	
+	$dc->advValues = array();
+	foreach( $sqlValues as $field => $sqlValue ) {
+		$dc->advValues[ $field ] =  new DsOperand( dsotSQL, $sqlValue );
+	}	
+	
+	$ret = $dataSource->insertSingle( $dc );
+
+	if( $ret && $eventsObject->exists("AfterAdd") ) {
+		$pageObj = null;
+		$newRecordData = $ret;
+		$keys = array();
+		foreach( $pSet->getTableKeys() as $kf ) {
+			$keys[ $kf ] = $newRecordData[ $kf ];
+		}
+
+		$eventsObject->AfterAdd( $newRecordData, $keys, false, $pageObj );
+	}
+
+	if( $ret !== false ) {
+		API::sendResponse( true, array( "success" => true, "data" => $ret ) );
+	} else {
+		API::sendResponse( false, array( "success" => false, "error" => $dataSource->lastError() ) );
+	}
+}
+
+if( $action === "delete" ) {
+	if( !$pSet->pageTypeAvailable("list") ) {
+		API::sendError( "operation not supported" );
+	}
+	if( !Security::userCan( "D", $table ) ) {
+		API::sendError( "operation not allowed" );
+	}
+
+	$dataSource = getDataSource( $table, $pSet );
+	$dc = new DsCommand();
+	$dc->keys = API::keysFromRequest( $pSet );
+	$dc->filter = Security::SelectCondition( "D", $pSet );
+
+	$whereClause = "";
+	$deletedValues = array();
+	if( $eventsObject->exists("BeforeDelete") || $eventsObject->exists("AfterDelete") ) {
+		$deletedResult = $dataSource->getSingle( $dc );
+		if( $deletedResult )
+			$deletedValues = $cipherer->DecryptFetchedArray( $deletedResult->fetchAssoc() );
+
+		$whereClause = KeyWhere( $dc->keys, $table );
+	}
+
+	if( $eventsObject->exists("BeforeDelete") ) {
+		$userMessage = "";
+		$pageObj = null;
+		if( !$eventsObject->BeforeDelete( $whereClause, $deletedValues, $userMessage, $pageObj ) ) {
+			API::sendResponse( false, array( "success" => false, "error" => $userMessage ) );
+		}
+	}
+
+	$ret = $dataSource->deleteSingle( $dc );
+
+	if( $ret && $eventsObject->exists("AfterDelete") ) {
+		$userMessage = "";
+		$pageObj = null;
+		$eventsObject->AfterDelete( $whereClause, $deletedValues, $userMessage, $pageObj );
+	}
+
+	if( $ret ) {
+		API::sendResponse( true, array( "success" => true ) );
+	} else {
+		API::sendResponse( false, array( "success" => false, "error" => $dataSource->lastError() ) );
+	}
+}
+
+API::sendError( "unknown operation" );
+

appointments_add.php

@@ -0,0 +1,108 @@
+<?php 
+@ini_set("display_errors","1");
+
+require_once("include/dbcommon.php");
+require_once("classes/searchclause.php");
+require_once("include/appointments_variables.php");
+require_once('include/xtempl.php');
+require_once('classes/addpage.php');
+require_once('include/lookuplinks.php');
+
+add_nocache_headers();
+
+InitLookupLinks();
+
+if( Security::hasLogin() ) {
+	if( !AddPage::processAddPageSecurity( $strTableName ) )
+		return;
+}
+
+AddPage::handleBrokenRequest();
+
+
+$pageMode = AddPage::readAddModeFromRequest();
+
+$xt = new Xtempl();
+
+$id = postvalue_number("id");
+$id = $id ? $id : 1;
+	 	
+//an array of AddPage constructor's params 
+$params = array();
+$params["id"] = $id;
+$params["xt"] = &$xt;
+$params["mode"] = $pageMode;
+$params["pageType"] = PAGE_ADD;
+$params["tName"] = $strTableName;
+$params["pageName"] = postvalue("page");
+$params["action"] = postvalue("a");
+$params["needSearchClauseObj"] = false;
+$params["afterAdd_id"] = postvalue("afteradd");
+
+$params["hostPageName"] = postvalue("hostPageName");
+$params["listPage"] = postvalue("listPage");
+
+$params["newRowId"] = postvalue("newRowId");
+
+$params["masterTable"] = postvalue("mastertable");
+if( $params["masterTable"] )
+	$params["masterKeysReq"] = RunnerPage::readMasterKeysFromRequest();
+
+
+		
+;
+$params["captchaName"] = "captcha_1209xre";
+$params["captchaValue"] = postvalue("value_captcha_1209xre_" . $id);
+$params["dashElementName"] = postvalue("dashelement");
+$params["fromDashboard"] = postvalue("fromDashboard");
+$params["dashTName"] = $params["fromDashboard"] ? $params["fromDashboard"] : postvalue("dashTName");
+$params["dashPage"] = postvalue("dashPage");
+
+$params["forSpreadsheetGrid"] = postvalue("spreadsheetGrid");
+
+if ( $pageMode == ADD_POPUP ) {
+	$params["forListPageLookup"] = postvalue('forLookup');
+}
+
+if( $pageMode == ADD_DASHBOARD ) 
+{
+	$params["dashElementName"] = postvalue("dashelement");
+	$params["dashTName"] = postvalue("table");
+	$params["dashPage"] = postvalue("dashPage");
+}
+
+
+if( $pageMode == ADD_INLINE )
+{
+	// Inline add in a 'List page with search' lookup
+	$params["forListPageLookup"] = postvalue('forLookup');
+	
+	$params["screenWidth"] = postvalue("screenWidth");
+	$params["screenHeight"] = postvalue("screenHeight");
+	$params["orientation"] = postvalue("orientation");
+	
+	$params["masterPageType"] = postvalue("masterpagetype");
+}	
+
+
+if( $pageMode == ADD_ONTHEFLY || ( $pageMode == ADD_INLINE || $pageMode == ADD_POPUP ) && postvalue('forLookup') )	
+{
+	//table where lookup is set
+	$params["lookupTable"] = postvalue("table");
+	//field with lookup is set	
+	$params["lookupField"] = postvalue("field");
+	 //the ptype od the page where lookup is set
+	$params["lookupPageType"] = postvalue("pageType");
+	
+	if( postvalue('parentsExist') )
+	{
+		//the parent controls values data
+		$params["parentCtrlsData"] = my_json_decode( postvalue("parentCtrlsData") );		
+	}		
+}
+
+$pageObject = new AddPage($params);
+$pageObject->init();
+
+$pageObject->process();	
+?>

appointments_edit.php

@@ -0,0 +1,107 @@
+<?php 
+
+@ini_set("display_errors","1");
+@ini_set("display_startup_errors","1");
+
+require_once("include/dbcommon.php");
+require_once("classes/searchclause.php");
+require_once("include/appointments_variables.php");
+require_once('include/xtempl.php');
+require_once('classes/editpage.php');
+
+add_nocache_headers();
+
+if( Security::hasLogin() ) {
+	if( !EditPage::processEditPageSecurity( $strTableName ) )
+		return;
+}
+
+EditPage::handleBrokenRequest();
+
+//	render all necessary layouts
+
+
+// parse control parameters
+$pageMode = EditPage::readEditModeFromRequest();
+
+$xt = new Xtempl();	
+	
+$id = postvalue_number("id");
+$id = intval($id) == 0 ? 1 : $id;
+
+
+// $keys could not be set properly if editid params were no passed
+$keys = array();
+$keys["id"] = postvalue("editid1");
+
+//array of params for classes
+$params = array();
+$params["id"] = $id;
+$params["xt"] = &$xt;
+$params["keys"] = $keys;
+$params["mode"] = $pageMode;
+$params["pageType"] = PAGE_EDIT;
+$params["pageName"] = postvalue("page");
+$params["tName"] = $strTableName;
+$params["action"] = postvalue("a");
+$params["selectedFields"] = postvalue("fields");
+		
+;
+$params["captchaName"] = "captcha_1209xre";
+$params["captchaValue"] = postvalue("value_captcha_1209xre_" . $id);
+$params["selection"] = postvalue("selection");
+$params["rowIds"] = my_json_decode( postvalue("rowIds") );
+
+$params["masterTable"] = postvalue("mastertable");
+if( $params["masterTable"] )
+	$params["masterKeysReq"] = RunnerPage::readMasterKeysFromRequest();
+
+//	locking parameters
+$params["lockingAction"] = postvalue("action");
+$params["lockingSid"] = postvalue("sid");
+$params["lockingKeys"] = postvalue("keys");
+$params["lockingStart"] = postvalue("startEdit");
+
+if( $pageMode == EDIT_INLINE )
+{
+	$params["screenWidth"] = postvalue("screenWidth");
+	$params["screenHeight"] = postvalue("screenHeight");
+	$params["orientation"] = postvalue("orientation");
+}	
+
+if( $pageMode == EDIT_DASHBOARD ) 
+{
+	$params["dashElementName"] = postvalue("dashelement");
+	$params["dashTName"] = postvalue("table");
+	$params["dashPage"] = postvalue("dashPage");
+	
+	if(	postvalue("mapRefresh") )
+	{
+		$params["mapRefresh"] = true;
+		$params["vpCoordinates"] = my_json_decode( postvalue("vpCoordinates") );
+	}	
+}
+
+if(( $pageMode == EDIT_POPUP || $pageMode == EDIT_INLINE ) && postvalue("dashTName"))
+{
+	$params["dashTName"] = postvalue("dashTName");
+	$params["dashElementName"] = postvalue("dashelement");
+	$params["dashPage"] = postvalue("dashPage");
+}
+
+$params["forSpreadsheetGrid"] = postvalue("spreadsheetGrid");
+$params["hostPageName"] = postvalue("hostPageName");
+$params["listPage"] = postvalue("listPage");
+
+$pageObject = EditPage::EditPageFactory($params);
+
+if( $pageObject->isLockingRequest() )
+{
+	$pageObject->doLockingAction();
+	exit();
+}
+
+$pageObject->init();
+
+$pageObject->process();
+?>

appointments_export.php

@@ -0,0 +1,53 @@
+<?php 
+@ini_set("display_errors","1");
+@ini_set("display_startup_errors","1");
+require_once("include/dbcommon.php");
+header("Expires: Thu, 01 Jan 1970 00:00:01 GMT"); 
+
+require_once("classes/searchclause.php");
+require_once("classes/sql.php");
+
+require_once("include/appointments_variables.php");
+
+if( Security::hasLogin() ) {
+	if( !Security::processPageSecurity( $strtablename, 'P' ) )
+		return;
+}
+
+
+require_once("include/export_functions.php");
+require_once("classes/exportpage.php");
+require_once("include/xtempl.php");
+
+$xt = new Xtempl();
+
+//array of params for classes
+$params = array();
+$params["id"] = postvalue_number("id");
+$params["xt"] = &$xt;
+$params["tName"] = $strTableName;
+$params["pageType"] = PAGE_EXPORT;
+$params["pageName"] = postvalue("page");
+
+$params["selectedFields"] = postvalue("exportFields");
+$params["exportType"] = postvalue("type");
+
+$params["allPagesMode"] = postvalue("records") == "all";
+$params["currentPageMode"] = postvalue("records") == "page";
+$params["selection"] = postvalue("selection"); 
+$params["csvDelimiter"] = postvalue("delimiter"); 
+
+if( postvalue("txtformatting") == "raw" )
+	$params["useRawValues"] = true;
+
+$params["mode"] = ExportPage::readModeFromRequest();
+
+$params["masterTable"] = postvalue("mastertable");
+if( $params["masterTable"] )
+	$params["masterKeysReq"] = RunnerPage::readMasterKeysFromRequest();
+	
+$pageObject = new ExportPage( $params );
+$pageObject->init();
+
+$pageObject->process();
+?>

appointments_import.php

@@ -0,0 +1,53 @@
+<?php
+@ini_set("display_errors","1");
+@ini_set("display_startup_errors","1");
+require_once("include/dbcommon.php");
+header("Expires: Thu, 01 Jan 1970 00:00:01 GMT"); 
+
+set_time_limit(600);
+
+require_once("include/appointments_variables.php");
+require_once("include/import_functions.php");
+require_once('classes/importpage.php');
+
+if( Security::hasLogin() ) {
+	if( !Security::processPageSecurity( $strtablename, 'I' ) )
+		return;
+}
+
+
+require_once('include/xtempl.php');
+$xt = new Xtempl();
+
+//an array of params for ImportPage constructor
+$params = array();
+$params["id"] = postvalue_number("id");
+$params["xt"] = &$xt;
+$params["tName"] = $strTableName;
+$params["action"] = postvalue("a");
+$params["pageType"] = PAGE_IMPORT;
+$params["pageName"] = postvalue("page");
+$params["needSearchClauseObj"] = false;
+$params["strOriginalTableName"] = $strOriginalTableName;
+
+if( $params["action"] == "importPreview" )
+{
+	$params["importType"] = postvalue("importType");
+	$params["importText"] = postvalue("importText");
+	$params["useXHR"] = postvalue("useXHR");
+} 
+elseif( $params["action"] == "importData" )
+{
+	$params["importData"] = my_json_decode( postvalue("importData") );
+}
+
+$params["masterTable"] = postvalue("mastertable");
+if( $params["masterTable"] )
+	$params["masterKeysReq"] = RunnerPage::readMasterKeysFromRequest();
+
+$pageObject = new ImportPage($params);
+$pageObject->init();
+
+$pageObject->process();	
+
+?>

appointments_list.php

@@ -0,0 +1,163 @@
+<?php
+@ini_set("display_errors","1");
+@ini_set("display_startup_errors","1");
+
+$requestTable = "public.appointments";
+$requestPage = "list";
+
+require_once("include/dbcommon.php");
+add_nocache_headers();
+
+require_once('include/xtempl.php');
+
+require_once("classes/searchcontrol.php");
+require_once("classes/searchclause.php");
+require_once("classes/panelsearchcontrol.php");
+require_once("include/appointments_variables.php");
+require_once('classes/listpage.php');
+require_once('include/lookuplinks.php');
+
+//	Check whether the page was called as a part of Lookup wizard - List page with search.
+//  Verify the eligibility of such a call.
+
+InitLookupLinks();
+if( Security::hasLogin() ) {
+	if( !ListPage::processListPageSecurity( $strTableName ) )
+		return;
+}
+
+if( ListPage::processSaveParams( $strTableName ) )
+	return;
+
+$options = array();
+//array of params for classes
+
+//	Include necessary files in accordance with the page displaying mode
+$mode = ListPage::readListModeFromRequest();
+if( $mode == LIST_SIMPLE )
+{
+	require_once('classes/listpage_simple.php');
+	require_once("classes/searchpanelsimple.php");
+}
+elseif( $mode == LIST_AJAX )
+{
+	require_once('classes/listpage_simple.php');
+	require_once('classes/listpage_ajax.php');
+	require_once("classes/searchpanelsimple.php");
+}
+elseif( $mode == LIST_LOOKUP )
+{	
+	require_once('classes/listpage_embed.php');
+	require_once('classes/listpage_lookup.php');
+	
+	$options["mainTable"] = postvalue("table");
+	$options["mainField"] = postvalue("field");
+	$options["mainPageType"] = postvalue("pageType");
+
+	$options["mainRecordData"] = my_json_decode( postvalue('data') );
+	$options["mainRecordMasterTable"] = postvalue('mainRecordMasterTable');
+	
+	if( postvalue("parentsExist") )
+		$options["parentCtrlsData"] = my_json_decode( postvalue("parentCtrlsData") );
+}
+elseif( $mode == LIST_POPUPDETAILS )
+{	
+	require_once('classes/listpage_embed.php');
+	require_once('classes/listpage_dpinline.php');
+	require_once('classes/listpage_dppopup.php');
+}
+elseif( $mode == LIST_DETAILS )
+{	
+	require_once('classes/listpage_embed.php');
+	require_once('classes/listpage_dpinline.php');
+	require_once('classes/listpage_dplist.php');
+}
+elseif( $mode == LIST_DASHDETAILS )
+{
+	require_once('classes/listpage_embed.php');
+	require_once('classes/listpage_dashboard.php');
+	require_once('classes/listpage_dpdash.php');
+}
+elseif( $mode == LIST_DASHBOARD )
+{
+	require_once('classes/listpage_embed.php');
+	require_once('classes/listpage_dashboard.php');
+}
+elseif( $mode == MAP_DASHBOARD )
+{
+	require_once('classes/listpage_embed.php');
+	require_once('classes/listpage_dashboard.php');
+	require_once('classes/map_dashboard.php');
+} 
+
+$xt = new Xtempl( $mode != LIST_SIMPLE ); //#9607 1. Temporary fix
+
+$options["pageName"] = postvalue("page");
+$options["pageType"] = PAGE_LIST;
+$options["id"] = postvalue_number("id") ? postvalue_number("id") : 1;
+$options["flyId"] = (int)postvalue("recordId");
+$options["mode"] = $mode;
+$options["xt"] = &$xt;
+$options["firstTime"] = postvalue("firstTime");
+$options["sortBy"] = postvalue("sortby");
+$options["requestGoto"] = postvalue_number("goto");
+
+
+$options["masterPageType"] = postvalue("masterpagetype");
+$options["masterPage"] = postvalue("masterpage");
+$options["masterId"] = postvalue("masterid");
+
+$options["masterTable"] = postvalue("mastertable");
+if( $options["masterTable"] )
+	$options["masterKeysReq"] = RunnerPage::readMasterKeysFromRequest();
+
+
+if( $mode == LIST_DASHBOARD && postvalue("nodata") && strlen($options["masterTable"]) )
+	$options["showNoData"] = true;
+
+if( $mode != LIST_LOOKUP )
+{
+	$options["dashElementName"] = postvalue("dashelement");
+	$options["dashTName"] = postvalue("table");
+	$options["dashPage"] = postvalue("dashPage");
+} 
+
+if(	postvalue("mapRefresh") )
+{
+	$options["mapRefresh"] = true;
+	$options["vpCoordinates"] = my_json_decode( postvalue("vpCoordinates") );
+}
+
+if(	postvalue("firstTime") )
+	$options["firstTime"] = true;
+
+//	Create $pageObject
+$pageObject = ListPage::createListPage($strTableName, $options);
+
+if( $pageObject->processSaveSearch() )
+	exit();
+
+if( $pageObject->updateRowOrder() )
+	exit();
+
+if ( $pageObject->processFieldFilter() )
+	exit();
+
+if( $pageObject->processTotals() ) 
+	exit();
+
+if( $mode != LIST_DETAILS && $mode != MAP_DASHBOARD && $mode != LIST_DASHBOARD ) 
+{ 
+	//maps
+}
+
+unset($_SESSION["message_add"]);
+unset($_SESSION["message_edit"]);
+
+// prepare code for build page
+$pageObject->prepareForBuildPage();
+
+// show page depends of mode
+$pageObject->showPage();
+
+?>

appointments_print.php

@@ -0,0 +1,46 @@
+<?php
+@ini_set("display_errors","1");
+@ini_set("display_startup_errors","1");
+
+require_once("include/dbcommon.php");
+require_once("classes/searchclause.php");
+require_once('include/xtempl.php');
+require_once('classes/printpage.php');
+require_once('classes/printpage_details.php');
+require_once('classes/reportpage.php');
+require_once('classes/reportprintpage.php');
+
+add_nocache_headers();
+
+require_once("include/appointments_variables.php");
+
+if( Security::hasLogin() ) {
+	if( !Security::processPageSecurity( $strtablename, 'P' ) )
+	return;
+}
+
+
+$xt = new Xtempl();
+
+//array of params for classes
+$params = array();
+$params["id"] = postvalue_number("id");
+$params["xt"] = &$xt;
+$params["pageType"] = PAGE_PRINT;
+$params["pageName"] = postvalue("page");
+$params["tName"] = $strTableName;
+$params["selection"] = postvalue("selection"); //PrintPage::readSelectedRecordsFromRequest( "public.appointments" );
+$params["allPagesMode"] = postvalue("all");
+$params["detailTables"] = postvalue("details");
+$params["splitByRecords"] = postvalue("records");
+$params["mode"] = postvalue( "pdfjson" ) ? PRINT_PDFJSON : PRINT_SIMPLE;
+$params["pdfBackgroundImage"] = postvalue("pdfBackgroundImage");
+
+$params["masterTable"] = postvalue("mastertable");
+if( $params["masterTable"] )
+	$params["masterKeysReq"] = RunnerPage::readMasterKeysFromRequest();
+
+$pageObject = new PrintPage($params);
+$pageObject->init();
+$pageObject->process();
+?>

appointments_search.php

@@ -0,0 +1,95 @@
+<?php 
+@ini_set("display_errors","1");
+@ini_set("display_startup_errors","1");
+
+require_once("include/dbcommon.php");
+add_nocache_headers();
+
+require_once("classes/searchclause.php");
+require_once("include/appointments_variables.php");
+require_once("classes/searchcontrol.php");
+require_once("classes/advancedsearchcontrol.php");
+require_once("classes/panelsearchcontrol.php");
+
+
+Security::processLogoutRequest();
+
+if( !isLogged() )
+{ 
+	Security::saveRedirectURL();
+	redirectToLogin();
+}
+
+require_once( "include/reportfunctions.php" );
+$cname = postvalue("cname");
+$rname = postvalue("rname");
+if( $rname || $cname ) {
+	$rpt_array = wrGetEntityArray( 
+		$rname ? $rname : $cname, 
+		$rname ? WR_REPORT : WR_CHART
+	);
+	$accessGranted = @$rpt_array['status'] != "private" || @$rpt_array['owner'] != Security::getUserName();
+} else {
+	$accessGranted = CheckTablePermissions( $strTableName, "S" );
+}
+if(!$accessGranted)
+{
+	HeaderRedirect("menu");
+}
+
+
+require_once('include/xtempl.php');
+require_once('classes/searchpage.php');
+require_once('classes/searchpage_dash.php');
+
+$xt = new Xtempl();	
+$pageMode = SearchPage::readSearchModeFromRequest();
+
+if( $pageMode == SEARCH_LOAD_CONTROL )
+	$layoutVersion = postvalue("layoutVersion");
+
+
+$params = array();
+$params['xt'] = &$xt;
+$params['id'] = postvalue_number("id");
+$params['mode'] = $pageMode;
+$params['tName'] = $strTableName;
+$params["pageName"] = postvalue("page");
+$params['pageType'] = PAGE_SEARCH;
+$params['chartName'] = $cname;
+$params['reportName'] = $rname;
+$params['templatefile'] = $templatefile;
+$params['shortTableName'] = 'appointments';
+$params['layoutVersion'] = $layoutVersion;
+
+$params['searchControllerId'] = postvalue('searchControllerId') ? postvalue('searchControllerId') : $id;
+$params['ctrlField'] = postvalue('ctrlField');
+
+$params['needSettings'] = postvalue('isNeedSettings');
+
+if( $pageMode == SEARCH_DASHBOARD )
+{
+	$params["dashTName"] = postvalue("table");
+	$params["dashElementName"] = postvalue("dashelement");
+	$params["dashPage"] = postvalue("dashPage");
+}
+
+// e.g. crosstable params
+$params["extraPageParams"] = SearchPage::getExtraPageParams();
+
+$params["masterTable"] = postvalue("mastertable");
+if( $params["masterTable"] )
+	$params["masterKeysReq"] = RunnerPage::readMasterKeysFromRequest();
+
+
+$pageObject = new SearchPage($params);
+
+if( $pageMode == SEARCH_LOAD_CONTROL )
+{
+	$pageObject->displaySearchControl();
+	return;
+}
+
+$pageObject->init();
+$pageObject->process();
+?>

appointments_view.php

@@ -0,0 +1,67 @@
+<?php 
+@ini_set("display_errors","1");
+@ini_set("display_startup_errors","1");
+
+require_once("include/dbcommon.php");
+require_once("include/appointments_variables.php");
+require_once('include/xtempl.php');
+require_once('classes/viewpage.php');
+require_once("classes/searchclause.php");
+
+add_nocache_headers();
+
+if( Security::hasLogin() ) {
+	if( !ViewPage::processEditPageSecurity( $strTableName ) )
+		return;	
+}
+
+$pageMode = ViewPage::readViewModeFromRequest();
+
+$xt = new Xtempl();
+
+// $keys could not be set properly if editid params were no passed
+$keys = array();
+$keys["id"] = postvalue("editid1");
+
+//array of params for classes
+$params = array();
+$params["id"] = postvalue_number("id");
+$params["xt"] = &$xt;
+$params["keys"] = $keys;
+$params["mode"] = $pageMode;
+$params["pageType"] = PAGE_VIEW;
+$params["pageName"] = postvalue("page");
+$params["tName"] = $strTableName;
+
+$params["pdfMode"] = postvalue("pdf") !== "";
+
+$params["masterTable"] = postvalue("mastertable");
+if( $params["masterTable"] )
+	$params["masterKeysReq"] = RunnerPage::readMasterKeysFromRequest();
+
+if( $pageMode == VIEW_DASHBOARD ) 
+{
+	$params["dashElementName"] = postvalue("dashelement");
+	$params["dashTName"] = postvalue("table");
+	$params["dashPage"] = postvalue("dashPage");
+	if(	postvalue("mapRefresh") )
+	{
+		$params["mapRefresh"] = true;
+		$params["vpCoordinates"] = my_json_decode( postvalue("vpCoordinates") );
+	}		
+} 
+if( $pageMode == VIEW_POPUP )
+{
+	$params["dashElementName"] = postvalue("dashelement");
+	$params["dashTName"] = postvalue("dashTName");
+	$params["dashPage"] = postvalue("dashPage");
+}
+
+$params["pdfBackgroundImage"] = postvalue("pdfBackgroundImage");
+
+$pageObject = new ViewPage($params);
+$pageObject->init();
+
+$pageObject->process();
+
+?>

autocomplete.php

@@ -0,0 +1,60 @@
+<?php
+@ini_set("display_errors","1");
+
+require_once("include/dbcommon.php");
+header("Expires: Thu, 01 Jan 1970 00:00:01 GMT"); 
+
+$shortTableName = postvalue("shortTName");
+$table = GetTableByShort( $shortTableName );
+if( !$table )
+	exit(0);
+
+
+$field = postvalue("field");
+
+$pageType = postvalue('pageType');
+$pageName = postvalue('page');
+
+if( !Security::userHasFieldPermissions( $table, $field, $pageType, $pageName, true ) )
+	return;
+
+$cipherer = new RunnerCipherer( $table );
+$pSet = new ProjectSettings( $table, $pageType, $pageName );
+
+include_once getabspath("classes/controls/EditControlsContainer.php");
+$editControls = new EditControlsContainer( null, $pSet, $pageType, $cipherer );
+$control = $editControls->getControl( $field );
+
+
+$contextParams = array();
+$contextParams["data"] = my_json_decode( postvalue('data') );
+
+$masterTable = postvalue('masterTable');
+if ( $masterTable != "" &&  isset($_SESSION[ $masterTable . "_masterRecordData" ] ) || postvalue('masterData') )
+{
+	$masterData = $_SESSION[ $masterTable . "_masterRecordData" ];
+	if( !is_array($masterData) ) {
+		$masterData = array();
+	}
+	$masterControlsData = my_json_decode( postvalue('masterData') );
+	foreach( $masterControlsData as $mField => $mValue )
+	{
+		$masterData[ $mField ] = $mValue;
+	}	
+	
+	$contextParams["masterData"] = $masterData;
+}
+
+RunnerContext::push( new RunnerContextItem( CONTEXT_ROW, $contextParams ) );
+
+
+$parentCtrlsData = my_json_decode( postvalue('parentCtrlsData') );
+$isExistParent = postvalue('isExistParent');
+$mode = intval( postvalue('mode') );
+
+$respObj = array( 'success' => true, 'data' => $control->getLookupContentToReload( $isExistParent === '1', $mode, $parentCtrlsData ) );
+echo printJSON( $respObj );
+
+RunnerContext::pop();
+exit();
+?>

autofillfields.php

@@ -0,0 +1,42 @@
+<?php
+@ini_set("display_errors","1");
+
+require_once("include/dbcommon.php");
+header("Expires: Thu, 01 Jan 1970 00:00:01 GMT"); 
+
+
+$shortTableName = postvalue("shortTName");
+$table = GetTableByShort( $shortTableName );
+if( !$table )
+	exit(0);
+
+$mainField = postvalue('mainField');
+$linkFieldVal = postvalue('linkFieldVal');
+$pageName = postvalue('page');
+$pageType = postvalue('pageType');
+
+if( !Security::userHasFieldPermissions( $table, $mainField, $pageType, $pageName, true ) )
+	return;
+
+$cipherer = new RunnerCipherer( $table );
+$pSet = new ProjectSettings( $table, $pageType, $pageName );
+
+include_once getabspath("classes/controls/EditControlsContainer.php");
+$editControls = new EditControlsContainer( null, $pSet, $pageType, $cipherer );
+$control = $editControls->getControl( $mainField );
+
+
+$contextParams = array();
+$contextParams["data"] = my_json_decode( postvalue('data') );
+
+$masterTable = postvalue('masterTable');
+if ( $masterTable != "" && isset($_SESSION[ $masterTable . "_masterRecordData" ]) )
+	$contextParams["masterData"] = $_SESSION[ $masterTable . "_masterRecordData" ];
+
+RunnerContext::push( new RunnerContextItem( CONTEXT_ROW, $contextParams ) );
+	
+echo printJSON( array( 'success'=> true, 'data' => $control->getAutoFillData( $linkFieldVal ) ) );
+
+RunnerContext::pop();
+exit();
+?>

buildpdf.php

@@ -0,0 +1,17 @@
+<?php
+@ini_set("display_errors","1");
+@ini_set("display_startup_errors","1");
+
+require_once("include/dbcommon.php"); 
+?>
+<!DOCTYPE html>
+<html lang="en-US">
+<head>
+<title>PDF Building</title>
+</head>
+<body>
+<div class="printpdf"></div>
+<?php echo GetBaseScriptsForPage(false); ?>
+<script type='text/javascript' src="<?php echo GetRootPathForResources("include/pdfnewwindow.js"); ?>"></script>
+</body>
+</html>

buttonhandler.php

@@ -0,0 +1,982 @@
+<?php
+@ini_set("display_errors","1");
+@ini_set("display_startup_errors","1");
+
+require_once("include/dbcommon.php");
+require_once("classes/button.php");
+
+//	CSRF protection
+if( !isPostRequest() )
+	return;
+
+$params = (array)my_json_decode(postvalue('params'));
+
+if( $params["_base64fields"] ) {
+	foreach( $params["_base64fields"] as $f ) {
+		$params[$f] = base64_str2bin( $params[$f] );
+	}
+}
+
+$buttId = $params['buttId'];
+$eventId = postvalue('event');
+$table = $params['table'];
+if( !GetTableURL( $table ) ) {
+	exit;
+}
+$page = $params['page'];
+if( !Security::userCanSeePage($table, $page ) ) {
+	exit;
+}
+
+$pSet = new ProjectSettings( $table, "", $page );
+if( $buttId ) {
+	$pageButtons = $pSet->customButtons();
+	if( array_search( $buttId , $pageButtons ) === false ) {
+		exit;
+	}
+}
+
+$params["masterTable"] = postValue("masterTable");;
+$params["masterKeys"] = array();
+// RunnerPage::readMasterKeysFromRequest
+$i = 1;
+while( isset( $_REQUEST["masterkey".$i] ) ) {
+	$params["masterKeys"][ $i ] = $_REQUEST["masterkey".$i];
+	$i++;
+}
+
+
+if($buttId=='Add_Comment')
+{
+	//  for login page users table can be turned off
+	if( $table != GLOBAL_PAGES )
+	{
+		require_once("include/". GetTableURL( $table ) ."_variables.php");
+		$cipherer = new RunnerCipherer( $table );
+	}
+	buttonHandler_Add_Comment($params);
+}
+if($buttId=='Create_chart')
+{
+	//  for login page users table can be turned off
+	if( $table != GLOBAL_PAGES )
+	{
+		require_once("include/". GetTableURL( $table ) ."_variables.php");
+		$cipherer = new RunnerCipherer( $table );
+	}
+	buttonHandler_Create_chart($params);
+}
+if($buttId=='Send')
+{
+	//  for login page users table can be turned off
+	if( $table != GLOBAL_PAGES )
+	{
+		require_once("include/". GetTableURL( $table ) ."_variables.php");
+		$cipherer = new RunnerCipherer( $table );
+	}
+	buttonHandler_Send($params);
+}
+if($buttId=='New_Button')
+{
+	//  for login page users table can be turned off
+	if( $table != GLOBAL_PAGES )
+	{
+		require_once("include/". GetTableURL( $table ) ."_variables.php");
+		$cipherer = new RunnerCipherer( $table );
+	}
+	buttonHandler_New_Button($params);
+}
+if($buttId=='select_user_button')
+{
+	//  for login page users table can be turned off
+	if( $table != GLOBAL_PAGES )
+	{
+		require_once("include/". GetTableURL( $table ) ."_variables.php");
+		$cipherer = new RunnerCipherer( $table );
+	}
+	buttonHandler_select_user_button($params);
+}
+if($buttId=='New_Button1')
+{
+	//  for login page users table can be turned off
+	if( $table != GLOBAL_PAGES )
+	{
+		require_once("include/". GetTableURL( $table ) ."_variables.php");
+		$cipherer = new RunnerCipherer( $table );
+	}
+	buttonHandler_New_Button1($params);
+}
+if($buttId=='Audio')
+{
+	//  for login page users table can be turned off
+	if( $table != GLOBAL_PAGES )
+	{
+		require_once("include/". GetTableURL( $table ) ."_variables.php");
+		$cipherer = new RunnerCipherer( $table );
+	}
+	buttonHandler_Audio($params);
+}
+if($buttId=='stopAudio')
+{
+	//  for login page users table can be turned off
+	if( $table != GLOBAL_PAGES )
+	{
+		require_once("include/". GetTableURL( $table ) ."_variables.php");
+		$cipherer = new RunnerCipherer( $table );
+	}
+	buttonHandler_stopAudio($params);
+}
+if($buttId=='video_chat')
+{
+	//  for login page users table can be turned off
+	if( $table != GLOBAL_PAGES )
+	{
+		require_once("include/". GetTableURL( $table ) ."_variables.php");
+		$cipherer = new RunnerCipherer( $table );
+	}
+	buttonHandler_video_chat($params);
+}
+if($buttId=='clip')
+{
+	//  for login page users table can be turned off
+	if( $table != GLOBAL_PAGES )
+	{
+		require_once("include/". GetTableURL( $table ) ."_variables.php");
+		$cipherer = new RunnerCipherer( $table );
+	}
+	buttonHandler_clip($params);
+}
+if($buttId=='audiotest')
+{
+	//  for login page users table can be turned off
+	if( $table != GLOBAL_PAGES )
+	{
+		require_once("include/". GetTableURL( $table ) ."_variables.php");
+		$cipherer = new RunnerCipherer( $table );
+	}
+	buttonHandler_audiotest($params);
+}
+
+if( $eventId == 'select_provider' && "chat_settings" == $table )
+{
+	require_once("include/chat_settings_variables.php");
+	$cipherer = new RunnerCipherer("chat_settings");
+	fieldEventHandler_select_provider( $params );
+}
+if( $eventId == 'check_video' && "chat_settings" == $table )
+{
+	require_once("include/chat_settings_variables.php");
+	$cipherer = new RunnerCipherer("chat_settings");
+	fieldEventHandler_check_video( $params );
+}
+if( $eventId == 'tmp_file_event' && "chat_history" == $table )
+{
+	require_once("include/chat_history_variables.php");
+	$cipherer = new RunnerCipherer("chat_history");
+	fieldEventHandler_tmp_file_event( $params );
+}
+
+
+
+
+// create table and non table handlers
+function buttonHandler_Add_Comment($params)
+{
+	global $strTableName;
+	$result = array();
+
+	// create new button object for get record data
+	$params["keys"] = (array)my_json_decode(postvalue('keys'));
+	$params["isManyKeys"] = postvalue('isManyKeys');
+	$params["location"] = postvalue('location');
+
+	$button = new Button($params);
+	$ajax = $button; // for examle from HELP
+	$keys = $button->getKeys();
+
+	$masterData = false;
+	if ( isset($params['masterData']) && count($params['masterData']) > 0 )
+	{
+		$masterData = $params['masterData'];
+	}
+	else if ( isset($params["masterTable"]) )
+	{
+		$masterData = $button->getMasterData($params["masterTable"]);
+	}
+	
+	$contextParams = array();
+	if ( $params["location"] == PAGE_VIEW )
+	{
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["masterData"] = $masterData;
+	}
+	else if ( $params["location"] == PAGE_EDIT )
+	{
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["newData"] = $params['fieldsData'];
+		$contextParams["masterData"] = $masterData;
+	}
+	else if ( $params["location"] == "grid" )
+	{	
+		$params["location"] = "list";
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["newData"] = $params['fieldsData'];
+		$contextParams["masterData"] = $masterData;
+	}
+	else 
+	{
+		$contextParams["masterData"] = $masterData;
+	}
+
+	RunnerContext::push( new RunnerContextItem( $params["location"], $contextParams));
+	// Put your code here.
+$result["txt"] = $params["txt"]." world!";
+;
+	RunnerContext::pop();
+	echo my_json_encode($result);
+	$button->deleteTempFiles();
+}
+function buttonHandler_Create_chart($params)
+{
+	global $strTableName;
+	$result = array();
+
+	// create new button object for get record data
+	$params["keys"] = (array)my_json_decode(postvalue('keys'));
+	$params["isManyKeys"] = postvalue('isManyKeys');
+	$params["location"] = postvalue('location');
+
+	$button = new Button($params);
+	$ajax = $button; // for examle from HELP
+	$keys = $button->getKeys();
+
+	$masterData = false;
+	if ( isset($params['masterData']) && count($params['masterData']) > 0 )
+	{
+		$masterData = $params['masterData'];
+	}
+	else if ( isset($params["masterTable"]) )
+	{
+		$masterData = $button->getMasterData($params["masterTable"]);
+	}
+	
+	$contextParams = array();
+	if ( $params["location"] == PAGE_VIEW )
+	{
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["masterData"] = $masterData;
+	}
+	else if ( $params["location"] == PAGE_EDIT )
+	{
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["newData"] = $params['fieldsData'];
+		$contextParams["masterData"] = $masterData;
+	}
+	else if ( $params["location"] == "grid" )
+	{	
+		$params["location"] = "list";
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["newData"] = $params['fieldsData'];
+		$contextParams["masterData"] = $masterData;
+	}
+	else 
+	{
+		$contextParams["masterData"] = $masterData;
+	}
+
+	RunnerContext::push( new RunnerContextItem( $params["location"], $contextParams));
+	/*global $loginKeyFields;
+$userdata = Security::currentUserData();
+$rs = DB::Query("select count(id) as cnt from chat_history where ownerid='".$userdata[$loginKeyFields[0]]."' and targetid='".$params["id"]."' and isread=0");
+$data = $rs->fetchAssoc();
+if($data["cnt"]==0){
+	DB::Exec("insert into chat_history (messages, created, isread, targetid, ownerid) values ('','".date("Y-m-d- h:i:s")."',0,".$params["id"].",'".$userdata[$loginKeyFields[0]]."')");
+}
+$result["id"] = $params["id"];*/;
+	RunnerContext::pop();
+	echo my_json_encode($result);
+	$button->deleteTempFiles();
+}
+function buttonHandler_Send($params)
+{
+	global $strTableName;
+	$result = array();
+
+	// create new button object for get record data
+	$params["keys"] = (array)my_json_decode(postvalue('keys'));
+	$params["isManyKeys"] = postvalue('isManyKeys');
+	$params["location"] = postvalue('location');
+
+	$button = new Button($params);
+	$ajax = $button; // for examle from HELP
+	$keys = $button->getKeys();
+
+	$masterData = false;
+	if ( isset($params['masterData']) && count($params['masterData']) > 0 )
+	{
+		$masterData = $params['masterData'];
+	}
+	else if ( isset($params["masterTable"]) )
+	{
+		$masterData = $button->getMasterData($params["masterTable"]);
+	}
+	
+	$contextParams = array();
+	if ( $params["location"] == PAGE_VIEW )
+	{
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["masterData"] = $masterData;
+	}
+	else if ( $params["location"] == PAGE_EDIT )
+	{
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["newData"] = $params['fieldsData'];
+		$contextParams["masterData"] = $masterData;
+	}
+	else if ( $params["location"] == "grid" )
+	{	
+		$params["location"] = "list";
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["newData"] = $params['fieldsData'];
+		$contextParams["masterData"] = $masterData;
+	}
+	else 
+	{
+		$contextParams["masterData"] = $masterData;
+	}
+
+	RunnerContext::push( new RunnerContextItem( $params["location"], $contextParams));
+	/*include_once("chat_functions.php");
+global $loginKeyFields;
+$mess = $params["msg"];
+if(strlen($mess)>4000)
+	$mess = substr($mess,0,4000);
+$userdata = Security::currentUserData();
+$t = explode(" ",this_microtime());
+$sql = DB::PrepareSQL("insert into chat_history (messages, created, isread, targetid, ownerid, status) values (':1',':2','0','".$_SESSION["targetid"]."','".$userdata[$loginKeyFields[0]]."','')", $mess, date("Y-m-d H:i:s",$t[1]).substr((string)$t[0],1,4));
+//echo $sql;
+DB::Exec($sql);
+$_SESSION["message_id"] = DB::LastId();
+
+**/;
+	RunnerContext::pop();
+	echo my_json_encode($result);
+	$button->deleteTempFiles();
+}
+function buttonHandler_New_Button($params)
+{
+	global $strTableName;
+	$result = array();
+
+	// create new button object for get record data
+	$params["keys"] = (array)my_json_decode(postvalue('keys'));
+	$params["isManyKeys"] = postvalue('isManyKeys');
+	$params["location"] = postvalue('location');
+
+	$button = new Button($params);
+	$ajax = $button; // for examle from HELP
+	$keys = $button->getKeys();
+
+	$masterData = false;
+	if ( isset($params['masterData']) && count($params['masterData']) > 0 )
+	{
+		$masterData = $params['masterData'];
+	}
+	else if ( isset($params["masterTable"]) )
+	{
+		$masterData = $button->getMasterData($params["masterTable"]);
+	}
+	
+	$contextParams = array();
+	if ( $params["location"] == PAGE_VIEW )
+	{
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["masterData"] = $masterData;
+	}
+	else if ( $params["location"] == PAGE_EDIT )
+	{
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["newData"] = $params['fieldsData'];
+		$contextParams["masterData"] = $masterData;
+	}
+	else if ( $params["location"] == "grid" )
+	{	
+		$params["location"] = "list";
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["newData"] = $params['fieldsData'];
+		$contextParams["masterData"] = $masterData;
+	}
+	else 
+	{
+		$contextParams["masterData"] = $masterData;
+	}
+
+	RunnerContext::push( new RunnerContextItem( $params["location"], $contextParams));
+	;
+	RunnerContext::pop();
+	echo my_json_encode($result);
+	$button->deleteTempFiles();
+}
+function buttonHandler_select_user_button($params)
+{
+	global $strTableName;
+	$result = array();
+
+	// create new button object for get record data
+	$params["keys"] = (array)my_json_decode(postvalue('keys'));
+	$params["isManyKeys"] = postvalue('isManyKeys');
+	$params["location"] = postvalue('location');
+
+	$button = new Button($params);
+	$ajax = $button; // for examle from HELP
+	$keys = $button->getKeys();
+
+	$masterData = false;
+	if ( isset($params['masterData']) && count($params['masterData']) > 0 )
+	{
+		$masterData = $params['masterData'];
+	}
+	else if ( isset($params["masterTable"]) )
+	{
+		$masterData = $button->getMasterData($params["masterTable"]);
+	}
+	
+	$contextParams = array();
+	if ( $params["location"] == PAGE_VIEW )
+	{
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["masterData"] = $masterData;
+	}
+	else if ( $params["location"] == PAGE_EDIT )
+	{
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["newData"] = $params['fieldsData'];
+		$contextParams["masterData"] = $masterData;
+	}
+	else if ( $params["location"] == "grid" )
+	{	
+		$params["location"] = "list";
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["newData"] = $params['fieldsData'];
+		$contextParams["masterData"] = $masterData;
+	}
+	else 
+	{
+		$contextParams["masterData"] = $masterData;
+	}
+
+	RunnerContext::push( new RunnerContextItem( $params["location"], $contextParams));
+	;
+	RunnerContext::pop();
+	echo my_json_encode($result);
+	$button->deleteTempFiles();
+}
+function buttonHandler_New_Button1($params)
+{
+	global $strTableName;
+	$result = array();
+
+	// create new button object for get record data
+	$params["keys"] = (array)my_json_decode(postvalue('keys'));
+	$params["isManyKeys"] = postvalue('isManyKeys');
+	$params["location"] = postvalue('location');
+
+	$button = new Button($params);
+	$ajax = $button; // for examle from HELP
+	$keys = $button->getKeys();
+
+	$masterData = false;
+	if ( isset($params['masterData']) && count($params['masterData']) > 0 )
+	{
+		$masterData = $params['masterData'];
+	}
+	else if ( isset($params["masterTable"]) )
+	{
+		$masterData = $button->getMasterData($params["masterTable"]);
+	}
+	
+	$contextParams = array();
+	if ( $params["location"] == PAGE_VIEW )
+	{
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["masterData"] = $masterData;
+	}
+	else if ( $params["location"] == PAGE_EDIT )
+	{
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["newData"] = $params['fieldsData'];
+		$contextParams["masterData"] = $masterData;
+	}
+	else if ( $params["location"] == "grid" )
+	{	
+		$params["location"] = "list";
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["newData"] = $params['fieldsData'];
+		$contextParams["masterData"] = $masterData;
+	}
+	else 
+	{
+		$contextParams["masterData"] = $masterData;
+	}
+
+	RunnerContext::push( new RunnerContextItem( $params["location"], $contextParams));
+	// Put your code here.
+$result["txt"] = $params["txt"]." world!";
+;
+	RunnerContext::pop();
+	echo my_json_encode($result);
+	$button->deleteTempFiles();
+}
+function buttonHandler_Audio($params)
+{
+	global $strTableName;
+	$result = array();
+
+	// create new button object for get record data
+	$params["keys"] = (array)my_json_decode(postvalue('keys'));
+	$params["isManyKeys"] = postvalue('isManyKeys');
+	$params["location"] = postvalue('location');
+
+	$button = new Button($params);
+	$ajax = $button; // for examle from HELP
+	$keys = $button->getKeys();
+
+	$masterData = false;
+	if ( isset($params['masterData']) && count($params['masterData']) > 0 )
+	{
+		$masterData = $params['masterData'];
+	}
+	else if ( isset($params["masterTable"]) )
+	{
+		$masterData = $button->getMasterData($params["masterTable"]);
+	}
+	
+	$contextParams = array();
+	if ( $params["location"] == PAGE_VIEW )
+	{
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["masterData"] = $masterData;
+	}
+	else if ( $params["location"] == PAGE_EDIT )
+	{
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["newData"] = $params['fieldsData'];
+		$contextParams["masterData"] = $masterData;
+	}
+	else if ( $params["location"] == "grid" )
+	{	
+		$params["location"] = "list";
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["newData"] = $params['fieldsData'];
+		$contextParams["masterData"] = $masterData;
+	}
+	else 
+	{
+		$contextParams["masterData"] = $masterData;
+	}
+
+	RunnerContext::push( new RunnerContextItem( $params["location"], $contextParams));
+	// Put your code here.
+$result["txt"] = $params["txt"]." world!";
+;
+	RunnerContext::pop();
+	echo my_json_encode($result);
+	$button->deleteTempFiles();
+}
+function buttonHandler_stopAudio($params)
+{
+	global $strTableName;
+	$result = array();
+
+	// create new button object for get record data
+	$params["keys"] = (array)my_json_decode(postvalue('keys'));
+	$params["isManyKeys"] = postvalue('isManyKeys');
+	$params["location"] = postvalue('location');
+
+	$button = new Button($params);
+	$ajax = $button; // for examle from HELP
+	$keys = $button->getKeys();
+
+	$masterData = false;
+	if ( isset($params['masterData']) && count($params['masterData']) > 0 )
+	{
+		$masterData = $params['masterData'];
+	}
+	else if ( isset($params["masterTable"]) )
+	{
+		$masterData = $button->getMasterData($params["masterTable"]);
+	}
+	
+	$contextParams = array();
+	if ( $params["location"] == PAGE_VIEW )
+	{
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["masterData"] = $masterData;
+	}
+	else if ( $params["location"] == PAGE_EDIT )
+	{
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["newData"] = $params['fieldsData'];
+		$contextParams["masterData"] = $masterData;
+	}
+	else if ( $params["location"] == "grid" )
+	{	
+		$params["location"] = "list";
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["newData"] = $params['fieldsData'];
+		$contextParams["masterData"] = $masterData;
+	}
+	else 
+	{
+		$contextParams["masterData"] = $masterData;
+	}
+
+	RunnerContext::push( new RunnerContextItem( $params["location"], $contextParams));
+	// Put your code here.
+$result["txt"] = $params["txt"]." world!";
+;
+	RunnerContext::pop();
+	echo my_json_encode($result);
+	$button->deleteTempFiles();
+}
+function buttonHandler_video_chat($params)
+{
+	global $strTableName;
+	$result = array();
+
+	// create new button object for get record data
+	$params["keys"] = (array)my_json_decode(postvalue('keys'));
+	$params["isManyKeys"] = postvalue('isManyKeys');
+	$params["location"] = postvalue('location');
+
+	$button = new Button($params);
+	$ajax = $button; // for examle from HELP
+	$keys = $button->getKeys();
+
+	$masterData = false;
+	if ( isset($params['masterData']) && count($params['masterData']) > 0 )
+	{
+		$masterData = $params['masterData'];
+	}
+	else if ( isset($params["masterTable"]) )
+	{
+		$masterData = $button->getMasterData($params["masterTable"]);
+	}
+	
+	$contextParams = array();
+	if ( $params["location"] == PAGE_VIEW )
+	{
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["masterData"] = $masterData;
+	}
+	else if ( $params["location"] == PAGE_EDIT )
+	{
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["newData"] = $params['fieldsData'];
+		$contextParams["masterData"] = $masterData;
+	}
+	else if ( $params["location"] == "grid" )
+	{	
+		$params["location"] = "list";
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["newData"] = $params['fieldsData'];
+		$contextParams["masterData"] = $masterData;
+	}
+	else 
+	{
+		$contextParams["masterData"] = $masterData;
+	}
+
+	RunnerContext::push( new RunnerContextItem( $params["location"], $contextParams));
+	include_once("chat_functions.php");
+global $loginKeyFields, $cDisplayNameField, $cUserNameField;
+$result["message"] = "";
+$rs = DB::Select("chat_history", array("isVideo"=>1,"ownerid"=>$userdata[$loginKeyFields[0]]));
+if(!($data = $rs->fetchAssoc())){
+	if(!$cDisplayNameField)
+		$cDisplayNameField = $cUserNameField;
+	$userdata = Security::currentUserData();
+	$username = $userdata[$cDisplayNameField];
+	if(!$username)
+		$username = $userdata[$cUserNameField];
+	$t = explode(" ",this_microtime());
+//--- create meeting
+	$values["name"] = "Video chat";
+	$values["schedule"] = date("Y-m-d H:i:s");
+	$values["password"] = "";
+
+	/*$rs = DB::Select("chat_settings");
+	$data = $rs->fetchAssoc();
+	$rs2 = DB::Select("chat_timezone", array("id"=>$data["timezone"]));
+	$data2 = $rs2->fetchAssoc();
+	$rctimezone = $data2["rc"];
+	$zoomtimezone = $data2["zoom"];*/
+
+	$rs = DB::Select("chat_settings");
+	$data = $rs->fetchAssoc();
+
+	$OAuoh = base64_encode($data["Z_APIKey"].":".$data["Z_APISecret"]);
+	$url = "https://zoom.us/oauth/token";
+	$headers = array("Authorization"=>" Basic ".$OAuoh, "Host"=>"zoom.us","Content-Type"=>"application/x-www-form-urlencoded");
+	$postFields = "grant_type=account_credentials&account_id=".$data["Z_Token"]."&redirect_uri=https://zoom.us";
+	$response = runner_http_request( $url, $postFields, "POST", $headers, true );
+	$arrresponse = my_json_decode($response["content"]);
+	if($arrresponse["message"]){
+		$result["message"] = $arrresponse["message"];
+	}
+	else{
+	  $token = $arrresponse["access_token"];
+
+		$createAMeetingArray['topic']      = $values["name"];
+	  $createAMeetingArray['agenda']     = "";
+		$dt = "";
+		if($values["schedule"]){
+			$datetime = date("Y-m-d\TH:i:s", strtotime($values["schedule"]));
+			$createAMeetingArray['type'] = 2;
+			$createAMeetingArray['start_time'] = $datetime;
+			$dt = date("m/d/Y H:i:s", strtotime($values["schedule"]));
+		}
+		else
+			$createAMeetingArray['type'] = 1;
+		
+		//$createAMeetingArray['timezone'] = $zoomtimezone;
+		if($values["password"])
+			$createAMeetingArray['password'] = $values["password"];
+		else
+			$createAMeetingArray['password'] = "";
+		$createAMeetingArray['duration'] = 60;
+		$createAMeetingArray['settings'] = array(
+			 'join_before_host'  => false,
+			 'host_video'        => true,
+			 'participant_video' => true,
+			 'mute_upon_entry'   => false,
+			 'enforce_login'     => false,
+			 'alternative_hosts' => ""
+		);
+		if($data["saveInCloud"])
+			$createAMeetingArray['settings']['auto_recording'] = true;
+
+		$postFields = my_json_encode($createAMeetingArray);
+		$url = "https://api.zoom.us/v2/users/me/meetings";
+		$headers = array("authorization"=>" Bearer ".$token, "content-type"=>"application/json");
+		$response = runner_http_request( $url, $postFields, "POST", $headers, true );
+		$arrresponse = my_json_decode($response["content"]);
+		$result["createlink"] = "";
+		if($arrresponse["message"]){
+			$result["message"] = $arrresponse["message"];
+		}
+		else{
+			$values["createlink"] = $arrresponse["start_url"];
+			$values["joinlink"] = $arrresponse["join_url"];
+
+
+			$result["createlink"] = $values["createlink"];
+			DB::Insert("chat_history", array("messages"=>$values["joinlink"],"created"=>date("Y-m-d H:i:s",$t[1]).substr((string)$t[0],1,4),"isread"=>0,"targetid"=>$_SESSION["targetid"], "isVideo"=>1, "ownerid"=>$userdata[$loginKeyFields[0]]));
+			//DB::Insert("chat_history", array("messages"=>"<i>".$username." create video chat</i>","created"=>date("Y-m-d H:i:s",$t[1]).substr((string)$t[0],1,4),"isread"=>0,"targetid"=>$_SESSION["targetid"], "isVideo"=>0, "ownerid"=>$userdata[$loginKeyFields[0]]));
+		}
+	}
+}
+
+;
+	RunnerContext::pop();
+	echo my_json_encode($result);
+	$button->deleteTempFiles();
+}
+function buttonHandler_clip($params)
+{
+	global $strTableName;
+	$result = array();
+
+	// create new button object for get record data
+	$params["keys"] = (array)my_json_decode(postvalue('keys'));
+	$params["isManyKeys"] = postvalue('isManyKeys');
+	$params["location"] = postvalue('location');
+
+	$button = new Button($params);
+	$ajax = $button; // for examle from HELP
+	$keys = $button->getKeys();
+
+	$masterData = false;
+	if ( isset($params['masterData']) && count($params['masterData']) > 0 )
+	{
+		$masterData = $params['masterData'];
+	}
+	else if ( isset($params["masterTable"]) )
+	{
+		$masterData = $button->getMasterData($params["masterTable"]);
+	}
+	
+	$contextParams = array();
+	if ( $params["location"] == PAGE_VIEW )
+	{
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["masterData"] = $masterData;
+	}
+	else if ( $params["location"] == PAGE_EDIT )
+	{
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["newData"] = $params['fieldsData'];
+		$contextParams["masterData"] = $masterData;
+	}
+	else if ( $params["location"] == "grid" )
+	{	
+		$params["location"] = "list";
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["newData"] = $params['fieldsData'];
+		$contextParams["masterData"] = $masterData;
+	}
+	else 
+	{
+		$contextParams["masterData"] = $masterData;
+	}
+
+	RunnerContext::push( new RunnerContextItem( $params["location"], $contextParams));
+	;
+	RunnerContext::pop();
+	echo my_json_encode($result);
+	$button->deleteTempFiles();
+}
+function buttonHandler_audiotest($params)
+{
+	global $strTableName;
+	$result = array();
+
+	// create new button object for get record data
+	$params["keys"] = (array)my_json_decode(postvalue('keys'));
+	$params["isManyKeys"] = postvalue('isManyKeys');
+	$params["location"] = postvalue('location');
+
+	$button = new Button($params);
+	$ajax = $button; // for examle from HELP
+	$keys = $button->getKeys();
+
+	$masterData = false;
+	if ( isset($params['masterData']) && count($params['masterData']) > 0 )
+	{
+		$masterData = $params['masterData'];
+	}
+	else if ( isset($params["masterTable"]) )
+	{
+		$masterData = $button->getMasterData($params["masterTable"]);
+	}
+	
+	$contextParams = array();
+	if ( $params["location"] == PAGE_VIEW )
+	{
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["masterData"] = $masterData;
+	}
+	else if ( $params["location"] == PAGE_EDIT )
+	{
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["newData"] = $params['fieldsData'];
+		$contextParams["masterData"] = $masterData;
+	}
+	else if ( $params["location"] == "grid" )
+	{	
+		$params["location"] = "list";
+		$contextParams["data"] = $button->getRecordData();
+		$contextParams["newData"] = $params['fieldsData'];
+		$contextParams["masterData"] = $masterData;
+	}
+	else 
+	{
+		$contextParams["masterData"] = $masterData;
+	}
+
+	RunnerContext::push( new RunnerContextItem( $params["location"], $contextParams));
+	// Put your code here.
+$result["txt"] = $params["txt"]." world!";
+;
+	RunnerContext::pop();
+	echo my_json_encode($result);
+	$button->deleteTempFiles();
+}
+
+
+		
+function fieldEventHandler_select_provider( $params )
+{
+	$params["keys"] = (array)my_json_decode(postvalue('keys'));
+	$params["isManyKeys"] = false;
+	$params["location"] = postvalue('pageType');
+	
+	$button = new Button($params);
+	$keys = $button->getKeys();
+	$ajax = $button; // for examle from HELP
+	$result = array();
+	
+	$pageType = postvalue("pageType");
+	$fieldsData = my_json_decode( postvalue("fieldsData") );
+	
+	$contextParams = array(
+		"data" => $fieldsData,
+		"masterData" => $_SESSION[ $masterTable . "_masterRecordData" ]
+	);
+	
+	RunnerContext::push( new RunnerContextItem( CONTEXT_ROW, $contextParams ) );
+	;
+	RunnerContext::pop();
+	
+	echo my_json_encode( $result );
+	$button->deleteTempFiles();
+}
+function fieldEventHandler_check_video( $params )
+{
+	$params["keys"] = (array)my_json_decode(postvalue('keys'));
+	$params["isManyKeys"] = false;
+	$params["location"] = postvalue('pageType');
+	
+	$button = new Button($params);
+	$keys = $button->getKeys();
+	$ajax = $button; // for examle from HELP
+	$result = array();
+	
+	$pageType = postvalue("pageType");
+	$fieldsData = my_json_decode( postvalue("fieldsData") );
+	
+	$contextParams = array(
+		"data" => $fieldsData,
+		"masterData" => $_SESSION[ $masterTable . "_masterRecordData" ]
+	);
+	
+	RunnerContext::push( new RunnerContextItem( CONTEXT_ROW, $contextParams ) );
+	
+// Sample:
+$result["upper"] = strtoupper( $params["value"] );
+;
+	RunnerContext::pop();
+	
+	echo my_json_encode( $result );
+	$button->deleteTempFiles();
+}
+function fieldEventHandler_tmp_file_event( $params )
+{
+	$params["keys"] = (array)my_json_decode(postvalue('keys'));
+	$params["isManyKeys"] = false;
+	$params["location"] = postvalue('pageType');
+	
+	$button = new Button($params);
+	$keys = $button->getKeys();
+	$ajax = $button; // for examle from HELP
+	$result = array();
+	
+	$pageType = postvalue("pageType");
+	$fieldsData = my_json_decode( postvalue("fieldsData") );
+	
+	$contextParams = array(
+		"data" => $fieldsData,
+		"masterData" => $_SESSION[ $masterTable . "_masterRecordData" ]
+	);
+	
+	RunnerContext::push( new RunnerContextItem( CONTEXT_ROW, $contextParams ) );
+	
+// Sample:
+$result["upper"] = strtoupper( $params["value"] );
+;
+	RunnerContext::pop();
+	
+	echo my_json_encode( $result );
+	$button->deleteTempFiles();
+}
+?>

chat_files_list.php

@@ -0,0 +1,163 @@
+<?php
+@ini_set("display_errors","1");
+@ini_set("display_startup_errors","1");
+
+$requestTable = "chat_files";
+$requestPage = "list";
+
+require_once("include/dbcommon.php");
+add_nocache_headers();
+
+require_once('include/xtempl.php');
+
+require_once("classes/searchcontrol.php");
+require_once("classes/searchclause.php");
+require_once("classes/panelsearchcontrol.php");
+require_once("include/chat_files_variables.php");
+require_once('classes/listpage.php');
+require_once('include/lookuplinks.php');
+
+//	Check whether the page was called as a part of Lookup wizard - List page with search.
+//  Verify the eligibility of such a call.
+
+InitLookupLinks();
+if( Security::hasLogin() ) {
+	if( !ListPage::processListPageSecurity( $strTableName ) )
+		return;
+}
+
+if( ListPage::processSaveParams( $strTableName ) )
+	return;
+
+$options = array();
+//array of params for classes
+
+//	Include necessary files in accordance with the page displaying mode
+$mode = ListPage::readListModeFromRequest();
+if( $mode == LIST_SIMPLE )
+{
+	require_once('classes/listpage_simple.php');
+	require_once("classes/searchpanelsimple.php");
+}
+elseif( $mode == LIST_AJAX )
+{
+	require_once('classes/listpage_simple.php');
+	require_once('classes/listpage_ajax.php');
+	require_once("classes/searchpanelsimple.php");
+}
+elseif( $mode == LIST_LOOKUP )
+{	
+	require_once('classes/listpage_embed.php');
+	require_once('classes/listpage_lookup.php');
+	
+	$options["mainTable"] = postvalue("table");
+	$options["mainField"] = postvalue("field");
+	$options["mainPageType"] = postvalue("pageType");
+
+	$options["mainRecordData"] = my_json_decode( postvalue('data') );
+	$options["mainRecordMasterTable"] = postvalue('mainRecordMasterTable');
+	
+	if( postvalue("parentsExist") )
+		$options["parentCtrlsData"] = my_json_decode( postvalue("parentCtrlsData") );
+}
+elseif( $mode == LIST_POPUPDETAILS )
+{	
+	require_once('classes/listpage_embed.php');
+	require_once('classes/listpage_dpinline.php');
+	require_once('classes/listpage_dppopup.php');
+}
+elseif( $mode == LIST_DETAILS )
+{	
+	require_once('classes/listpage_embed.php');
+	require_once('classes/listpage_dpinline.php');
+	require_once('classes/listpage_dplist.php');
+}
+elseif( $mode == LIST_DASHDETAILS )
+{
+	require_once('classes/listpage_embed.php');
+	require_once('classes/listpage_dashboard.php');
+	require_once('classes/listpage_dpdash.php');
+}
+elseif( $mode == LIST_DASHBOARD )
+{
+	require_once('classes/listpage_embed.php');
+	require_once('classes/listpage_dashboard.php');
+}
+elseif( $mode == MAP_DASHBOARD )
+{
+	require_once('classes/listpage_embed.php');
+	require_once('classes/listpage_dashboard.php');
+	require_once('classes/map_dashboard.php');
+} 
+
+$xt = new Xtempl( $mode != LIST_SIMPLE ); //#9607 1. Temporary fix
+
+$options["pageName"] = postvalue("page");
+$options["pageType"] = PAGE_LIST;
+$options["id"] = postvalue_number("id") ? postvalue_number("id") : 1;
+$options["flyId"] = (int)postvalue("recordId");
+$options["mode"] = $mode;
+$options["xt"] = &$xt;
+$options["firstTime"] = postvalue("firstTime");
+$options["sortBy"] = postvalue("sortby");
+$options["requestGoto"] = postvalue_number("goto");
+
+
+$options["masterPageType"] = postvalue("masterpagetype");
+$options["masterPage"] = postvalue("masterpage");
+$options["masterId"] = postvalue("masterid");
+
+$options["masterTable"] = postvalue("mastertable");
+if( $options["masterTable"] )
+	$options["masterKeysReq"] = RunnerPage::readMasterKeysFromRequest();
+
+
+if( $mode == LIST_DASHBOARD && postvalue("nodata") && strlen($options["masterTable"]) )
+	$options["showNoData"] = true;
+
+if( $mode != LIST_LOOKUP )
+{
+	$options["dashElementName"] = postvalue("dashelement");
+	$options["dashTName"] = postvalue("table");
+	$options["dashPage"] = postvalue("dashPage");
+} 
+
+if(	postvalue("mapRefresh") )
+{
+	$options["mapRefresh"] = true;
+	$options["vpCoordinates"] = my_json_decode( postvalue("vpCoordinates") );
+}
+
+if(	postvalue("firstTime") )
+	$options["firstTime"] = true;
+
+//	Create $pageObject
+$pageObject = ListPage::createListPage($strTableName, $options);
+
+if( $pageObject->processSaveSearch() )
+	exit();
+
+if( $pageObject->updateRowOrder() )
+	exit();
+
+if ( $pageObject->processFieldFilter() )
+	exit();
+
+if( $pageObject->processTotals() ) 
+	exit();
+
+if( $mode != LIST_DETAILS && $mode != MAP_DASHBOARD && $mode != LIST_DASHBOARD ) 
+{ 
+	//maps
+}
+
+unset($_SESSION["message_add"]);
+unset($_SESSION["message_edit"]);
+
+// prepare code for build page
+$pageObject->prepareForBuildPage();
+
+// show page depends of mode
+$pageObject->showPage();
+
+?>

chat_files_search.php

@@ -0,0 +1,95 @@
+<?php 
+@ini_set("display_errors","1");
+@ini_set("display_startup_errors","1");
+
+require_once("include/dbcommon.php");
+add_nocache_headers();
+
+require_once("classes/searchclause.php");
+require_once("include/chat_files_variables.php");
+require_once("classes/searchcontrol.php");
+require_once("classes/advancedsearchcontrol.php");
+require_once("classes/panelsearchcontrol.php");
+
+
+Security::processLogoutRequest();
+
+if( !isLogged() )
+{ 
+	Security::saveRedirectURL();
+	redirectToLogin();
+}
+
+require_once( "include/reportfunctions.php" );
+$cname = postvalue("cname");
+$rname = postvalue("rname");
+if( $rname || $cname ) {
+	$rpt_array = wrGetEntityArray( 
+		$rname ? $rname : $cname, 
+		$rname ? WR_REPORT : WR_CHART
+	);
+	$accessGranted = @$rpt_array['status'] != "private" || @$rpt_array['owner'] != Security::getUserName();
+} else {
+	$accessGranted = CheckTablePermissions( $strTableName, "S" );
+}
+if(!$accessGranted)
+{
+	HeaderRedirect("menu");
+}
+
+
+require_once('include/xtempl.php');
+require_once('classes/searchpage.php');
+require_once('classes/searchpage_dash.php');
+
+$xt = new Xtempl();	
+$pageMode = SearchPage::readSearchModeFromRequest();
+
+if( $pageMode == SEARCH_LOAD_CONTROL )
+	$layoutVersion = postvalue("layoutVersion");
+
+
+$params = array();
+$params['xt'] = &$xt;
+$params['id'] = postvalue_number("id");
+$params['mode'] = $pageMode;
+$params['tName'] = $strTableName;
+$params["pageName"] = postvalue("page");
+$params['pageType'] = PAGE_SEARCH;
+$params['chartName'] = $cname;
+$params['reportName'] = $rname;
+$params['templatefile'] = $templatefile;
+$params['shortTableName'] = 'chat_files';
+$params['layoutVersion'] = $layoutVersion;
+
+$params['searchControllerId'] = postvalue('searchControllerId') ? postvalue('searchControllerId') : $id;
+$params['ctrlField'] = postvalue('ctrlField');
+
+$params['needSettings'] = postvalue('isNeedSettings');
+
+if( $pageMode == SEARCH_DASHBOARD )
+{
+	$params["dashTName"] = postvalue("table");
+	$params["dashElementName"] = postvalue("dashelement");
+	$params["dashPage"] = postvalue("dashPage");
+}
+
+// e.g. crosstable params
+$params["extraPageParams"] = SearchPage::getExtraPageParams();
+
+$params["masterTable"] = postvalue("mastertable");
+if( $params["masterTable"] )
+	$params["masterKeysReq"] = RunnerPage::readMasterKeysFromRequest();
+
+
+$pageObject = new SearchPage($params);
+
+if( $pageMode == SEARCH_LOAD_CONTROL )
+{
+	$pageObject->displaySearchControl();
+	return;
+}
+
+$pageObject->init();
+$pageObject->process();
+?>

chat_functions.php

@@ -0,0 +1,868 @@
+<?php
+function isGroupTarget($id){
+	if(substr($id,0,1) == "G")
+		return true;
+	else
+		return false;
+}
+function getGroupID($id){
+	return substr($id,1);
+}
+function getGroupIDs($targetid){
+	if(substr($targetid,0,1) == "G"){
+		$gid = str_replace("G","",$targetid);
+		$res = DB::DBLookup(DB::PrepareSQL("select ".AddFieldWrappers("ownerid")." from ".AddTableWrappers("chat_groups")." where ".AddFieldWrappers("id")."=:1",$gid));
+		if(!$res)
+			return 0;
+		$res = $res.",".DB::DBLookup(DB::PrepareSQL("select ".AddFieldWrappers("targetid")." from ".AddTableWrappers("chat_groups")." where ".AddFieldWrappers("id")."=:1",$gid));
+		return $res;
+	}
+	else
+		return $targetid;
+	
+}
+function getGroupIDsIn($targetid){
+	global $loginKeyFields, $cLoginTable;
+	$res = array();
+	if(substr($targetid,0,1) == "G"){
+		$gid = str_replace("G","",$targetid);
+		$res[] = DB::DBLookup(DB::PrepareSQL("select ".AddFieldWrappers("ownerid")." from ".AddTableWrappers("chat_groups")." where ".AddFieldWrappers("id")."=:1",$gid));
+		if(!count($res))
+			return 0;
+		$arr = explode(",",DB::DBLookup(DB::PrepareSQL("select ".AddFieldWrappers("targetid")." from ".AddTableWrappers("chat_groups")." where ".AddFieldWrappers("id")."=:1",$gid)));
+		$res = array_merge($res,$arr);
+		
+		/*$pSet = new ProjectSettings( $cLoginTable );
+		$ftype = $pSet->getFieldType( $loginKeyFields[0] );
+		if(NeedQuotes($ftype))
+			$out = "'".implode("','",$res)."'";
+		else
+			$out = implode(",",$res);*/
+		return $res;
+	}
+	else
+		return array($targetid);
+	
+}
+
+function getGroupMenu(){
+	global $loginKeyFields;
+	$userdata = Security::currentUserData();
+	$countGroups = 0;
+	$groups = "";
+	$rs = DB::Select("chat_groups","");
+	while($data = $rs->fetchAssoc()){
+		$targetArr = explode(",",$data["targetid"]);
+		if($data["ownerid"] == $userdata[$loginKeyFields[0]]){
+			if($groups)
+				$groups.=",";
+			$groups.= $data["id"];
+		}
+		if(in_array($userdata[$loginKeyFields[0]],$targetArr)){
+			if($groups)
+				$groups.=",";
+			$groups.= $data["id"];
+		}
+		
+		$countGroups++;
+	}
+	$_SESSION["countGroups"] = $countGroups;
+	
+	$menu = "";
+	// create group menu
+	if($groups){
+		$menu.= "<table width=100% >";
+		$rs = DB::Select("chat_groups",AddFieldWrappers("id")." in (".$groups.")");
+		while($data = $rs->fetchAssoc()){
+				$author = $data["groupname"];
+				if(!$author)
+					$author = "Group chat";
+				$isType = 0;
+				$cnt_messages = 0;
+				$sql = DB::PrepareSQL("select * from ".AddTableWrappers("chat_history")." where ".AddFieldWrappers("ownerid")."<>':1' and ".AddFieldWrappers("targetid")."=':2'",$userdata[$loginKeyFields[0]],"G".$data["id"]);
+				$rs2 = DB::Query($sql);
+				while($data2 = $rs2->fetchAssoc()){
+					$arr = explode(",",$data2["isread"]);
+					if(!in_array($userdata[$loginKeyFields[0]],$arr))
+						$cnt_messages++;
+				}
+				if($cnt_messages>0)
+					$cnt_messages = "<div class='indicator'>".$cnt_messages."</div>";
+				else
+					$cnt_messages = "";
+				$avatar = "<span class='menu_typing isTypingG".$data["id"]."' id='searching-ellipsis' style='display:none;'><span>.</span><span>.</span><span>.</span></span>";
+				$display_author = $author;
+				if(strlen($display_author)>27)
+					$display_author = substr($display_author,0,24)."...";
+				$s = "";
+				if($_SESSION["targetid"] == "G".$data["id"])
+					$s = " td_users_selected";
+				$type_popup = "user";
+				if($data["ownerid"] == $userdata[$loginKeyFields[0]])
+					$type_popup = "admin";
+				
+				$menu.= "<tr><td class='td_groups".$s."' userid='G".$data["id"]."'>".$avatar."<div style='display:inline-table' id='menuusernameG".$data["id"]."'>".$display_author."</div>".$cnt_messages;
+
+				
+				if($data["ownerid"] == $userdata[$loginKeyFields[0]]){
+					$menu.= "<span class='caret_down_grchat_".$data["id"]."' rid='".$data["id"]."' owner='".$type_popup."'><svg xmlns='http://www.w3.org/2000/svg' width='11' height='11' fill='currentColor' class='bi bi-caret-down-fill' viewBox='0 0 16 16'>
+				  <path class='_bi-caret' d='M7.247 11.14 2.451 5.658C1.885 5.013 2.345 4 3.204 4h9.592a1 1 0 0 1 .753 1.659l-4.796 5.48a1 1 0 0 1-1.506 0z'/>
+				</svg></span>";
+					$menu.= "<span class='caret_up_grchat_".$data["id"]."' rid='".$data["id"]."' owner='".$type_popup."'><svg xmlns='http://www.w3.org/2000/svg' width='11' height='11' fill='currentColor' class='bi bi-caret-right-fill' viewBox='0 0 16 16'>
+					  <path class='_bi-caret' d='m12.14 8.753-5.482 4.796c-.646.566-1.658.106-1.658-.753V3.204a1 1 0 0 1 1.659-.753l5.48 4.796a1 1 0 0 1 0 1.506z'/>
+					</svg></span></td><td>".$typing."</td></tr>";
+				}
+				else{
+					$menu.= "<span class='caret_down_grchat_".$data["id"]."' rid='".$data["id"]."' owner='".$type_popup."'><svg width='1em' height='1em' viewBox='0 0 12 12' class='bi bi-x' fill='currentColor' xmlns='http://www.w3.org/2000/svg'>
+					  <path class='_bi-caret' fill-rule='evenodd' d='M11.854 4.146a.5.5 0 0 1 0 .708l-7 7a.5.5 0 0 1-.708-.708l7-7a.5.5 0 0 1 .708 0z'/>
+					  <path class='_bi-caret' fill-rule='evenodd' d='M4.146 4.146a.5.5 0 0 0 0 .708l7 7a.5.5 0 0 0 .708-.708l-7-7a.5.5 0 0 0-.708 0z'/>
+					</svg></span>";
+					$menu.= "<span class='caret_up_grchat_".$data["id"]."' rid='".$data["id"]."' owner='".$type_popup."'><svg width='1em' height='1em' viewBox='0 0 12 12' class='bi bi-x' fill='currentColor' xmlns='http://www.w3.org/2000/svg'>
+					  <path class='_bi-caret' fill-rule='evenodd' d='M11.854 4.146a.5.5 0 0 1 0 .708l-7 7a.5.5 0 0 1-.708-.708l7-7a.5.5 0 0 1 .708 0z'/>
+					  <path class='_bi-caret' fill-rule='evenodd' d='M4.146 4.146a.5.5 0 0 0 0 .708l7 7a.5.5 0 0 0 .708-.708l-7-7a.5.5 0 0 0-.708 0z'/>
+					</svg></span></td><td>".$typing."</td></tr>";
+				}
+				if(!$_SESSION["targetid"])
+					$_SESSION["targetid"] = "G".$data["id"];
+		}
+		$menu.= "</table>";
+		$menu = "<div class='div_users'>".$menu."</div>";
+	}
+	
+	return $menu;
+}
+
+
+function getMenu(){
+	global $loginKeyFields, $cLoginTable,$cDisplayNameField, $cUserpicField, $cUserNameField;
+	if(!$cDisplayNameField)
+		$cDisplayNameField = $cUserNameField;
+	$userdata = Security::currentUserData();
+	$users = array();
+	if(!isGroupTarget($_SESSION["targetid"]) && $_SESSION["targetid"])
+		$users[] = $_SESSION["targetid"];
+	$sql = DB::PrepareSQL("select ".AddFieldWrappers("ownerid")." from ".AddTableWrappers("chat_history")." where ".AddFieldWrappers("targetid")."=':1' group by ".AddFieldWrappers("ownerid"),$userdata[$loginKeyFields[0]]);
+	$rs = DB::Query($sql);
+	$countUsers = 0;
+	while($data = $rs->fetchAssoc()){
+		if(!isGroupTarget($data["ownerid"])){
+			$users[] = $data["ownerid"];
+			$countUsers++;
+		}
+	}
+	$sql = DB::PrepareSQL("select ".AddFieldWrappers("targetid")." from ".AddTableWrappers("chat_history")." where ".AddFieldWrappers("ownerid")."=':1' group by ".AddFieldWrappers("targetid"),$userdata[$loginKeyFields[0]]);
+	$rs = DB::Query($sql);
+	while($data = $rs->fetchAssoc()){
+		if(!isGroupTarget($data["targetid"])){
+			$users[] = $data["targetid"];
+			$countUsers++;
+		}
+	}
+	$_SESSION["countUsers"] = $countUsers;
+	$menu = "";
+	
+	
+	$menu = "<div class='div_users'>";
+	
+	// create menu
+	if(count($users)){
+		$menu.= "<table width=100% >";
+		$dc = new DsCommand();
+		$conditions = array();
+		$conditions[] = DataCondition::FieldIs( $loginKeyFields[0], dsopIN, $users );
+		$dc->filter = DataCondition::_And( $conditions );
+		$datasource = getLoginDataSource();
+		$rs = $datasource->getList( $dc );
+		while($data = $rs->fetchAssoc()){
+				$author = $data[$cDisplayNameField];
+				if(!$author)
+					$author = $data[$cUserNameField];
+				$rs2 = DB::Select("chat_users",array("userid"=>$data[$loginKeyFields[0]]));
+				$isType = 0;
+				if($data2 = $rs2->fetchAssoc()){
+					if(strtotime(date("Y-m-d H:i:s")) - strtotime($data2["lastaccess"]) > $_SESSION["loginTime"])
+						$cl = "offline";
+					else
+						$cl = "online";
+					$isType = $data2["isTyping"];
+				}
+				else
+					$cl = "offline";
+				$cnt_messages = "";
+				$sql = DB::PrepareSQL("select count(".AddFieldWrappers("id").") as cnt from ".AddTableWrappers("chat_history")." where ".AddFieldWrappers("isread")."='0' and ".AddFieldWrappers("ownerid")."=':1' and ".AddFieldWrappers("targetid")."=':2'",$data[$loginKeyFields[0]],$userdata[$loginKeyFields[0]]);
+				$rs2 = DB::Query($sql);
+				$data2 = $rs2->fetchAssoc();
+				if($data2["cnt"]>0)
+					$cnt_messages = "<div class='indicator'>".$data2["cnt"]."</div>";
+				$onoffline = "<div id='userIsOnline_".$data[$loginKeyFields[0]]."' class='".$cl." ind_state' align=center></div>";
+				$avatar = getAvatar($data,"",false)."<span class='menu_typing isTyping".$data[$loginKeyFields[0]]."' id='searching-ellipsis' style='display:none;'><span>.</span><span>.</span><span>.</span></span>";
+				$display_author = $author;
+				if(strlen($display_author)>27)
+					$display_author = substr($display_author,0,24)."...";
+				$s = "";
+				if($_SESSION["targetid"] == $data[$loginKeyFields[0]])
+					$s = " td_users_selected";
+				$menu.= "<tr><td class='td_users".$s."' userid='".$data[$loginKeyFields[0]]."'>".$onoffline.$avatar."<div style='display:inline-table' id='menuusername".$data[$loginKeyFields[0]]."'>".$display_author."</div>".$cnt_messages."</td><td>".$typing."</td></tr>";
+				if(!$_SESSION["targetid"])
+					$_SESSION["targetid"] = $data[$loginKeyFields[0]];
+		}
+			
+		$menu.= "</table></div>";
+	}
+	return $menu;
+}
+
+function getAjaxMenu(){
+	$userdata = Security::currentUserData();
+	global $loginKeyFields, $cLoginTable,$cDisplayNameField, $cUserpicField, $cUserNameField;
+	if(!$cDisplayNameField)
+		$cDisplayNameField = $cUserNameField;
+
+	$users = array();
+	if(!isGroupTarget($_SESSION["targetid"]) && $_SESSION["targetid"])
+		$users[] = $_SESSION["targetid"];
+	$sql = DB::PrepareSQL("select ".AddFieldWrappers("ownerid")." from ".AddTableWrappers("chat_history")." where ".AddFieldWrappers("targetid")."=':1' group by ".AddFieldWrappers("ownerid"),$userdata[$loginKeyFields[0]]);
+	$rs = DB::Query($sql);
+	$countUsers = 0;
+	while($data = $rs->fetchAssoc()){
+		if(!isGroupTarget($data["ownerid"])){
+			$users[] = $data["ownerid"];
+			$countUsers++;
+		}
+	}
+	$sql = DB::PrepareSQL("select ".AddFieldWrappers("targetid")." from ".AddTableWrappers("chat_history")." where ".AddFieldWrappers("ownerid")."=':1' group by ".AddFieldWrappers("targetid"),$userdata[$loginKeyFields[0]]);
+	$rs = DB::Query($sql);
+	while($data = $rs->fetchAssoc()){
+		if(!isGroupTarget($data["targetid"])){
+			$users[] = $data["targetid"];
+			$countUsers++;
+		}
+	}
+	if($_SESSION["countUsers"] == $countUsers){
+		$arrMenu = array();
+		if(count($users)){
+			$dc = new DsCommand();
+			$conditions = array();
+			$conditions[] = DataCondition::FieldIs( $loginKeyFields[0], dsopIN, $users );
+			$dc->filter = DataCondition::_And( $conditions );
+			$datasource = getLoginDataSource();
+			$rs = $datasource->getList( $dc );
+			while($data = $rs->fetchAssoc()){
+				$elemMenu = array();
+				$rs2 = DB::Select("chat_users", array("userid"=>$data[$loginKeyFields[0]]));
+				$isType = 0;
+				if($data2 = $rs2->fetchAssoc()){
+					if(strtotime(date("Y-m-d H:i:s")) - strtotime($data2["lastaccess"]) > $_SESSION["loginTime"])
+						$cl = "offline";
+					else{
+						$cl = "online";
+						if(!isGroupTarget($data2["isTyping"]))
+							$isType = $data2["isTyping"];
+					}
+				}
+				else
+					$cl = "offline";
+				
+				//$isType = $data2["isTyping"];
+				
+				
+				$cnt_messages = "";
+				$sql = DB::PrepareSQL("select count(".AddFieldWrappers("id").") as cnt from ".AddTableWrappers("chat_history")." where ".AddFieldWrappers("isread")."='0' and ".AddFieldWrappers("ownerid")."=':1' and ".AddFieldWrappers("targetid")."=':2'",$data[$loginKeyFields[0]],$userdata[$loginKeyFields[0]]);
+				$rs2 = DB::Query($sql);
+				$data2 = $rs2->fetchAssoc();
+				if($data2["cnt"]>0)
+					$cnt_messages = $data2["cnt"];
+				$elemMenu["notify"] = $cnt_messages;
+				$elemMenu["status"] = $cl;
+				$elemMenu["typing"] = $isType;
+				$elemMenu["username"] = $data[$cUserNameField];
+				$arrMenu[$data[$loginKeyFields[0]]] = $elemMenu;
+				
+				if(!$_SESSION["targetid"])
+					$_SESSION["targetid"] = $data[$loginKeyFields[0]];
+
+			}
+		}
+	}
+	else{
+		$arrMenu["menu"] = getMenu();
+		$_SESSION["countUsers"] = $countUsers;
+	}
+	return $arrMenu;
+}
+
+function getGroupAjaxMenu(){
+	global $loginKeyFields;
+	$userdata = Security::currentUserData();
+	$countGroups = 0;
+	$groups = "";
+	$rs = DB::Select("chat_groups","");
+	while($data = $rs->fetchAssoc()){
+		if($data["ownerid"] == $userdata[$loginKeyFields[0]]){
+			if($groups)
+				$groups.=",";
+			$groups.= $data["id"];
+			$countGroups++;
+		}
+		$targetArr = explode(",",$data["targetid"]);
+		if(in_array($userdata[$loginKeyFields[0]],$targetArr) && $data["ownerid"] != $userdata[$loginKeyFields[0]]){
+			if($groups)
+				$groups.=",";
+			$groups.= $data["id"];
+			$countGroups++;
+		}
+	}
+	$arrMenu = array();
+	//$arrMenu["tmp"] = $_SESSION["countGroups"]."---".$countGroups;
+	if($_SESSION["countGroups"] == $countGroups){
+	// create group menu
+		if($groups){
+			$countGroups = 0;
+			$rs = DB::Select("chat_groups",AddFieldWrappers("id")." in (".$groups.")");
+			while($data = $rs->fetchAssoc()){
+				$elemMenu = array();
+				$isType = 0;
+				$rs2 = DB::Select("chat_users", array("isTyping"=>"G".$data["id"]));
+				$isType = 0;
+				if($data2 = $rs2->fetchAssoc()){
+					if(isGroupTarget($data2["isTyping"]) && $data2["userid"]!=$userdata[$loginKeyFields[0]])
+							$isType = $data2["isTyping"];
+				}
+				$cnt_messages = 0;
+				$sql = DB::PrepareSQL("select * from ".AddTableWrappers("chat_history")." where ".AddFieldWrappers("ownerid")."<>':1' and ".AddFieldWrappers("targetid")."=':2'",$userdata[$loginKeyFields[0]],"G".$data["id"]);
+				$rs2 = DB::Query($sql);
+				while($data2 = $rs2->fetchAssoc()){
+					$arr = explode(",",$data2["isread"]);
+					if(!in_array($userdata[$loginKeyFields[0]],$arr))
+						$cnt_messages++;
+				}
+				$elemMenu["notify"] = $cnt_messages;
+				$elemMenu["typing"] = $isType;
+				$elemMenu["name"] = $data["groupname"];
+				$arrMenu["G".$data["id"]] = $elemMenu;
+				$countGroups++;
+			}
+			if($_SESSION["countGroups"] != $countGroups){
+				$arrMenu["menu"] = getGroupMenu();
+				$_SESSION["countGroups"] = $countGroups;
+			}
+		}
+	}
+	else{
+		$arrMenu["menu"] = getGroupMenu();
+		$_SESSION["countGroups"] = $countGroups;
+	}
+	
+	return $arrMenu;
+}
+
+
+function getUserStatus($targetid){
+	
+	$rs2 = DB::Select("chat_users", array("userid"=>$targetid));
+	if($data2 = $rs2->fetchAssoc()){
+		if(strtotime(date("Y-m-d H:i:s")) - strtotime($data2["lastaccess"]) > $_SESSION["loginTime"]){
+			$cl = "offline_header";
+		}
+		else{
+			$cl = "online";
+		}
+	}
+	else
+		$cl = "offline_header";
+	return $cl;
+}
+
+function getUserStatusHeader($targetid){
+	$resArray = array();
+	if(isGroupTarget($targetid)){
+		$ids = getGroupIDs($targetid);
+		$usersArray = explode(",",$ids);
+		foreach($usersArray as $tid)
+			$resArray[] = getStatusUser($tid);
+	}
+	else{
+		$resArray[] = getStatusUser($targetid);
+	}
+	return $resArray;
+}
+
+function getStatusUser($targetid){
+	$rs2 = DB::Select("chat_users", array("userid"=>$targetid));
+	if($data2 = $rs2->fetchAssoc()){
+		if(strtotime(date("Y-m-d H:i:s")) - strtotime($data2["lastaccess"]) > $_SESSION["loginTime"]){
+			$resArray = array( $targetid => "offline_header");
+		}
+		else{
+			$resArray = array( $targetid => "online");
+		}
+	}
+	else
+		$resArray = array( $targetid => "offline_header");
+	return $resArray;
+}
+
+function getHeader(){
+	global $loginKeyFields, $cLoginTable,$cDisplayNameField,$cUserNameField;
+	if(!$cDisplayNameField)
+		$cDisplayNameField = $cUserNameField;
+	if(!$_SESSION["targetid"])
+		$_SESSION["targetid"]=0;
+	$hiddenInput  = "<input type='hidden' id=search_input value=''><input type='hidden' id=save_anchor value='".$_SESSION["anchor"]."'><input type='hidden' id=searchanchor value=''>";
+	$userdata = Security::currentUserData();
+	if(isGroupTarget($_SESSION["targetid"])){	
+		$currentUserName.= "<div class='currUserNameDiv'>";
+		$rs = DB::Select("chat_groups", array("id" => getGroupID($_SESSION["targetid"])));
+		$data = $rs->fetchAssoc();
+		$currentUserName.= "<div class='header_groupname'>".$data["groupname"]."</div>";
+		$type_popup = "user";
+		if($data["ownerid"] == $userdata[$loginKeyFields[0]])
+			$type_popup = "admin";
+		$currentUserName.= "<div class='header_groupname_edit' rid='".$data["id"]."' owner='".$type_popup."'><svg xmlns='http://www.w3.org/2000/svg' width='16' height='16' fill='currentColor' class='bi bi-pencil-square' viewBox='0 0 16 16'>
+  <path d='M15.502 1.94a.5.5 0 0 1 0 .706L14.459 3.69l-2-2L13.502.646a.5.5 0 0 1 .707 0l1.293 1.293zm-1.75 2.456-2-2L4.939 9.21a.5.5 0 0 0-.121.196l-.805 2.414a.25.25 0 0 0 .316.316l2.414-.805a.5.5 0 0 0 .196-.12l6.813-6.814z'/>
+  <path fill-rule='evenodd' d='M1 13.5A1.5 1.5 0 0 0 2.5 15h11a1.5 1.5 0 0 0 1.5-1.5v-6a.5.5 0 0 0-1 0v6a.5.5 0 0 1-.5.5h-11a.5.5 0 0 1-.5-.5v-11a.5.5 0 0 1 .5-.5H9a.5.5 0 0 0 0-1H2.5A1.5 1.5 0 0 0 1 2.5v11z'/>
+</svg></div>";
+		$usersArray = explode(",",$data["targetid"]);
+		$usersArray[] = $data["ownerid"];
+		sort($usersArray);
+		foreach($usersArray as $users){
+			if($userdata[$loginKeyFields[0]] != $users){
+				DB::SetConnection(DB::ConnectionByTable($cLoginTable));
+				$rs2 = DB::Select( $cLoginTable, array( $loginKeyFields[0] => $users ) );
+				DB::SetConnection(DB::DefaultConnection());
+				if($data2 = $rs2->fetchAssoc()){
+					$avatar = getAvatar($data2,"",true);
+					$cl = getUserStatus($data2[$loginKeyFields[0]]);
+					$onoffline = "<div class='".$cl." ind_state_header_group' align=center id='headerstatus".$data2[$loginKeyFields[0]]."'></div>";
+					$uname = $data2[$cDisplayNameField];
+					if(!$uname)
+						$uname = $data2[$cUserNameField];
+					$currentUserName.= "<div style='padding-right:1px;padding-top:0px'>".$onoffline.$avatar." <span class='header_group'>".$uname."</span></div>";
+				}
+			}
+		}
+		$currentUserName.= "</div>";
+		/*$userdata = Security::currentUserData();
+		if($userdata[$loginKeyFields[0]] == $data["ownerid"])
+			$currentUserName.= "<div class='close_chat'><button id='delete_chat' class='btn btn-primary btn-xs'>".getCustomLabel("delete_chat")."</button></div>";
+		else
+			$currentUserName.= "<div class='close_chat'><a id='leave_chat' href='javascript:void(0);'>".getCustomLabel("leave_chat")."</a></div>";*/
+	}
+	else{
+		$currentUserName = "";
+		DB::SetConnection(DB::ConnectionByTable($cLoginTable));
+		$rs = DB::Select( $cLoginTable, array( $loginKeyFields[0] => $_SESSION["targetid"] ) );
+		DB::SetConnection(DB::DefaultConnection());
+		if($data = $rs->fetchAssoc()){
+			$avatar = getAvatar($data, "_message", false);
+			$cl = getUserStatus($data[$loginKeyFields[0]]);
+			$uname = $data[$cDisplayNameField];
+			if(!$uname)
+				$uname = $data[$cUserNameField];
+			$onoffline = "<div class='".$cl." ind_state_header' align=center id='headerstatus".$data[$loginKeyFields[0]]."'></div>";
+			$currentUserName = $onoffline.$avatar." <span class='header_name'>".$uname."</span>";
+		}
+	}
+	return $currentUserName.$hiddenInput;
+}
+
+function getMessageRecordSet(){
+	$userdata = Security::currentUserData();
+	global $loginKeyFields, $cLoginTable,$cDisplayNameField, $cUserpicField, $cUserNameField;
+	$dc = new DsCommand();
+	$conditions1 = array();
+	$conditions2 = array();
+	if(!isGroupTarget($_SESSION["targetid"])){
+		if(!$_SESSION["searchValue"]){
+			//$sqlGlobal = "select * from chat_history where targetid='".$userdata[$loginKeyFields[0]]."' and ownerid='".$_SESSION["targetid"]."' or targetid='".$_SESSION["targetid"]."' and ownerid='".$userdata[$loginKeyFields[0]]."' order by id";	
+			$conditions1[] = DataCondition::FieldIs( "targetid", dsopEQUAL, $userdata[$loginKeyFields[0]] );
+			$conditions1[] = DataCondition::FieldIs( "ownerid", dsopEQUAL, $_SESSION["targetid"] );
+			$conditions2[] = DataCondition::FieldIs( "targetid", dsopEQUAL, $_SESSION["targetid"] );
+			$conditions2[] = DataCondition::FieldIs( "ownerid", dsopEQUAL, $userdata[$loginKeyFields[0]] );
+			$dc->filter = DataCondition::_Or( array(
+				DataCondition::_And( $conditions1 ),
+				DataCondition::_And( $conditions2 ),
+			));
+		}
+		else{
+			
+			//$sqlGlobal = "select * from chat_history where targetid='".$userdata[$loginKeyFields[0]]."'".$_SESSION["searchSQLValue"]." or ownerid='".$userdata[$loginKeyFields[0]]."'".$_SESSION["searchSQLValue"]." order by id";	
+			$conditions1[] = DataCondition::FieldIs( "targetid", dsopEQUAL, $userdata[$loginKeyFields[0]] );
+			$conditions1[] = DataCondition::FieldIs( "messages", dsopCONTAIN, $_SESSION["searchValue"] );
+			$conditions2[] = DataCondition::FieldIs( "ownerid", dsopEQUAL,  $userdata[$loginKeyFields[0]] );
+			$conditions2[] = DataCondition::FieldIs( "messages", dsopCONTAIN, $_SESSION["searchValue"] );
+			$dc->filter = DataCondition::_Or( array(
+				DataCondition::_And( $conditions1 ),
+				DataCondition::_And( $conditions2 ),
+			));
+		}
+	}
+	else{
+		if(!$_SESSION["searchValue"]){
+			//$sqlGlobal = "select * from chat_history where targetid='".$_SESSION["targetid"]."' and ownerid in (".getGroupIDsIn($_SESSION["targetid"]).") order by id";	
+			$conditions1[] = DataCondition::FieldIs( "targetid", dsopEQUAL, $_SESSION["targetid"] );
+			$conditions1[] = DataCondition::FieldIs( "ownerid", dsopIN, getGroupIDsIn($_SESSION["targetid"]) );
+			$dc->filter = DataCondition::_And( $conditions1 );
+		}
+		else{
+			//$sqlGlobal = "select * from chat_history where ownerid in (".getGroupIDsIn($_SESSION["targetid"]).")".$_SESSION["searchSQLValue"]." order by id";	
+			$conditions1[] = DataCondition::FieldIs( "messages", dsopCONTAIN, $_SESSION["searchValue"] );
+			$conditions1[] = DataCondition::FieldIs( "ownerid", dsopIN, getGroupIDsIn($_SESSION["targetid"]) );
+			$dc->filter = DataCondition::_And( $conditions1 );
+		}
+	}
+	$dc->order = array(array( "column" => "id", "dir" => "ASC" ));
+	$datasource = getDataSource("chat_history");
+	$rs = $datasource->getList( $dc ); 
+	return $rs;
+}
+
+function getMessage($isStart){
+	$scrollStep = 14;
+	$userdata = Security::currentUserData();
+	global $loginKeyFields, $cLoginTable,$cDisplayNameField, $cUserpicField, $cUserNameField;
+	if(!$cDisplayNameField)
+		$cDisplayNameField = $cUserNameField;
+	$period = DB::DBLookup("select ".addFieldWrappers("timeperiod")." from ".addTableWrappers("chat_settings"));
+	$res_msg = "";
+	$rs = getMessageRecordSet();
+	$totalMessages = 0;
+	while($data = $rs->fetchAssoc()){
+		if(isAddMessage($data,$period,$isStart) && $data["status"]!="delete")
+			$totalMessages++;
+	}
+	$rs = getMessageRecordSet();
+	$counter = 0;
+	$counterTrue = 0;
+	$res_msg = array();
+	$firstID = "";
+	while($data = $rs->fetchAssoc()){
+		if(isAddMessage($data,$period,$isStart) && $data["status"]!="delete" && !$data["isVideo"]){
+			if(isCounter($counter,$totalMessages,$scrollStep,$data)){
+				DB::SetConnection(DB::ConnectionByTable($cLoginTable));
+				$rs2 = DB::Select($cLoginTable, array($loginKeyFields[0]=>$data["ownerid"]));
+				DB::SetConnection(DB::DefaultConnection());
+				$data2 = $rs2->fetchAssoc();
+				$avatar = getAvatar($data2,"_message", false);
+				$author = $data2[$cDisplayNameField];
+				if(!$author)
+					$author = $data2[$cUserNameField];
+				$timeArray = array();
+				$arrtmp = explode(" ",$data["created"]);
+				$arrtmp1 = explode("-",$arrtmp[0]);
+				$arrtmp2 = explode(":",$arrtmp[1]);
+				$timeArray[0] = $arrtmp1[0];
+				$timeArray[1] = $arrtmp1[1];
+				$timeArray[2] = $arrtmp1[2];
+				$timeArray[3] = $arrtmp2[0];
+				$timeArray[4] = $arrtmp2[1];
+				$timeArray[5] = "00";
+				$not_read = "";
+				if(!$firstID)
+					$firstID = $data["id"];
+				if($data["ownerid"]==$userdata[$loginKeyFields[0]]){   //// || isGroupTarget($_SESSION["targetid"])
+					if(!$data["isread"] || $data["isread"] == $data["ownerid"])
+						$not_read = '<span class="not_read'.$data["id"].'"><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 14 18" width="14" height="18"><path fill="currentColor" d="M12.502 5.035l-.57-.444a.434.434 0 0 0-.609.076l-6.39 8.198a.38.38 0 0 1-.577.039l-2.614-2.556a.435.435 0 0 0-.614.007l-.505.516a.435.435 0 0 0 .007.614l3.887 3.8a.38.38 0 0 0 .577-.039l7.483-9.602a.435.435 0 0 0-.075-.609z"></path></svg></span>';
+					else{
+						if(!isGroupTarget($_SESSION["targetid"]))
+							$not_read = '<span class="not_read'.$data["id"].'" style="color:#48D1CC"><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 14 18" width="14" height="18"><path fill="currentColor" d="M12.502 5.035l-.57-.444a.434.434 0 0 0-.609.076l-6.39 8.198a.38.38 0 0 1-.577.039l-2.614-2.556a.435.435 0 0 0-.614.007l-.505.516a.435.435 0 0 0 .007.614l3.887 3.8a.38.38 0 0 0 .577-.039l7.483-9.602a.435.435 0 0 0-.075-.609z"></path></svg></span>';						else{
+							$ids = getGroupIDs($_SESSION["targetid"]);
+							$arrayIDs = explode(",",$ids);
+							sort($arrayIDs);
+							$arrayRead = explode(",",$data["isread"]);
+							sort($arrayRead);
+							if($arrayIDs == $arrayRead)
+								$not_read = '<span class="not_read'.$data["id"].'" style="color:#48D1CC"><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 18 18" width="18" height="18"><path fill="currentColor" d="M17.394 5.035l-.57-.444a.434.434 0 0 0-.609.076l-6.39 8.198a.38.38 0 0 1-.577.039l-.427-.388a.381.381 0 0 0-.578.038l-.451.576a.497.497 0 0 0 .043.645l1.575 1.51a.38.38 0 0 0 .577-.039l7.483-9.602a.436.436 0 0 0-.076-.609zm-4.892 0l-.57-.444a.434.434 0 0 0-.609.076l-6.39 8.198a.38.38 0 0 1-.577.039l-2.614-2.556a.435.435 0 0 0-.614.007l-.505.516a.435.435 0 0 0 .007.614l3.887 3.8a.38.38 0 0 0 .577-.039l7.483-9.602a.435.435 0 0 0-.075-.609z"></path></svg></span>';
+							else
+								$not_read = '<span class="not_read'.$data["id"].'" style="color:#48D1CC"><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 14 18" width="14" height="18"><path fill="currentColor" d="M12.502 5.035l-.57-.444a.434.434 0 0 0-.609.076l-6.39 8.198a.38.38 0 0 1-.577.039l-2.614-2.556a.435.435 0 0 0-.614.007l-.505.516a.435.435 0 0 0 .007.614l3.887 3.8a.38.38 0 0 0 .577-.039l7.483-9.602a.435.435 0 0 0-.075-.609z"></path></svg></span>';
+						}
+					}
+				}
+				if(date("Y-m-d",strtotime($data["created"])) == date("Y-m-d"))
+					$current_date = str_format_time($timeArray);
+				else
+					$current_date = str_format_datetime($timeArray);
+				$current_date = str_replace(":00 "," ",$current_date);
+				$message_block_search = "";
+				if($_SESSION["searchValue"])
+					$message_box_search = " message_block_search";
+				$actpoint = "";
+				if($data["ownerid"] == $userdata[$loginKeyFields[0]])
+					$actpoint = " addpoint";
+				$search_class="";
+				if(postvalue("searchanchor") == $data["id"])
+					$search_class=" select_search_result";
+				
+				$res_msg[$data["id"]] = "<div class='message_block".$message_box_search.$actpoint.$search_class."' anchor=".$data["id"]."><div>";
+				if($_SESSION["searchValue"]){
+					$targetid = $data["targetid"];
+					if($targetid == $userdata[$loginKeyFields[0]])
+						$targetid = $data["ownerid"];
+
+					if(!isGroupTarget($targetid)){
+						DB::SetConnection(DB::ConnectionByTable($cLoginTable));
+						$rslog = DB::Select($cLoginTable, array($loginKeyFields[0]=>$targetid));
+						DB::SetConnection(DB::DefaultConnection());
+						$datalog = $rslog->fetchAssoc();
+						$channel = $datalog[$cDisplayNameField];
+						if(!$channel)
+							$channel = $datalog[$cUserNameField];
+					}
+					else{
+						$id = getGroupID($targetid);
+						$rslog = DB::Select("chat_groups", array("id"=>$id));
+						$datalog = $rslog->fetchAssoc();
+						$channel = $datalog["groupname"];
+					}
+					$res_msg[$data["id"]].="<div class='message_search'>".$channel." - ".date("M dS,Y",strtotime($data["created"]));
+					if($_SESSION["searchValue"])
+						$res_msg[$data["id"]].="<a class='a_channel' href='#' onclick='clickAnchor(".$data["id"].",\"".$targetid."\");return false;'>".GetCustomLabel("view_in_channel")."</a>";
+					$res_msg[$data["id"]].="</div>";
+				}
+				$res_msg[$data["id"]].="<div class='message_avatar'>".$avatar."</div>";
+				$res_msg[$data["id"]].="<div class='message_header'><table><tr><td><b>".$author."</b> <span class='message_date'>".$current_date.$not_read."</span></td>";
+				
+				$res_msg[$data["id"]].="</tr></table></div>";
+				$text = str_replace("\n","<br>",$data["messages"]);
+				if($_SESSION["searchValue"]){
+					$text = str_replace(postvalue("search"),"<span style='background:rgba(242,199,68,.4);'>".runner_htmlspecialchars(postvalue("search"))."</span>",$text);
+				}
+				if($data["soundRecord"]){
+					$arr = my_json_decode($data["soundRecord"]);
+					foreach($arr as $src)
+						$text.= "<div><audio class='' controls='controls' autobuffer='autobuffer'><source src='".$src."'></audio></div>";
+				}
+				$res_msg[$data["id"]].= "<div class='message_author'>".$text."</div>";
+				$strfiles = getAttachment($data);
+				if($strfiles)
+					$res_msg[$data["id"]].= "<div class='message_author'>".$strfiles."</div>";
+				$res_msg[$data["id"]].= "</div>";
+				$res_msg[$data["id"]].= "<div apid='".$data["id"]."' class='action_point'></div></div>";
+				$counterTrue++;
+			}
+			$counter++;			
+		}
+		
+	}
+	if($firstID)
+		$_SESSION["firstMessID"] = $firstID;
+	if(postvalue("searchanchor")){
+		$_SESSION["scroll_step"] = floor($counterTrue/$scrollStep);
+	}
+	if($counter == 0 && $isStart=="true")
+		$res_msg[0] = "<span class='nomessage'>".GetCustomLabel("nomessage_id")."</span>";
+
+	return $res_msg;
+}
+function getAttachment($data){
+	global $loginKeyFields, $cLoginTable,$cDisplayNameField, $cUserpicField, $cUserNameField;
+	if(!$cDisplayNameField)
+		$cDisplayNameField = $cUserNameField;
+	$rs2 = DB::Select("chat_files", array("messageid"=>$data["id"]));
+	$strfiles = "";
+	$data2 = $rs2->fetchAssoc();
+	$filesArray = my_json_decode($data2["files"]);
+	foreach($filesArray as $ind=>$val){
+		if($strfiles)
+			$strfiles.="&nbsp;&nbsp;&nbsp;";
+		$fileType = getContentTypeByExtension(substr($val["usrName"], strrpos($val["usrName"], '.')));
+		$icon = "<img src='images/icons/".getIconByFileType($fileType, $val["usrName"])."' />";
+		$p = strrpos($val["usrName"],".");
+		$ext = CheckImageExtension($val["usrName"]);
+		if( $ext ){
+			$strfiles.= "<div style='display:inline-block;vertical-align:top;padding-right:10px;' class='fname_preview'>".$val["usrName"]."</div>";
+			$file = file_get_contents(getabspath($val["name"]));
+			$src = "data:image/png;base64,".base64_encode($file);
+			$strfiles.= "<div style='display:none1'><a class='message_files' dir='LTR' href='javascript:void(0)' onclick='showPictureInPopup(\"".$val["usrName"]."\",".$data2["id"].");'><img width=200px src='".$src."'></a></div>";
+		}
+		else{
+			$fsize = $val["size"];
+			if($val["size"]<1000)
+				$fsize = $val["size"]." B";
+			else
+				$fsize = round($val["size"]/1000)." kB";
+			$fname = "<table><tr><td rowspan=2>".$icon."&nbsp;</td><td><b>".$val["usrName"]."</b></td></tr><tr><td>".$fsize."</td></tr></table>";
+			$strfiles.= "<div style='display:inline-block;vertical-align:top;padding-right:10px;' class='fname_preview'>".$val["usrName"]."</div>";
+			$strfiles.= "<div style='display:none1'><a class='message_files' href='mfhandler.php?file=".$val["usrName"]."&table=chat_files&field=files&pageType=list&page=list&key1=".$data2["id"]."'>";
+			$strfiles.= "<div class='files_border'>".$fname."</div>";
+			$strfiles.= "</a></div>";
+		}
+	}
+	return $strfiles;
+}
+
+function getAvatar($data, $cl = "", $needLetter = false){
+	global $loginKeyFields, $cLoginTable,$cDisplayNameField, $cUserpicField, $cUserNameField;
+	if(!$cDisplayNameField)
+		$cDisplayNameField = $cUserNameField;
+	if($data[$cUserpicField]){
+		DB::SetConnection(DB::ConnectionByTable($cLoginTable));
+		$rs2 = DB::Select($cLoginTable, array($loginKeyFields[0]=>$data[$loginKeyFields[0]]));
+		DB::SetConnection(DB::DefaultConnection());
+		$data2 = $rs2->fetchAssoc();
+		$src = "data:image/png;base64,".base64_encode($data2[$cUserpicField]);
+		$avatar = "<img id='menuAvatar".$data[$loginKeyFields[0]]."' class='menu_avatar".$cl."' src='".$src."' />";
+	}
+	else{
+		$letter = "";
+		if($needLetter){
+			if($data[$cDisplayNameField])
+				$letter = substr($data[$cDisplayNameField],0,1);
+			else
+				$letter = substr($data[$cUserNameField],0,1);
+			$letter = "<span class='user_letter usernamepopup'>".strtoupper($letter)."</span>";
+		}
+		$avatar = "<img class='menu_avatar".$cl." usernamepopup' src='images/no_avatar.jpg' />".$letter;
+	}
+	return $avatar;
+}
+
+function isAddMessage($data,$period,$isStart){
+	$t = explode(" ",this_microtime());
+	$now = date("Y-m-d H:i:s",$t[1]).substr((string)$t[0],1,4)."000";
+	if(strtotime($data["created"])>strtotime($now)-$period || $isStart=="true")
+		return true;
+	else
+		return false;
+	
+}
+
+function isCounter($counter,$totalMessages,$scrollStep,$data){
+	if(postvalue("searchanchor")){
+		if($data["id"] >= postvalue("searchanchor"))
+			return true;
+		else
+			return false;
+	}
+	else{
+		if($counter>=$totalMessages-$scrollStep-$_SESSION["scroll_step"]*$scrollStep)
+			return true;
+		else
+			return false;
+	}
+}
+
+function getDeleteMessage(){
+	$res = array();
+	$period = DB::DBLookup("select ".AddFieldWrappers("timeperiod")." from ".AddTableWrappers("chat_settings"));	
+	$rs = DB::Select("chat_history", array("status"=>"delete"));
+	while($data = $rs->fetchAssoc()){
+		$res[] = $data["id"];
+		if(strtotime(date("Y-m-d H:i:s")) - strtotime($data["status_created"])>=$period*2)
+			DB::Delete("chat_history", array("id"=>$data["id"]));
+	}
+	return $res;
+}
+function getEditMessage(){
+	$res = array();
+	$period = DB::DBLookup("select ".AddFieldWrappers("timeperiod")." from ".AddTableWrappers("chat_settings"));	
+	$rs = DB::Select("chat_history", array("status"=>"edit"));
+	while($data = $rs->fetchAssoc()){
+		$res[] = $data["id"];
+		if(strtotime(date("Y-m-d H:i:s")) - strtotime($data["status_created"])>=$period*2)
+			DB::Delete("chat_history", array("id"=>$data["id"]));
+	}
+	return $res;
+}
+function updateIsRead(){
+	global $loginKeyFields, $cLoginTable;
+	$userdata = Security::currentUserData();
+		if($_SESSION["targetid"]){
+		if(strpos(postvalue("url"),"chat_history_add")>0 || strpos(postvalue("url"),"chat_history/add")>0){
+			if(!isGroupTarget($_SESSION["targetid"])){
+				DB::Update("chat_history",array("isread"=>$userdata[$loginKeyFields[0]]),array("ownerid"=>$_SESSION["targetid"],"targetid"=>$userdata[$loginKeyFields[0]]));
+			}
+			else{
+				$targetIDs = getGroupIDsIn($_SESSION["targetid"]);
+				/*$pSet = new ProjectSettings( $cLoginTable );
+				$ftype = $pSet->getFieldType( $loginKeyFields[0] );
+				$val = $userdata[$loginKeyFields[0]];
+				if(NeedQuotes($ftype))
+					$val = "'".$userdata[$loginKeyFields[0]]."'";
+				$rs2 = DB::Query("select * from chat_history where status<>'delete' and targetid='".$_SESSION["targetid"]."' and ".$val." in (".$targetIDs.")");*/
+				
+				$dc = new DsCommand();
+				$conditions = array();
+				$conditions[] = DataCondition::FieldIs( "targetid", dsopEQUAL, $_SESSION["targetid"] );
+				//$conditions[] = DataCondition::FieldIs( $userdata[$loginKeyFields[0]], dsopIN, $targetIDs );
+				$conditions[] = DataCondition::_Not( DataCondition::FieldIs( "status", dsopEQUAL, 'delete' ) );
+				$dc->filter = DataCondition::_And( $conditions );
+				$datasource = getDataSource("chat_history");
+				$rs2 = $datasource->getList( $dc );
+
+				while($data2 = $rs2->fetchAssoc()){
+					if(in_array($userdata[$loginKeyFields[0]],$targetIDs)){
+						$arrayRead = array();
+						$arrayRead = explode(",",$data2["isread"]);
+						$key = array_search(0, $arrayRead);
+						if (false !== $key && $arrayRead[0]=="0")
+							unset($arrayRead[$key]);
+						if(!in_array($userdata[$loginKeyFields[0]],$arrayRead)){
+							$arrayRead[] = $userdata[$loginKeyFields[0]];
+							$isRead = implode(",",$arrayRead);
+							DB::Update("chat_history",array("isread"=>$isRead),"id=".$data2["id"]);
+						}
+					}
+				}
+			}
+		}
+	}
+}
+
+function getIsReadStatus(){
+	global $loginKeyFields;
+	$userdata = Security::currentUserData();
+	$isRead = array();
+	$rs = DB::Select("chat_history",array("targetid"=>$_SESSION["targetid"],"ownerid"=>$userdata[$loginKeyFields[0]]));
+	while($data = $rs->fetchAssoc()){
+		if($data["isread"] && $data["isread"] != $data["ownerid"] && $data["id"]>=$_SESSION["firstMessID"]){
+			if(!isGroupTarget($_SESSION["targetid"]))
+				$isRead[$data["id"]] = 2;
+			else{
+				$ids = getGroupIDs($_SESSION["targetid"]);
+				$arrayIDs = explode(",",$ids);
+				if(!in_array($userdata[$loginKeyFields[0]],$arrayIDs))
+					$arrayIDs[] = $userdata[$loginKeyFields[0]];
+				sort($arrayIDs);
+				$arrayRead = explode(",",$data["isread"]);
+				sort($arrayRead);
+				if($arrayIDs == $arrayRead)
+					$isRead[$data["id"]] = 3;
+				else
+					$isRead[$data["id"]] = 2;
+			}
+		}
+	}
+	return $isRead;
+}
+
+function getVideoCallData(){
+	global $loginKeyFields, $cLoginTable, $cUserpicField, $cUserNameField;
+	$userdata = Security::currentUserData();
+	$userid = $userdata[$loginKeyFields[0]];
+	$sql = DB::PrepareSQL("select * from ".AddTableWrappers("chat_history")." where ".AddFieldWrappers("targetid")."=:1 and ".AddFieldWrappers("isVideo").">0",$userid);
+	$rs = DB::Query($sql);
+	if($data = $rs->fetchAssoc()){
+		$_SESSION["targetid"] = $data["ownerid"];
+		DB::SetConnection(DB::ConnectionByTable($cLoginTable));
+		$rs2 = DB::Select( $cLoginTable, array( $loginKeyFields[0] => $data["ownerid"]) );
+		DB::SetConnection(DB::DefaultConnection());
+		$data2 = $rs2->fetchAssoc();
+		
+		DB::Delete("chat_history", array("targetid"=>$userid, "isVideo"=>1));		
+		
+		if($data2[$cUserpicField])
+			$src = "data:image/png;base64,".base64_encode($data2[$cUserpicField]);
+		else
+			$src = "images/no_avatar.jpg";
+		
+		return array("msg"=>$data["messages"],"avatar"=>$src, "name"=>$data2[$cUserNameField], "isVideo"=>$data["isVideo"]);
+	}
+	else
+		return array();
+}
+
+function this_microtime(){
+	return microtime();
+}
+?>

chat_groups_add.php

@@ -0,0 +1,108 @@
+<?php 
+@ini_set("display_errors","1");
+
+require_once("include/dbcommon.php");
+require_once("classes/searchclause.php");
+require_once("include/chat_groups_variables.php");
+require_once('include/xtempl.php');
+require_once('classes/addpage.php');
+require_once('include/lookuplinks.php');
+
+add_nocache_headers();
+
+InitLookupLinks();
+
+if( Security::hasLogin() ) {
+	if( !AddPage::processAddPageSecurity( $strTableName ) )
+		return;
+}
+
+AddPage::handleBrokenRequest();
+
+
+$pageMode = AddPage::readAddModeFromRequest();
+
+$xt = new Xtempl();
+
+$id = postvalue_number("id");
+$id = $id ? $id : 1;
+	 	
+//an array of AddPage constructor's params 
+$params = array();
+$params["id"] = $id;
+$params["xt"] = &$xt;
+$params["mode"] = $pageMode;
+$params["pageType"] = PAGE_ADD;
+$params["tName"] = $strTableName;
+$params["pageName"] = postvalue("page");
+$params["action"] = postvalue("a");
+$params["needSearchClauseObj"] = false;
+$params["afterAdd_id"] = postvalue("afteradd");
+
+$params["hostPageName"] = postvalue("hostPageName");
+$params["listPage"] = postvalue("listPage");
+
+$params["newRowId"] = postvalue("newRowId");
+
+$params["masterTable"] = postvalue("mastertable");
+if( $params["masterTable"] )
+	$params["masterKeysReq"] = RunnerPage::readMasterKeysFromRequest();
+
+
+		
+;
+$params["captchaName"] = "captcha_1209xre";
+$params["captchaValue"] = postvalue("value_captcha_1209xre_" . $id);
+$params["dashElementName"] = postvalue("dashelement");
+$params["fromDashboard"] = postvalue("fromDashboard");
+$params["dashTName"] = $params["fromDashboard"] ? $params["fromDashboard"] : postvalue("dashTName");
+$params["dashPage"] = postvalue("dashPage");
+
+$params["forSpreadsheetGrid"] = postvalue("spreadsheetGrid");
+
+if ( $pageMode == ADD_POPUP ) {
+	$params["forListPageLookup"] = postvalue('forLookup');
+}
+
+if( $pageMode == ADD_DASHBOARD ) 
+{
+	$params["dashElementName"] = postvalue("dashelement");
+	$params["dashTName"] = postvalue("table");
+	$params["dashPage"] = postvalue("dashPage");
+}
+
+
+if( $pageMode == ADD_INLINE )
+{
+	// Inline add in a 'List page with search' lookup
+	$params["forListPageLookup"] = postvalue('forLookup');
+	
+	$params["screenWidth"] = postvalue("screenWidth");
+	$params["screenHeight"] = postvalue("screenHeight");
+	$params["orientation"] = postvalue("orientation");
+	
+	$params["masterPageType"] = postvalue("masterpagetype");
+}	
+
+
+if( $pageMode == ADD_ONTHEFLY || ( $pageMode == ADD_INLINE || $pageMode == ADD_POPUP ) && postvalue('forLookup') )	
+{
+	//table where lookup is set
+	$params["lookupTable"] = postvalue("table");
+	//field with lookup is set	
+	$params["lookupField"] = postvalue("field");
+	 //the ptype od the page where lookup is set
+	$params["lookupPageType"] = postvalue("pageType");
+	
+	if( postvalue('parentsExist') )
+	{
+		//the parent controls values data
+		$params["parentCtrlsData"] = my_json_decode( postvalue("parentCtrlsData") );		
+	}		
+}
+
+$pageObject = new AddPage($params);
+$pageObject->init();
+
+$pageObject->process();	
+?>

chat_groups_edit.php

@@ -0,0 +1,107 @@
+<?php 
+
+@ini_set("display_errors","1");
+@ini_set("display_startup_errors","1");
+
+require_once("include/dbcommon.php");
+require_once("classes/searchclause.php");
+require_once("include/chat_groups_variables.php");
+require_once('include/xtempl.php');
+require_once('classes/editpage.php');
+
+add_nocache_headers();
+
+if( Security::hasLogin() ) {
+	if( !EditPage::processEditPageSecurity( $strTableName ) )
+		return;
+}
+
+EditPage::handleBrokenRequest();
+
+//	render all necessary layouts
+
+
+// parse control parameters
+$pageMode = EditPage::readEditModeFromRequest();
+
+$xt = new Xtempl();	
+	
+$id = postvalue_number("id");
+$id = intval($id) == 0 ? 1 : $id;
+
+
+// $keys could not be set properly if editid params were no passed
+$keys = array();
+$keys["id"] = postvalue("editid1");
+
+//array of params for classes
+$params = array();
+$params["id"] = $id;
+$params["xt"] = &$xt;
+$params["keys"] = $keys;
+$params["mode"] = $pageMode;
+$params["pageType"] = PAGE_EDIT;
+$params["pageName"] = postvalue("page");
+$params["tName"] = $strTableName;
+$params["action"] = postvalue("a");
+$params["selectedFields"] = postvalue("fields");
+		
+;
+$params["captchaName"] = "captcha_1209xre";
+$params["captchaValue"] = postvalue("value_captcha_1209xre_" . $id);
+$params["selection"] = postvalue("selection");
+$params["rowIds"] = my_json_decode( postvalue("rowIds") );
+
+$params["masterTable"] = postvalue("mastertable");
+if( $params["masterTable"] )
+	$params["masterKeysReq"] = RunnerPage::readMasterKeysFromRequest();
+
+//	locking parameters
+$params["lockingAction"] = postvalue("action");
+$params["lockingSid"] = postvalue("sid");
+$params["lockingKeys"] = postvalue("keys");
+$params["lockingStart"] = postvalue("startEdit");
+
+if( $pageMode == EDIT_INLINE )
+{
+	$params["screenWidth"] = postvalue("screenWidth");
+	$params["screenHeight"] = postvalue("screenHeight");
+	$params["orientation"] = postvalue("orientation");
+}	
+
+if( $pageMode == EDIT_DASHBOARD ) 
+{
+	$params["dashElementName"] = postvalue("dashelement");
+	$params["dashTName"] = postvalue("table");
+	$params["dashPage"] = postvalue("dashPage");
+	
+	if(	postvalue("mapRefresh") )
+	{
+		$params["mapRefresh"] = true;
+		$params["vpCoordinates"] = my_json_decode( postvalue("vpCoordinates") );
+	}	
+}
+
+if(( $pageMode == EDIT_POPUP || $pageMode == EDIT_INLINE ) && postvalue("dashTName"))
+{
+	$params["dashTName"] = postvalue("dashTName");
+	$params["dashElementName"] = postvalue("dashelement");
+	$params["dashPage"] = postvalue("dashPage");
+}
+
+$params["forSpreadsheetGrid"] = postvalue("spreadsheetGrid");
+$params["hostPageName"] = postvalue("hostPageName");
+$params["listPage"] = postvalue("listPage");
+
+$pageObject = EditPage::EditPageFactory($params);
+
+if( $pageObject->isLockingRequest() )
+{
+	$pageObject->doLockingAction();
+	exit();
+}
+
+$pageObject->init();
+
+$pageObject->process();
+?>

chat_groups_list.php

@@ -0,0 +1,163 @@
+<?php
+@ini_set("display_errors","1");
+@ini_set("display_startup_errors","1");
+
+$requestTable = "chat_groups";
+$requestPage = "list";
+
+require_once("include/dbcommon.php");
+add_nocache_headers();
+
+require_once('include/xtempl.php');
+
+require_once("classes/searchcontrol.php");
+require_once("classes/searchclause.php");
+require_once("classes/panelsearchcontrol.php");
+require_once("include/chat_groups_variables.php");
+require_once('classes/listpage.php');
+require_once('include/lookuplinks.php');
+
+//	Check whether the page was called as a part of Lookup wizard - List page with search.
+//  Verify the eligibility of such a call.
+
+InitLookupLinks();
+if( Security::hasLogin() ) {
+	if( !ListPage::processListPageSecurity( $strTableName ) )
+		return;
+}
+
+if( ListPage::processSaveParams( $strTableName ) )
+	return;
+
+$options = array();
+//array of params for classes
+
+//	Include necessary files in accordance with the page displaying mode
+$mode = ListPage::readListModeFromRequest();
+if( $mode == LIST_SIMPLE )
+{
+	require_once('classes/listpage_simple.php');
+	require_once("classes/searchpanelsimple.php");
+}
+elseif( $mode == LIST_AJAX )
+{
+	require_once('classes/listpage_simple.php');
+	require_once('classes/listpage_ajax.php');
+	require_once("classes/searchpanelsimple.php");
+}
+elseif( $mode == LIST_LOOKUP )
+{	
+	require_once('classes/listpage_embed.php');
+	require_once('classes/listpage_lookup.php');
+	
+	$options["mainTable"] = postvalue("table");
+	$options["mainField"] = postvalue("field");
+	$options["mainPageType"] = postvalue("pageType");
+
+	$options["mainRecordData"] = my_json_decode( postvalue('data') );
+	$options["mainRecordMasterTable"] = postvalue('mainRecordMasterTable');
+	
+	if( postvalue("parentsExist") )
+		$options["parentCtrlsData"] = my_json_decode( postvalue("parentCtrlsData") );
+}
+elseif( $mode == LIST_POPUPDETAILS )
+{	
+	require_once('classes/listpage_embed.php');
+	require_once('classes/listpage_dpinline.php');
+	require_once('classes/listpage_dppopup.php');
+}
+elseif( $mode == LIST_DETAILS )
+{	
+	require_once('classes/listpage_embed.php');
+	require_once('classes/listpage_dpinline.php');
+	require_once('classes/listpage_dplist.php');
+}
+elseif( $mode == LIST_DASHDETAILS )
+{
+	require_once('classes/listpage_embed.php');
+	require_once('classes/listpage_dashboard.php');
+	require_once('classes/listpage_dpdash.php');
+}
+elseif( $mode == LIST_DASHBOARD )
+{
+	require_once('classes/listpage_embed.php');
+	require_once('classes/listpage_dashboard.php');
+}
+elseif( $mode == MAP_DASHBOARD )
+{
+	require_once('classes/listpage_embed.php');
+	require_once('classes/listpage_dashboard.php');
+	require_once('classes/map_dashboard.php');
+} 
+
+$xt = new Xtempl( $mode != LIST_SIMPLE ); //#9607 1. Temporary fix
+
+$options["pageName"] = postvalue("page");
+$options["pageType"] = PAGE_LIST;
+$options["id"] = postvalue_number("id") ? postvalue_number("id") : 1;
+$options["flyId"] = (int)postvalue("recordId");
+$options["mode"] = $mode;
+$options["xt"] = &$xt;
+$options["firstTime"] = postvalue("firstTime");
+$options["sortBy"] = postvalue("sortby");
+$options["requestGoto"] = postvalue_number("goto");
+
+
+$options["masterPageType"] = postvalue("masterpagetype");
+$options["masterPage"] = postvalue("masterpage");
+$options["masterId"] = postvalue("masterid");
+
+$options["masterTable"] = postvalue("mastertable");
+if( $options["masterTable"] )
+	$options["masterKeysReq"] = RunnerPage::readMasterKeysFromRequest();
+
+
+if( $mode == LIST_DASHBOARD && postvalue("nodata") && strlen($options["masterTable"]) )
+	$options["showNoData"] = true;
+
+if( $mode != LIST_LOOKUP )
+{
+	$options["dashElementName"] = postvalue("dashelement");
+	$options["dashTName"] = postvalue("table");
+	$options["dashPage"] = postvalue("dashPage");
+} 
+
+if(	postvalue("mapRefresh") )
+{
+	$options["mapRefresh"] = true;
+	$options["vpCoordinates"] = my_json_decode( postvalue("vpCoordinates") );
+}
+
+if(	postvalue("firstTime") )
+	$options["firstTime"] = true;
+
+//	Create $pageObject
+$pageObject = ListPage::createListPage($strTableName, $options);
+
+if( $pageObject->processSaveSearch() )
+	exit();
+
+if( $pageObject->updateRowOrder() )
+	exit();
+
+if ( $pageObject->processFieldFilter() )
+	exit();
+
+if( $pageObject->processTotals() ) 
+	exit();
+
+if( $mode != LIST_DETAILS && $mode != MAP_DASHBOARD && $mode != LIST_DASHBOARD ) 
+{ 
+	//maps
+}
+
+unset($_SESSION["message_add"]);
+unset($_SESSION["message_edit"]);
+
+// prepare code for build page
+$pageObject->prepareForBuildPage();
+
+// show page depends of mode
+$pageObject->showPage();
+
+?>

chat_groups_search.php

@@ -0,0 +1,95 @@
+<?php 
+@ini_set("display_errors","1");
+@ini_set("display_startup_errors","1");
+
+require_once("include/dbcommon.php");
+add_nocache_headers();
+
+require_once("classes/searchclause.php");
+require_once("include/chat_groups_variables.php");
+require_once("classes/searchcontrol.php");
+require_once("classes/advancedsearchcontrol.php");
+require_once("classes/panelsearchcontrol.php");
+
+
+Security::processLogoutRequest();
+
+if( !isLogged() )
+{ 
+	Security::saveRedirectURL();
+	redirectToLogin();
+}
+
+require_once( "include/reportfunctions.php" );
+$cname = postvalue("cname");
+$rname = postvalue("rname");
+if( $rname || $cname ) {
+	$rpt_array = wrGetEntityArray( 
+		$rname ? $rname : $cname, 
+		$rname ? WR_REPORT : WR_CHART
+	);
+	$accessGranted = @$rpt_array['status'] != "private" || @$rpt_array['owner'] != Security::getUserName();
+} else {
+	$accessGranted = CheckTablePermissions( $strTableName, "S" );
+}
+if(!$accessGranted)
+{
+	HeaderRedirect("menu");
+}
+
+
+require_once('include/xtempl.php');
+require_once('classes/searchpage.php');
+require_once('classes/searchpage_dash.php');
+
+$xt = new Xtempl();	
+$pageMode = SearchPage::readSearchModeFromRequest();
+
+if( $pageMode == SEARCH_LOAD_CONTROL )
+	$layoutVersion = postvalue("layoutVersion");
+
+
+$params = array();
+$params['xt'] = &$xt;
+$params['id'] = postvalue_number("id");
+$params['mode'] = $pageMode;
+$params['tName'] = $strTableName;
+$params["pageName"] = postvalue("page");
+$params['pageType'] = PAGE_SEARCH;
+$params['chartName'] = $cname;
+$params['reportName'] = $rname;
+$params['templatefile'] = $templatefile;
+$params['shortTableName'] = 'chat_groups';
+$params['layoutVersion'] = $layoutVersion;
+
+$params['searchControllerId'] = postvalue('searchControllerId') ? postvalue('searchControllerId') : $id;
+$params['ctrlField'] = postvalue('ctrlField');
+
+$params['needSettings'] = postvalue('isNeedSettings');
+
+if( $pageMode == SEARCH_DASHBOARD )
+{
+	$params["dashTName"] = postvalue("table");
+	$params["dashElementName"] = postvalue("dashelement");
+	$params["dashPage"] = postvalue("dashPage");
+}
+
+// e.g. crosstable params
+$params["extraPageParams"] = SearchPage::getExtraPageParams();
+
+$params["masterTable"] = postvalue("mastertable");
+if( $params["masterTable"] )
+	$params["masterKeysReq"] = RunnerPage::readMasterKeysFromRequest();
+
+
+$pageObject = new SearchPage($params);
+
+if( $pageMode == SEARCH_LOAD_CONTROL )
+{
+	$pageObject->displaySearchControl();
+	return;
+}
+
+$pageObject->init();
+$pageObject->process();
+?>

chat_history_add.php

@@ -0,0 +1,108 @@
+<?php 
+@ini_set("display_errors","1");
+
+require_once("include/dbcommon.php");
+require_once("classes/searchclause.php");
+require_once("include/chat_history_variables.php");
+require_once('include/xtempl.php');
+require_once('classes/addpage.php');
+require_once('include/lookuplinks.php');
+
+add_nocache_headers();
+
+InitLookupLinks();
+
+if( Security::hasLogin() ) {
+	if( !AddPage::processAddPageSecurity( $strTableName ) )
+		return;
+}
+
+AddPage::handleBrokenRequest();
+
+
+$pageMode = AddPage::readAddModeFromRequest();
+
+$xt = new Xtempl();
+
+$id = postvalue_number("id");
+$id = $id ? $id : 1;
+	 	
+//an array of AddPage constructor's params 
+$params = array();
+$params["id"] = $id;
+$params["xt"] = &$xt;
+$params["mode"] = $pageMode;
+$params["pageType"] = PAGE_ADD;
+$params["tName"] = $strTableName;
+$params["pageName"] = postvalue("page");
+$params["action"] = postvalue("a");
+$params["needSearchClauseObj"] = false;
+$params["afterAdd_id"] = postvalue("afteradd");
+
+$params["hostPageName"] = postvalue("hostPageName");
+$params["listPage"] = postvalue("listPage");
+
+$params["newRowId"] = postvalue("newRowId");
+
+$params["masterTable"] = postvalue("mastertable");
+if( $params["masterTable"] )
+	$params["masterKeysReq"] = RunnerPage::readMasterKeysFromRequest();
+
+
+		
+;
+$params["captchaName"] = "captcha_1209xre";
+$params["captchaValue"] = postvalue("value_captcha_1209xre_" . $id);
+$params["dashElementName"] = postvalue("dashelement");
+$params["fromDashboard"] = postvalue("fromDashboard");
+$params["dashTName"] = $params["fromDashboard"] ? $params["fromDashboard"] : postvalue("dashTName");
+$params["dashPage"] = postvalue("dashPage");
+
+$params["forSpreadsheetGrid"] = postvalue("spreadsheetGrid");
+
+if ( $pageMode == ADD_POPUP ) {
+	$params["forListPageLookup"] = postvalue('forLookup');
+}
+
+if( $pageMode == ADD_DASHBOARD ) 
+{
+	$params["dashElementName"] = postvalue("dashelement");
+	$params["dashTName"] = postvalue("table");
+	$params["dashPage"] = postvalue("dashPage");
+}
+
+
+if( $pageMode == ADD_INLINE )
+{
+	// Inline add in a 'List page with search' lookup
+	$params["forListPageLookup"] = postvalue('forLookup');
+	
+	$params["screenWidth"] = postvalue("screenWidth");
+	$params["screenHeight"] = postvalue("screenHeight");
+	$params["orientation"] = postvalue("orientation");
+	
+	$params["masterPageType"] = postvalue("masterpagetype");
+}	
+
+
+if( $pageMode == ADD_ONTHEFLY || ( $pageMode == ADD_INLINE || $pageMode == ADD_POPUP ) && postvalue('forLookup') )	
+{
+	//table where lookup is set
+	$params["lookupTable"] = postvalue("table");
+	//field with lookup is set	
+	$params["lookupField"] = postvalue("field");
+	 //the ptype od the page where lookup is set
+	$params["lookupPageType"] = postvalue("pageType");
+	
+	if( postvalue('parentsExist') )
+	{
+		//the parent controls values data
+		$params["parentCtrlsData"] = my_json_decode( postvalue("parentCtrlsData") );		
+	}		
+}
+
+$pageObject = new AddPage($params);
+$pageObject->init();
+
+$pageObject->process();	
+?>

chat_history_search.php

@@ -0,0 +1,95 @@
+<?php 
+@ini_set("display_errors","1");
+@ini_set("display_startup_errors","1");
+
+require_once("include/dbcommon.php");
+add_nocache_headers();
+
+require_once("classes/searchclause.php");
+require_once("include/chat_history_variables.php");
+require_once("classes/searchcontrol.php");
+require_once("classes/advancedsearchcontrol.php");
+require_once("classes/panelsearchcontrol.php");
+
+
+Security::processLogoutRequest();
+
+if( !isLogged() )
+{ 
+	Security::saveRedirectURL();
+	redirectToLogin();
+}
+
+require_once( "include/reportfunctions.php" );
+$cname = postvalue("cname");
+$rname = postvalue("rname");
+if( $rname || $cname ) {
+	$rpt_array = wrGetEntityArray( 
+		$rname ? $rname : $cname, 
+		$rname ? WR_REPORT : WR_CHART
+	);
+	$accessGranted = @$rpt_array['status'] != "private" || @$rpt_array['owner'] != Security::getUserName();
+} else {
+	$accessGranted = CheckTablePermissions( $strTableName, "S" );
+}
+if(!$accessGranted)
+{
+	HeaderRedirect("menu");
+}
+
+
+require_once('include/xtempl.php');
+require_once('classes/searchpage.php');
+require_once('classes/searchpage_dash.php');
+
+$xt = new Xtempl();	
+$pageMode = SearchPage::readSearchModeFromRequest();
+
+if( $pageMode == SEARCH_LOAD_CONTROL )
+	$layoutVersion = postvalue("layoutVersion");
+
+
+$params = array();
+$params['xt'] = &$xt;
+$params['id'] = postvalue_number("id");
+$params['mode'] = $pageMode;
+$params['tName'] = $strTableName;
+$params["pageName"] = postvalue("page");
+$params['pageType'] = PAGE_SEARCH;
+$params['chartName'] = $cname;
+$params['reportName'] = $rname;
+$params['templatefile'] = $templatefile;
+$params['shortTableName'] = 'chat_history';
+$params['layoutVersion'] = $layoutVersion;
+
+$params['searchControllerId'] = postvalue('searchControllerId') ? postvalue('searchControllerId') : $id;
+$params['ctrlField'] = postvalue('ctrlField');
+
+$params['needSettings'] = postvalue('isNeedSettings');
+
+if( $pageMode == SEARCH_DASHBOARD )
+{
+	$params["dashTName"] = postvalue("table");
+	$params["dashElementName"] = postvalue("dashelement");
+	$params["dashPage"] = postvalue("dashPage");
+}
+
+// e.g. crosstable params
+$params["extraPageParams"] = SearchPage::getExtraPageParams();
+
+$params["masterTable"] = postvalue("mastertable");
+if( $params["masterTable"] )
+	$params["masterKeysReq"] = RunnerPage::readMasterKeysFromRequest();
+
+
+$pageObject = new SearchPage($params);
+
+if( $pageMode == SEARCH_LOAD_CONTROL )
+{
+	$pageObject->displaySearchControl();
+	return;
+}
+
+$pageObject->init();
+$pageObject->process();
+?>

chat_peopletype_search.php

@@ -0,0 +1,95 @@
+<?php 
+@ini_set("display_errors","1");
+@ini_set("display_startup_errors","1");
+
+require_once("include/dbcommon.php");
+add_nocache_headers();
+
+require_once("classes/searchclause.php");
+require_once("include/chat_peopletype_variables.php");
+require_once("classes/searchcontrol.php");
+require_once("classes/advancedsearchcontrol.php");
+require_once("classes/panelsearchcontrol.php");
+
+
+Security::processLogoutRequest();
+
+if( !isLogged() )
+{ 
+	Security::saveRedirectURL();
+	redirectToLogin();
+}
+
+require_once( "include/reportfunctions.php" );
+$cname = postvalue("cname");
+$rname = postvalue("rname");
+if( $rname || $cname ) {
+	$rpt_array = wrGetEntityArray( 
+		$rname ? $rname : $cname, 
+		$rname ? WR_REPORT : WR_CHART
+	);
+	$accessGranted = @$rpt_array['status'] != "private" || @$rpt_array['owner'] != Security::getUserName();
+} else {
+	$accessGranted = CheckTablePermissions( $strTableName, "S" );
+}
+if(!$accessGranted)
+{
+	HeaderRedirect("menu");
+}
+
+
+require_once('include/xtempl.php');
+require_once('classes/searchpage.php');
+require_once('classes/searchpage_dash.php');
+
+$xt = new Xtempl();	
+$pageMode = SearchPage::readSearchModeFromRequest();
+
+if( $pageMode == SEARCH_LOAD_CONTROL )
+	$layoutVersion = postvalue("layoutVersion");
+
+
+$params = array();
+$params['xt'] = &$xt;
+$params['id'] = postvalue_number("id");
+$params['mode'] = $pageMode;
+$params['tName'] = $strTableName;
+$params["pageName"] = postvalue("page");
+$params['pageType'] = PAGE_SEARCH;
+$params['chartName'] = $cname;
+$params['reportName'] = $rname;
+$params['templatefile'] = $templatefile;
+$params['shortTableName'] = 'chat_peopletype';
+$params['layoutVersion'] = $layoutVersion;
+
+$params['searchControllerId'] = postvalue('searchControllerId') ? postvalue('searchControllerId') : $id;
+$params['ctrlField'] = postvalue('ctrlField');
+
+$params['needSettings'] = postvalue('isNeedSettings');
+
+if( $pageMode == SEARCH_DASHBOARD )
+{
+	$params["dashTName"] = postvalue("table");
+	$params["dashElementName"] = postvalue("dashelement");
+	$params["dashPage"] = postvalue("dashPage");
+}
+
+// e.g. crosstable params
+$params["extraPageParams"] = SearchPage::getExtraPageParams();
+
+$params["masterTable"] = postvalue("mastertable");
+if( $params["masterTable"] )
+	$params["masterKeysReq"] = RunnerPage::readMasterKeysFromRequest();
+
+
+$pageObject = new SearchPage($params);
+
+if( $pageMode == SEARCH_LOAD_CONTROL )
+{
+	$pageObject->displaySearchControl();
+	return;
+}
+
+$pageObject->init();
+$pageObject->process();
+?>

chat_settings_edit.php

@@ -0,0 +1,107 @@
+<?php 
+
+@ini_set("display_errors","1");
+@ini_set("display_startup_errors","1");
+
+require_once("include/dbcommon.php");
+require_once("classes/searchclause.php");
+require_once("include/chat_settings_variables.php");
+require_once('include/xtempl.php');
+require_once('classes/editpage.php');
+
+add_nocache_headers();
+
+if( Security::hasLogin() ) {
+	if( !EditPage::processEditPageSecurity( $strTableName ) )
+		return;
+}
+
+EditPage::handleBrokenRequest();
+
+//	render all necessary layouts
+
+
+// parse control parameters
+$pageMode = EditPage::readEditModeFromRequest();
+
+$xt = new Xtempl();	
+	
+$id = postvalue_number("id");
+$id = intval($id) == 0 ? 1 : $id;
+
+
+// $keys could not be set properly if editid params were no passed
+$keys = array();
+$keys["id"] = postvalue("editid1");
+
+//array of params for classes
+$params = array();
+$params["id"] = $id;
+$params["xt"] = &$xt;
+$params["keys"] = $keys;
+$params["mode"] = $pageMode;
+$params["pageType"] = PAGE_EDIT;
+$params["pageName"] = postvalue("page");
+$params["tName"] = $strTableName;
+$params["action"] = postvalue("a");
+$params["selectedFields"] = postvalue("fields");
+		
+;
+$params["captchaName"] = "captcha_1209xre";
+$params["captchaValue"] = postvalue("value_captcha_1209xre_" . $id);
+$params["selection"] = postvalue("selection");
+$params["rowIds"] = my_json_decode( postvalue("rowIds") );
+
+$params["masterTable"] = postvalue("mastertable");
+if( $params["masterTable"] )
+	$params["masterKeysReq"] = RunnerPage::readMasterKeysFromRequest();
+
+//	locking parameters
+$params["lockingAction"] = postvalue("action");
+$params["lockingSid"] = postvalue("sid");
+$params["lockingKeys"] = postvalue("keys");
+$params["lockingStart"] = postvalue("startEdit");
+
+if( $pageMode == EDIT_INLINE )
+{
+	$params["screenWidth"] = postvalue("screenWidth");
+	$params["screenHeight"] = postvalue("screenHeight");
+	$params["orientation"] = postvalue("orientation");
+}	
+
+if( $pageMode == EDIT_DASHBOARD ) 
+{
+	$params["dashElementName"] = postvalue("dashelement");
+	$params["dashTName"] = postvalue("table");
+	$params["dashPage"] = postvalue("dashPage");
+	
+	if(	postvalue("mapRefresh") )
+	{
+		$params["mapRefresh"] = true;
+		$params["vpCoordinates"] = my_json_decode( postvalue("vpCoordinates") );
+	}	
+}
+
+if(( $pageMode == EDIT_POPUP || $pageMode == EDIT_INLINE ) && postvalue("dashTName"))
+{
+	$params["dashTName"] = postvalue("dashTName");
+	$params["dashElementName"] = postvalue("dashelement");
+	$params["dashPage"] = postvalue("dashPage");
+}
+
+$params["forSpreadsheetGrid"] = postvalue("spreadsheetGrid");
+$params["hostPageName"] = postvalue("hostPageName");
+$params["listPage"] = postvalue("listPage");
+
+$pageObject = EditPage::EditPageFactory($params);
+
+if( $pageObject->isLockingRequest() )
+{
+	$pageObject->doLockingAction();
+	exit();
+}
+
+$pageObject->init();
+
+$pageObject->process();
+?>

chat_settings_search.php

@@ -0,0 +1,95 @@
+<?php 
+@ini_set("display_errors","1");
+@ini_set("display_startup_errors","1");
+
+require_once("include/dbcommon.php");
+add_nocache_headers();
+
+require_once("classes/searchclause.php");
+require_once("include/chat_settings_variables.php");
+require_once("classes/searchcontrol.php");
+require_once("classes/advancedsearchcontrol.php");
+require_once("classes/panelsearchcontrol.php");
+
+
+Security::processLogoutRequest();
+
+if( !isLogged() )
+{ 
+	Security::saveRedirectURL();
+	redirectToLogin();
+}
+
+require_once( "include/reportfunctions.php" );
+$cname = postvalue("cname");
+$rname = postvalue("rname");
+if( $rname || $cname ) {
+	$rpt_array = wrGetEntityArray( 
+		$rname ? $rname : $cname, 
+		$rname ? WR_REPORT : WR_CHART
+	);
+	$accessGranted = @$rpt_array['status'] != "private" || @$rpt_array['owner'] != Security::getUserName();
+} else {
+	$accessGranted = CheckTablePermissions( $strTableName, "S" );
+}
+if(!$accessGranted)
+{
+	HeaderRedirect("menu");
+}
+
+
+require_once('include/xtempl.php');
+require_once('classes/searchpage.php');
+require_once('classes/searchpage_dash.php');
+
+$xt = new Xtempl();	
+$pageMode = SearchPage::readSearchModeFromRequest();
+
+if( $pageMode == SEARCH_LOAD_CONTROL )
+	$layoutVersion = postvalue("layoutVersion");
+
+
+$params = array();
+$params['xt'] = &$xt;
+$params['id'] = postvalue_number("id");
+$params['mode'] = $pageMode;
+$params['tName'] = $strTableName;
+$params["pageName"] = postvalue("page");
+$params['pageType'] = PAGE_SEARCH;
+$params['chartName'] = $cname;
+$params['reportName'] = $rname;
+$params['templatefile'] = $templatefile;
+$params['shortTableName'] = 'chat_settings';
+$params['layoutVersion'] = $layoutVersion;
+
+$params['searchControllerId'] = postvalue('searchControllerId') ? postvalue('searchControllerId') : $id;
+$params['ctrlField'] = postvalue('ctrlField');
+
+$params['needSettings'] = postvalue('isNeedSettings');
+
+if( $pageMode == SEARCH_DASHBOARD )
+{
+	$params["dashTName"] = postvalue("table");
+	$params["dashElementName"] = postvalue("dashelement");
+	$params["dashPage"] = postvalue("dashPage");
+}
+
+// e.g. crosstable params
+$params["extraPageParams"] = SearchPage::getExtraPageParams();
+
+$params["masterTable"] = postvalue("mastertable");
+if( $params["masterTable"] )
+	$params["masterKeysReq"] = RunnerPage::readMasterKeysFromRequest();
+
+
+$pageObject = new SearchPage($params);
+
+if( $pageMode == SEARCH_LOAD_CONTROL )
+{
+	$pageObject->displaySearchControl();
+	return;
+}
+
+$pageObject->init();
+$pageObject->process();
+?>

chat_timezone_search.php

@@ -0,0 +1,95 @@
+<?php 
+@ini_set("display_errors","1");
+@ini_set("display_startup_errors","1");
+
+require_once("include/dbcommon.php");
+add_nocache_headers();
+
+require_once("classes/searchclause.php");
+require_once("include/chat_timezone_variables.php");
+require_once("classes/searchcontrol.php");
+require_once("classes/advancedsearchcontrol.php");
+require_once("classes/panelsearchcontrol.php");
+
+
+Security::processLogoutRequest();
+
+if( !isLogged() )
+{ 
+	Security::saveRedirectURL();
+	redirectToLogin();
+}
+
+require_once( "include/reportfunctions.php" );
+$cname = postvalue("cname");
+$rname = postvalue("rname");
+if( $rname || $cname ) {
+	$rpt_array = wrGetEntityArray( 
+		$rname ? $rname : $cname, 
+		$rname ? WR_REPORT : WR_CHART
+	);
+	$accessGranted = @$rpt_array['status'] != "private" || @$rpt_array['owner'] != Security::getUserName();
+} else {
+	$accessGranted = CheckTablePermissions( $strTableName, "S" );
+}
+if(!$accessGranted)
+{
+	HeaderRedirect("menu");
+}
+
+
+require_once('include/xtempl.php');
+require_once('classes/searchpage.php');
+require_once('classes/searchpage_dash.php');
+
+$xt = new Xtempl();	
+$pageMode = SearchPage::readSearchModeFromRequest();
+
+if( $pageMode == SEARCH_LOAD_CONTROL )
+	$layoutVersion = postvalue("layoutVersion");
+
+
+$params = array();
+$params['xt'] = &$xt;
+$params['id'] = postvalue_number("id");
+$params['mode'] = $pageMode;
+$params['tName'] = $strTableName;
+$params["pageName"] = postvalue("page");
+$params['pageType'] = PAGE_SEARCH;
+$params['chartName'] = $cname;
+$params['reportName'] = $rname;
+$params['templatefile'] = $templatefile;
+$params['shortTableName'] = 'chat_timezone';
+$params['layoutVersion'] = $layoutVersion;
+
+$params['searchControllerId'] = postvalue('searchControllerId') ? postvalue('searchControllerId') : $id;
+$params['ctrlField'] = postvalue('ctrlField');
+
+$params['needSettings'] = postvalue('isNeedSettings');
+
+if( $pageMode == SEARCH_DASHBOARD )
+{
+	$params["dashTName"] = postvalue("table");
+	$params["dashElementName"] = postvalue("dashelement");
+	$params["dashPage"] = postvalue("dashPage");
+}
+
+// e.g. crosstable params
+$params["extraPageParams"] = SearchPage::getExtraPageParams();
+
+$params["masterTable"] = postvalue("mastertable");
+if( $params["masterTable"] )
+	$params["masterKeysReq"] = RunnerPage::readMasterKeysFromRequest();
+
+
+$pageObject = new SearchPage($params);
+
+if( $pageMode == SEARCH_LOAD_CONTROL )
+{
+	$pageObject->displaySearchControl();
+	return;
+}
+
+$pageObject->init();
+$pageObject->process();
+?>

chat_users_search.php

@@ -0,0 +1,95 @@
+<?php 
+@ini_set("display_errors","1");
+@ini_set("display_startup_errors","1");
+
+require_once("include/dbcommon.php");
+add_nocache_headers();
+
+require_once("classes/searchclause.php");
+require_once("include/chat_users_variables.php");
+require_once("classes/searchcontrol.php");
+require_once("classes/advancedsearchcontrol.php");
+require_once("classes/panelsearchcontrol.php");
+
+
+Security::processLogoutRequest();
+
+if( !isLogged() )
+{ 
+	Security::saveRedirectURL();
+	redirectToLogin();
+}
+
+require_once( "include/reportfunctions.php" );
+$cname = postvalue("cname");
+$rname = postvalue("rname");
+if( $rname || $cname ) {
+	$rpt_array = wrGetEntityArray( 
+		$rname ? $rname : $cname, 
+		$rname ? WR_REPORT : WR_CHART
+	);
+	$accessGranted = @$rpt_array['status'] != "private" || @$rpt_array['owner'] != Security::getUserName();
+} else {
+	$accessGranted = CheckTablePermissions( $strTableName, "S" );
+}
+if(!$accessGranted)
+{
+	HeaderRedirect("menu");
+}
+
+
+require_once('include/xtempl.php');
+require_once('classes/searchpage.php');
+require_once('classes/searchpage_dash.php');
+
+$xt = new Xtempl();	
+$pageMode = SearchPage::readSearchModeFromRequest();
+
+if( $pageMode == SEARCH_LOAD_CONTROL )
+	$layoutVersion = postvalue("layoutVersion");
+
+
+$params = array();
+$params['xt'] = &$xt;
+$params['id'] = postvalue_number("id");
+$params['mode'] = $pageMode;
+$params['tName'] = $strTableName;
+$params["pageName"] = postvalue("page");
+$params['pageType'] = PAGE_SEARCH;
+$params['chartName'] = $cname;
+$params['reportName'] = $rname;
+$params['templatefile'] = $templatefile;
+$params['shortTableName'] = 'chat_users';
+$params['layoutVersion'] = $layoutVersion;
+
+$params['searchControllerId'] = postvalue('searchControllerId') ? postvalue('searchControllerId') : $id;
+$params['ctrlField'] = postvalue('ctrlField');
+
+$params['needSettings'] = postvalue('isNeedSettings');
+
+if( $pageMode == SEARCH_DASHBOARD )
+{
+	$params["dashTName"] = postvalue("table");
+	$params["dashElementName"] = postvalue("dashelement");
+	$params["dashPage"] = postvalue("dashPage");
+}
+
+// e.g. crosstable params
+$params["extraPageParams"] = SearchPage::getExtraPageParams();
+
+$params["masterTable"] = postvalue("mastertable");
+if( $params["masterTable"] )
+	$params["masterKeysReq"] = RunnerPage::readMasterKeysFromRequest();
+
+
+$pageObject = new SearchPage($params);
+
+if( $pageMode == SEARCH_LOAD_CONTROL )
+{
+	$pageObject->displaySearchControl();
+	return;
+}
+
+$pageObject->init();
+$pageObject->process();
+?>

checkduplicates.php

@@ -0,0 +1,80 @@
+<?php 
+@ini_set("display_errors","1");
+@ini_set("display_startup_errors","1");
+
+require_once("include/dbcommon.php");
+header("Expires: Thu, 01 Jan 1970 00:00:01 GMT"); 
+
+$shortTableName = postvalue("tableName");
+$table = GetTableByShort( $shortTableName );
+if( !$table )
+	exit(0);
+
+$pageType = postvalue("pageType");
+$pageName = postvalue("page");
+$fieldName = postvalue("fieldName");
+$fieldControlType = postvalue("fieldControlType");
+$value = postvalue("value");
+
+if( !Security::userHasFieldPermissions( $table, $fieldName, $pageType, $pageName, true ) )
+	return;
+
+$pSet = new ProjectSettings( $table, $pageType );
+$denyChecking = $pSet->allowDuplicateValues( $fieldName );
+
+$regEmailMode = false;
+$regUsernameMode = false;
+$userNameField = Security::usernameField();
+if( Security::registerPage() && $table == Security::loginDataSource() ) {
+	$regEmailMode = $fieldName == Security::emailField();
+	$regUsernameMode = $fieldName == $userNameField;
+	$denyChecking = $denyChecking && $fieldName != $userNameField && $fieldName != Security::emailField();
+}
+
+if( $denyChecking ) {
+	$returnJSON = array( "success" => false, "error" => "Duplicated values are allowed" );
+	echo printJSON( $returnJSON) ;
+	return;
+}
+
+// set db connection
+$_connection = $cman->byTable( $table );
+$dataSource = getDataSource( $table, $pSet, $_connection );
+$dc = new DsCommand();
+
+$dc->totals = array();
+$dc->totals[] = array(
+	"total" => "count",
+	"alias" => "count_".$fieldName,
+	"field" => $fieldName,
+);
+
+$dc->filter = DataCondition::FieldEquals( $fieldName, $value, 0, dsCASE_DEFAULT ); 
+
+// emails should always be compared case-insensitively
+if( $regEmailMode ) {
+	$dc->filter = DataCondition::FieldEquals( $fieldName, $value, 0, dsCASE_INSENSITIVE ); 
+}
+// username on register page
+if( $regUsernameMode ) {
+	$where = $_connection->comparisonSQL( $fieldSQL, $value, Security::caseInsensitiveUsername() );
+	$dc->filter = DataCondition::FieldEquals( $fieldName, $value, 0, 
+		Security::caseInsensitiveUsername() ? dsCASE_INSENSITIVE : dsCASE_STRICT );
+}
+
+$qResult = $dataSource->getTotals( $dc );
+if( !$qResult ) {
+	$returnJSON = array( "success" => false, "error" => "Error: Wrong SQL query" );
+	echo printJSON( $returnJSON );
+	return;
+}
+
+$hasDuplicates = false;
+$data = $qResult->fetchAssoc();
+if( $data )
+	$hasDuplicates = $data[ "count_".$fieldName ] ? true : false;
+
+$returnJSON = array( "success" => true, "hasDuplicates" => $hasDuplicates, "error" => "" );	
+echo printJSON( $returnJSON );
+return;
+?>

classes/addpage.php

@@ -0,0 +1,1885 @@
+<?php
+class AddPage extends RunnerPage
+{
+	/**
+	 * The page's message type
+	 * @type Number
+	 */
+	public $messageType = MESSAGE_ERROR;
+
+	protected $auditObj = null;
+
+	/**
+	 * The page's fields array
+	 */
+	protected $addFields = array();
+
+	protected $readAddValues = false;
+
+	/**
+	 * The record is being added through the 'List page with search' InlineAdd controls
+	 */
+	protected $insertedSuccessfully = false;
+
+	protected $defvalues = array();
+
+	protected $newRecordData = array();
+
+	/**
+	 * It could be set up in ADD_MASTER mode only
+	 */
+	public $afterAdd_id = '';
+
+	/**
+	 * The page's action
+	 * @type String
+	 */
+	public $action = "";
+
+	/**
+	 * It's set up in inline add mode only
+	 */
+	public $screenWidth = 0;
+
+	/**
+	 * It's set up in inline add mode only
+	 */
+	public $screenHeight = 0;
+
+	/**
+	 * It's set up in inline add mode only
+	 */
+	public $orientation = '';
+
+	/**
+	 * It's equal to true when a record is added
+	 * through the 'List page with search' InlineAdd controls
+	 */
+	public $forListPageLookup = false;
+
+	/**
+	 * The short lookup table name
+	 * It's set up properly when a record is being added
+	 * in a lookup 'Add new' popup
+	 * or through the 'List page with search' InlineAdd controls
+	 */
+	public $lookupTable = "";
+
+	/**
+	 * It's set up properly when a record is being added
+	 * in a lookup 'Add new' popup
+	 * or through the 'List page with search' InlineAdd controls
+	 */
+	public $lookupField = "";
+
+	/**
+	 * It's set up properly when a record is being added
+	 * in a lookup 'Add new' popup
+	 * or through the 'List page with search' InlineAdd controls
+	 */
+	public $lookupPageType = "";
+
+	/**
+	 * @type Array
+	 */
+	public $parentCtrlsData;
+
+
+	/**
+	 * @type Number
+	 */
+	protected $afterAddAction = null;
+
+	/**
+	 *
+	 */
+	public $fromDashboard = "";
+
+	public $forSpreadsheetGrid = false;
+	public $hostPageName = "";
+	public $newRowId;
+	
+	public $listPage = "";
+	
+	protected $sqlValues = array();
+	
+	/**
+	 * @constructor
+	 */
+	function __construct(&$params)
+	{
+		parent::__construct($params);
+
+		$this->addFields = $this->getPageFields();
+		$this->auditObj = GetAuditObject($this->tName);
+
+		$this->headerForms = array( "top" );
+		$this->footerForms = array( "below-grid" );
+
+		if ( $this->isMultistepped() )
+			$this->bodyForms = array( "above-grid", "steps" );
+		else
+			$this->bodyForms = array( "above-grid", "grid" );
+
+		$this->addPageSettings();
+	}
+
+	function setSessionVariables() {
+		parent::setSessionVariables();
+		//	don't use mastertable pre-stroed in session
+		if( !postvalue("mastertable")) {
+			$this->masterTable = "";
+		} 
+	}
+
+	/**
+	 * Add js page settings
+	 */
+	protected function addPageSettings()
+	{
+		if( $_SESSION[ $this->sessionPrefix . "_recordAdded" ] )
+		{
+			$this->setProxyValue( $this->shortTableName."_recordAdded", true );
+			unset( $_SESSION[ $this->sessionPrefix . "_recordAdded" ] );
+		}
+		else
+			$this->setProxyValue( $this->shortTableName."_recordAdded", false );
+
+		if( $this->mode != ADD_SIMPLE && $this->mode != ADD_POPUP )
+			return;
+
+		$afterAddAction = $this->getAfterAddAction();
+		$this->jsSettings["tableSettings"][ $this->tName ]["afterAddAction"] = $afterAddAction;
+
+		if ( $afterAddAction == AA_TO_DETAIL_LIST || $afterAddAction == AA_TO_DETAIL_ADD )
+			$this->jsSettings["tableSettings"][ $this->tName ]["afterAddActionDetTable"] = GetTableURL( $this->pSet->getAADetailTable() );
+		
+		if( $this->listPage && $afterAddAction == AA_TO_LIST ) {
+			$this->pageData["listPage"] = $this->listPage;
+		}
+	}
+
+	/**
+	 * Get the correct after add action
+	 * basing on the table settings
+	 * @return Number
+	 */
+	protected function getAfterAddAction()
+	{
+		if( isset( $this->afterAddAction ) && !is_null( $this->afterAddAction ) )
+			return $this->afterAddAction;
+
+		$action = $this->pSet->getAfterAddAction();
+
+		if( $this->mode == ADD_POPUP && $this->pSet->checkClosePopupAfterAdd()
+			|| $action == AA_TO_VIEW && !$this->viewAvailable()
+			|| $action == AA_TO_EDIT && !$this->editAvailable() )
+		{
+			$action = AA_TO_LIST;
+		}
+
+		if( $action == AA_TO_DETAIL_LIST || $action == AA_TO_DETAIL_ADD )
+		{
+			$dTName = $this->pSet->getAADetailTable();
+			$dPset = new ProjectSettings( $dTName );
+			$dPermissions = $this->getPermissions( $dTName );
+
+			$listPageAllowed = $dPset->hasListPage() && $dPermissions["search"];
+
+			if( !$dTName || $action == AA_TO_DETAIL_LIST && !$listPageAllowed
+				|| $action == AA_TO_DETAIL_ADD && ( !$dPset->hasAddPage() || !$dPermissions["add"] && !$listPageAllowed ) )
+			{
+				$action = AA_TO_LIST;
+			}
+		}
+
+		$this->afterAddAction = $action;
+		return $this->afterAddAction;
+	}
+
+	/**
+	 * Assign session prefix
+	 */
+	protected function assignSessionPrefix()
+	{
+		if( $this->mode == ADD_DASHBOARD || $this->mode == ADD_MASTER_DASH 
+			|| ($this->mode == ADD_POPUP || $this->mode == ADD_INLINE || $this->fromDashboard != "" ) && $this->dashTName )
+		{
+			$this->sessionPrefix = $this->dashTName."_".$this->tName;
+			return;
+		}
+
+		parent::assignSessionPrefix();
+
+		if( $this->mode == ADD_ONTHEFLY )
+			$this->sessionPrefix.= "_add";
+	}
+
+	/**
+	 * Set template file
+	 */
+	public function setTemplateFile()
+	{
+		if( $this->mode == ADD_INLINE )
+			$this->templatefile = GetTemplateName($this->shortTableName, "inline_add");
+
+		parent::setTemplateFile();
+	}
+
+	/**
+	 * Get the page's fields list
+	 * @return Array
+	 */
+	protected function getPageFields()
+	{
+		if( $this->mode == ADD_INLINE )
+		{
+			if( $this->masterTable && !$this->inlineAddAvailable() && $this->masterPageType == PAGE_ADD )  // #12518
+			{
+				return $this->pSet->getInlineAddFields();
+			}
+
+			return $this->pSet->getInlineAddFields();
+		}
+
+		return $this->pSet->getAddFields();
+	}
+
+	/**
+	 * Process a broken request
+	 */
+	public static function handleBrokenRequest()
+	{
+		if( sizeof($_POST) != 0 || !postvalue('submit') )
+			return;
+
+		if( postvalue("inline") )
+		{
+			$returnJSON = array();
+			$returnJSON['success'] = false;
+			$returnJSON['message'] = "Error occurred";
+			$returnJSON['fatalError'] = true;
+			echo printJSON($returnJSON);
+			exit();
+		}
+
+		if( postvalue("fly") )
+		{
+			echo -1;
+			exit();
+		}
+
+		$_SESSION["message_add"] = "<< "."Error occurred"." >>";
+	}
+
+	/**
+	 * Redirect after details saved
+	 */
+	public function redirectAfterAdd()
+	{
+		if( $_SESSION['after_add_data'] ) {
+			$aaData =& $_SESSION['after_add_data'];
+		} else {
+			$aaData = array();
+		}
+		if( isset($aaData[ $this->afterAdd_id ]) && $aaData[ $this->afterAdd_id ] )
+		{
+			$data = $aaData[ $this->afterAdd_id ];
+			$this->keys = $data['keys'];
+			$this->newRecordData = $data['avalues'];
+		}
+		if( $this->eventsObject->exists("AfterAdd") && isset($aaData[ $this->afterAdd_id ]) && $aaData[ $this->afterAdd_id ] )
+		{
+			$this->eventsObject->AfterAdd( $data['avalues'], $data['keys'], $data['inlineadd'], $this );
+
+		}
+		unset( $aaData[ $this->afterAdd_id ] );
+
+		foreach( $aaData as $k => $v)
+		{
+			if( !is_array($v) or !array_key_exists('time', $v) )
+			{
+				unset( $aaData[ $k ] );
+				continue;
+			}
+
+			if( $v['time'] < time() - 3600 )
+				unset($aaData[ $k ]);
+		}
+		$this->afterAddActionRedirect();
+	}
+
+	/**
+	 * Process the page
+	 */
+	public function process()
+	{
+		if( strlen($this->afterAdd_id) )
+		{
+			$this->redirectAfterAdd();
+			return;
+		}
+
+		//	Before Process event
+		if( $this->eventsObject->exists("BeforeProcessAdd") )
+			 $this->eventsObject->BeforeProcessAdd( $this );
+
+		if( $this->action == "added" )
+		{
+			// insert new record if we have to
+			$this->processDataInput();
+
+			$this->readAddValues = !$this->insertedSuccessfully;
+
+			if( $this->mode != ADD_SIMPLE && $this->mode != ADD_DASHBOARD && $this->mode != ADD_MASTER_DASH )
+			{
+				$this->reportSaveStatus();
+				return;
+			}
+
+			if( $this->insertedSuccessfully )
+			{
+				// VBScript fix! don't &&-join these two conditions
+				if( $this->afterAddActionRedirect() )
+					return;
+			}
+		}
+
+		if( $this->captchaExists() )
+			$this->displayCaptcha();
+
+		$this->prgReadMessage();
+
+		$this->prepareDefvalues();
+
+		if( $this->eventsObject->exists("ProcessValuesAdd") )
+			$this->eventsObject->ProcessValuesAdd( $this->defvalues, $this );
+
+		$this->prepareReadonlyFields();
+		$this->prepareEditControls();
+
+		$this->prepareButtons();
+		$this->prepareSteps();
+		$this->prepareDetailsTables();
+
+		// add button events if exist
+		if( $this->mode == ADD_SIMPLE || $this->mode == ADD_ONTHEFLY )
+			$this->addButtonHandlers();
+
+		$this->addCommonJs();
+
+		$this->doCommonAssignments();
+		$this->prepareBreadcrumbs();
+		$this->prepareCollapseButton();
+
+		$this->displayAddPage();
+	}
+
+	/**
+	 * Insert a new record to db
+	 */
+	protected function processDataInput()
+	{
+		if( $this->action != "added" )
+			return;
+
+		//	CSRF protection
+		if( !isPostRequest() )
+			return;
+
+		$this->buildNewRecordData();
+
+		if( !$this->checkCaptcha() )
+			return;
+
+		if( !$this->recheckUserPermissions() )
+			return;
+
+		if( !$this->callBeforeAddEvent() )
+			return;
+
+		//add or set updated lat-lng values for all map fileds with 'UpdateLatLng' ticked
+		$this->setUpdatedLatLng( $this->newRecordData );
+
+		if( !$this->checkDeniedDuplicatedValues() )
+			return;
+
+		if( $this->callCustomAddEvent() )
+		{
+			$insertResult = $this->dataSource->insertSingle( $this->getInsertDataCommand() );
+			$this->insertedSuccessfully = $insertResult !== false;
+
+			if( !$this->insertedSuccessfully )
+				$this->setDatabaseError( $this->dataSource->lastError() );
+			else
+			{
+				$this->newRecordData = $insertResult;
+				// set up keys
+				foreach( $this->pSet->getTableKeys() as $kf ) {
+					if( isset( $this->newRecordData[ $kf ] ) )
+						$this->keys[ $kf ] = $this->newRecordData[ $kf ];
+				}
+				
+				if ( count( $this->pSet->getTableKeys() ) != count( $this->keys ) )
+					$this->keys = array();
+			}
+		}
+
+		if( !$this->insertedSuccessfully )
+			return;
+
+		if( $this->getAfterAddAction() == AA_TO_ADD )
+			$_SESSION[ $this->sessionPrefix . "_recordAdded" ] = true;
+
+		$this->ProcessFiles();
+
+		if( $this->auditObj )
+			$this->auditObj->LogAdd( $this->tName, $this->newRecordData, $this->keys );
+
+		$this->callAfterSuccessfulSave();
+		$this->callAfterAddEvent();
+
+		$this->messageType = MESSAGE_INFO;
+		$this->setSuccessfulUpdateMessage();
+	}
+
+	/**
+	 * Fill newRecordData properties
+	 */
+	protected function buildNewRecordData()
+	{
+		$avalues = array();
+		$blobfields = array();
+		$afilename_values = array();
+
+		foreach($this->addFields as $f)
+		{
+			$control = $this->getControl( $f, $this->id );
+			$control->readWebValue($avalues, $blobfields, NULL, NULL, $afilename_values);
+		}
+
+		if( Security::advancedSecurityAvailable() ) {
+			$securityType = $this->pSet->getAdvancedSecurityType();
+			if( !$this->isAdminTable() && ($securityType == ADVSECURITY_EDIT_OWN || $securityType == ADVSECURITY_VIEW_OWN) )
+			{
+				$tableOwnerIdField = $this->pSet->getTableOwnerIdField();
+				// insert owner id value if it exists an It hasn't already set by user
+				if( $this->checkIfToAddOwnerIdValue( $tableOwnerIdField, $avalues[ $tableOwnerIdField ] ) )
+					$avalues[ $tableOwnerIdField ] = prepare_for_db( $tableOwnerIdField, $_SESSION["_".$this->tName."_OwnerID"] );
+			}
+		}
+		$masterTables = $this->pSet->getMasterTablesArr( );
+		// insert master key value if exists and if not specified
+		foreach( $masterTables as $mTableData )
+		{
+			if( $this->masterTable == $mTableData["mDataSourceTable"] )
+			{
+				foreach( $mTableData["detailKeys"] as $idx => $dk )
+				{
+					$masterkeyIdx = "masterkey".($idx + 1);
+					if( strlen( postvalue($masterkeyIdx) ) )
+						$_SESSION[ $this->sessionPrefix."_".$masterkeyIdx ] = postvalue($masterkeyIdx);
+
+					if( !isset( $avalues[ $dk ] ) || $avalues[ $dk ] == "" )
+						$avalues[ $dk ] = prepare_for_db( $dk, $_SESSION[ $this->sessionPrefix."_".$masterkeyIdx ] );
+				}
+			}
+		}
+
+		$this->addLookupFilterFieldValue( $avalues, $avalues );
+
+		foreach($afilename_values as $fileFName => $value)
+		{
+			$avalues[ $fileFName ] = $value;
+		}
+
+		//	calculate order for the reorderRows feature
+		$listPSet = $this->getListPSet();
+		if( $listPSet->reorderRows() ) {
+			$order = postvalue("order"); 
+			if( $order ) {
+				$order = $this->getUniqueOrder( $listPSet, $order );
+			} else {
+				$order = $this->getMaxOrderValue( $listPSet ) + 1;
+			}
+			$avalues[ $listPSet->reorderRowsField() ] = $order;
+		}
+
+		$this->newRecordData = $avalues;
+	}
+
+	/**
+	 * Add to the values array the data about lookup filter field
+	 * if it hasn't been set yet
+	 * @param Array recordData
+	 * @param &Array values
+	 */
+	protected function addLookupFilterFieldValue( $recordData, &$values )
+	{
+		$lookupPSet = getLookupMainTableSettings($this->tName, $this->lookupTable, $this->lookupField);
+		if( !$lookupPSet )
+			return;
+
+		if( $lookupPSet->useCategory( $this->lookupField ) )
+		{
+			foreach( $lookupPSet->getParentFieldsData( $this->lookupField ) as $cData )
+			{
+				if( isset( $this->parentCtrlsData[ $cData['main'] ]) && !isset( $recordData[ $cData['lookup'] ] ) )
+					$values[ $cData['lookup'] ]= $this->parentCtrlsData[ $cData['main'] ];
+			}
+		}
+	}
+
+	/**
+	 * Check is captcha exists on current page
+	 *
+	 * @intellisense
+	 */
+	function captchaExists()
+	{
+		if ( $this->mode == ADD_ONTHEFLY || $this->mode == ADD_INLINE )
+		{
+			return false;
+		}
+
+		return $this->pSet->hasCaptcha();
+	}
+
+	/**
+	 * Get captcha field name
+	 *
+	 * @intellisense
+	 */
+	function getCaptchaFieldName()
+	{
+		return $this->captchaName;
+	}
+
+	/**
+	 * @return Boolean
+	 */
+	protected function recheckUserPermissions()
+	{
+		if( CheckTablePermissions($this->tName, "A") )
+			return true;
+
+		return parent::recheckUserPermissions();
+	}
+
+	/**
+	 * Execute before Add event
+	 * @return Boolean
+	 */
+	protected function callBeforeAddEvent()
+	{
+		if( !$this->eventsObject->exists("BeforeAdd") )
+			return true;
+
+		$this->sqlValues = array();
+		$usermessage = "";
+		$ret = $this->eventsObject->BeforeAdd( $this->newRecordData, $this->sqlValues, $usermessage, $this->mode == ADD_INLINE, $this );
+		if( $usermessage != "" )
+			$this->setMessage( $usermessage );
+
+		return $ret;
+	}
+
+	/**
+	 * Check if some values are duplicated for the fields not allowing duplicates
+	 * @return Boolean
+	 */
+	public function checkDeniedDuplicatedValues()
+	{
+		$usermessage = "";
+		$ret = $this->hasDeniedDuplicateValues( $this->newRecordData, $usermessage );
+		if( $ret )
+			$this->setMessage( $usermessage );
+
+		return !$ret;
+	}
+
+	/**
+	 * #7374
+	 * @return Boolean
+	 */
+	protected function callCustomAddEvent()
+	{
+		if( !$this->eventsObject->exists("CustomAdd") )
+			return true;
+
+		$keys = array();
+		$customAddError = "";
+		$ret = $this->eventsObject->CustomAdd( $this->newRecordData, $keys, $customAddError, $this->mode == ADD_INLINE, $this );
+
+		if( strlen( $customAddError ) > 0 )
+		{
+			$this->insertedSuccessfully = false;
+			$this->setMessage( $customAddError );
+			$this->keys = array();
+			return false;
+		}
+
+		//	do standard Add processing
+		if( $ret )
+			return true;
+
+		$this->insertedSuccessfully = true;
+
+		// update keys and inserted data
+		$keyFields = $this->pSet->getTableKeys();
+
+		if( !is_array( $keys ) && count( $keyFields ) == 1 )
+			$keys = array( $keyFields[0] => $keys );
+
+		foreach( $keyFields as $kf ) {
+			if( strlen( $keys[ $kf ] ) )
+				$this->keys[ $kf ] = $kf;
+			else if( array_key_exists( $kf, $this->newRecordData ) )
+				$this->keys[ $kf ] = $this->newRecordData[ $kf ];
+			else
+				$this->keys[ $kf ] = $this->dataSource->lastAutoincValue( $kf );
+
+			$this->newRecordData[ $kf ] = $this->keys[ $kf ];
+		}
+
+		return false;
+	}
+
+	/**
+	 * Give possibility to all edit controls to clean their data
+	 */
+	protected function callAfterSuccessfulSave()
+	{
+		foreach($this->addFields as $f)
+		{
+			$this->getControl( $f, $this->id )->afterSuccessfulSave();
+		}
+	}
+
+	/**
+	 * Execute After Add event or prepare all necessary data for its execution after redirect
+	 */
+	protected function callAfterAddEvent()
+	{
+		if( !$this->eventsObject->exists("AfterAdd") )
+			return;
+
+		if( $this->mode != ADD_MASTER )
+		{
+			$this->eventsObject->AfterAdd( $this->newRecordData, $this->keys, $this->mode == ADD_INLINE, $this );
+			return;
+		}
+
+		$this->afterAdd_id = generatePassword(20);
+
+		if( !$_SESSION['after_add_data'] ) {
+			$_SESSION['after_add_data'] = array();
+		}
+		$_SESSION['after_add_data'][ $this->afterAdd_id ] = array(
+			'avalues' => $this->newRecordData,
+			'keys'=> $this->keys,
+			'inlineadd' => $this->mode == ADD_INLINE,
+			'time' => time()
+		);
+	}
+
+	/**
+	 * Set a successful update message.
+	 * Add the corresponding edit/view links to the info message
+	 */
+	protected function setSuccessfulUpdateMessage()
+	{
+		if( $this->isMessageSet() )
+			return;
+
+		if( $this->mode == ADD_INLINE )
+			$infoMessage = ""."Record was added"."";
+		else
+			$infoMessage = "<strong><<< "."Record was added"." >>></strong>";
+
+		if( $this->mode != ADD_SIMPLE && $this->mode != ADD_MASTER || !$this->keys )
+		{
+			$this->setMessage( $infoMessage );
+			return;
+		}
+
+		$k = 0;
+		$keyParams = array();
+		$keysArray = array();
+		foreach( $this->keys as $idx => $val )
+		{
+			$keyParams[] = "editid".( ++$k )."=".runner_htmlspecialchars(rawurlencode(@$val));
+			$keysArray[] = $val;
+		}
+		$keylink = implode("&", $keyParams);
+
+		if ( count($keysArray) > 0 && $this->mode == ADD_SIMPLE )
+		{
+			$_SESSION["successKeys"] = $keysArray;
+		}
+		else
+		{
+			$infoMessage.= "<br>";
+
+			if( $this->editAvailable() )
+				$infoMessage.= "&nbsp;<a href='".GetTableLink( $this->pSet->getShortTableName(), "edit", $keylink )."'>"."Edit"."</a>&nbsp;";
+
+			if( $this->viewAvailable() )
+				$infoMessage.= "&nbsp;<a href='".GetTableLink( $this->pSet->getShortTableName(), "view", $keylink )."'>"."View"."</a>&nbsp;";
+		}
+
+		$this->setMessage( $infoMessage );
+	}
+
+	/**
+	 * Print JSON containing a saved record data on ajax-like request
+	 */
+	protected function reportSaveStatus()
+	{
+		echo printJSON( $this->getSaveStatusJSON() );
+		exit();
+	}
+
+	/**
+	 * Get an array containing the record save status
+	 * @return Array
+	 */
+	protected function getSaveStatusJSON()
+	{
+		global $globalEvents;
+		$returnJSON = array();
+		
+		if( $this->action != "added" || $this->mode == ADD_SIMPLE )
+			return $returnJSON;
+
+		$returnJSON['success'] = $this->insertedSuccessfully;
+		$returnJSON['message'] = $this->message;
+
+		if( !$this->isCaptchaOk )
+		{
+			$returnJSON['wrongCaptchaFieldName'] = $this->getCaptchaFieldName();
+		}
+		elseif( $this->mode == ADD_POPUP || $this->mode == ADD_MASTER || $this->mode == ADD_MASTER_POPUP || $this->mode == ADD_MASTER_DASH )
+		{
+			$sessPrefix = $this->tName . "_" . $this->pageType;
+			if( isset($_SESSION["count_passes_captcha"]) || $_SESSION["count_passes_captcha"] > 0 || $_SESSION["count_passes_captcha"] < 5 )
+				$returnJSON['hideCaptcha'] = true;
+		}
+
+
+		if( !$this->insertedSuccessfully )
+			return $returnJSON;
+
+		$jsKeys = array();
+		$keyFields = $this->pSet->getTableKeys();
+		if ( $this->keys ) {
+			foreach( $keyFields as $idx => $f) {
+				$jsKeys[ $idx ] = $this->keys[ $f ];
+			}
+		}
+
+		if( $this->mode == ADD_ONTHEFLY )
+		{
+			$lokupData = $this->getLookupData();
+			$returnJSON['linkValue'] = $lokupData['linkValue'];
+			$returnJSON['displayValue'] = $lokupData['displayValue'];
+			$returnJSON['vals'] = $lokupData['vals'];
+
+			$returnJSON['keys'] = $jsKeys;
+			$returnJSON['keyFields'] = $keyFields;
+
+			return $returnJSON;
+		}
+
+		//	get current values and show edit controls
+		$data = array();
+		$haveData = true;
+
+		if( $this->keys )
+			$data = $this->getRecordData( $this->keys );
+
+		if( !$data )
+		{
+			$data = $this->newRecordData;
+			$haveData = false;
+		}
+
+		$keyParams = array();
+		foreach( $this->pSet->getTableKeys() as $i => $kf ) {
+			$keyParams[] = "key".($i + 1). "=". runner_htmlspecialchars( rawurlencode( @$data[ $kf ] ));
+		}
+		$keylink = "&" . implode("&", $keyParams);
+
+		$showValues = array();
+		$showFields = array();
+		$showRawValues = array();
+
+		$listPSet = $this->getListPSet();
+
+		$listViewControls = new ViewControlsContainer( 
+			$listPSet,
+			$this->pageType, 
+			$this 
+		);
+
+		foreach( $this->pSet->getFieldsList() as $f )
+		{
+			$control = $listViewControls->getControl( $f );
+			$showValues[ $f ] = $control->showDBValue( $data, $keylink, true );
+			$showFields[] = $f;
+
+			if( IsBinaryType( $this->pSet->getFieldType( $f ) ) )
+				$showRawValues[ $f ] = "";
+			else
+				$showRawValues[ $f ] = runner_substr($data[ $f ], 0, 100);
+		}
+
+		//	reorderRows stuff
+		if( $listPSet->reorderRows() ) {
+			$returnJSON['order'] = $data[ $listPSet->reorderRowsField() ];
+		}
+
+		$returnJSON['keys'] = $jsKeys;
+		$returnJSON['vals'] = $showValues;
+		$returnJSON['fields'] = $showFields;
+
+		$returnJSON['detKeys'] = $this->getShowDetailKeys( $data );
+
+		$dmapIconsData = $this->getDashMapsIconsData( $data );
+		if( !!$dmapIconsData )
+			$returnJSON['mapIconsData'] = $dmapIconsData;
+
+		$fieldsIconsData = $this->getFieldMapIconsData( $data );
+		if( !!$fieldsIconsData )
+			$returnJSON['fieldsMapIconsData'] = $fieldsIconsData;
+
+		//$isEditable = Security::userCan('E', $this->tName) || Security::userCan('D', $this->tName);
+		$isEditable = true;
+		if( $globalEvents->exists("IsRecordEditable", $this->tName) ) {
+			$isEditable = $globalEvents->IsRecordEditable( $data, $isEditable, $this->tName );
+		}
+		
+		if( $this->forSpreadsheetGrid ) {
+			if( $haveData && $isEditable ) {
+				//  new added grid row id	
+				$newRowId = $this->newRowId ? $this->newRowId : $this->id;
+				$editPage = $this->getRelatedInlineEditPage( $this->hostPageName, $this->keys, $newRowId );
+
+				$returnJSON["editFields"] = $listPSet->getInlineEditFields();
+				
+				// use "htmlControls" key no to interfire with dash html data
+				$returnJSON["htmlControls"] = array();
+				foreach( $listPSet->getInlineEditFields() as $fName ) {
+					$controls = $editPage->getContolMapData( $fName, $newRowId, $data, $editPage->editFields );
+					// set edit page controlsMap
+					$editPage->fillControlsMap( $controls );
+					
+					if( $editPage->getEditFormat( $fName ) == EDIT_FORMAT_READONLY )
+						$editPage->readOnlyFields[ $fName ] = $this->showDBValue( $fName, $data );
+					
+					$returnJSON["htmlControls"][ $fName ] = $editPage->getSpreadsheetControlMarkup( $fName, $newRowId, $data );
+				}
+				
+				$returnJSON["pageId"] = $newRowId;
+				
+				$editPage->fillSetCntrlMaps();
+				// contols map for spreadsheet inline edit controls
+				$returnJSON["spreadControlsMap"] = $editPage->controlsHTMLMap;
+			} else {
+				$returnJSON['nonEditable'] = true;			
+			}
+		}
+		
+		
+		if( $this->mode == ADD_INLINE || $this->mode == ADD_POPUP || $this->mode == ADD_DASHBOARD ) {	
+			$returnJSON['noKeys'] = !$haveData;
+			$returnJSON['keyFields'] = $keyFields;
+			$returnJSON['rawVals'] = $showRawValues;
+			$returnJSON['hrefs'] = $this->buildDetailGridLinks( $returnJSON['detKeys'] );
+			// add link and display value if list page is lookup with search
+			if( $this->forListPageLookup )
+			{
+				$linkAndDispVals = $this->getLookupData();
+				$returnJSON['linkValue'] = $linkAndDispVals['linkValue'];
+				$returnJSON['displayValue'] = $linkAndDispVals['displayValue'];
+			}
+			if( $globalEvents->exists("IsRecordEditable", $this->tName) ) {
+				if( !$isEditable )
+					$returnJSON['nonEditable'] = true;
+			}
+
+			return $returnJSON;
+		}
+
+		if( $this->mode == ADD_MASTER || $this->mode == ADD_MASTER_POPUP || $this->mode == ADD_MASTER_DASH )
+		{
+			$_SESSION["message_add"] = $this->message ? $this->message : "";
+			$returnJSON['afterAddId'] = $this->afterAdd_id;
+			$tData = array();
+			$returnJSON['mKeys'] = $this->getDetailTablesMasterKeys( $tData );
+
+			if( $this->mode == ADD_MASTER_POPUP || $this->mode == ADD_MASTER_DASH )
+			{
+				$returnJSON['noKeys'] = !$haveData;
+				$returnJSON['keyFields'] = $keyFields;
+				$returnJSON['rawVals'] = $showRawValues;
+				$returnJSON['hrefs'] = $this->buildDetailGridLinks( $returnJSON['detKeys'] );
+
+				if( $globalEvents->exists("IsRecordEditable", $this->tName) ) {
+					if( !$isEditable )
+						$returnJSON['nonEditable'] = true;
+				}
+			}
+
+			return $returnJSON;
+		}
+	}
+
+	/**
+	 * @param &Array data
+	 * @return Array
+	 */
+	protected function getShowDetailKeys( &$data )
+	{
+		$showDetailKeys = array();
+		foreach( $this->pSet->getDetailTablesArr() as $dt )
+		{
+			foreach( $dt["masterKeys"] as $idx => $dk)
+			{
+				$showDetailKeys[ $dt['dDataSourceTable'] ][ "masterkey".($idx + 1) ] = $data[ $dk ];
+			}
+		}
+
+		if( $this->getAfterAddAction() == AA_TO_DETAIL_ADD )
+		{
+			$AAdTName = $this->pSet->getAADetailTable();
+			$dTUrl = GetTableUrl( $AAdTName );
+
+			if( !isset( $showDetailKeys[ $dTUrl ] ) )
+				$showDetailKeys[ $dTUrl ] = $showDetailKeys[ $AAdTName ];
+		}
+
+		return $showDetailKeys;
+	}
+
+	/**
+	 * @return Array
+	 */
+	protected function getDetailTablesMasterKeys( $data )
+	{
+		if( !$this->isShowDetailTables || $this->mobileTemplateMode() )
+			return array();
+
+		$data = $this->newRecordData;
+		if( $this->keys )
+			$data = $this->getRecordData( $this->keys )	;
+
+		$dpParams = $this->getDetailsParams( $this->id );
+		$mKeysData = array();
+		for( $i = 0; $i < count( $dpParams['ids'] ); $i++ ) {
+			$mKeysData[ $dpParams['strTableNames'][$i] ] = $this->getMasterKeysData( $dpParams['strTableNames'][$i], $data);
+		}
+
+		return $mKeysData;
+	}
+
+	/**
+	 * @param String dTableName
+	 * @param &Array data
+	 */
+	protected function getMasterKeysData( $dTableName, &$data )
+	{
+		$mKeyId = 1;
+		$mKeysData = array();
+
+		$mKeys = $this->pSet->getMasterKeysByDetailTable( $dTableName );
+		foreach($mKeys as $mk)
+		{
+			if( strlen( $data[ $mk ] ) )
+				$mKeysData[ 'masterkey'.$mKeyId++ ] = $data[ $mk ];
+			else
+				$mKeysData[ 'masterkey'.$mKeyId++ ] = '';
+		}
+
+		return $mKeysData;
+	}
+
+	/**
+	 * It redirects to a new page
+	 * according to the add page settings
+	 * @return Boolean
+	 */
+	protected function afterAddActionRedirect()
+	{
+		if( $this->mode != ADD_SIMPLE )
+			return false;
+
+		switch( $this->getAfterAddAction() )
+		{
+			case AA_TO_ADD:
+				if ( $this->insertedSuccessfully )
+					return $this->prgRedirect();
+
+				$getParams = array();
+				if( $this->pageName )
+					$getParams[] = "page=".$this->pageName;
+				$getParams[] = $this->getStateUrlParams();
+				HeaderRedirect($this->shortTableName, PAGE_ADD, implode( '&', $getParams ));
+				return true;
+
+			case AA_TO_LIST:
+				if( $this->pSet->hasListPage() ) {
+					HeaderRedirect( $this->shortTableName, PAGE_LIST, "a=return&"
+						.( $this->listPage ? "page=".$this->listPage."&" : "" ).$this->getStateUrlParams() );
+				} else {
+					HeaderRedirect("menu");
+				}
+				return true;
+
+			case AA_TO_VIEW:
+				HeaderRedirect( $this->shortTableName, PAGE_VIEW, implode( '&', array( $this->getKeyParams(), $this->getStateUrlParams() ) ) );
+				return true;
+
+			case AA_TO_EDIT:
+				HeaderRedirect( $this->shortTableName, PAGE_EDIT, implode( '&', array( $this->getKeyParams(), $this->getStateUrlParams() ) ) );
+				return true;
+
+			case AA_TO_DETAIL_LIST:
+				$dTName = $this->pSet->getAADetailTable();
+				HeaderRedirect( GetTableURL( $dTName ), PAGE_LIST, implode("&", $this->getNewRecordMasterKeys( $dTName ) ). "&mastertable=" .$this->tName );
+				return true;
+
+			case AA_TO_DETAIL_ADD:
+				$_SESSION["message_add"] = $this->message ? $this->message : "";
+
+				$dTName = $this->pSet->getAADetailTable();
+				HeaderRedirect( GetTableURL( $dTName ), PAGE_ADD, implode("&", $this->getNewRecordMasterKeys( $dTName ) ). "&mastertable=" .$this->tName );
+				return true;
+
+			default:
+				return false;
+		}
+	}
+
+	function getNewRecordMasterKeys( $dTName )
+	{
+		$data = $this->getNewRecordData();
+
+		$mKeys = array();
+		foreach($this->pSet->getMasterKeysByDetailTable( $dTName ) as $i => $mk)
+		{
+			$mKeys[] = "masterkey". ($i + 1) . "=" .$data[ $mk ];
+		}
+		return $mKeys;
+	}
+
+
+	/**
+	 *	POST-REDIRECT-GET
+	 *	Redirect after saving the data to avoid saving again on refresh.
+	 */
+	protected function prgRedirect()
+	{
+		if( $this->stopPRG )
+			return false;
+		if( !$this->insertedSuccessfully || $this->mode != ADD_SIMPLE || !no_output_done() )
+			return false;
+		// saving message
+		$_SESSION["message_add"] = $this->message ? $this->message : "";
+		$_SESSION["message_add_type"] = $this->messageType;
+		// redirect
+
+
+		$getParams = array();
+		if( $this->pageName )
+			$getParams[] = "page=".$this->pageName;
+
+		$getParams[] = $this->getStateUrlParams();
+
+		HeaderRedirect( $this->pSet->getShortTableName(), $this->pageType, implode( '&', $getParams ) );
+		// turned on output buffering, so we need to stop script
+		return true;
+	}
+
+	/**
+	 *	POST-REDIRECT-GET
+	 *	Read the saved message on the GET step.
+	 */
+	protected function prgReadMessage()
+	{
+		// for PRG rule, to avoid POSTDATA resend. Saving mess in session
+		if( $this->mode == ADD_SIMPLE && isset( $_SESSION["message_add"] ) )
+		{
+			$this->message = $_SESSION["message_add"];
+			$this->messageType = $_SESSION["message_add_type"];
+			unset( $_SESSION["message_add"] );
+		}
+	}
+
+	/**
+	 * @return Array
+	 */
+	public function getCurrentRecord()
+	{
+		$data = array();
+		if ( $this->masterTable && !!$this->masterKeysReq )
+		{
+			foreach ($this->detailKeysByM  as $key => $detKey )
+			{
+				$data[$detKey] = $this->masterKeysReq[$key+1];
+			}
+		}
+
+		return $data;
+	}
+
+	protected function replaceFileFieldsValuesWithCopies( &$defvalues ) {
+		foreach( $this->addFields as $f ) {
+			if( $this->pSet->getEditFormat( $f ) == EDIT_FORMAT_FILE ) //#10023
+				$defvalues[ $f ] = $this->getControl( $f, $this->id )->getFieldValueCopy( $defvalues[ $f ] );
+		}
+	}
+
+	protected function getCopyKeys() {
+		$copyKeys = array();
+
+		if( !array_key_exists( "copyid1", $_REQUEST ) && !array_key_exists( "editid1", $_REQUEST ) )
+			return $copyKeys;
+
+		$prefix = array_key_exists( "copyid1", $_REQUEST ) ? "copyid" : "editid";
+		foreach( $this->pSet->getTableKeys() as $idx => $k ) {
+			$copyKeys[ $k ] = postvalue( $prefix . ($idx + 1) );
+		}
+
+		return $copyKeys;
+	}
+
+	/**
+	 * Set the defvalues property
+	 */
+	protected function prepareDefvalues()
+	{
+		$copyKeys = $this->getCopyKeys();
+
+		if( $copyKeys && $this->mode != ADD_DASHBOARD )
+		{
+			//	copy record
+			$dc = $this->getDsCommand( $copyKeys );
+			$prep = $this->dataSource->prepareSQL( $dc );
+			$keyWhere = $prep["where"];
+
+			$fetchedArray = $this->dataSource->getSingle( $dc )->fetchAssoc();
+			$this->defvalues = $this->cipherer->DecryptFetchedArray( $fetchedArray );
+
+			$this->replaceFileFieldsValuesWithCopies( $this->defvalues );
+
+			if( $this->eventsObject->exists("CopyOnLoad") ) {
+				// call CopyOnLoad event
+				$this->eventsObject->CopyOnLoad( $this->defvalues, $keyWhere, $this );
+
+				if( $keyWhere != $prep["where"] ) {
+					$this->dataSource->overrideWhere( $dc, $keyWhere );
+					$fetchedArray = $this->dataSource->getSingle( $dc )->fetchAssoc();
+					$this->defvalues = $this->cipherer->DecryptFetchedArray( $fetchedArray );
+
+					$this->replaceFileFieldsValuesWithCopies( $this->defvalues );
+				}
+			}
+		}
+		else
+		{
+			foreach( $this->addFields as $f )
+			{
+				$defaultValue = GetDefaultValue($f, PAGE_ADD, $this->tName );
+				if( strlen($defaultValue) )
+					$this->defvalues[ $f ] = $defaultValue;
+			}
+		}
+
+		if( Security::advancedSecurityAvailable() ) {
+			$securityType = $this->pSet->getAdvancedSecurityType();
+			if( !$this->isAdminTable() && ($securityType == ADVSECURITY_EDIT_OWN || $securityType == ADVSECURITY_VIEW_OWN) )
+			{
+				$tableOwnerIdField = $this->pSet->getTableOwnerIdField();
+				// insert default owner id value if exists
+				if( $this->checkIfToAddOwnerIdValue( $tableOwnerIdField, '' ) )
+					$this->defvalues[ $tableOwnerIdField ] = prepare_for_db( $tableOwnerIdField, $_SESSION["_".$this->tName."_OwnerID"] );
+			}
+		}
+
+		$masterTables = $this->pSet->getMasterTablesArr();
+		// set default values for the foreign keys
+		foreach( $masterTables as $mTableData )
+		{
+			if( $this->masterTable == $mTableData["mDataSourceTable"] )
+			{
+				foreach( $mTableData["detailKeys"] as $idx => $dk )
+				{
+					$masterkeyIdx = "masterkey".($idx + 1);
+					if( strlen( postvalue($masterkeyIdx) ) )
+						$_SESSION[ $this->sessionPrefix."_".$masterkeyIdx ] = postvalue($masterkeyIdx);
+
+					if( $this->masterPageType != PAGE_ADD )
+						$this->defvalues[ $dk ] = @$_SESSION[ $this->sessionPrefix."_".$masterkeyIdx ];
+				}
+			}
+		}
+
+		$this->addLookupFilterFieldValue( $this->newRecordData, $this->defvalues );
+
+		if( $this->readAddValues )
+		{
+			foreach( $this->addFields as $fName )
+			{
+				$editFormat = $this->pSet->getEditFormat($fName);
+				if( $editFormat != EDIT_FORMAT_DATABASE_FILE && $editFormat != EDIT_FORMAT_DATABASE_IMAGE && $editFormat != EDIT_FORMAT_FILE )
+					$this->defvalues[ $fName ] = @$this->newRecordData[ $fName ];
+			}
+		}
+	}
+
+	/**
+	 * Set read-only fields
+	 */
+	protected function prepareReadonlyFields()
+	{
+		foreach( $this->addFields as $f )
+		{
+			if( $this->pSet->getEditFormat( $f ) == EDIT_FORMAT_READONLY )
+				$this->readOnlyFields[ $f ] = $this->showDBValue($f, $this->defvalues);
+		}
+	}
+
+	/**
+	 * Assign buttons xt variables
+	 */
+	protected function prepareButtons()
+	{
+		if( $this->mode == ADD_INLINE )
+			return;
+
+		$this->xt->assign("save_button", true);
+
+		$addStyle = "";
+		if ( $this->isMultistepped() )
+		{
+			$addStyle = " style=\"display: none;\"";
+		}
+
+		//	legacy assignment used in the Invoice template
+		$this->xt->assign("savebutton_attrs", "id=\"saveButton".$this->id."\"" . $addStyle );
+
+		if( $this->mode == ADD_DASHBOARD )
+		{
+			$this->xt->assign("reset_button", true);
+			return;
+		}
+
+		if( $this->mode != ADD_ONTHEFLY 
+			&& $this->mode != ADD_POPUP 
+			&& $this->mode != ADD_MASTER_DASH )
+		{
+			// add was successful
+			if( isset( $_SESSION["successKeys"] ) )
+				$this->xt->assign("message_back_button", true);
+			if( $this->pSet->hasListPage() )
+				$this->xt->assign("back_button", true);
+			else if( $this->isShowMenu() )
+				$this->xt->assign("backToMenu_button", true);
+		}
+		else
+			$this->xt->assign("cancel_button", true);
+
+		if( $this->mode == ADD_SIMPLE )
+		{
+			//	back to list/menu buttons
+			if( $this->pSet->hasListPage() )
+			{
+				$this->xt->assign("backbutton_attrs", "id=\"backButton".$this->id."\"");
+			}
+			else if( $this->isShowMenu() )
+			{
+				$this->xt->assign("backbutton_attrs", "id=\"backToMenuButton".$this->id."\"");
+			}
+		}
+
+		if ( isset($_SESSION["successKeys"]) )
+		{
+			$keysArray = $_SESSION["successKeys"];
+			$dataKeysAttr = 'data-keys="'.runner_htmlspecialchars( my_json_encode($keysArray) ).'"';
+			unset($_SESSION["successKeys"]);
+
+			if( $this->viewAvailable() && $keysArray )
+			{
+				$this->xt->assign("view_page_button", true);
+				$this->xt->assign("view_page_button_attrs", 'id="viewPageButton'.$this->id.'" '.$dataKeysAttr);
+			}
+			
+			if( $this->editAvailable() && $keysArray )
+			{
+				$this->xt->assign("edit_page_button", true);
+				$this->xt->assign("edit_page_button_attrs", 'id="editPageButton'.$this->id.'" '.$dataKeysAttr);
+			}
+		}
+	}
+
+	/**
+	 * Prepare edit controls
+	 */
+	protected function prepareEditControls()
+	{
+		$controlFields = $this->addFields;
+
+		if( $this->mode == ADD_INLINE ) { //#9069
+			$controlFields = $this->removeHiddenColumnsFromInlineFields( 
+				$controlFields, 
+				$this->screenWidth, 
+				$this->screenHeight, 
+				$this->orientation 
+			);
+		}
+
+		foreach( $controlFields as $fName ) {
+			$isDetKeyField = in_array( $fName, $this->detailKeysByM );
+			if( $isDetKeyField ) {
+				// to the ReadOnly control show the detail key control's value
+				$this->readOnlyFields[ $fName ] = $this->showDBValue( $fName, $this->defvalues );
+			}
+
+			$firstElementId = $this->getControl( $fName, $this->id )->getFirstElementId();
+			if( $firstElementId )
+				$this->xt->assign( "labelfor_" . GoodFieldName( $fName ), $firstElementId );
+			
+			$parameters = $this->getEditContolParams( $fName, $this->id, $this->defvalues );
+			$this->xt->assign_function( GoodFieldName( $fName )."_editcontrol", "xt_buildeditcontrol", $parameters );
+
+			$controls = $this->getContolMapData( $fName, $this->id, $this->defvalues, $controlFields );	
+			if ( in_array( $fName, $this->errorFields ) )
+				$controls["controls"]["isInvalid"] = true;
+			
+			$this->fillControlsMap( $controls );
+			$this->fillControlFlags( $fName );
+
+			// fill special settings for a time picker
+			if( $this->pSet->getEditFormat($fName) == "Time" )
+				$this->fillTimePickSettings( $fName, @$this->defvalues[ $fName ] );
+		}
+	}	
+
+	public function getContolMapData( $fName, $recId, &$data, $pageFields ) {
+		$controls = array();
+		$controls["controls"] = array();
+		$controls["controls"]["id"] = $recId;
+		$controls["controls"]["ctrlInd"] = 0;
+		$controls["controls"]["fieldName"] = $fName;
+
+		//if richEditor for field
+		if( $this->pSet->isUseRTE( $fName ) )
+			$controls["controls"]["mode"] = "add";
+		else
+			$controls["controls"]["mode"] = $this->mode == ADD_INLINE ? "inline_add" : "add";
+
+		$isDetKeyField = in_array( $fName, $this->detailKeysByM );
+		if( $isDetKeyField  )
+			$controls["controls"]["value"] = $data[ $fName ];
+		
+		$preload = $this->fillPreload( $fName, $pageFields, $data );
+		if( $preload !== false ) {
+			$controls["controls"]["preloadData"] = $preload;
+			if( !$data[ $fName ] && $preload["vals"] )
+				$data[ $fName ] = $preload["vals"][0];
+		}
+		
+		return $controls;
+	}
+	
+	/**
+	 *
+	 */
+	public function getEditContolParams( $fName, $recId, &$data ) {		
+		$parameters = array();
+		$parameters["id"] = $recId;
+		$parameters["ptype"] = PAGE_ADD;
+		$parameters["field"] = $fName;
+		$parameters["value"] = $data[ $fName ];
+		$parameters["pageObj"] = $this;
+
+		if( $this->getEditFormat( $fName ) !== EDIT_FORMAT_READONLY ) {
+			$parameters["validate"] = $this->pSet->getValidation( $fName );
+
+			if( $this->pSet->isUseRTE($fName) )
+				$_SESSION[ $this->sessionPrefix."_".$fName."_rte" ] = $data[ $fName ];
+		} 
+
+		//if richEditor for field
+		if( $this->pSet->isUseRTE( $fName ) )
+			$parameters["mode"] = "add";
+		else
+			$parameters["mode"] = $this->mode == ADD_INLINE ? "inline_add" : "add";
+
+		return $parameters;	
+	}
+
+	public function getEditFormat( $field, $pSet = null ) {
+		$isDetKeyField = in_array( $field, $this->detailKeysByM );
+		if( $isDetKeyField ) {
+			return EDIT_FORMAT_READONLY;
+		}
+		return parent::getEditFormat( $field, $pSet );
+	}
+
+	
+	/**
+	 * Set details preview on the add master page
+	 */
+	protected function prepareDetailsTables()
+	{
+		if( !$this->isShowDetailTables
+			|| $this->mode != ADD_SIMPLE && $this->mode != ADD_POPUP  &&  $this->mode != ADD_DASHBOARD && $this->mode != ADD_MASTER_DASH
+			|| $this->mobileTemplateMode() )
+		{
+			return;
+		}
+
+		$dpParams = $this->getDetailsParams( $this->id );
+
+		$this->jsSettings['tableSettings'][ $this->tName ]['isShowDetails'] = !!$dpParams;
+		$this->jsSettings['tableSettings'][ $this->tName ]['dpParams'] = array('tableNames' => $dpParams['strTableNames'], 'ids' => $dpParams['ids']);
+
+		if( !$dpParams['ids'] )
+			return;
+
+		$this->xt->assign("detail_tables", true);
+
+		for($d = 0; $d < count($dpParams['ids']); $d++)
+		{
+			$this->setDetailPreview( "list", $dpParams['strTableNames'][ $d ], $dpParams['ids'][ $d ], $this->defvalues );
+			$this->displayDetailsButtons( $dpParams['type'][ $d ], $dpParams['strTableNames'][ $d ], $dpParams['ids'][ $d ] );
+		}
+	}
+
+	/**
+	 *
+	 */
+	protected function displayDetailsButtons( $dpType, $dpTableName, $dpId )
+	{
+		if ( !CheckTablePermissions($dpTableName, "S") )
+			return;
+
+		$listPageObject = $this->getDetailsPageObject( $dpTableName, $dpId );
+		$listPageObject->assignButtonsOnMasterEdit( $this->xt );
+	}
+
+	/**
+	 * Assign basic page's xt variables
+	 */
+	protected function doCommonAssignments()
+	{
+		if ( $this->mode === ADD_SIMPLE )
+		{
+			$this->headerCommonAssign();
+		}
+		else
+		{
+			$this->xt->assign("menu_chiddenattr", "data-hidden" );
+		}
+
+		$this->setLangParams();
+
+		$this->xt->assign("message_block", true);
+
+		if( $this->isMessageSet() )
+		{
+			$this->xt->assign("message", $this->message );
+			$this->xt->assign("message_class", $this->messageType == MESSAGE_ERROR ? "alert alert-danger" : "alert alert-success" );
+		}
+		else
+		{
+			$this->hideElement("message");
+		}
+
+		if( $this->mode != ADD_INLINE )
+			$this->assignAddFieldsBlocksAndLabels();
+
+		if( $this->mode == ADD_SIMPLE )
+		{
+			$this->assignBody();
+			$this->xt->assign("flybody", true);
+		}
+
+		if( $this->mode == ADD_ONTHEFLY 
+		  /*|| $this->mode == ADD_MASTER*/ 
+			|| $this->mode == ADD_POPUP 
+			|| $this->mode == ADD_DASHBOARD 
+			|| $this->mode == ADD_MASTER_DASH )
+		{
+			$this->xt->assign("body", true);
+			$this->xt->assign("footer", false);
+			$this->xt->assign("header", false);
+			$this->xt->assign("flybody", $this->body);
+		}
+	}
+
+	/**
+	 * Assign add fields' blocks and labels variables
+	 */
+	public function assignAddFieldsBlocksAndLabels()
+	{
+		foreach($this->addFields as $fName)
+		{
+			$gfName = GoodFieldName($fName);
+
+			$this->xt->assign($gfName."_fieldblock", true);
+			$this->xt->assign($gfName."_tabfieldblock", true);
+		}
+	}
+
+	/**
+	 * Display the add page basing on its mode
+	 */
+	protected function displayAddPage()
+	{
+		$templatefile = $this->templatefile;
+
+		if( $this->eventsObject->exists("BeforeShowAdd") )
+			$this->eventsObject->BeforeShowAdd($this->xt, $templatefile, $this);
+
+		if( $this->mode != ADD_INLINE && $this->mode != ADD_ONTHEFLY )
+			$this->displayMasterTableInfo();
+		// invoked after displayMasterTableInfo to add master viewcontrols maps
+		$this->fillSetCntrlMaps();
+
+		if( $this->mode == ADD_SIMPLE /*|| $this->mode ==ADD_MASTER */)
+		{
+			$this->display( $templatefile );
+			return;
+		}
+
+		if( $this->mode == ADD_ONTHEFLY || $this->mode == ADD_POPUP || $this->mode == ADD_DASHBOARD || $this->mode == ADD_MASTER_DASH )
+		{
+			$this->displayAJAX( $templatefile, $this->flyId + 1 );
+			exit();
+		}
+
+		if( $this->mode == ADD_INLINE )
+		{
+			$returnJSON = array();
+
+			$this->xt->load_template( $templatefile );
+
+			$returnJSON["htmlControls"] = array();
+			foreach( $this->addFields as $fName ) {
+				$returnJSON["htmlControls"][ $fName ] = $this->xt->fetchVar( GoodFieldName($fName)."_editcontrol" );
+			}
+
+			$listPSet = $this->getListPSet();
+			if( $listPSet->reorderRows() ) {
+				//	provisional order value, to be adjusted at the time of saving
+				$returnJSON['order'] = $this->getMaxOrderValue( $listPSet ) + 1;
+			}
+
+
+			global $pagesData;
+			$returnJSON["pagesData"] = $pagesData;
+
+			$returnJSON['settings'] = $this->jsSettings;
+			$returnJSON['controlsMap'] = $this->controlsHTMLMap;
+			$returnJSON['viewControlsMap'] = $this->viewControlsHTMLMap;
+
+			$returnJSON["additionalJS"] = $this->grabAllJsFiles();
+			$returnJSON["additionalCSS"] = $this->grabAllCSSFiles();
+
+			echo printJSON($returnJSON);
+			exit();
+		}
+	}
+
+	/**
+	 * Get extra JSON params to display the page on AJAX-like request
+	 * @return Array
+	 */
+	protected function getExtraAjaxPageParams()
+	{
+		return $this->getSaveStatusJSON();
+	}
+
+	/**
+	 * Return link and display field values after Add on the fly
+	 * @return array or false
+	 * 	"link" => <link field value>
+	 *  "display" => <display field value>
+	 */
+	protected function getNewLookupValues( $lookupPSet )
+	{
+		$linkFieldName = $lookupPSet->getLinkField( $this->lookupField );
+		$dispFieldName = $lookupPSet->getDisplayField( $this->lookupField );
+		if( $this->keys ) {
+			$dc = new DsCommand();
+			$dc->keys = $this->keys;
+
+			if( $lookupPSet->getCustomDisplay( $this->lookupField ) ) {
+				$customField = new DsFieldData( $dispFieldName, generateAlias(), "" );
+				$dispFieldName = $customField->alias;
+				$dc->extraColumns[] = $customField;
+			}
+			$data = $this->cipherer->DecryptFetchedArray( $this->dataSource->getSingle( $dc )->fetchAssoc() );
+		}
+		if( !$data ) {
+			$data = $this->newRecordData;
+		}
+		return array(
+			"link" => $data[ $linkFieldName ],
+			"display" => $data[ $dispFieldName ]
+		);
+	}
+
+	/**
+	 * Get lookup data from a record added
+	 * in 'add value On the Fly' mode
+	 * or in Inline Add mode on List page with search.
+	 * @return Array
+	 */
+	public function getLookupData() {
+		// get Project Settings object for $this->lookupTable
+		$lookupPSet = getLookupMainTableSettings( $this->tName, $this->lookupTable, $this->lookupField, $this->lookupPageType );
+		if( !$lookupPSet )
+			return array();
+
+		$lvals = $this->getNewLookupValues( $lookupPSet );
+		if( !$lvals )
+			return array();
+
+		$linkField = $lookupPSet->getLinkField( $this->lookupField );
+		$dispfield = $lookupPSet->getDisplayField( $this->lookupField );
+
+		$respData = array(
+			$linkField => $lvals["link"],
+			$dispfield => $lvals["display"]
+		);
+
+		// format DATE or TIME value
+		if(  in_array( $lookupPSet->getViewFormat( $this->lookupField ), array(FORMAT_DATE_SHORT, FORMAT_DATE_LONG, FORMAT_DATE_TIME) ) ) {
+			$viewContainer = new ViewControlsContainer( $lookupPSet, PAGE_LIST, null );
+
+			$ctrlData = array();
+			$ctrlData[ $this->lookupField ] = $respData[ $linkField ];
+
+			$respData[ $dispfield ] = $viewContainer->getControl( $this->lookupField )->getTextValue( $ctrlData );
+		}
+
+		return array(
+			'linkValue' => $respData[ $linkField ],
+			'displayValue' => $respData[ $dispfield ],
+			'vals' => $respData
+		);
+	}
+
+	/**
+	 * Check if to add session owner id value
+	 * @param String ownerField
+	 * @param String currentValue
+	 * @return Boolean
+	 */
+	public function checkIfToAddOwnerIdValue( $ownerField, $currentValue )
+	{
+		return originalTableField( $ownerField, $this->pSet ) // legacy
+			&& !$this->isAutoincPrimaryKey( $ownerField )
+			&& ( !CheckTablePermissions($this->tName, 'M') || !strlen($currentValue) );
+	}
+
+	/**
+	 * Check if field is auto-incremented primary key
+	 * @param String field
+	 * @return Boolean
+	 */
+	protected function isAutoincPrimaryKey( $field )
+	{
+		$keyFields = $this->pSet->getTableKeys();
+		return count($keyFields) == 1 && in_array($field, $keyFields) && $this->pSet->isAutoincField( $field );
+	}
+
+	/**
+	 * Check if the page's message is set
+	 * @return Boolean
+	 */
+	protected function isMessageSet()
+	{
+		return strlen( $this->message ) > 0;
+	}
+
+	/**
+	 * Set a database error message
+	 * @param String message
+	 */
+	public function setDatabaseError( $message )
+	{
+		if( $this->mode != ADD_INLINE )
+		{
+			$this->message = "<strong>&lt;&lt;&lt; "."Record was NOT added"."</strong> &gt;&gt;&gt;<br><br>".$message;
+		}
+		else
+		{
+			$this->message = "Record was NOT added".". ".$message;
+		}
+
+		$this->messageType = MESSAGE_ERROR;
+	}
+
+	/**
+	 * @return Array
+	 */
+	public function getNewRecordData()
+	{
+		return $this->newRecordData;
+	}
+
+
+	/**
+	 * @param String fName
+	 * @return Boolean
+	 */
+	protected function checkFieldOnPage( $fName )
+	{
+		if( $this->mode == ADD_INLINE )
+		return $this->pSet->appearOnInlineAdd( $fName );
+
+		return $this->pSet->appearOnAddPage( $fName );
+	}
+
+	/**
+	 * @param String table
+	 */
+	public static function processAddPageSecurity( $table )
+	{
+		//	user has necessary permissions
+		if( Security::checkPagePermissions( $table, "A" ) )
+			return true;
+
+		// display entered data. Give the user chance to relogin. Do nothing for now.
+		if( postvalue("a") == "added" )
+			return true;
+
+		//	page can not be displayed. Redirect or return error
+
+		//	return error if the page is requested by AJAX
+		$pageMode = AddPage::readAddModeFromRequest();
+		if( $pageMode != ADD_SIMPLE )
+		{
+			Security::sendPermissionError();
+			return false;
+		}
+
+		// The user is logged in but lacks necessary permissions
+		// redirect to List page or Menu.
+		if( isLogged() && !Security::isGuest() )
+		{
+			Security::redirectToList( $table );
+			return false;
+		}
+
+		redirectToLogin();
+		return false;
+	}
+
+	public static function readAddModeFromRequest()
+	{
+		$editType = postvalue("editType");
+
+		if( $editType == "inline" )
+			return ADD_INLINE;
+		elseif( $editType == ADD_POPUP )
+			return ADD_POPUP;
+		elseif( $editType == ADD_MASTER )
+			return ADD_MASTER;
+		elseif( $editType == ADD_MASTER_POPUP )
+			return ADD_MASTER_POPUP;
+		elseif( $editType == ADD_MASTER_DASH )
+			return ADD_MASTER_DASH;
+		elseif( $editType == ADD_ONTHEFLY )
+			return ADD_ONTHEFLY;
+		elseif( postvalue("mode") == "dashrecord" )
+			return ADD_DASHBOARD;
+		else
+			return ADD_SIMPLE;
+	}
+
+	function editAvailable() {
+		return !$this->dashElementData && parent::editAvailable();
+	}
+
+	function viewAvailable() {
+		return !$this->dashElementData && parent::viewAvailable();
+	}
+
+	/**
+	 *	API
+	 */
+	public function setMessageType( $type )
+	{
+		$this->messageType = $type;
+	}
+
+	function element2Item( $name ) {
+		if( $name == "message" ) {
+			return array( "add_message" );
+		}
+		return parent::element2Item( $name );
+	}
+
+	protected function checkShowBreadcrumbs()
+	{
+		return $this->mode == ADD_SIMPLE;
+	}
+
+	function createProjectSettings() {
+		$this->pSet = new ProjectSettings($this->tName, $this->pageType, $this->pageName, $this->pageTable );
+		
+		if( $this->mode != ADD_INLINE && $this->pSet->getPageType() !== PAGE_ADD )
+		{
+			$this->pSet = new ProjectSettings($this->tName, $this->pageType, null, $this->pageTable );
+		}
+
+		if( $this->mode == ADD_POPUP && $this->action == "added" ) {
+			$this->pSet->setPageType( "list" );
+		}
+	}
+
+
+	public function getInsertDataCommand() {
+		$dc = new DsCommand();
+		$dc->values = &$this->newRecordData;
+		
+		$dc->advValues = array();
+		foreach( $this->sqlValues as $field => $sqlValue ) {
+			$dc->advValues[ $field ] =  new DsOperand( dsotSQL, $sqlValue );
+		}		
+		return $dc;
+	}
+
+	public function getSecurityCondition() {
+		return Security::SelectCondition( "S", $this->pSet );
+	}
+
+	protected function getRecordData( $keys ) {
+		$dc = $this->getDsCommand( $keys );
+
+		$fetchedArray = $this->dataSource->getSingle( $dc )->fetchAssoc();
+		return $this->cipherer->DecryptFetchedArray( $fetchedArray );
+	}
+
+	protected function getDsCommand( $keys ) {
+		$dc = new DsCommand();
+		$dc->keys = $keys;
+		$dc->filter = $this->getSecurityCondition();
+
+		return $dc;
+	}
+
+	protected function getListPSet() {
+		if( !$this->listPagePSet )  {
+			$this->listPagePSet = new ProjectSettings( $this->tName, PAGE_LIST, $this->hostPageName, $this->pageTable );
+		}
+		return $this->listPagePSet;
+	}
+}
+?>

classes/advancedsearchcontrol.php

@@ -0,0 +1,29 @@
+<?php
+
+/**
+ * Search control builder class for advanced search
+ *
+ */
+class AdvancedSearchControl extends SearchControl 
+{
+	function __construct($id, $tName, &$searchClauseObj, &$pageObj) 
+	{
+		parent::__construct($id, $tName, $searchClauseObj, $pageObj);
+		$this->getSrchPanelAttrs['ctrlTypeComboStatus'] = true;
+	}
+	
+	function getCtrlSearchTypeOptions($fName, $selOpt, $not, $flexible = false, $both = false) 
+	{
+		if( $this->pageObj->isBootstrap() ) 
+		{
+			if( !$flexible && ($selOpt == EMPTY_SEARCH || $selOpt == NOT_EMPTY) ) 
+				return $this->getControl($fName)->buildSearchOptions(array(EMPTY_SEARCH, NOT_EMPTY), $selOpt, $not, true);
+				
+			return $this->getControl($fName)->getSearchOptions($selOpt, $not, true); 
+		}
+		
+		$withNot = $both ? $not : false;
+		return parent::getCtrlSearchTypeOptions($fName, $selOpt, $withNot, false, $both);
+	}
+}
+?>

classes/base32.php

@@ -0,0 +1,98 @@
+<?php
+class RunnerBase32 {
+	public static function encode( $str ) {
+		$ret = "";
+		$n = 0;
+		while( "" !== ( $symbol = self::encodeChunk( $str, $n++ ) ) ) {
+			$ret .= $symbol;
+		}
+		return str_pad( $ret, strlen( $ret ) + strlen( $ret ) % 8 , '=' );
+	}
+
+	public static function decode( $str ) {
+		$ret = "";
+		$n = 0;
+		while( $n < strlen( $str ) && self::decodeChunk( $str[ $n ], $ret, $n ) )  {
+			++$n;
+		}
+		return $ret;
+	}
+
+	/**
+	 * decode synbol and write n-th 5-bit block to the string
+	 */
+	protected static function decodeChunk( $encoded, &$str, $n ) {
+		if( $encoded == '=' ) {
+			//	reached the end, stop processing
+			return false;
+		}
+		$fiveBits = array_search( $encoded, self::$table );
+		if( $fiveBits < 0 ) {
+			//	wrong symbol, stop procesing
+			return false;
+		}
+
+		$charIdx = (int)floor( $n * 5 / 8 );
+		$bitOffset = ($n * 5) % 8;
+		if( $charIdx < strlen( $str ) ) {
+			$byte = ord( $str[ $charIdx ] );
+		} else {
+			$byte = 0;
+			$str .= ' ';
+		}
+
+		if( $bitOffset <= 3 ) {
+			$byte += $fiveBits << ( 3 - $bitOffset );
+			$str[ $charIdx ] = chr( $byte );
+		} else {
+			$byte += $fiveBits >> ( $bitOffset - 3 );
+			$str[ $charIdx ] = chr( $byte );
+
+			//	if lowest ( $bitOffset - 3 ) bits are not 0, write them to the next byte
+			$mask = (1 << ( $bitOffset - 3 )) - 1;
+			$nextByte = ( $fiveBits & $mask ) << ( 8 - ( $bitOffset - 3 ) );
+			if( $nextByte !== 0 ) {
+				if( $charIdx + 1 >= strlen( $str ) ) {
+					$str .= chr( $nextByte );
+				}
+			}
+		}
+
+		return true;
+	}
+
+	/**
+	 * read and encode n-th 5-bit block from the string
+	 */
+	protected static function encodeChunk( &$str, $n ) {
+		$charIdx = (int)floor( $n * 5 / 8 );
+		$bitOffset = ($n * 5) % 8;
+		if( $charIdx >=  strlen( $str ) ) {
+			return "";
+		}
+		$byte = ord( $str[ $charIdx ] );
+		if( $bitOffset <= 3 ) {
+			//	read highest ($bitOffset + 5) bits and puth them into $fiveBits
+			$fiveBits = ( $byte >> ( 3 - $bitOffset ) ) & 31;
+		} else {
+			//	read 8 - $bitoffset bits from the first byte
+			$mask = ( 1 << ( 8 - $bitOffset ) ) - 1;
+			$fiveBits = ( $byte & $mask ) << ( $bitOffset - 3 );
+			if( $charIdx < strlen( $str ) - 1 ) {
+				// read next ($bitOffset - 3) bits and put them in the lowest bits of $fiveBits
+				$nextByte = ord( $str[ $charIdx + 1 ] );
+				$fiveBits += $nextByte >> ( 8 - ($bitOffset - 3) );
+			}
+		}
+		$ret = self::$table[ $fiveBits ];
+		return $ret;
+	}
+	protected static $table = array(
+		'A', 'B', 'C', 'D', 'E', 'F', 'G', 'H',
+		'I', 'J', 'K', 'L', 'M', 'N', 'O', 'P',
+		'Q', 'R', 'S', 'T', 'U', 'V', 'W', 'X',
+		'Y', 'Z', '2', '3', '4', '5', '6', '7',
+		'='
+	);
+}
+?>

classes/button.php

@@ -0,0 +1,208 @@
+<?php
+class Button
+{
+	var $keys = array();
+	
+	var $currentKeys = array();
+	
+	var $selectedKeys = array();
+	
+	var $isManyKeys = false;
+	
+	var $location = "";
+	
+	var $nextInd;
+
+	var $table;
+
+	var $page;
+
+	var $tempFileNames = array();
+	
+	public $masterTable;
+	public $masterKeys;
+	
+	function __construct(&$params)
+	{
+		RunnerApply($this, $params);
+		
+		$this->nextInd = 0;
+		$this->modifyKeys();
+		$this->separateKeys();
+	}
+	/**
+	 * Separate modified post keys to current and selected  
+	 */
+	function separateKeys()
+	{
+		if($this->location == 'grid')
+		{
+			if($this->isManyKeys) 
+			{
+				$this->currentKeys = $this->keys[0];
+				for($i=1; $i<count($this->keys); $i++)
+					$this->selectedKeys[$i-1] = $this->keys[$i]; 
+			}
+			else
+				$this->currentKeys = $this->keys;
+		}
+		if($this->location == PAGE_LIST) {
+			$this->selectedKeys = $this->keys;
+			$this->currentKeys = $this->keys;
+		}
+		
+		if($this->location == PAGE_EDIT || $this->location == PAGE_VIEW)
+			$this->currentKeys = $this->keys;
+	}
+	/**
+	 * Modify post keys array to associative 
+	 */
+	function modifyKeys()
+	{
+		$pSet = new ProjectSettings( $this->table, "", $this->page );
+		
+		$keys = array();
+		
+		// if array of keys exists
+		if( $this->keys )
+		{
+			$tKeysNamesArr = $pSet->getTableKeys();
+			if($this->isManyKeys)
+			{
+				foreach ($this->keys as $ind => $value)
+				{
+					$keys[$ind] = array();
+					$recKeyArr = explode('&', $value);
+					for($j=0;$j<count($tKeysNamesArr);$j++)
+					{
+						if (isset($recKeyArr[$j])){
+							$keys[$ind][$tKeysNamesArr[$j]] = urldecode($recKeyArr[$j]);
+						}
+					}
+				}
+			}
+			else
+			{
+				$keysReady = true;
+				foreach( $tKeysNamesArr as $kf ) {
+					if( !isset( $this->keys[ $kf ] ) ) {
+						$keysReady = false;
+						break;
+					}
+				}
+				
+				if( $keysReady )
+					return;				
+				
+				for($j=0;$j<count($tKeysNamesArr);$j++)
+				{
+					$keys[$tKeysNamesArr[$j]] = urldecode(@$this->keys[$j]);
+				}
+			}
+		}
+		$this->keys = $keys;
+	}
+	/**
+	 * Get keys
+	 * @return {array} 
+	 */
+	function getKeys() {
+		return $this->keys;
+	}
+	
+	/**
+	 * Get current record data
+	 * @return {mixed} array of next record data or false
+	 */
+	function getCurrentRecord() {
+		return $this->getRecordData();
+	}
+	
+	/**
+	 * Get next selected record
+	 * @return {mixed} array of next record data or false
+	 */	
+	function getNextSelectedRecord() {
+		if( $this->nextInd < count( $this->selectedKeys ) ) {
+			$data =  $this->getRecordData( $this->selectedKeys[ $this->nextInd ] );
+			$this->nextInd += 1;
+			return $data;
+		}
+		
+		return false;
+	}	
+	
+	/**
+	 * Read values from the database by keys
+	 * @return {mixed} array of current record data or false
+	 */	
+	public function getRecordData( $keys = null ) {
+		global $cipherer;
+		
+		if( !$keys )
+			$keys = $this->currentKeys;
+		
+		$pSet = new ProjectSettings( $this->table, "", $this->page );
+		
+		$dc = new DsCommand();
+		$dc->filter = Security::SelectCondition( "S", $pSet );
+		$dc->keys = $keys;
+		
+		$dataSource = getDataSource( $this->table, $pSet );
+		$fetchedArray = $dataSource->getSingle( $dc )->fetchAssoc();
+		$data = $cipherer->DecryptFetchedArray( $fetchedArray );
+
+		return $data;
+	}
+	
+	
+	function getMasterData( $masterTable )
+	{
+		if ( isset($_SESSION[ $masterTable . "_masterRecordData" ]) )
+		{
+			return $_SESSION[ $masterTable . "_masterRecordData" ];
+		}
+		
+		return false;
+	}
+
+	function saveTempFile( $contents ) {
+		$filename = tempnam("", "");
+		runner_save_file($filename, $contents);
+		$this->tempFileNames[] = $filename;
+		return $filename;
+	}
+
+	function deleteTempFiles() {
+		foreach( $this->tempFileNames as $f ) {
+			@unlink( $f );
+		}
+	}
+	
+	public function getMasterRecord() {
+		if( !$this->masterTable )
+			return null;
+		
+		$pSet = new ProjectSettings( $this->table, "", $this->page );
+		$mpSet = new ProjectSettings( $this->masterTable, PAGE_LIST );
+		$masterDs = getDataSource( $this->masterTable, $mpSet );
+		
+		$filters = array();
+		foreach( $pSet->getMasterTablesArr() as $i => $masterTableInfo ) {
+			if( $this->masterTable != $masterTableInfo['mDataSourceTable'] )
+				continue;
+			
+			foreach( $masterTableInfo['masterKeys'] as $j => $mKeyField ) {
+				$filters[] = DataCondition::FieldEquals( $mKeyField, $this->masterKeys[ $j + 1 ] );
+			}				
+		}
+		$filters[] = Security::SelectCondition( "S", $mpSet );
+		
+		$dc = new DsCommand;
+		$dc->filter = DataCondition::_And( $filters );
+		$dc->reccount = 1;
+		
+		return $masterDs->getList( $dc )->fetchAssoc();
+	}		
+}
+?>

classes/chartpage.php

@@ -0,0 +1,374 @@
+<?php
+class ChartPage extends RunnerPage
+{
+	/**
+	 * show message block
+	 */
+	public $show_message_block = false;
+
+	/**
+	 * @constructor
+	 */
+	function __construct(&$params = "")
+	{
+		parent::__construct($params);
+	
+		$this->bodyForms = array( "grid" );
+	
+		$this->jsSettings['tableSettings'][ $this->tName ]['simpleSearchActive'] = $this->searchClauseObj->simpleSearchActive;
+		
+		if( $this->mode == CHART_DASHBOARD ) {
+			$this->pageData['detailsMasterKeys'] = $this->getStartMasterKeys();
+		}
+		$this->pageData['singleChartPage'] = $this->pSet->getChartCount() == 1;
+	}
+
+	/**
+	 * Set the page's session prefix
+	 */
+	protected function assignSessionPrefix()
+	{
+		if( $this->mode == CHART_DASHBOARD )
+			$this->sessionPrefix = $this->dashTName."_".$this->tName;
+		else
+			$this->sessionPrefix = $this->tName;
+	}	
+	
+	/**
+	 * Process the page 
+	 */
+	public function process()
+	{
+		if( $this->mode == CHART_DASHDETAILS
+			|| $this->mode == CHART_DETAILS && ( $this->masterPageType == PAGE_LIST || $this->masterPageType == PAGE_REPORT ))
+			$this->updateDetailsTabTitles();
+
+
+		//	Before Process event
+		if( $this->eventsObject->exists("BeforeProcessChart") )
+			$this->eventsObject->BeforeProcessChart( $this );
+					
+		
+		// build tabs and set current
+		$this->processGridTabs();
+
+		$this->doCommonAssignments();
+		$this->addButtonHandlers();
+		$this->addCommonJs();
+		$this->commonAssign();
+
+		if( $this->mode != CHART_DASHBOARD ) {
+			$this->buildSearchPanel();
+			$this->assignSimpleSearch();
+		}
+		
+		// to restore correctly within a chart class
+		$_SESSION[ $this->sessionPrefix.'_advsearch' ] = serialize( $this->searchClauseObj );
+		
+		// display the 'Back to Master' link and master table info
+		$this->displayMasterTableInfo();
+
+		$this->showPage();		
+	}
+
+	function callBeforeQueryEvent( $dc ) {
+		if( !$this->eventsObject->exists("BeforeQueryChart") ) {
+			return;
+		}
+		$prep = $this->dataSource->prepareSQL( $dc );
+		$where = $prep["where"];
+		$order = $prep["order"];
+		$sql = $prep["sql"];
+		$this->eventsObject->BeforeQueryChart($sql, $where, $order );
+
+		if( $sql != $prep["sql"] )
+			$this->dataSource->overrideSQL( $dc, $sql );
+		else {
+			if( $where != $prep["where"] )
+				$this->dataSource->overrideWhere( $dc, $where );
+			if( $order != $prep["order"] ) 
+				$this->dataSource->overrideOrder( $dc, $order );
+		}
+	} 
+
+
+
+	function getMasterCondition() {
+		if( $this->mode == CHART_DASHBOARD )
+			return null;
+		
+		return parent::getMasterCondition();
+	}
+	
+	/**
+	 * Get started master keys
+	 * @return Array
+	 */
+	public function getStartMasterKeys()
+	{		
+		$detailTablesData = $this->pSet->getDetailTablesArr();
+		if( !$detailTablesData ) {
+			return array();
+		}
+		
+		$dc = $this->getSubsetDataCommand();	
+		$dc->reccount = 1;
+
+		$rs = $this->dataSource->getList( $dc );
+		if( !$rs ) {
+			showError( $this->dataSource->lastError() );
+		}
+
+		$data = $this->cipherer->DecryptFetchedArray( $rs->fetchAssoc() );
+		
+		$masterKeysArr = array();
+		foreach ( $detailTablesData as $detailId => $detail ) {
+			foreach( $detail['masterKeys'] as $idx => $mk ) {
+				$masterKeysArr[ $detail['dDataSourceTable'] ] = array( 'masterkey'.($idx + 1) => $data[$mk] );
+			}
+		}
+
+		return $masterKeysArr;
+	}
+	
+	/**
+	 *
+	 */
+	public function doCommonAssignments()
+	{
+		
+		//set the Search panel
+		$this->xt->assign("searchPanel", true);
+
+		if( $this->isShowMenu() )
+			$this->xt->assign("menu_block", true);		
+
+		$this->setLangParams();
+	
+		$this->xt->assign("chart_block", true);
+		$this->xt->assign("asearch_link", true);
+		$this->xt->assign("exportpdflink_attrs", "onclick='chart.saveAsPDF();'");
+		$this->xt->assign("advsearchlink_attrs", "id=\"advButton".$this->id."\"");
+
+		if( !GetChartXML( $this->shortTableName ) )
+			$this->xt->assign("chart_block", false);			
+		
+		$this->xt->assign("message_block", true);
+		
+		if( ($this->mode == CHART_SIMPLE || $this->mode == CHART_DASHBOARD) && $this->pSet->noRecordsOnFirstPage() && !$this->searchClauseObj->isSearchFunctionalityActivated() )
+		{
+			$this->show_message_block = true;
+			$this->hideElement("chart");
+			$this->xt->assign("chart_block", false);
+
+			$this->xt->assign("message", $this->noRecordsMessage());
+			$this->xt->assign( "message_class", "alert-warning");
+		}		
+
+		if( !$this->show_message_block )
+			$this->hideElement("message");
+
+		if( $this->mobileTemplateMode() )
+			$this->xt->assign('tableinfomobile_block', true);
+
+		
+		$this->assignChartElement();
+		
+		$this->body['begin'].= GetBaseScriptsForPage( $this->isDisplayLoading );
+		if( !$this->isDashboardElement() && !$this->mobileTemplateMode() )
+			$this->body['begin'].= "<div id=\"search_suggest\" class=\"search_suggest\"></div>";
+
+		// assign body end
+		$this->body['end'] = XTempl::create_method_assignment( "assignBodyEnd", $this);
+
+		$this->xt->assignbyref('body', $this->body);	
+	}	
+	
+	/**
+	 * Set the chart xt variable
+	 */
+	public function assignChartElement()
+	{
+	}
+	
+	/**
+	 *
+	 */
+	public function prepareDetailsForEditViewPage()
+	{
+		$this->addButtonHandlers();
+		
+		$this->xt->assign("body", $this->body);
+		$this->xt->assign("chart_block", true);
+		$this->xt->assign("message_block", true);		
+	}
+	
+	protected function getExtraAjaxPageParams()
+	{
+		$returnJSON = array();
+		if( $this->mode == REPORT_DETAILS )
+		{		
+			$returnJSON['headerCont'] = $this->getProceedLink()	. $returnJSON['headerCont'];
+		}		
+		
+		return $returnJSON;
+	}
+	
+	public function beforeShowChart()
+	{
+		if( $this->eventsObject->exists("BeforeShowChart") )
+			$this->eventsObject->BeforeShowChart($this->xt, $this->templatefile, $this);	
+	}
+	
+	public function showPage()
+	{
+		$this->beforeShowChart();
+	
+		if( $this->mode == CHART_DETAILS || $this->mode == CHART_DASHBOARD || $this->mode == CHART_DASHDETAILS )
+		{
+			$this->addControlsJSAndCSS();
+			$this->fillSetCntrlMaps();
+			
+			$this->xt->assign("header", false);
+			$this->xt->assign("footer", false);
+			
+			$this->body["begin"] = "";
+			$this->body["end"] = "";
+			$this->xt->assign("body", $this->body);	
+
+			$this->displayAJAX($this->templatefile, $this->id + 1);
+			exit();
+		}
+
+		if( $this->mode == CHART_POPUPDETAILS ) //currently unused
+		{
+			$this->xt->assign("header", false);
+			$this->xt->assign("footer", false);
+			$this->body["begin"] = '';
+			$this->body["end"] = '';
+			
+			$this->xt->prepare_template($this->templatefile);
+			$respArr = array();
+			$respArr['success'] = true;	
+			$respArr['body'] = $this->xt->fetch_loaded("body");
+			$respArr['counter'] = postvalue('counter');
+			$this->xt->assign("container_master", false);
+			
+			echo printJSON($respArr);
+			exit();
+		}
+			
+		$this->display( $this->templatefile );			
+	}
+	
+	/**
+	 *
+	 */
+	function processGridTabs() 
+	{	
+		$ctChanged = parent::processGridTabs();
+		$_SESSION[ $this->sessionPrefix . "_chartTabWhere" ] = $this->getCurrentTabWhere();
+		
+		return $ctChanged;
+	}
+
+	function gridTabsAvailable() {
+		return true;
+	}
+	
+	function displayTabsInPage() 
+	{
+		return $this->simpleMode() 
+			|| ( $this->mode == CHART_DETAILS && ($this->masterPageType == PAGE_VIEW || $this->masterPageType == PAGE_EDIT))
+			|| $this->mode == CHART_DASHBOARD && $this->dashElementData["tabLocation"] == "body";
+	}
+	
+	protected function getBodyMarkup( $templatefile )
+	{
+		if( $this->mode == CHART_DASHBOARD && $this->dashElementData["tabLocation"] == "body" )
+			return $this->fetchBlocksList( array( "above-grid_block", "grid_tabs", "grid_block" ) );
+		
+		return parent::getBodyMarkup( $templatefile );
+	}	
+	
+	function element2Item( $name ) {
+		if( $name == "message" ) {
+			return array( "grid_message" );
+		}
+		if( $name == "chart" ) {
+			return array( "chart" );
+		}
+		return parent::element2Item( $name );
+	}
+
+	public function prepareDisplayDetails() 
+	{
+		$resizeChart = true;
+		if( $this->mode == CHART_SIMPLE || 
+			$this->mode == CHART_DASHBOARD || 
+			$this->mode == CHART_DETAILS && ( $this->masterPageType == PAGE_VIEW || $this->masterPageType == PAGE_EDIT ) )
+			$resizeChart = false;
+			
+		//set params for the 'xt_showchart' method showing the chart
+		$chartXtParams = array(
+			"id" => $this->id,
+			"table" => $this->tName, 
+			"ctype" => $this->pSet->getChartType(), 
+			"resize" => $resizeChart,
+			"chartName" => $this->shortTableName,
+			"chartPreview" => $this->mode !== CHART_SIMPLE && $this->mode != CHART_DASHBOARD
+		);
+
+		if( $this->mode == CHART_DASHBOARD || $this->mode == CHART_DASHDETAILS )
+		{
+				$chartXtParams["refreshTime"] = $this->dashElementData["reload"];
+		}
+		
+		$this->prepareCharts();
+		$forms = array( "grid" );
+		$bodyContents = $this->fetchForms($forms);		
+		$this->renderedBody = '<div id="detailPreview'.$this->id.'">'.$bodyContents.'</div>';	
+		return;
+	}
+
+	public function showGridOnly() 
+	{			
+		echo $this->renderedBody;
+	}
+	
+	function prepareCharts() 
+	{
+		$chartXtParams =  array( 
+			"id" => $this->id,
+			// it shows if chart show details
+			"chartPreview" => $this->mode !== CHART_SIMPLE && $this->mode != CHART_DASHBOARD,
+			"stateLink" => $this->getStateUrlParams()
+		);
+		
+		if( $this->dashTName && $this->mode == CHART_DASHBOARD )
+		{
+			$chartXtParams["dash"] = true;
+			$chartXtParams["dashTName"] = $this->dashTName;
+			$chartXtParams["dashElementName"] = $this->dashElementName;
+			$chartXtParams["dashPage"] = $this->dashPage;
+		}
+		
+		$this->xt->assign_function("chart", "xt_showpdchart", $chartXtParams);
+	}
+
+	public static function readChartModeFromRequest()
+	{
+		$mode = postvalue("mode");
+		if( $mode == "listdetails" )
+			return CHART_DETAILS;
+		elseif( $mode == "listdetailspopup" )
+			return CHART_POPUPDETAILS;
+		elseif( $mode == "dashchart" )
+			return CHART_DASHBOARD;
+		elseif( $mode == "dashdetails" )
+			return CHART_DASHDETAILS;
+		else
+			return CHART_SIMPLE;
+	}
+}
+?>

classes/chartpage_master.php

@@ -0,0 +1,71 @@
+<?php
+/**
+ * Class for list page with mode simple
+ *
+ */
+class ChartPage_Master extends ChartPage 
+{
+	/**
+	 * Constructor, set initial params
+	 *
+	 * @param array $params
+	 */	
+	function __construct(&$params) 
+	{
+		// call parent constructor
+		parent::__construct($params);
+	}
+
+	public function getMasterHeading() 
+	{
+		$this->xt->assign( "masterlist_title", true );
+		return $this->xt->fetch_loaded( "masterlist_title" );
+	}
+
+	public function preparePage() 
+	{
+		if( !$this->masterRecordData || !$this->masterRecordData )
+			return;
+
+		$this->xt->assign("chart_block", true);		
+		$this->assignChartElement();
+
+		$this->xt->assign("pagetitlelabel", $this->getPageTitle( $this->pageType, GoodFieldName($this->tName), $this->masterRecordData ));	
+
+		$tKeys = $this->pSet->getTableKeys();
+		$keylink = "";
+
+				
+		for($i = 0; $i < count($tKeys); $i ++) {
+			$keylink.= "&key".($i + 1)."=".runner_htmlspecialchars(rawurlencode(@$this->masterRecordData[$tKeys[$i]]));
+		}
+		
+		$fields = $this->pSet->getMasterListFields();
+		$fields = array_merge( $fields, $tKeys);
+		foreach( $fields as $f )
+		{
+			$fieldClassStr = $this->fieldClass($f);
+			$this->xt->assign( GoodFieldName( $f ) . "_mastervalue", "<span class='". $fieldClassStr ."'>".$this->showDBValue( $f, $this->masterRecordData, $keylink)."</span>");
+			$this->xt->assign( GoodFieldName( $f ) . "_class", $fieldClassStr); // add class for field header as field value
+		}
+			
+		if( $this->pageLayout )
+			$this->xt->assign("pageattrs", 'class="'.$this->pageLayout->style." page-".$this->pageLayout->name.'"');
+		
+		if( $this->pageLayout )
+			$this->xt->assign("pageattrs", 'class="'.$this->pageLayout->style." page-".$this->pageLayout->name.'"');
+	}
+
+	public function showMaster( $params ) 
+	{
+		if( !$this->masterRecordData || !$this->masterRecordData )
+			return;
+
+		$this->xt->load_template( $this->templatefile );
+		
+		$this->xt->assign( "masterlist_title", false );
+		$this->xt->display_loaded();
+	}
+}
+
+?>

classes/charts.php

@@ -0,0 +1,2033 @@
+<?php
+class Chart
+{
+	protected $header;
+	protected $footer;
+
+	protected $y_axis_label;
+
+	protected $strLabel;
+
+	protected $arrDataLabels = array();
+	protected $arrDataSeries = array();
+
+	protected $chrt_array = array();
+	public $webchart;
+	protected $cname;
+
+	protected $table_type;
+
+	protected $cipherer = null;
+	protected $pSet = null;
+	protected $searchClauseObj = null;
+
+	protected $sessionPrefix = "";
+
+	protected $detailTablesData = array();
+
+	protected $pageId;
+
+	/**
+	 * A flag helping to detect if to apply
+	 * 'details' functionality to the chart
+	 */
+	protected $showDetails = true;
+
+	/**
+	 *	Flag if the chart in master or details preview mode
+	 *	@type Boolean
+	 */
+	protected $chartPreview = false;
+
+	/**
+	 * It indicates if chart is shown on a dashboard
+	 */
+	protected $dashChart = false;
+
+	/**
+	 * It indicates if first point selected
+	 */
+	protected $dashChartFirstPointSelected = false;
+
+	protected $detailMasterKeys = "";
+
+	/**
+	 * Dashboard table name
+	 * It's set up if chart is shown on a dashboard only
+	 */
+	protected $dashTName = "";
+
+	/**
+	 * Dashboard element name
+	 * It's set up if chart is shown on a dashboard only
+	 */
+	protected $dashElementName = "";
+
+	/**
+	 * @type Connection
+	 */
+	protected $connection;
+
+	/**
+	 *
+	 */
+	protected $_2d;
+
+	/**
+	 *
+	 */
+	protected $noRecordsFound = false;
+
+	/**
+	 *
+	 */
+	protected $singleSeries = false;
+
+	protected $masterKeysReq;
+	protected $masterTable;
+
+	/**
+	 * DataSource
+	 */
+	protected $dataSource = null;
+	protected $tName = "";
+
+
+	function __construct( &$ch_array, $param )
+	{
+		global $strTableName;
+
+		$this->webchart = $param["webchart"];
+
+		if( $this->webchart )
+			$this->chrt_array = Convert_Old_Chart($ch_array);
+		else
+			$this->chrt_array = $ch_array;
+
+		$this->tName = $this->chrt_array['tables'][0];
+
+		// #10461, $this->setConnection(); needs to be called after value is assigned to $this->webchart
+		$this->setConnection();
+
+		$this->pSet = new ProjectSettings( $this->tName, PAGE_CHART );
+		$this->showDetails = $param['showDetails'];
+		if( $this->showDetails )
+		{
+			$this->detailTablesData = $this->pSet->getDetailTablesArr();
+			for($i = 0; $i < count($this->detailTablesData); $i ++)
+			{
+				$strPerm = GetUserPermissions($this->detailTablesData[$i]['dDataSourceTable']);
+				if ( strpos($strPerm, "S") === false )
+					unset($this->detailTablesData[$i]);
+			}
+		}
+
+		$this->table_type = $this->chrt_array["table_type"];
+		if( !$this->table_type )
+			$this->table_type = "project";
+
+		if( $this->table_type == "project" ) {
+			//	project table
+			$this->dataSource = getDataSource( $this->tName, $this->pSet, $this->connection );
+		} else {
+			//	db-table-based webchart
+			$this->dataSource = getWebDataSource( $this->chrt_array );
+		}
+
+		$this->pageId = $param["pageId"];
+		$this->chrt_array["appearance"]["autoupdate"] = false;
+
+
+		$this->cname = $param["cname"];
+
+		$this->sessionPrefix = $this->chrt_array['tables'][0];
+
+		$this->masterTable = $param["masterTable"];
+		$this->masterKeysReq = $param["masterKeysReq"];
+
+		// true if chart has master
+		$this->chartPreview = $param["chartPreview"];
+		$this->dashChart = $param["dashChart"];
+
+		if( $this->dashChart )
+		{
+			$this->dashTName = $param["dashTName"];
+			$this->dashElementName = $param["dashElementName"];
+			$this->sessionPrefix = $this->dashTName."_".$this->sessionPrefix;
+		}
+
+		if( !$this->webchart && !$this->chartPreview && isset( $_SESSION[ $this->sessionPrefix.'_advsearch' ] ) )
+			$this->searchClauseObj = SearchClause::UnserializeObject( $_SESSION[ $this->sessionPrefix.'_advsearch' ] );
+
+		if( $this->searchClauseObj )
+			RunnerContext::pushSearchContext( $this->searchClauseObj );
+
+		if( $this->isProjectDB() ) {
+			$this->cipherer = new RunnerCipherer( $this->tName );	
+		}
+
+		$this->setBasicChartProp();
+
+		if( tableEventExists("UpdateChartSettings", $strTableName) )
+		{
+			$eventObj = getEventObject( $strTableName );
+			$eventObj->UpdateChartSettings( $this );
+		}
+	}
+
+	/**
+	 * @param Array params
+	 */
+	protected function setSpecParams( $params )
+	{
+		if( $params['name'] == "" )
+			return;
+
+		if( $this->table_type != "db" )
+			$this->arrDataSeries[] = $params['agr_func'] ? $params['label'] : $params['name'];
+		else {
+			$this->arrDataSeries[] = $params['table']."_".$params['name'];
+//			$this->arrDataSeries[] = $params['name'];
+		}
+	}
+
+	/**
+	 * @param Array params
+	 * @param String gTableName
+	 */
+	protected function setDataLabels( $params, $gTableName )
+	{
+		$chartType = $this->chrt_array["chart_type"]["type"];
+		if( $this->table_type == "project" && !$this->webchart )
+		{
+			if( $chartType != "candlestick" && $chartType != "ohlc" )
+				$this->arrDataLabels[] = GetFieldLabel( $gTableName, GoodFieldName($params['name']) );
+			else
+				$this->arrDataLabels[] = GetFieldLabel( $gTableName, GoodFieldName($params['ohlcOpen']) ) ;
+		}
+		else
+		{
+			if( !$params['label'] )
+			{
+				if( $chartType != "candlestick" && $chartType != "ohlc" )
+					$this->arrDataLabels[] = $params['name'];
+				else
+					$this->arrDataLabels[] = $params['ohlcOpen'];
+			}
+			else
+				$this->arrDataLabels[] = $params['label'];
+		}
+	}
+
+	/**
+	 *
+	 */
+	protected function setBasicChartProp()
+	{
+		$this->header = $this->chrt_array['appearance']['head'];
+		$this->header = $this->header ? $this->header : '';
+
+		$this->footer = $this->chrt_array['appearance']['foot'];
+		$this->footer = $this->footer ? $this->footer : '';
+
+		for ( $i = 0; $i<count($this->chrt_array['parameters']) - 1; $i++)
+		{
+			$this->setSpecParams( $this->chrt_array['parameters'][$i] );
+			$this->setDataLabels( $this->chrt_array['parameters'][$i], GoodFieldName( $this->chrt_array['tables'][0] ) );
+		}
+
+		if( $this->chrt_array["chart_type"]["type"] != "gauge" )
+		{
+			$chartParams = $this->chrt_array['parameters'];
+			$params = $chartParams[ count($chartParams) - 1 ];
+
+			if( $this->table_type != "db" )
+				$this->strLabel = $params['name'];
+			else {
+//				$this->strLabel = $params['name'];
+				$this->strLabel = $params['agr_func'] ? $params['agr_func']."_".$params['table']."_".$params['name']: $params['table']."_".$params['name'];
+			}
+		}
+
+		if( count( $this->arrDataLabels ) == 1 )
+			$this->y_axis_label = $this->arrDataLabels[0];
+		else
+			$this->y_axis_label = $this->chrt_array['appearance']['y_axis_label'];
+	}
+
+
+	protected function getMasterCondition() {
+		if( $this->dashChart )
+			return null;
+
+		$detailKeysByM = $this->pSet->getDetailKeysByMasterTable( $this->masterTable );
+		if( !$detailKeysByM )
+			return null;
+
+		$conditions = array();
+		for( $i = 0; $i < count( $detailKeysByM ); ++$i ) {
+			$conditions[] = DataCondition::FieldEquals( $detailKeysByM[ $i ], $this->masterKeysReq[ $i + 1 ] );
+		}
+
+		return DataCondition::_And( $conditions );
+	}
+
+	/**
+	 * Get datasource command
+	 */
+	public function getSubsetDataCommand( $ignoreFilterField = "" ) {
+		$dc = new DsCommand();
+
+		$dc->filter = DataCondition::_And( array(
+				Security::SelectCondition( "S", $this->pSet ),
+				$this->getMasterCondition()
+			));
+
+		if( !$this->chartPreview && $this->searchClauseObj ) {
+			$search = $this->searchClauseObj->getSearchDataCondition();
+			$filter = $this->searchClauseObj->getFilterCondition( $this->pSet );
+
+			$dc->filter = DataCondition::_And( array( $dc->filter, $search, $filter ) );
+		}
+
+		// where tabs
+		if( $_SESSION[ $this->sessionPrefix . "_chartTabWhere" ] ) {
+			$dc->filter = DataCondition::_And( array(
+				$dc->filter,
+				DataCondition::SQLCondition( $_SESSION[ $this->sessionPrefix . "_chartTabWhere" ] )
+			));
+		}
+
+		require_once( getabspath('classes/orderclause.php') );
+		$orderObject = new OrderClause( $this->pSet, $this->cipherer, $this->sessionPrefix, $this->connection );
+		$dc->order = $orderObject->getOrderFields();
+
+		if( $this->pSet->getRecordsLimit() )
+			$dc->reccount = $this->pSet->getRecordsLimit();
+
+		if( $this->pSet->groupChart() )
+			$dc->totals = $this->getGroupChartCommandTotals();
+
+		return $dc;
+	}
+
+	/**
+	 * Get ds command totals
+	 * total fields appear in the same order
+	   they do in an original orderby clause
+	 * @return array
+	 */
+	protected function getGroupChartCommandTotals() {
+		$totals = array();
+		//	label field
+		$totals[] = array(
+			"alias" => $this->pSet->chartLabelField(),
+			"field" => $this->pSet->chartLabelField(),
+			"modifier" => $this->pSet->chartLabelInterval()
+		);
+
+		$series = $this->pSet->chartSeries();
+		foreach( $series as $s ) {
+			$totals[] = array(
+				"alias" => $s["field"],
+				"field" => $s["field"],
+				"total" => strtolower( $s["total"] )
+			);
+		}
+
+		$orderInfo = $this->pSet->getOrderIndexes();
+		if( !$orderInfo )
+			return $totals;
+
+		$fields = array();
+		foreach( $orderInfo as $o ) {
+			$fields[] = $this->pSet->GetFieldByIndex( $o[0] );
+		}
+
+		foreach( $totals as $idx => $t ) {
+			if( !in_array( $t["field"], $fields ) )
+				$fields[] = $t["field"];
+
+			foreach( $orderInfo as $o ) {
+				$fieldIdx = $this->pSet->getFieldIndex( $t["field"] );
+				if( $fieldIdx  == $o[0] ) {
+					$totals[ $idx ]["direction"] = $o[1];
+					break;
+				}
+			}
+		}
+
+		$_totals = array();
+		foreach( $fields as $field ) {
+			foreach( $totals as $t ) {
+				if( $t["field"] == $field ) {
+					$_totals[] = $t;
+				}
+			}
+		}
+
+		return $_totals;
+	}
+
+	/**
+	 * Check for a web chart if it's based on the project table
+	 * @return Boolean
+	 */
+	protected function isProjectDB()
+	{
+		if( !$this->webchart )
+			return true;
+
+		if("public.kbarticles" == $this->chrt_array['tables'][0])
+			return true;
+		if("public.kbcategories" == $this->chrt_array['tables'][0])
+			return true;
+		if("public.kbcomments" == $this->chrt_array['tables'][0])
+			return true;
+		if("public.kbusers" == $this->chrt_array['tables'][0])
+			return true;
+		if("public.kbarticles" == $this->chrt_array['tables'][0])
+			return true;
+		if("public.faicons" == $this->chrt_array['tables'][0])
+			return true;
+		if("public.kbcomments" == $this->chrt_array['tables'][0])
+			return true;
+		if("public.fasis_chat_history" == $this->chrt_array['tables'][0])
+			return true;
+		if("public.diamondprice" == $this->chrt_array['tables'][0])
+			return true;
+		if("public.products" == $this->chrt_array['tables'][0])
+			return true;
+		if("public.items" == $this->chrt_array['tables'][0])
+			return true;
+		if("public.appointments" == $this->chrt_array['tables'][0])
+			return true;
+		if("public.chat_history" == $this->chrt_array['tables'][0])
+			return true;
+		if("public.chat_users" == $this->chrt_array['tables'][0])
+			return true;
+		if("public.chat_settings" == $this->chrt_array['tables'][0])
+			return true;
+		if("public.chat_files" == $this->chrt_array['tables'][0])
+			return true;
+		if("public.chat_groups" == $this->chrt_array['tables'][0])
+			return true;
+		if("public.chat_peopletype" == $this->chrt_array['tables'][0])
+			return true;
+		if("public.chat_timezone" == $this->chrt_array['tables'][0])
+			return true;
+		return false;
+	}
+
+	/**
+	 * Set the 'connection' property #9875
+	 */
+	protected function setConnection()
+	{
+		global $cman;
+
+		if($this->isProjectDB())
+			$this->connection = $cman->byTable( $this->tName );
+		else
+			$this->connection = $cman->getDefault();
+	}
+
+	public function setFooter($name)
+	{
+		$this->footer = $name;
+	}
+
+	public function getFooter()
+	{
+		return $this->footer;
+	}
+
+	public function setHeader($name)
+	{
+		$this->header = $name;
+	}
+
+	public function getHeader()
+	{
+		return $this->header;
+	}
+
+	public function setLabelField($name)
+	{
+		$this->strLabel = $name;
+	}
+
+	public function getLabelField()
+	{
+		return $this->strLabel;
+	}
+
+	/**
+	 * @return String
+	 */
+	protected function getDetailedTooltipMessage()
+	{
+		if( !$this->showDetails || !$this->detailTablesData )
+			return "";
+
+		$showClickHere = true;
+
+		if( $this->dashChart )
+		{
+			$showClickHere = false;
+
+			$pDSet = new ProjectSettings( $this->dashTName );
+			$arrDElem = $pDSet->getDashboardElements();
+			foreach($arrDElem as $elem)
+			{
+				if( $elem["table"] == $this->chrt_array['tables'][0] && !!$elem["details"] )
+					$showClickHere = true;
+			}
+		}
+
+		if( $showClickHere )
+		{
+			$tableCaption = GetTableCaption( $this->detailTablesData[0]['dDataSourceTable'] );
+			$tableCaption = $tableCaption ? $tableCaption : $this->detailTablesData[0]['dDataSourceTable'];
+
+			 return "\nClick here to see ".$tableCaption." details";
+		}
+
+		return "";
+	}
+
+	/**
+	 * @return String
+	 */
+	protected function getNoDataMessage()
+	{
+		if( !$this->noRecordsFound )
+			return "";
+
+		if( !$this->searchClauseObj )
+			return "No data yet.";
+
+		if( $this->searchClauseObj->isSearchFunctionalityActivated() )
+			return "No results found.";
+
+		return "No data yet.";
+	}
+
+	/**
+	 *
+	 */
+	public function write()
+	{
+		$data = array();
+		$chart = array();
+
+		$this->setTypeSpecChartSettings( $chart );
+		if ( @$this->chrt_array["appearance"]["color71"] != "" || @$this->chrt_array["appearance"]["color91"] != "" )
+			$chart["background"] = array();
+		if ( @$this->chrt_array["appearance"]["color71"] != "" )
+			$chart["background"]["fill"] = "#".$this->chrt_array["appearance"]["color71"];
+
+		if ( @$this->chrt_array["appearance"]["color91"] != "" )
+			$chart["background"]["stroke"] = "#".$this->chrt_array["appearance"]["color91"];
+
+		if( $this->noRecordsFound )
+		{
+			$data["noDataMessage"] = $this->getNoDataMessage();
+			echo my_json_encode( $data );
+			return;
+		}
+
+		// animation
+		if( $this->chrt_array["appearance"]["sanim"] == "true" && $this->chrt_array["appearance"]["autoupdate"] != "true" ) // update?
+			$chart["animation"] = array("enabled" => "true", "duration" => 1000);
+
+		// legend
+		if( $this->chrt_array['appearance']['slegend'] == "true" && !$this->chartPreview )
+			$chart["legend"] = array("enabled" => "true");
+		else
+			$chart["legend"] = array("enabled" => false);
+
+		$chart["credits"] = false;
+		// title/header
+		$chart["title"]	= array("enabled" => "true", "text" => $this->header);
+		if ( @$this->chrt_array["appearance"]["color101"] != "" )
+			$chart["title"]["fontColor"] = "#".$this->chrt_array["appearance"]["color101"];
+
+		// assign and display
+		$data["chart"] = $chart;
+		echo my_json_encode( $data );
+	}
+
+	/**
+	 * A stub
+	 * @param &Array chart
+	 */
+	protected function setTypeSpecChartSettings( &$chart )
+	{
+	}
+
+	/**
+	 * @return Array
+	 */
+	protected function getGrids()
+	{
+		$grids = array();
+
+		if($this->chrt_array["appearance"]["sgrid"] == "true")
+		{
+			$stroke = @$this->chrt_array["appearance"]["color121"] != "" ? "#" . $this->chrt_array["appearance"]["color121"] : "#ddd";
+
+			$grid0 = array(
+				"enabled" => true,
+				"drawLastLine" => false,
+				"stroke" => $stroke,
+				"scale" => 0,
+				"axis" => 0
+			);
+
+			if ( @$this->chrt_array["appearance"]["color81"] != "" )
+			{
+				$dataPlotBackgroundColor = "#" . $this->chrt_array["appearance"]["color81"];
+				$grid0["oddFill"] = $dataPlotBackgroundColor;
+				$grid0["evenFill"] = $dataPlotBackgroundColor;
+			}
+
+			$grids[] = $grid0;
+
+			$grids[] = array(
+				"enabled" => true,
+				"drawLastLine" => false,
+				"stroke" => $stroke,
+				"axis" => 1
+			);
+		}
+
+		return $grids;
+	}
+
+	/**
+	 * @param String fieldName
+	 * @param Array data
+	 * @return String
+	 */
+	protected function labelFormat($fieldName, $data, $truncated = true)
+	{
+		if( !$fieldName )
+			return "";
+		
+		if( $this->table_type == "db" && !!$this->chrt_array['customLabels'] )
+			$fieldName = $this->chrt_array['customLabels'][ $fieldName ];
+
+		include_once getabspath('classes/controls/ViewControlsContainer.php');
+		$viewControls = new ViewControlsContainer( $this->pSet, PAGE_CHART );
+		if( $this->pSet->groupChart() ) {
+			$interval = $this->pSet->chartLabelInterval();
+			if( $interval ) {
+				$fType = $this->pSet->getFieldType( $fieldName );
+				return RunnerPage::formatGroupValueStatic( $fieldName, $interval, $data[ $fieldName ], $this->pSet, $viewControls, false );
+			}
+		}
+		$value = $viewControls->showDBValue( $fieldName, $data, "", "", false );
+
+		if( $truncated && strlen($value) > 50 )
+			$value = runner_substr($value, 0, 47)."...";
+
+		return $value;
+	}
+
+	protected function beforeQueryEvent( &$dc ) {
+		$eventsObject = getEventObject( $this->pSet->getTableName() );
+
+		//	ASP conversion requires these checks be separate
+		if( !$eventsObject )
+			return;
+		if( !$eventsObject->exists("BeforeQueryChart") ) {
+			return;
+		}
+
+		$prep = $this->dataSource->prepareSQL( $dc );
+		$where = $prep["where"];
+		$sql = $prep["sql"];
+		$order = $prep["order"];
+
+		// call Before Query event
+		$eventsObject->BeforeQueryChart( $sql, $where, $order );
+
+		if( $sql != $prep["sql"] )
+			$this->dataSource->overrideSQL( $dc, $sql );
+		else {
+			if( $where != $prep["where"] )
+				$this->dataSource->overrideWhere( $dc, $where );
+			if( $order != $prep["order"] )
+				$this->dataSource->overrideOrder( $dc, $order );
+		}
+	}
+
+	/**
+	 * @return Array
+	 */
+	public function get_data()
+	{
+		$data = array();
+		$clickdata = array();
+		for ( $i = 0; $i < count($this->arrDataSeries); $i++ )
+		{
+			$data[$i] = array();
+			$clickdata[$i] = array();
+		}
+
+		$dc = $this->getSubsetDataCommand();
+		$this->beforeQueryEvent( $dc );
+
+		if( $this->pSet->groupChart() ) {
+			$rs = $this->dataSource->getTotals( $dc );
+		} else {
+			$rs = $this->dataSource->getList( $dc );
+		}
+		if( !$rs ) {
+			showError( $this->dataSource->lastError() );
+		}
+
+		$row = $rs->fetchAssoc();
+		if( $this->cipherer )
+			$row = $this->cipherer->DecryptFetchedArray( $row );
+
+		if( !$row )
+			$this->noRecordsFound = true;
+
+		while ($row)
+		{
+			for ( $i = 0; $i < count($this->arrDataSeries); $i++ )
+			{
+				$data[$i][] = $this->getPoint($i, $row);
+
+				$strLabelFormat = $this->labelFormat( $this->strLabel, $row );
+				$clickdata[$i][] = $this->getActions( $row , $this->arrDataSeries[$i], $strLabelFormat );
+			}
+
+			$row = $rs->fetchAssoc();
+			if( $this->cipherer )
+				$row = $this->cipherer->DecryptFetchedArray( $row );
+		}
+
+		$series = array();
+		for ( $i = 0; $i < count($this->arrDataSeries); $i++ )
+		{
+			$series[] = $this->getSeriesData( $this->arrDataLabels[$i], $data[$i], $clickdata[$i], $i, count($this->arrDataSeries) > 1 );
+		}
+
+		return $series;
+	}
+
+	/**
+	 * @param Number seriesNumber
+	 * @param Array row
+	 * @return Array
+	 */
+	protected function getPoint( $seriesNumber, $row ) {
+		$strLabelFormat = $this->labelFormat( $this->strLabel, $row );
+		
+		include_once getabspath('classes/controls/ViewControlsContainer.php');
+		$viewControls = new ViewControlsContainer( $this->pSet, PAGE_CHART );		
+		
+		if( $this->table_type != "db" || !$this->chrt_array['customLabels'] ) {
+			$strDataSeries = $row[ $this->arrDataSeries[ $seriesNumber ] ];
+			$fieldName = $this->arrDataSeries[ $seriesNumber ];
+			$formattedValue = $viewControls->showDBValue( $fieldName, $row, "", "", false );
+		} else {
+			$strDataSeries = $row[ $this->chrt_array['customLabels'][ $this->arrDataSeries[ $seriesNumber ] ] ];
+			$fieldName = $this->chrt_array['customLabels'][ $this->arrDataSeries[ $seriesNumber ] ];
+			$formattedValue = $viewControls->showDBValue( $fieldName, $row, "", "", false );
+		}
+		
+		return array( 
+				"x" => $strLabelFormat, 
+				"value" => (double)str_replace(",", ".", $strDataSeries),
+				"viewAsValue" => $formattedValue
+			);
+	}
+
+	/**
+	 * @param String name
+	 * @param Array pointsData
+	 * @param Array clickData
+	 * @param Number seriesNumber
+	 * @param Boolean multiSeries (optional)
+	 * @return Array
+	 */
+	protected function getSeriesData( $name, $pointsData, $clickData, $seriesNumber, $multiSeries = true )
+	{
+		$data = array(
+			"name" => $name,
+			"data" => $pointsData,
+			"xScale" => "0",
+			"yScale" => "1",
+			"seriesType" => $this->getSeriesType($seriesNumber)
+		);
+
+		$data["labels"] = array( 
+			"enabled" => $this->chrt_array["appearance"]["sval"] == "true", 
+			"format" => "{%viewAsValue}"  
+		);
+
+		if ( @$this->chrt_array["appearance"]["color61"] != "" )
+			$data["labels"]["fontColor"] = "#".$this->chrt_array["appearance"]["color61"];
+
+		if( $clickData && $this->detailTablesData )
+			$data["clickData"] = $clickData;
+
+		$data["tooltip"] = $this->getSeriesTooltip( $multiSeries );
+
+		return $data;
+	}
+
+	/**
+	 * @param Boolean $multiSeries
+	 * @return Array
+	 */
+	protected function getSeriesTooltip( $multiSeries ) {		
+		return array(
+			"enabled" => true,
+			"format" => "{%seriesName}: {%viewAsValue}".  $this->getDetailedTooltipMessage(),
+		);
+	}
+
+	/**
+	 * @return String
+	 */
+	protected function getSeriesType($seriesNumber)
+	{
+		return "column";
+	}
+
+	/**
+	 * @deprecated
+	 * @param String str
+	 * @return String
+	 */
+	protected function chart_xmlencode($str)
+	{
+		return str_replace(array("&","<",">","\""),array("&amp;","&lt;","&gt;","&quot;"),$str);
+	}
+
+	/**
+	 * Get a 'point click' action data
+	 * @param Array data
+	 * @param Number seriesId
+	 * @param Number pointId
+	 * @return Array
+	 */
+	protected function getActions( $data, $seriesId, $pointId )
+	{
+		global $strTableName;
+
+		if( !$this->detailTablesData )
+			return null;
+
+		if ( $this->dashChart )
+		{
+			$masterKeysArr = array();
+			foreach ( $this->detailTablesData as $detailId => $detail )
+			{
+				foreach( $detail['masterKeys'] as $idx => $mk )
+				{
+					$masterKeysArr[ $detail['dDataSourceTable'] ] = array( 'masterkey'.($idx + 1) => $data[ $mk ] );
+				}
+			}
+
+			if (!$this->dashChartFirstPointSelected)
+			{
+				$this->dashChartFirstPointSelected = true;
+				$this->detailMasterKeys = my_json_encode( $masterKeysArr );
+			}
+
+			return array( "masterKeys" => $masterKeysArr, "seriesId" => $seriesId, "pointId" => $pointId );
+		}
+
+		// The one detail table is allowed for a chart page only
+		$detailTableData = $this->detailTablesData[0];
+		$masterquery = "mastertable=".rawurlencode( $strTableName );
+		foreach( $detailTableData['masterKeys'] as $idx => $mk )
+		{
+			$masterquery.= "&masterkey".($idx + 1)."=".rawurlencode( $data[ $mk ] );
+		}
+
+		return array( "url" => GetTableLink( $detailTableData['dShortTable'], $detailTableData['dType'], $masterquery ) );
+	}
+
+	protected function getLogarithm()
+	{
+		if( $this->chrt_array["appearance"]["slog"] == "true" )
+			return true;
+		return false;
+	}
+}
+
+
+class Chart_Bar extends Chart
+{
+	protected $stacked;
+	protected $bar;
+
+	function __construct( &$ch_array, $param )
+	{
+		parent::__construct( $ch_array, $param );
+
+		$this->stacked = $param["stacked"];
+		$this->_2d = $param["2d"];
+		$this->bar = $param["bar"];
+	}
+
+	/**
+	 * @return String
+	 */
+	protected function getSeriesType($seriesNumber)
+	{
+		if($this->bar)
+			return "bar";
+		else
+			return "column";
+	}
+
+	/**
+	 * @param &Array chart
+	 */
+	protected function setTypeSpecChartSettings( &$chart )
+	{
+		$chart["series"] = $this->get_data();
+
+		$chart["scales"] = $this->getScales();
+		$chart["logarithm"] = parent::getLogarithm();
+
+		if( $this->bar )
+			$chart["type"] = "bar";
+		else
+			$chart["type"] = "column";
+
+		if( !$this->_2d )
+			$chart["type"] .= "-3d";
+
+		$chart["xScale"] = 0;
+		$chart["yScale"] = 1;
+
+		// grid
+		$chart["grids"] = $this->getGrids();
+
+
+		// Y-axis label
+		$chart["yAxes"]	= array(
+			array(
+				"enabled" => "true",
+				"title" => $this->y_axis_label
+			));
+
+		// X-axis label
+		$chart["xAxes"]	= array(
+			array(
+				"enabled" => "true",
+				"title" => array( 'text' => $this->footer ),
+				"labels" => array( "enabled" => $this->chrt_array["appearance"]["sname"] == "true" )
+			));
+
+		if ( @$this->chrt_array["appearance"]["color51"] != "" )
+			$chart["xAxes"][0]["labels"]["fontColor"] = "#".$this->chrt_array["appearance"]["color51"];
+
+		if ( @$this->chrt_array["appearance"]["color111"] != "" )
+			$chart["xAxes"][0]["title"]["fontColor"] = "#".$this->chrt_array["appearance"]["color111"];
+
+		if ( @$this->chrt_array["appearance"]["color131"] != "" )
+			$chart["xAxes"][0]["stroke"] = "#".$this->chrt_array["appearance"]["color131"];
+
+		if ( @$this->chrt_array["appearance"]["color141"] != "" )
+			$chart["yAxes"][0]["stroke"] = "#".$this->chrt_array["appearance"]["color141"];
+	}
+
+	/**
+	 * "scales"
+	 * @return Array
+	 */
+	protected function getScales()
+	{
+		if($this->stacked || $this->chrt_array["appearance"]["slog"] == "true")
+		{
+			$arr = array();
+			if( $this->stacked )
+				$arr["stackMode"] = "value";
+
+			if( $this->chrt_array["appearance"]["slog"] == "true" )
+			{
+				$arr["logBase"] = 10;
+				$arr["type"] = "log";
+			};
+
+			return array(
+				array("names" => array()),
+				$arr
+			);
+		}
+
+		return array();
+	}
+}
+
+class Chart_Line extends Chart
+{
+	protected $type_line;
+
+
+	function __construct( &$ch_array, $param )
+	{
+		parent::__construct( $ch_array, $param );
+
+		$this->type_line = $param["type_line"];
+	}
+
+	/**
+	 * @param &Array chart
+	 */
+	protected function setTypeSpecChartSettings( &$chart )
+	{
+		$chart["series"] = $this->get_data();
+		$chart["type"] = "line";
+
+		$chart["xScale"] = 0;
+		$chart["yScale"] = 1;
+		$chart["grids"] = $this->getGrids();
+		$chart["logarithm"] = parent::getLogarithm();
+		$chart["tooltip"] = array("displayMode" => "single");
+
+		$chart["yAxes"]	= array(
+			array( "enabled" => "true", "title" => $this->y_axis_label )
+		);
+
+		$chart["xAxes"]	= array(
+			array(
+				"enabled" => "true",
+				"title" => array( 'text' => $this->footer ),
+				"labels" => array( "enabled" => $this->chrt_array["appearance"]["sname"] == "true" )
+			));
+
+		if ( @$this->chrt_array["appearance"]["color51"] != "" )
+			$chart["xAxes"][0]["labels"]["fontColor"] = "#".$this->chrt_array["appearance"]["color51"];
+
+		if ( @$this->chrt_array["appearance"]["color111"] != "" )
+			$chart["xAxes"][0]["title"]["fontColor"] = "#".$this->chrt_array["appearance"]["color111"];
+
+		if ( @$this->chrt_array["appearance"]["color131"] != "" )
+			$chart["xAxes"][0]["stroke"] = "#".$this->chrt_array["appearance"]["color131"];
+
+		if ( @$this->chrt_array["appearance"]["color141"] != "" )
+			$chart["yAxes"][0]["stroke"] = "#".$this->chrt_array["appearance"]["color141"];
+	}
+
+	/**
+	 * @return String
+	 */
+	protected function getSeriesType($seriesNumber)
+	{
+		switch( $this->type_line )
+		{
+			case "line":
+				return "line";
+			case "spline":
+				return "spline";
+			case "step_line":
+				return "stepLine";
+			default:
+				return "line";
+		}
+	}
+}
+
+class Chart_Area extends Chart
+{
+	protected $stacked;
+
+
+	function __construct( &$ch_array, $param )
+	{
+		parent::__construct( $ch_array, $param );
+
+		$this->stacked = $param["stacked"];
+	}
+
+	/**
+	 * @param &Array chart
+	 */
+	protected function setTypeSpecChartSettings( &$chart )
+	{
+		$chart["series"] = $this->get_data();
+
+		if( $this->stacked )
+			$chart["scales"] = $this->getScales();
+		$chart["type"] = "area";
+		$chart["xScale"] = 0;
+		$chart["yScale"] = 1;
+		$chart["logarithm"] = parent::getLogarithm();
+		$chart["grids"] = $this->getGrids();
+
+		$chart["tooltip"] = array("displayMode" => "single");
+
+		$chart["yAxes"]	= array(
+			array( "enabled" => "true", "title" => $this->y_axis_label )
+		);
+
+		$chart["xAxes"]	= array(
+			array(
+				"enabled" => "true",
+				"title" => array( 'text' => $this->footer ),
+				"labels" => array( "enabled" => $this->chrt_array["appearance"]["sname"] == "true" )
+			));
+
+		if ( @$this->chrt_array["appearance"]["color51"] != "" )
+			$chart["xAxes"][0]["labels"]["fontColor"] = "#".$this->chrt_array["appearance"]["color51"];
+
+		if ( @$this->chrt_array["appearance"]["color111"] != "" )
+			$chart["xAxes"][0]["title"]["fontColor"] = "#".$this->chrt_array["appearance"]["color111"];
+
+		if ( @$this->chrt_array["appearance"]["color131"] != "" )
+			$chart["xAxes"][0]["stroke"] = "#".$this->chrt_array["appearance"]["color131"];
+
+		if ( @$this->chrt_array["appearance"]["color141"] != "" )
+			$chart["yAxes"][0]["stroke"] = "#".$this->chrt_array["appearance"]["color141"];
+	}
+
+	/**
+	 * @return String
+	 */
+	protected function getSeriesType($seriesNumber)
+	{
+		return "area";
+	}
+
+	/**
+	 * "scales"
+	 * @return Array
+	 */
+	protected function getScales()
+	{
+		if( $this->stacked )
+		{
+			$arr = array();
+			$arr["stackMode"] = "value";
+
+			if( $this->chrt_array["appearance"]["sstacked"] == "true" )
+			{
+				$arr["stackMode"] = "percent";
+				$arr["maximumGap"] = "10";
+				$arr["maximum"] = "100";
+			};
+
+			return array(
+				array( "names"=> array() ),
+				$arr
+			);
+		}
+
+		return array();
+	}
+}
+
+/**
+ * A single series chart
+ */
+class Chart_Pie extends Chart
+{
+	protected $pie;
+
+
+	function __construct( &$ch_array, $param )
+	{
+		parent::__construct( $ch_array, $param );
+
+		$this->pie = $param["pie"];
+		$this->_2d = $param["2d"];
+		$this->singleSeries = true;
+	}
+
+	/**
+	 * @param &Array chart
+	 */
+	protected function setTypeSpecChartSettings( &$chart )
+	{
+		$series = $this->get_data();
+
+		$chart["data"] = $series[0]["data"];
+		$chart["clickData"] = $series[0]["clickData"];
+		$chart["singleSeries"] = true;
+		$chart["tooltip"] = $series[0]["tooltip"];
+		$chart["logarithm"] = false;
+		if( $this->_2d )
+			$chart["type"] = "pie";
+		else
+			$chart["type"] = "pie-3d";
+
+		if( !$this->pie )
+			$chart["innerRadius"] = "30%";
+
+		if( $this->chrt_array['appearance']['slegend'] == "true" && !$this->chartPreview )
+		{
+			$chart["legend"] = array("enabled" => "true");
+		}
+
+		$chart["labels"] = array( "enabled" => $this->chrt_array["appearance"]["sval"] == "true" || $this->chrt_array["appearance"]["sname"] == "true" );
+
+		if ( @$this->chrt_array["appearance"]["color51"] != "" )
+		{
+			if ( $this->chrt_array["appearance"]["sval"] )
+			{
+				$chart["labels"]["fontColor"] = "#".$this->chrt_array["appearance"]["color61"];
+			}
+			else if ( $this->chrt_array["appearance"]["sname"] )
+			{
+				$chart["labels"]["fontColor"] = "#".$this->chrt_array["appearance"]["color51"];
+			}
+		}
+
+	}
+}
+
+class Chart_Combined extends Chart
+{
+	function __construct( &$ch_array, $param )
+	{
+		parent::__construct( $ch_array, $param );
+	}
+
+	/**
+	 * @param &Array chart
+	 */
+	protected function setTypeSpecChartSettings( &$chart )
+	{
+		$chart["series"] = $this->get_data();
+		$chart["type"] = "column";
+		$chart["logarithm"] = parent::getLogarithm();
+		$chart["xScale"] = 0;
+		$chart["yScale"] = 1;
+		$chart["grids"] = $this->getGrids();
+		$chart["yAxes"]	= array(
+			array( "enabled" => "true", "title" => $this->y_axis_label )
+		);
+
+		$chart["xAxes"]	= array(
+			array(
+				"enabled" => "true",
+				"title" => array( 'text' => $this->footer ),
+				"labels" => array( "enabled" => $this->chrt_array["appearance"]["sname"] == "true" )
+			));
+
+		if ( @$this->chrt_array["appearance"]["color51"] != "" )
+			$chart["xAxes"][0]["labels"]["fontColor"] = "#".$this->chrt_array["appearance"]["color51"];
+
+		if ( @$this->chrt_array["appearance"]["color111"] != "" )
+			$chart["xAxes"][0]["title"]["fontColor"] = "#".$this->chrt_array["appearance"]["color111"];
+
+		if ( @$this->chrt_array["appearance"]["color131"] != "" )
+			$chart["xAxes"][0]["stroke"] = "#".$this->chrt_array["appearance"]["color131"];
+
+		if ( @$this->chrt_array["appearance"]["color141"] != "" )
+			$chart["yAxes"][0]["stroke"] = "#".$this->chrt_array["appearance"]["color141"];
+	}
+
+	/**
+	 * @return String
+	 */
+	protected function getSeriesType($seriesNumber)
+	{
+		switch ($seriesNumber) {
+			case 0:
+				return "spline";
+				break;
+			case 1:
+				return "splineArea";
+				break;
+			default:
+				return "column";
+		}
+	}
+	protected function getLogarithm()
+	{
+		if( $this->chrt_array["appearance"]["slog"] == "true" )
+			return true;
+		return false;
+	}
+}
+
+/**
+ * A single series chart
+ */
+class Chart_Funnel extends Chart
+{
+	protected $inver;
+
+
+	function __construct( &$ch_array, $param )
+	{
+		parent::__construct( $ch_array, $param );
+
+		$this->inver = $param["funnel_inv"];
+		$this->singleSeries = true;
+	}
+
+	/**
+	 * @param &Array chart
+	 */
+	protected function setTypeSpecChartSettings( &$chart )
+	{
+		$series = $this->get_data();
+		$chart["type"] = "pyramid";
+
+		$chart["data"] = $series[0]["data"];
+		$chart["clickData"] = $series[0]["clickData"];
+		$chart["singleSeries"] = true;
+		$chart["tooltip"] = $series[0]["tooltip"];
+		$chart["logarithm"] = false;
+		if( $this->inver )
+			$chart["reversed"] = true;
+
+		$chart["labels"] = array( "enabled" => $this->chrt_array["appearance"]["sname"] == "true" );
+
+		if ( @$this->chrt_array["appearance"]["color51"] != "" )
+			$chart["labels"]["fontColor"] = "#".$this->chrt_array["appearance"]["color51"];
+	}
+}
+
+class Chart_Bubble extends Chart
+{
+	protected $arrDataSize = array();
+
+
+	function __construct( &$ch_array, $param )
+	{
+		parent::__construct( $ch_array, $param );
+
+		$this->_2d = $param["2d"];
+	}
+
+	/**
+	 * @param Array params
+	 */
+	protected function setSpecParams( $params )
+	{
+		parent::setSpecParams( $params );
+
+		if( $params['name'] != "" )
+		{
+			if( $this->table_type != "db" )
+				$this->arrDataSize[] = $params['size'];
+			else
+				$this->arrDataSize[] = $params['table']."_".$params['size'];
+		}
+	}
+
+	/**
+	 * @param &Array chart
+	 */
+	protected function setTypeSpecChartSettings( &$chart )
+	{
+		$chart["series"] = $this->get_data();
+		$chart["type"] = "cartesian";
+		$chart["grids"] = $this->getGrids();
+		$chart["logarithm"] = parent::getLogarithm();
+		$chart["yAxes"]	= array(
+			array(
+				"enabled" => true,
+				"title" => $this->y_axis_label,
+				"labels" => array( "enabled" => $this->chrt_array["appearance"]["sval"] == "true" )
+			));
+
+		if ( @$this->chrt_array["appearance"]["color61"] != "" )
+			$chart["yAxes"][0]["labels"]["fontColor"] = "#".$this->chrt_array["appearance"]["color61"];
+
+		$chart["xAxes"]	= array(
+			array(
+				"enabled" => "true",
+				"title" => array( 'text' => $this->footer ),
+				"labels" => array( "enabled" => $this->chrt_array["appearance"]["sname"] == "true" )
+			));
+
+		if ( @$this->chrt_array["appearance"]["color51"] != "" )
+			$chart["xAxes"][0]["labels"]["fontColor"] = "#".$this->chrt_array["appearance"]["color51"];
+
+		if ( @$this->chrt_array["appearance"]["color111"] != "" )
+			$chart["xAxes"][0]["title"]["fontColor"] = "#".$this->chrt_array["appearance"]["color111"];
+
+		if ( @$this->chrt_array["appearance"]["color131"] != "" )
+			$chart["xAxes"][0]["stroke"] = "#".$this->chrt_array["appearance"]["color131"];
+
+		if ( @$this->chrt_array["appearance"]["color141"] != "" )
+			$chart["yAxes"][0]["stroke"] = "#".$this->chrt_array["appearance"]["color141"];
+	}
+
+	/**
+	 * @return String
+	 */
+	protected function getSeriesType($seriesNumber)
+	{
+		return "bubble";
+	}
+
+	/**
+	 * @param Number seriesNumber
+	 * @param Array row
+	 * @return Array
+	 */
+	protected function getPoint( $seriesNumber, $row )
+	{
+		$pointData = parent::getPoint( $seriesNumber, $row );
+		$pointData["size"] = (double)str_replace(",", ".", $row[ $this->arrDataSize[ $seriesNumber ] ]);
+
+		return $pointData;
+	}
+}
+
+class Chart_Gauge extends Chart
+{
+	protected $arrGaugeColor = array();
+	protected $gaugeType = "";
+	protected $layout = "";
+
+	function __construct( &$ch_array, $param )
+	{
+		parent::__construct( $ch_array, $param );
+
+		$this->gaugeType = $param["gaugeType"];
+		$this->layout = $param["layout"];
+	}
+
+	/**
+	 * @param Array params
+	 */
+	protected function setSpecParams( $params )
+	{
+		parent::setSpecParams( $params );
+
+		if ( $params['name'] != "" )
+		{
+			for ($k = 0; is_array( $params["gaugeColorZone"] ) && $k < count( $params["gaugeColorZone"] ); $k++ )
+			{
+				$beginColor = (float)@$params["gaugeColorZone"][ $k ]["gaugeBeginColor"];
+				$endColor = (float)@$params["gaugeColorZone"][ $k ]["gaugeEndColor"];
+				$gColor = "#".@$params["gaugeColorZone"][ $k ]["gaugeColor"];
+
+				$this->arrGaugeColor[ count($this->arrDataSeries) - 1 ][] = array($beginColor, $endColor, $gColor);
+			}
+		}
+	}
+
+	/**
+	 *
+	 */
+	public function write()
+	{
+		$data = array();
+
+		for($i = 0; $i < count($this->arrDataSeries); $i++)
+		{
+			$chart = array();
+
+			if( $this->chrt_array["appearance"]["sanim"] == "true" )
+				$chart["animation"] = array("enabled" => "true", "duration" => 1000);
+
+			$this->setGaugeSpecChartSettings( $chart, $i );
+
+			if ( @$this->chrt_array["appearance"]["color71"] != "" || @$this->chrt_array["appearance"]["color91"] != "" )
+				$chart["background"] = array();
+			if ( @$this->chrt_array["appearance"]["color71"] != "" )
+				$chart["background"]["fill"] = "#".$this->chrt_array["appearance"]["color71"];
+
+			if ( @$this->chrt_array["appearance"]["color91"] != "" )
+				$chart["background"]["stroke"] = "#".$this->chrt_array["appearance"]["color91"];
+
+			if( $this->noRecordsFound )
+			{
+				$data["noDataMessage"] = $this->getNoDataMessage();
+				echo my_json_encode( $data );
+				return;
+			}
+
+			$data[] = array( "gauge" => $chart );
+		}
+
+		echo my_json_encode( array( "gauge" => $data, "header" => $this->header, "footer" => $this->footer ) );
+	}
+
+	/**
+	 * @param &Array chart
+	 * @param Number seriesNumber
+	 */
+	protected function setGaugeSpecChartSettings( &$chart, $seriesNumber )
+	{
+		$series = $this->get_data();
+		$chart["data"] = $series[ $seriesNumber ]["data"];
+
+		$chart["type"] = $this->gaugeType;
+		$chart["layout"] = $this->layout;
+		$chart["axes"] = array( $this->getAxesSettings( $seriesNumber ) );
+		$chart["credits"] = false;
+		$chart["chartLabels"] = $this->getCircularGaugeLabel( $seriesNumber, $chart["data"][0] );
+		if( $this->gaugeType == "circular-gauge" )
+		{
+			$chart["needles"] = array( array("enabled" => true) );
+			$chart["ranges"] = $this->getColorRanges( $seriesNumber );
+		}
+		else
+		{
+			$hasColorZones = count( $this->arrGaugeColor ) > 0 && array_key_exists($seriesNumber, $this->arrGaugeColor );
+
+			$chart["pointers"] = array(
+				array(
+					"enabled" => true,
+					"pointerType" => "marker",
+					"type" => $this->layout == "horizontal" ? "triangleUp" : "triangleLeft",
+					"name" => "",
+					"offset" => $hasColorZones ? "20%" : "10%",
+					"dataIndex" => 0,
+				)
+			);
+
+			if( $hasColorZones )
+			{
+				foreach( $this->arrGaugeColor[ $seriesNumber ] as $ind => $val )
+				{
+					$chart["pointers"][] = array(
+						"enabled" => true,
+						"pointerType" => "rangeBar",
+						"name" => "",
+						"offset" => "10%",
+						"dataIndex" => $ind + 1, // 0 is an index of the db point then range bars coords go
+						"color" => $val[2]
+					);
+				}
+			}
+
+			$scalesData = $this->getGaugeScales( $seriesNumber );
+
+			$chart["scale"] = 0;
+			$chart["scales"] = array(
+				array(
+					"maximum" => $scalesData["max"],
+					"minimum" => $scalesData["min"],
+					"ticks" => array( "interval"=> $scalesData["interval"] ),
+					"minorTicks" => array( "interval"=> $scalesData["interval"] / 2 )
+				)
+			);
+		}
+	}
+
+	/**
+	 * @param Number seriesNumber
+	 * @param Array pointData
+	 * @return Array
+	 */
+	protected function getCircularGaugeLabel( $seriesNumber, $pointData )
+	{
+		$label = array(
+			"enabled" => true,
+			"vAlign" => "center",
+			"hAlign" => "center",
+			"text" => $this->getChartLabelText( $seriesNumber, $pointData["value"] )
+		);
+
+		if( $this->gaugeType == "circular-gauge" )
+		{
+			$label["offsetY"] = -150; //fix it
+			$label["anchor"] = "center";
+
+			$label["background"] = array(
+				"enabled" => true,
+				"fill" => "#fff",
+				"cornerType" => "round",
+				"corner" => 0
+			);
+
+			$label["padding"] = array(
+				"top" => 15,
+				"right" => 20,
+				"bottom" => 15,
+				"left" => 20
+			);
+		}
+
+		return array( $label );
+	}
+
+	/**
+	 * @param Number seriesNumber
+	 * @return Array
+	 */
+	protected function getColorRanges( $seriesNumber )
+	{
+		$ranges = array();
+		if( count( $this->arrGaugeColor ) > 0 && array_key_exists($seriesNumber, $this->arrGaugeColor ) )
+		{
+			foreach( $this->arrGaugeColor[ $seriesNumber ] as $ind => $val )
+			{
+				$ranges[] = array(
+					"radius" => 70,
+					"from" => $val[0],
+					"to" => $val[1],
+					"fill" => $val[2],
+					"endSize" => "10%",
+					"startSize" => "10%"
+				);
+			}
+		}
+
+		return $ranges;
+	}
+
+	/**
+	 * @param Number seriesNumber
+	 * @return Array
+	 */
+	protected function getAxesSettings( $seriesNumber )
+	{
+		$axes = array();
+
+		if( $this->gaugeType == "circular-gauge" )
+		{
+			$axes["startAngle"] = -150;
+			$axes["sweepAngle"] = 300;
+
+			$scalesData = $this->getGaugeScales( $seriesNumber );
+
+			$axes["scale"] = array(
+				"maximum" => $scalesData["max"],
+				"minimum" => $scalesData["min"],
+				"ticks" => array( "interval"=> $scalesData["interval"] ),
+				"minorTicks" => array( "interval" => $scalesData["interval"] / 2 )
+			);
+
+			$axes["ticks"] = array(
+				"type" => "trapezoid",
+				"interval" => $scalesData["interval"]
+			);
+
+			$axes["minorTicks"] = array(
+				"enabled" => true,
+				"length" => 2
+			);
+
+			if ( @$this->chrt_array["appearance"]["color131"] != "" )
+				$axes["fill"] = "#".$this->chrt_array["appearance"]["color131"];
+		}
+
+		$axes["enabled"] = true;
+		$axes["labels"] = array( "enabled" => $this->chrt_array["appearance"]["sval"] == "true" );
+
+		if ( @$this->chrt_array["appearance"]["color61"] != "" )
+			$axes["labels"]["fontColor"] = "#".$this->chrt_array["appearance"]["color61"];
+
+		return $axes;
+	}
+
+	/**
+	 * @param Number seriesNumber
+	 * @return Array
+	 */
+	protected function getGaugeScales( $seriesNumber )
+	{
+		$min = $this->chrt_array["parameters"][ $seriesNumber ]["gaugeMinValue"];
+		$max = $this->chrt_array["parameters"][ $seriesNumber ]["gaugeMaxValue"];
+
+		if( !is_numeric( $min ) )
+			$min = 0;
+
+		if( !is_numeric( $max ) )
+			$max = 100;
+
+		$diff = $max - $min;
+		$slog = floor( log10( $diff ) );
+		$interval = pow(10, $slog - 2);
+		$muls = array(1,2,3,5,10);
+
+		while(true)
+		{
+			foreach($muls as $m)
+			{
+				if( $diff / ($interval * $m) <= 10 )
+				{
+					$interval*= $m;
+					break;
+				}
+			}
+			if( $diff / ($interval) <= 10 )
+				break;
+
+			$interval*= 10;
+		}
+
+		return array(
+			"min" => $min,
+			"max" => $max,
+			"interval" => $interval
+		);
+	}
+
+
+	public function getSubsetDataCommand( $ignoreFilterField = "" ) {
+		$dc = parent::getSubsetDataCommand();
+
+		if( $this->table_type == "project" ) {
+			require_once( getabspath('classes/orderclause.php') );
+
+			$orderObject = new OrderClause( $this->pSet, $this->cipherer, $this->sessionPrefix, $this->connection );
+			$order = $orderObject->getOrderFields();
+			$revertedOrder = array();
+
+			foreach( $order as $o ) {
+				$ro = $o;
+				$ro['dir'] = $ro['dir'] == "ASC" ? "DESC" : "ASC";
+
+				$revertedOrder[] = $ro;
+			}
+
+			$dc->order = $revertedOrder;
+		}
+
+		return $dc;
+	}
+
+	/**
+	 *
+	 */
+	public function get_data()
+	{
+		$data = array();
+
+		$dc = $this->getSubsetDataCommand();
+		$this->beforeQueryEvent( $dc );
+
+		$rs = $this->dataSource->getList( $dc );
+		if( !$rs ) {
+			showError( $this->dataSource->lastError() );
+		}
+
+		$row = $rs->fetchAssoc();
+		if( $this->cipherer )
+			$row = $this->cipherer->DecryptFetchedArray( $row );
+
+		if( !$row )
+			$this->noRecordsFound = true;
+
+		for($i = 0; $i < count($this->arrDataSeries); $i++)
+		{
+			if( $row )
+			{
+				$data[$i] = array();
+				$data[$i][] = $this->getPoint($i, $row);
+			}
+		}
+
+		$series = array();
+		for ( $i = 0; $i < count($this->arrDataSeries); $i++ )
+		{
+			$series[] = $this->getSeriesData( $this->arrDataLabels[$i], $data[$i], $clickdata[$i], $i, count($this->arrDataSeries) > 1 );
+		}
+
+		return $series;
+	}
+
+	/**
+	 * @param String name
+	 * @param Array pointsData
+	 * @param Array clickData
+	 * @param Number seriesNumber
+	 * @param Boolean multiSeries (optional)
+	 * @return Array
+	 */
+	protected function getSeriesData( $name, $pointsData, $clickData, $seriesNumber, $multiSeries = true )
+	{
+		if( $this->gaugeType == "linearGauge" && count( $this->arrGaugeColor ) > 0 && array_key_exists( $seriesNumber, $this->arrGaugeColor ) )
+		{
+			foreach( $this->arrGaugeColor[ $seriesNumber ] as $ind => $val )
+			{
+				$pointsData[] = array(
+					"low" => $val[0],
+					"high" => $val[1]
+				);
+			}
+		}
+
+		return array(
+			"data" => $pointsData,
+			"labelText" => $this->getChartLabelText( $seriesNumber, $pointsData[0]["value"] )
+		);
+	}
+
+	/**
+	 * @param Number seriesNumber
+	 * @param String value
+	 * @return String
+	 */
+	protected function getChartLabelText( $seriesNumber, $value )
+	{
+		if( $this->table_type == "project" && !$this->webchart )
+		{
+			$fieldName = $this->arrDataSeries[ $seriesNumber ];
+
+			include_once getabspath('classes/controls/ViewControlsContainer.php');
+			$viewControls = new ViewControlsContainer($this->pSet, PAGE_CHART);
+
+			$data = array( $fieldName => $value );
+			$viewValue = $viewControls->showDBValue( $fieldName, $data, "", "", false );
+
+			return $this->arrDataLabels[ $seriesNumber ].": ". $viewValue;
+		}
+
+		return $this->arrDataLabels[ $seriesNumber ].": ". $value;
+	}
+}
+
+class Chart_Ohlc extends Chart
+{
+	protected $ohcl_type;
+
+	protected $arrOHLC_high = array();
+	protected $arrOHLC_low = array();
+	protected $arrOHLC_open = array();
+	protected $arrOHLC_close = array();
+
+	function __construct( &$ch_array, $param )
+	{
+		parent::__construct( $ch_array, $param );
+
+		$this->ohcl_type = $param["ohcl_type"];
+	}
+
+	/**
+	 * @param Array params
+	 */
+	protected function setSpecParams( $params )
+	{
+		if($this->table_type != "db")
+		{
+			$this->arrOHLC_open[] = $params['ohlcOpen'];
+			$this->arrOHLC_high[] = $params['ohlcHigh'];
+			$this->arrOHLC_low[] = $params['ohlcLow'];
+			$this->arrOHLC_close[] = $params['ohlcClose'];
+			return;
+		}
+
+		if( $params['agr_func'] )
+		{
+			$this->arrOHLC_open[] = $params['agr_func']."_".$params['table']."_".$params['ohlcOpen'];
+			$this->arrOHLC_high[] = $params['agr_func']."_".$params['table']."_".$params['ohlcHigh'];
+			$this->arrOHLC_low[] = $params['agr_func']."_".$params['table']."_".$params['ohlcLow'];
+			$this->arrOHLC_close[] = $params['agr_func']."_".$params['table']."_".$params['ohlcClose'];
+		}
+		else
+		{
+			$this->arrOHLC_open[] = $params['table']."_".$params['ohlcOpen'];
+			$this->arrOHLC_high[] = $params['table']."_".$params['ohlcHigh'];
+			$this->arrOHLC_low[] = $params['table']."_".$params['ohlcLow'];
+			$this->arrOHLC_close[] = $params['table']."_".$params['ohlcClose'];
+		}
+	}
+
+	/**
+	 *
+	 */
+	public function write()
+	{
+		$data = array();
+		$chart = array();
+
+		$this->setTypeSpecChartSettings( $chart );
+		if ( @$this->chrt_array["appearance"]["color71"] != "" || @$this->chrt_array["appearance"]["color91"] != "" )
+			$chart["background"] = array();
+		if ( @$this->chrt_array["appearance"]["color71"] != "" )
+			$chart["background"]["fill"] = "#".$this->chrt_array["appearance"]["color71"];
+
+		if ( @$this->chrt_array["appearance"]["color91"] != "" )
+			$chart["background"]["stroke"] = "#".$this->chrt_array["appearance"]["color91"];
+
+		$chart["credits"] = false;
+		$chart["title"]	= array("enabled" => "true", "text" => $this->header);
+		if ( @$this->chrt_array["appearance"]["color101"] != "" )
+			$chart["title"]["fontColor"] = "#".$this->chrt_array["appearance"]["color101"];
+
+		if( $this->chrt_array['appearance']['slegend'] == "true" && !$this->chartPreview )
+			$chart["legend"] = array("enabled" => "true");
+
+		$data["chart"] = $chart;
+		echo my_json_encode( $data );
+	}
+
+	/**
+	 * @param &Array chart
+	 */
+	protected function setTypeSpecChartSettings( &$chart )
+	{
+		$chart["series"] = $this->get_data();
+		foreach ($this->chrt_array["parameters"] as $seriesNum => $params) {
+			if ( @$params["ohlcColor"] != "" )
+			{
+				$chart["series"][$seriesNum]["fallingStroke"] = "#".$params["ohlcColor"];
+				$chart["series"][$seriesNum]["fallingFill"] = "#".$params["ohlcColor"];
+				if ( $this->ohcl_type == "ohcl" )
+				{
+					$chart["series"][$seriesNum]["risingStroke"] = "#".$params["ohlcColor"];
+					$chart["series"][$seriesNum]["risingFill"] = "#".$params["ohlcColor"];
+				}
+			}
+			if ( @$params["ohlcCandleColor"] != "" && $this->ohcl_type != "ohcl" )
+			{
+				$chart["series"][$seriesNum]["risingStroke"] = "#".$params["ohlcCandleColor"];
+				$chart["series"][$seriesNum]["risingFill"] = "#".$params["ohlcCandleColor"];
+			}
+		}
+
+		$chart["grids"] = $this->getGrids();
+		$chart["logarithm"] = parent::getLogarithm();
+		$chart["type"] = "financial";
+		$chart["xScale"] = 0;
+		$chart["yScale"] = 1;
+
+		$chart["yAxes"]	= array(
+			array(
+				"enabled" => "true",
+				"title" => $this->y_axis_label,
+				"labels" => array("enabled" => $this->chrt_array["appearance"]["sval"] == "true")
+			));
+
+		if ( @$this->chrt_array["appearance"]["color61"] != "" )
+			$chart["yAxes"][0]["labels"]["fontColor"] = "#".$this->chrt_array["appearance"]["color61"];
+
+		$chart["xAxes"]	= array(
+			array(
+				"enabled" => "true",
+				"title" => array( 'text' => $this->footer ),
+				"labels" => array("enabled" => $this->chrt_array["appearance"]["sname"] == "true" )
+			));
+
+		if ( @$this->chrt_array["appearance"]["color51"] != "" )
+			$chart["xAxes"][0]["labels"]["fontColor"] = "#".$this->chrt_array["appearance"]["color51"];
+
+		if ( @$this->chrt_array["appearance"]["color111"] != "" )
+			$chart["xAxes"][0]["title"]["fontColor"] = "#".$this->chrt_array["appearance"]["color111"];
+
+		if ( @$this->chrt_array["appearance"]["color131"] != "" )
+			$chart["xAxes"][0]["stroke"] = "#".$this->chrt_array["appearance"]["color131"];
+
+		if ( @$this->chrt_array["appearance"]["color141"] != "" )
+			$chart["yAxes"][0]["stroke"] = "#".$this->chrt_array["appearance"]["color141"];
+
+		if( $this->chrt_array["appearance"]["slog"] == "true" )
+		{
+			$chart["scales"] = array(
+				array( "names" => array() ),
+				array( "logBase" => 10, "type" => "log" )
+			);
+		}
+	}
+
+	/**
+	 * @return Array
+	 */
+	public function get_data()
+	{
+		$data = array();
+		$clickdata = array();
+
+		for ( $i = 0; $i < count( $this->arrOHLC_open ); $i++ )
+		{
+			$data[$i] = array();
+			$clickdata[$i] = array();
+		}
+
+		$dc = $this->getSubsetDataCommand();
+		$this->beforeQueryEvent( $dc );
+
+		$rs = $this->dataSource->getList( $dc );
+		if( !$rs ) {
+			showError( $this->dataSource->lastError() );
+		}
+
+		$row = $rs->fetchAssoc();
+		if( $this->cipherer )
+			$row = $this->cipherer->DecryptFetchedArray( $row );
+
+		if( !$row )
+			$this->noRecordsFound = true;
+
+		while( $row )
+		{
+			for ( $i = 0; $i < count( $this->arrOHLC_open ); $i++ )
+			{
+				$data[$i][] = $this->getPoint( $i, $row );
+
+				$strLabelFormat = $this->labelFormat( $this->strLabel, $row );
+				$clickdata[$i][] = $this->getActions( $row , $this->arrDataSeries[$i], $strLabelFormat );
+			}
+
+			$row = $rs->fetchAssoc();
+			if( $this->cipherer )
+				$row = $this->cipherer->DecryptFetchedArray( $row );
+		}
+
+		$series = array();
+		for ( $i = 0; $i < count( $this->arrOHLC_open ); $i++ )
+		{
+			$series[] = $this->getSeriesData( $this->arrDataLabels[$i], $data[$i], $clickdata[$i], $i );
+		}
+
+		return $series;
+	}
+
+	/**
+	 * @return String
+	 */
+	protected function getSeriesType($seriesNumber)
+	{
+		if( $this->ohcl_type == "ohcl" )
+			return "ohlc";
+
+		return "candlestick";
+	}
+
+	/**
+	 * @param Boolean $multiSeries 
+	 * @return Array
+	 */
+	protected function getSeriesTooltip( $multiSeries ) {
+		$tooltipSettings = array(
+			"enabled" => true
+		);
+
+		return $tooltipSettings;
+	}
+
+	/**
+	 * @param Number seriesNumber
+	 * @param Array row
+	 * @return Array
+	 */
+	protected function getPoint( $seriesNumber, $row )
+	{
+		if( $this->table_type!="db" || !$this->chrt_array['customLabels'] )
+		{
+			$high = $row[ $this->arrOHLC_high[ $seriesNumber ] ];
+			$low = $row[ $this->arrOHLC_low[ $seriesNumber ] ];
+			$open = $row[ $this->arrOHLC_open[ $seriesNumber ] ];
+			$close = $row[ $this->arrOHLC_close[ $seriesNumber ] ];
+		}
+		else
+		{
+			$high = $row[ $this->chrt_array['customLabels'][ $this->arrOHLC_high[ $seriesNumber ] ] ];
+			$low = $row[ $this->chrt_array['customLabels'][ $this->arrOHLC_low[ $seriesNumber ] ] ];
+			$open = $row[ $this->chrt_array['customLabels'][ $this->arrOHLC_open[ $seriesNumber ] ] ];
+			$close = $row[ $this->chrt_array['customLabels'][ $this->arrOHLC_close[ $seriesNumber ] ] ];
+		}
+
+		return array(
+			"x" => $this->labelFormat( $this->strLabel, $row ),
+			"open" => (double)$open,
+			"high" => (double)$high,
+			"low" => (double)$low,
+			"close" => (double)str_replace(",", ".", $close)
+		);
+	}
+}
+?>

classes/cipherer.php

@@ -0,0 +1,341 @@
+<?php
+class RunnerCipherer
+{
+	public $key = '';
+	public $alg = '';
+	public $mode = '';
+	
+	protected $strTableName = '';
+	
+	/**
+	 * Instance of RunnerCiphererES class for code-based ciphering
+	 */
+	protected $ESFunctions = null;
+	
+	/**
+	 * Instance of ProjectSettings class
+	 */
+	protected $pSet = null;
+	
+	/**
+	 * Array of fields which encrypted status already determined
+	 */
+	protected $encryptedFields = array();
+	
+	/**
+	 * @type Connection
+	 */
+	protected $connection;
+	
+	
+	function __construct($strTableName, $pSet = null)
+	{
+		
+		$this->strTableName = $strTableName;
+
+		$this->setConnection();
+		
+		if( $this->connection->dbBased() ) {
+			$this->key = $this->connection->_encryptInfo["key"];
+			$this->alg = $this->connection->_encryptInfo["alg"];
+			$this->mode = $this->connection->_encryptInfo["mode"];
+		}
+		
+		if($pSet != null)
+			$this->pSet = $pSet;
+		else 
+			$this->pSet = new ProjectSettings($strTableName);
+	}
+	
+	/**
+	 * Set the 'connection' property
+	 */
+	protected function setConnection()
+	{
+		global $cman;
+		
+		if( $this->strTableName != GLOBAL_PAGES )
+			$this->connection = $cman->byTable( $this->strTableName );
+		else
+			$this->connection = getDefaultConnection();
+
+		if ( $this->connection->dbType == nDATABASE_MSSQLServer && $this->connection->_encryptInfo["alg"] == ENCRYPTION_ALG_AES && $this->connection->_encryptInfo["mode"] == ENCRYPTION_DB )
+		{
+			$symmetricSql = mysprintf("OPEN SYMMETRIC KEY [%s] DECRYPTION BY CERTIFICATE [%s];", array($this->connection->_encryptInfo["slqserverkey"], $this->connection->_encryptInfo["slqservercert"]));
+			$this->connection->setInitializingSQL($symmetricSql);
+		}
+	}
+
+	function isEncryptionByPHPEnabled() 
+	{
+		return $this->connection->isEncryptionByPHPEnabled();
+	}
+
+	/**
+	 * DecryptFetchedArray
+	 * Fetching record from sql result, looking through array of fetched values and decrypted all encrypted fields
+	 * @param {array} fetchedArray 
+	 * @return {array} decrypted array
+	 */
+	public function DecryptFetchedArray( $fetchedArray )
+	{	
+		$result = array();
+
+		if($fetchedArray)
+		{
+			if( !$this->pSet->hasEncryptedFields() || !$this->connection->isEncryptionByPHPEnabled() )
+				return $fetchedArray;
+				
+			foreach ($fetchedArray as $fieldName => $fieldValue)
+			{
+				$result[ $fieldName ] = $this->DecryptField($fieldName, $fieldValue);
+			}
+		}
+		
+		return $result;
+	}
+	
+	/**
+	 * @param String field
+	 * @param String
+	 */
+	public function isFieldEncrypted($field)
+	{	
+		$table = $this->strTableName;
+		
+		if( array_key_exists($table, $this->encryptedFields) && array_key_exists($field, $this->encryptedFields[ $table ]) )
+			return $this->encryptedFields[ $table ][ $field ];
+		
+		if( !array_key_exists($table, $this->encryptedFields) )
+			$this->encryptedFields[ $table ] = array();
+		
+		$this->encryptedFields[ $table ][ $field ] = $this->pSet->isFieldEncrypted($field);
+		return $this->encryptedFields[ $table ][ $field ];
+	}
+	
+	/**
+	 * @param String field
+	 * @return Boolean
+	 */	
+	public function isFieldPHPEncrypted($field)
+	{
+		return $this->connection->isEncryptionByPHPEnabled() && $this->isFieldEncrypted($field);
+	}
+	
+	/**
+	 * @param String field
+	 * @param Mixed value
+	 * @param String controltype (optional)
+	 * @param Boolean phpEncryptionOnly (optional)
+	 */	
+	public function MakeDBValue($field, $value, $controltype = "",  $phpEncryptionOnly = false)
+	{	
+		$ret = prepare_for_db($field, $value, $controltype, "", $this->strTableName);
+		if( $ret === false )
+			return $ret;
+		
+		$ret = add_db_quotes($field, $this->EncryptField($field, $ret), $this->strTableName );	
+		
+		if( $phpEncryptionOnly )
+			return $ret;
+		
+		return $this->EncryptValueByDB($field, $ret);
+	} 
+	
+	/**
+	 * @param String field
+	 * @param Mixed value
+	 */
+	public function AddDBQuotes($field, $value)
+	{
+		return $this->EncryptValueByDB( $field, add_db_quotes($field, $this->EncryptField($field, $value), $this->strTableName) );
+	}
+	
+	
+	/**
+	 * GetFieldName
+	 * Add to field name decryption function if field is encrypted by database 
+	 * @param {string} field name
+	 * @param {string} alias of field name
+	 * @param {bool} shows if 'as' construction needed
+	 * @return {string}
+	 */
+	public function GetFieldName($field, $alias = null, $addAs = false)
+	{
+		if($this->connection->isEncryptionByPHPEnabled() || !$this->isFieldEncrypted($alias != null ? $alias : $field))
+			return $field;
+
+		return $this->GetEncryptedFieldName($field, $alias, $addAs);
+	}
+	
+	/**
+	 * Get an SQL expression retriving the encrypted field's value
+	 * Please note, when changing this function you should make appropriate changes in wizard method (dynamic permissions --> add new user) #8923
+	 * @param {string} field
+	 * @param {string} alias
+	 * @param {string} addAs
+	 * @return {string}
+	 */
+	public function GetEncryptedFieldName($field, $alias = null, $addAs = false)
+	{
+		$result = "";
+		if ( $this->connection->_encryptInfo["alg"] == ENCRYPTION_ALG_DES)
+		{
+			if( $this->connection->dbType == nDATABASE_Oracle )	
+				$result = "utl_raw.cast_to_varchar2(DBMS_CRYPTO.DECRYPT(utl_raw.cast_to_raw(%s), 4353, utl_raw.cast_to_raw('%s')))";
+			elseif( $this->connection->dbType == nDATABASE_MSSQLServer )	
+				$result = "CAST(DecryptByPassPhrase(N'%s', %s) as nvarchar)";
+			elseif( $this->connection->dbType == nDATABASE_MySQL )
+				$result = "cast(DES_DECRYPT(unhex(%s), '%s') as char)";
+			elseif( $this->connection->dbType == nDATABASE_PostgreSQL )
+				$result = "pgp_sym_decrypt(CAST(%s as bytea), '%s')";
+		}
+		else if ( $this->connection->_encryptInfo["alg"] == ENCRYPTION_ALG_AES)
+		{
+			if( $this->connection->dbType == nDATABASE_Oracle )
+			{
+				$result = "utl_raw.cast_to_varchar2(DBMS_CRYPTO.DECRYPT(utl_raw.cast_to_raw(%s), 4358, utl_raw.cast_to_raw('%s')))";
+				$this->key = substr($this->key, 0, 16);
+			}
+			elseif( $this->connection->dbType == nDATABASE_MSSQLServer )
+			{	
+				$result = "CAST(DecryptByKey(%s) as nvarchar(4000))";
+				$this->key = $field; // for use in first as parametr in mysprintf func
+			}
+			elseif( $this->connection->dbType == nDATABASE_MySQL )
+				$result = "cast(AES_DECRYPT(unhex(%s), '%s') as char)";
+			elseif( $this->connection->dbType == nDATABASE_PostgreSQL )
+				$result = "pgp_sym_decrypt(CAST(%s as bytea), '%s', 'cipher-algo=aes128')";
+		}
+		
+		if($result == "")
+			return $field;
+
+		if( $this->connection->dbType == nDATABASE_MSSQLServer )	
+			$result = mysprintf($result, array($this->key, $field));
+		else
+			$result = mysprintf($result, array($field, $this->key));
+			
+		return $addAs ? $result." as ".$this->connection->addFieldWrappers($alias != null ? $alias : $field) : $result;
+	}
+	
+	/**
+	 * EncryptValueByDB
+	 * Add to field name encryption function if field is encrypted by database 
+	 * Please note, when changing this function you should make appropriate changes in wizard method (dynamic permissions --> add new user) #8923
+	 * @param {string} field name
+	 * @param {mixed} value
+	 * @return {string}
+	 */
+	public function EncryptValueByDB($field, $value)
+	{
+		if( !$this->isFieldEncrypted($field) || $this->connection->isEncryptionByPHPEnabled() )
+			return $value;
+			
+		$result = "";
+		
+		if ( $this->connection->_encryptInfo["alg"] == ENCRYPTION_ALG_DES)
+		{
+			if( $this->connection->dbType == nDATABASE_Oracle )
+				$result = "utl_raw.cast_to_varchar2(DBMS_CRYPTO.ENCRYPT(utl_raw.cast_to_raw(%s), 4353, utl_raw.cast_to_raw('%s')))";	
+			elseif( $this->connection->dbType == nDATABASE_MSSQLServer )
+				$result = "EncryptByPassPhrase(N'%s', %s)";	
+			elseif( $this->connection->dbType == nDATABASE_MySQL )	
+				$result = "hex(DES_ENCRYPT(%s, '%s'))";			
+			elseif( $this->connection->dbType == nDATABASE_PostgreSQL )	
+				$result = "pgp_sym_encrypt(%s, '%s')";
+		}
+		else if ( $this->connection->_encryptInfo["alg"] == ENCRYPTION_ALG_AES)
+		{
+			if( $this->connection->dbType == nDATABASE_Oracle )
+			{
+				$result = "utl_raw.cast_to_varchar2(DBMS_CRYPTO.ENCRYPT(utl_raw.cast_to_raw(%s), 4358, utl_raw.cast_to_raw('%s')))";	
+				$this->key = substr($this->key, 0, 16);
+			}
+			elseif( $this->connection->dbType == nDATABASE_MSSQLServer )
+			{			
+				$result = "EncryptByKey(Key_GUID('%s'), %s)";
+				$this->key = $this->connection->_encryptInfo["slqserverkey"];
+			}
+			elseif( $this->connection->dbType == nDATABASE_MySQL )	
+				$result = "hex(AES_ENCRYPT(%s, '%s'))";			
+			elseif( $this->connection->dbType == nDATABASE_PostgreSQL )	
+				$result = "pgp_sym_encrypt(%s, '%s', 'cipher-algo=aes128')";
+		}
+		
+		if($result != "")
+		{
+			if( $this->connection->dbType == nDATABASE_MSSQLServer )
+				$result = mysprintf($result, array($this->key, $value));
+			else
+				$result = mysprintf($result, array($value, $this->key));
+		}
+		else 
+			$result = $value;
+			
+		return $result;
+	}
+	
+	/**
+	 * EncryptField
+	 * Determine if field need to be encrypted and encrypt value if it so 
+	 * @param {string} field name
+	 * @param {string} value
+	 * @return {string} encrypted or plain value
+	 */
+	public function EncryptField($field, $value)
+	{		
+		if( $this->isFieldEncrypted($field) && $this->connection->isEncryptionByPHPEnabled() )
+		{
+			if( is_null($this->ESFunctions) )
+				$this->ESFunctions = $this->getESFunctions();
+				
+			return $this->ESFunctions->Encrypt($value);
+		}
+		
+		return $value; 
+	}
+	
+	/**
+	 * DecryptField
+	 * Determine if field encrypted and decrypt value if it so 
+	 * Please note, when changing this function you should make appropriate changes in wizard method (dynamic permissions --> add new user) #8923
+	 * @param {string} field name
+	 * @param {string} value
+	 * @return {string} decrypted or plain value
+	 */
+	public function DecryptField($field, $value)
+	{
+		if($this->isFieldEncrypted($field) && $this->connection->isEncryptionByPHPEnabled())
+		{
+			if(is_null($this->ESFunctions))
+				$this->ESFunctions = $this->getESFunctions();
+			
+			return $this->ESFunctions->Decrypt($value);
+		}
+		return $value; 
+	}
+
+	function getESFunctions()
+	{
+		if ( $this->connection->_encryptInfo["alg"] == ENCRYPTION_ALG_DES )
+			return new RunnerCiphererDES($this->key);
+		if ( $this->connection->_encryptInfo["alg"] == ENCRYPTION_ALG_AES )
+			return new RunnerCiphererAES($this->key);
+		if ( $this->connection->_encryptInfo["alg"] == ENCRYPTION_ALG_AES_256 )
+			return new RunnerCiphererAES($this->key, true);			
+	}
+	
+	/**
+	 * @param Mixed loginSet (optional)
+	 * @return Mixed
+	 */
+	public static function getForLogin( $loginSet = null )
+	{	
+		if( !!Security::loginTable() ) {
+			return new RunnerCipherer( "public.kbusers", $loginSet);
+		}
+		return new RunnerCipherer( GLOBAL_PAGES, null);
+	}	
+}
+?>

classes/context.php

@@ -0,0 +1,623 @@
+<?php
+class RunnerContextItem
+{
+/**
+ * define('CONTEXT_GLOBAL', 0);	//	global context
+ * define('CONTEXT_PAGE', 1);		//	page where pageObject is available
+ * define('CONTEXT_BUTTON', 2);	// 	button or other AJAX event
+ * define('CONTEXT_LOOKUP', 3);	//	dependent lookup
+ * define('CONTEXT_ROW', 4);		// 	processing grid row on multiple-records page (list)
+ * define('CONTEXT_COMMAND', 5);	// 	DsCommand context
+ * define('CONTEXT_SEARCH', 6);	// 	Search object context
+ * define('CONTEXT_MASTER', 7);	// 	Search object context
+ */
+	public $type; 
+
+	public $pageObj;
+	public $data;
+	public $oldData;
+	public $newData;
+	public $detailsKeys;
+	public $dc;
+	public $searchClause;
+	public $masterData;
+
+	function __construct( $type, $params )
+	{
+		RunnerApply($this, $params);
+		$this->type = $type;
+	}
+
+	public function getType()
+	{
+		return $this->type;
+	}
+
+	/**
+	 * @return Array
+	 */
+	public function getValues()
+	{
+		if( $this->data )
+			return $this->data; 
+
+		if( $this->dc ) {
+			return $this->dc->values;
+		}
+	
+		if( $this->pageObj )
+			return $this->pageObj->getCurrentRecord();
+
+		return array();
+	}
+
+	/**
+	 * @param String field
+	 * @return Mixed
+	 */
+	public function getFieldValue( $field )
+	{
+		$data = $this->getValues();
+		return  getArrayElementNC( $data, $field );
+	}
+
+	public function getSearchValue( $field ) {
+		return $this->searchClause->_getFieldValue( $field, null, false, true );
+	}
+
+	public function getAllSearchValue() {
+		return $this->searchClause->getAllFieldsSearchValue();
+	}
+
+	/**
+	 * @return Array
+	 */
+	public function getOldValues()
+	{
+		if( $this->oldData )
+			return $this->oldData;
+
+		if( $this->pageObj )
+			return $this->pageObj->getOldRecordData();
+
+		return array();
+	}
+
+	public function getKeyValue( $field ) {
+		if( $this->dc ) {
+			return $this->dc->keys[ $field ];
+		}
+		return null;
+	}
+
+	public function getOrderValue( $key ) {
+		if( !$this->dc ) {
+			return null;
+		}
+		$idx = 0;
+		if( substr( $key, 0, 5) == "field" ) {
+			$param = "field";
+			$idx = (int)substr( $key, 5);
+		} else if( substr( $key, 0, 3 ) == "dir" ) {
+			$param = "dir";
+			$idx = (int)substr( $key, 3);
+		}
+		if( !$idx || $idx < 1 ) {
+			return null;
+		}
+		if( count( $this->dc->order ) <= $idx ) {
+			return null;
+		}
+		$order = $this->dc->order[ $idx - 1 ];
+		if( $param == "field") {
+			return $order["column"];
+		}
+		if( $param == "dir") {
+			return $order["dir"];
+		}
+		return null;
+	}
+
+
+	public function getFilterValue( $field ) {
+		if( $this->dc ) {
+			return $this->dc->findFieldFilterValue( $field );
+		}
+	}
+
+	public function getLimitValue( $key ) {
+		if( !$this->dc ) {
+			return "";
+		}
+		if( $key == "record_from" ) {
+			return $this->dc->startRecord + 1;
+		}
+		if( $key == "record_to" ) {
+			return $this->dc->startRecord + $this->dc->reccount;
+		}
+		if( $key == "record_count" ) {
+			return $this->dc->reccount;
+		}
+		if( $key == "record_offset" ) {
+			return $this->dc->startRecord;
+		}
+	}
+
+
+	/**
+	 * @param String field
+	 * @return Mixed
+	 */
+	public function getOldFieldValue( $field )
+	{
+		$oldData = $this->getOldValues();
+		return getArrayElementNC( $oldData, $field );
+	}
+
+	/**
+	 * @param String field
+	 * @return Mixed
+	 */
+	public function getNewFieldValue( $field )
+	{
+		if ( $this->newData )
+			return getArrayElementNC( $this->newData, $field );
+		if( $this->dc ) {
+			return getArrayElementNC( $this->dc->values, $field );
+		}
+
+		return $this->getFieldValue( $field );
+	}
+
+	
+
+	/**
+	 * @return Array
+	 */
+	public function getMasterValues()
+	{
+		if( $this->masterData )
+			return $this->masterData;
+
+		if( $this->pageObj )
+			return $this->pageObj->getMasterRecord();
+
+		return array();
+	}
+
+	/**
+	 * @param String field
+	 * @return Mixed
+	 */
+	public function getMasterFieldValue( $field )
+	{
+		$masterData = $this->getMasterValues();
+		if( !$masterData ) {
+			return "";
+		}
+		return getArrayElementNC( $masterData, $field );
+		
+	}
+
+	/**
+	 * @param String key
+	 * @return String
+	 */
+	public function getUserValue( $key )
+	{
+		return getArrayElementNC( Security::currentUserData(), $key );
+	}
+
+	/**
+	 * @param String key
+	 * @return Mixed
+	 */
+	public function getSessionValue( $key )
+	{
+		return getSessionElementNC( $key );
+	}
+
+	public function getDetailsKeyValue( $key ) {
+		return $this->detailsKeys[ $key ];
+	}
+
+
+	/**
+	 * Returns true if context must serve this scope, and search must stop here. 
+	 * For example, when page context is found, it must serve the 'master' and 'details' scopes even if no master-detail is in effect.
+	 * @param String - scope like 'keys', 'master', 'details'
+	 * @return Boolean
+	 */
+	public function hasScope( $scope ) {
+		if( $scope == "master" )
+			return $this->masterData || $this->type == CONTEXT_PAGE;
+
+		if( $scope == "session" )
+			return true;
+
+		if( $scope == "user" )
+			return true;
+
+		if( $scope == "old" )
+			return $this->oldData || $this->type == CONTEXT_PAGE;
+
+		if( $scope == "keys" )
+			return $this->type == CONTEXT_COMMAND;
+
+		if( $scope == "order" )
+			return $this->type == CONTEXT_COMMAND;
+
+
+		if( $scope == "new" )
+			return $this->newData || $this->type == CONTEXT_PAGE || $this->type == CONTEXT_COMMAND;
+
+		if ( $scope == "global" )
+			return true;
+
+		if( $scope == "details" )
+			return $this->type == CONTEXT_PAGE || $this->type == CONTEXT_MASTER;
+
+		if ( $scope == "values" )
+			return !!$this->data || $this->type == CONTEXT_PAGE || $this->type == CONTEXT_COMMAND; 
+
+		if( $scope == "search" )
+			return $this->type == CONTEXT_SEARCH;
+
+		if( $scope == "filter" )
+			return $this->type == CONTEXT_COMMAND;
+
+		if( $scope == "request" )
+			return true;
+
+		if( $scope == "limit" )
+			return $this->type == CONTEXT_COMMAND;
+		
+		if( $scope == "all_field_search" )
+			return $this->type == CONTEXT_SEARCH;
+	}
+
+	/**
+	 * @param String key
+	 * @return Mixed
+	 */
+	public function getContextValue( $scope, $key )
+	{
+
+		if( $scope == "master" )
+			return $this->getMasterFieldValue( $key );
+
+		if( $scope == "session" )
+			return $this->getSessionValue( $key );
+
+		if( $scope == "user" )
+			return $this->getUserValue( $key );
+
+		if( $scope == "old" )
+			return $this->getOldFieldValue( $key );
+
+		if( $scope == "keys" )
+			return $this->getKeyValue( $key );
+
+		if( $scope == "order" )
+			return $this->getOrderValue( $key );
+
+		if( $scope == "new" )
+			return $this->getNewFieldValue( $key );
+
+		if ( $scope == "global" && $key == "language" )
+			return mlang_getcurrentlang();
+
+		if( $scope == "details" ) {
+			if( $this->type == CONTEXT_PAGE )
+				return $this->pageObj->getDetailsKeyValue( $key );
+			if( $this->type == CONTEXT_MASTER )
+				return $this->getDetailsKeyValue( $key );
+		}
+
+		if( $scope == "values" )
+			return $this->getFieldValue( $key );
+
+		if( $scope == "search" )
+			return $this->getSearchValue( $key );
+
+		if( $scope == "filter" )
+			return $this->getFilterValue( $key );
+
+		if( $scope == "request" )
+			return postvalue( $key );
+
+		if( $scope == "limit" )
+			return $this->getLimitValue( $key );
+		
+		if( $scope == "all_field_search" )
+			return $this->getAllSearchValue();
+			
+		return false;
+	}
+}
+
+/**
+ *	Singletone. All public functions are static
+ */
+class RunnerContext
+{
+	protected $stack = array();
+
+	public function __construct( )
+	{
+		$context = new RunnerContextItem( CONTEXT_GLOBAL, array() );
+		$this->stack[ count($this->stack) ] = $context;
+	}
+
+	public static function push( $context )
+	{
+		global $contextStack;
+		$contextStack->stack[ count($contextStack->stack) ] = $context;
+	}
+
+	public static function current( )
+	{
+		global $contextStack;
+		return $contextStack->stack[ count($contextStack->stack) - 1 ];
+	}
+
+	public static function pop( )
+	{
+		global $contextStack;
+
+		//	this sometimes happens during the error reporting
+		if( !$contextStack->stack )
+			return null;
+		
+		$context = $contextStack->stack[ count($contextStack->stack) - 1 ];
+		unset( $contextStack->stack[ count($contextStack->stack) - 1 ] );
+
+		return $context;
+	}
+
+	 // Utility functions
+	/**
+	 *  Shortcut for adding page-based context
+	 */
+	public static function pushPageContext( $pageObj ) {
+		RunnerContext::push( new RunnerContextItem( CONTEXT_PAGE, array( "pageObj" => $pageObj ) ) );
+	}
+	/**
+	 *  Shortcut for adding record-based context
+	 */
+	public static function pushRecordContext( $record, $pageObj ) {
+		RunnerContext::push( new RunnerContextItem( CONTEXT_ROW, array( "pageObj" => $pageObj, "data" => $record ) ) ); //?
+	}
+
+	public static function pushDataCommandContext( $dc ) {
+		RunnerContext::push( new RunnerContextItem( CONTEXT_COMMAND, array( "dc" => $dc ) ) ); 
+	}
+
+	public static function pushSearchContext( $searchClause ) {
+		RunnerContext::push( new RunnerContextItem( CONTEXT_SEARCH, array( "searchClause" => $searchClause ) ) );
+	}
+
+	public static function pushMasterContext( $detailsKeys ) {
+		RunnerContext::push( new RunnerContextItem( 
+			CONTEXT_MASTER, 
+			array( 
+				"detailsKeys" => $detailsKeys, 
+			) ) ); 
+	}
+
+
+	public static function getMasterValues() {
+		$ctx = RunnerContext::current();
+		return $ctx->getMasterValues();
+	}
+
+	public static function getValues() {
+		$ctx = RunnerContext::current();
+		return $ctx->getValues();
+	}
+
+	/**
+	 * @return String
+	 */
+	public static function PrepareRest( $str, $urlenc = true ) {
+		$context = RunnerContext::current();
+		$tokens = DB::scanTokenString($str);
+
+		$replacements = array();
+		// build array of replacements in this format:
+		//	"offset" => position in the string where replacement should be done
+		//  "len" => length of original substring to cut out
+		//  "insert" => string to insert in place of cut out
+
+		foreach ($tokens["matches"] as $i => $match) {
+			$offset = $tokens["offsets"][$i];
+			$token = $tokens["tokens"][$i];
+
+			$repl = array(
+				"offset" => $offset,
+				"len" => strlen($match)
+			);
+			$val = "";
+			if (is_numeric($token) && count( $args ) > $token) {
+				$val = $args[(int)$token];
+			} else {
+				$val = RunnerContext::getValue($token);
+			}
+			if( $urlenc )
+				$val = rawurlencode($val);
+			$repl["insert"] = $val;
+
+			$replacements[] = $repl;
+		}
+		//	do replacements
+		return RunnerContext::doReplacements( $str, $replacements );
+	}
+
+	/**
+	 * locate all <? - ?> snippets in a string
+	 * @param String str
+	 * @return Array of array(
+	 * 	"offset" => integer - offset of the opening bracket in the original string
+	 * 	"len" => integer - length includes opening and closing brackets: <? - ?>
+	 * )
+	 */
+	protected static function getOptionalBlocks( $str ) {
+		if( !is_string( $str ) )
+			return array();		
+		
+		$snippetStack = array();
+		$snippets = array();
+		$pos = strpos( $str, '<?' );
+		if( $pos === false )
+			return array();
+		
+		while( true ) {
+			$snippetStack[] = $pos;
+			$newPos = strpos( $str, '<?', $pos + 1 );
+			
+			/*	locate all ?> before the next <? or end of string*/
+			$tailLen = ( $newPos !== false ? $newPos : strlen( $str ) ) - $pos;
+			$tail = substr( $str, $pos, $tailLen );
+			$endPos = 0;
+			while( ($endPos = strpos( $tail, '?>', $endPos+1 ) ) !== false && count( $snippetStack ) ) {
+				$stackIdx = count( $snippetStack ) - 1;
+				$snippets[] = array( "offset" => $snippetStack[ $stackIdx ], "len" => $endPos + $pos + 2 - $snippetStack[ $stackIdx ] );
+				$snippetStack = array_slice( $snippetStack, 0, $stackIdx );
+			}
+			if( $newPos === false ) 
+				break;
+			$pos = $newPos;
+		}
+		return $snippets;
+	}
+
+	/**
+	 * do actual replacements
+	 * @param String $str - source string
+	 * @param Array $replacements - Array of Array(
+	 * 		"offset" => Integer, position in the source tring
+	 * 		"len"	=> Integer, length of the source string portion to be replaced
+	 * 		"insert" => String, value to insert instead of replaced
+	 * )
+	 */
+	public static function doReplacements( $str, $replacements ) {
+		if( !is_string( $str ) )
+			return $str;
+		
+		$snippets = RunnerContext::getOptionalBlocks( $str );
+		/* snippets with 0 non-empty requirements must be deleted from the string */
+		/* mark empty snippets */
+		for( $i=0; $i < count( $snippets ); ++$i ) {
+			$s = &$snippets[$i];
+			$s["empty"] = true;
+			foreach ($replacements as $r) {
+				/* replacement inside snippet  */
+				if( $r["offset"] > $s["offset"] && $r["offset"] < $s["offset"] + $s["len"] ) {
+					if( $r["insert"] != "" ) {
+						$s["empty"] = false;
+						break;
+					}
+				}
+			}
+		} 
+
+		/* do replacements */
+		$offsetShift = 0;
+		foreach ($replacements as $r) {
+			$str = substr_replace($str, $r["insert"], $r["offset"] + $offsetShift, $r["len"]);
+			$offsetDelta = strlen($r["insert"]) - $r["len"];
+			//	update all $snippets
+			RunnerContext::updateOptionalBlockOffset( $snippets, $r["offset"], $offsetDelta );
+			$offsetShift += $offsetDelta;
+		}
+
+		/* process optional blocks - delete or remove brackets */
+		for( $i=0; $i < count( $snippets ); ++$i ) {
+			$s = &$snippets[$i];
+			if( $s["empty"]) {
+				$str = substr_replace($str, "", $s["offset"], $s["len"] );
+				$offsetDelta = -$s["len"];
+			} else {
+				$str = substr_replace($str, 
+					substr( $str, $s["offset"] + 2, $s["len"] - 4 ), 
+					$s["offset"], 
+					$s["len"] 
+				);
+				$offsetDelta = -4;
+			}
+			RunnerContext::updateOptionalBlockOffset( $snippets, $s["offset"], $offsetDelta );
+		}
+		return $str;
+	}
+
+	protected static function updateOptionalBlockOffset( &$snippets, $offset, $delta ) {
+		for( $i=0; $i < count( $snippets ); ++$i ) {
+			$s = &$snippets[$i];
+			if( $s["offset"] > $offset ) {
+				$s["offset"] += $delta;
+			} else {
+				if( $s["offset"] + $s["len"] > $offset ) {
+					$s["len"] += $delta;
+				}
+			}
+		}
+	}
+	
+
+	public static function getValue( $key ) {
+		$prefix = "";
+		$dotPos = strpos( $key, ".");
+		if( $dotPos !== FALSE )
+		{
+			$scope = strtolower( substr( $key, 0, $dotPos ) );
+			$key = substr( $key, $dotPos + 1 );
+		} else {
+			if( $key === "language" ) {
+				$scope = "global";
+			} else if( $key == "all_field_search") {
+				$scope = $key;
+			} else {
+				$scope = "values";
+			}
+
+		}
+		return RunnerContext::_getValue( $scope, $key );
+	}
+
+
+	/**
+	 * Search got requested value in the stack of contexts
+	 * @param String - scope like 'keys', 'master', 'details'
+	 * @param String - key. 'details.teamId' is translated to context=details, key=teamId
+	 * @return String or false if value is not found
+	 */
+	protected static function _getValue( $scope, $key ) 
+	{
+		global $contextStack;
+		$idx = count( $contextStack->stack );
+		while( $idx > 0 ) {
+			$ctx = $contextStack->stack[ --$idx ];
+			if( $ctx->hasScope( $scope ) ) {
+				return $ctx->getContextValue( $scope, $key );
+			}
+		}
+		return false;
+	}
+
+}
+
+/**
+ * 	Push context in constructor and pop in destructor
+ */
+class TempContext
+{
+	function __construct( $context ) {
+		RunnerContext::push( $context );
+	}
+
+	function __destruct() {
+		RunnerContext::pop();
+	}
+}
+
+?>

classes/controls/CheckboxField.php

@@ -0,0 +1,91 @@
+<?php
+class CheckboxField extends EditControl
+{
+	function __construct($field, $pageObject, $id, $connection)
+	{
+		parent::__construct($field, $pageObject, $id, $connection);
+		$this->format = EDIT_FORMAT_CHECKBOX;
+	}
+	
+	function buildControl($value, $mode, $fieldNum, $validate, $additionalCtrlParams, $data)
+	{
+		parent::buildControl($value, $mode, $fieldNum, $validate, $additionalCtrlParams, $data);
+		if($mode == MODE_ADD || $mode == MODE_INLINE_ADD || $mode == MODE_EDIT || $mode == MODE_INLINE_EDIT) 
+		{
+			$checked = "";
+			
+			if( $this->connection->dbType == nDATABASE_PostgreSQL 
+				&& ($value === "t" || $value != "f" && $value != "" && $value != 0 ) 
+				|| $this->connection->dbType != nDATABASE_PostgreSQL && ($value != "" && $value != 0 )) {
+
+				$checked=" checked";
+			}
+
+			if ( $this->connection->dbType == nDATABASE_PostgreSQL ) {
+				$reservedBoolean = 'data-true="t" data-false="f"';
+			}
+						
+			echo '<span class="checkbox r-checkbox-control"><label>';
+			
+			echo '<input id="'.$this->ctype.'" type="hidden" name="'.$this->ctype.'" value="checkbox">';
+			echo '<input id="'.$this->cfield.'" type="Checkbox" '
+				.(($mode == MODE_INLINE_EDIT || $mode == MODE_INLINE_ADD) && $this->is508==true ? 'alt="'.$this->strLabel.'" ' : '')
+				.'name="'.$this->cfield.'" '.$checked.' '.$reservedBoolean.'>';
+
+			echo '</label></span>';
+		}
+		else
+		{
+			echo '<input id="'.$this->ctype.'" type="hidden" name="'.$this->ctype.'" value="checkbox">';
+			echo '<select id="'.$this->cfield.'" '.(($mode == MODE_INLINE_EDIT || $mode == MODE_INLINE_ADD) && $this->is508==true ? 'alt="'
+				.$this->strLabel.'" ' : '').'name="'.$this->cfield.'" class="form-control">';
+				
+			$options = array( "", "on", "off" );
+			$possibleOptions = array( "" => array(), "on" => array("on", "1"), "off" => array("off", "0") );		
+			$labels = array("", "True", "False");
+			
+			foreach( $options as $key => $optValue )
+			{	
+				$selected = in_array( $value, $possibleOptions[ $optValue ] ) ? " selected" : "";
+				echo '<option value="' . $optValue . '"' . $selected.'>' . $labels[ $key ] . '</option>';
+			}
+			
+			echo "</select>";
+		}
+		$this->buildControlEnd($validate, $mode);
+	}
+
+	function getFirstElementId()
+	{
+		return $this->cfield;
+	}
+	
+	/**
+	 * Get 'equal to on/off' condition
+	 */
+	public static function getFieldCondition( $field, $searchFor ) {
+		if( $searchFor == "none" || $searchFor != "on" && $searchFor != "off" )
+			return null;
+		
+		$offCondition = DataCondition::_Or( array(
+			DataCondition::FieldIs( $field, dsopEQUAL, '0', false, 0, null, false ),
+			DataCondition::FieldIs( $field, dsopEMPTY, '', false, 0, null, false )
+		));
+		
+		if( $searchFor == "off" )
+			return $offCondition;				
+		
+		return DataCondition::_Not( $offCondition );
+	}
+	
+	/**
+	 * 	Returns basic condition
+	 */
+	public function getBasicFieldCondition( $searchFor, $strSearchOption, $searchFor2 = "", $etype = "" ) {
+		if( $strSearchOption != EQUALS )
+			return null;
+
+		return CheckboxField::getFieldCondition( $this->field, $searchFor );
+	}	
+}
+?>

classes/controls/Control.php

@@ -0,0 +1,790 @@
+<?php
+class EditControl
+{
+	/**
+	 * Reference to RunnerPage (or its descendant) instance 
+	 */
+	public $pageObject = null;
+	/**
+	 * Reference to EditControlsContainer instance
+	 */
+	public $container = null;
+	
+	public $id = "";
+	public $field = "";
+	public $goodFieldName = "";
+	public $format = "";
+	/**
+	 * Field name prefix
+	 * @var {string}
+	 */
+	public $cfieldname = "";
+	/**
+	 * Value field name
+	 * @var {string}
+	 */
+	public $cfield = "";
+	/**
+	 * Type field name
+	 * @var {string}
+	 */
+	public $ctype = "";
+	/**
+	 * A flag indicating whether the support for section 508 is on
+	 * @var {bool}
+	 */
+	public $is508 = false;
+	public $strLabel = "";
+	public $type = "";
+	public $inputStyle = "";
+	public $iquery = "";
+	public $keylink = "";
+	public $webValue = null;
+	public $webType = null;
+	
+	/**
+	 * Storage for control settings. It fills in the init() function. 
+	 * @var {array}
+	 */
+	public $settings = array();
+	
+	//Search params
+	public $isOracle = false;
+	public $ismssql = false;
+	public $isdb2 = false;
+	public $btexttype = false;
+	public $isMysql = false;
+	public $like = "like";
+	
+	public $searchOptions = array();
+	
+	public $searchPanelControl = false;
+	public $data = array();
+	
+	/**
+	 * @type Connection
+	 */
+	protected $connection;
+	
+	public $forSpreadsheetGrid;
+	
+	
+	function __construct($field, $pageObject, $id, $connection)
+	{
+		$this->field = $field;
+		$this->goodFieldName = GoodFieldName($field);
+		$this->setID($id);
+		$this->connection = $connection;
+
+		$this->pageObject = $pageObject;
+
+		$this->is508 = isEnableSection508();
+		
+		$this->strLabel = $pageObject->pSetEdit->label($field);
+		$this->type = $pageObject->pSetEdit->getFieldType($this->field);
+		
+		if( $this->connection->dbType == nDATABASE_Oracle )
+			$this->isOracle = true;
+
+		if( $this->connection->dbType == nDATABASE_MSSQLServer )
+			$this->ismssql=true;
+
+		if( $this->connection->dbType == nDATABASE_DB2 )
+			$this->isdb2=true;
+
+		if( $this->connection->dbType == nDATABASE_MySQL )
+			$this->isMysql = true;
+
+		if( $this->connection->dbType == nDATABASE_PostgreSQL )
+			$this->like = "ilike";
+
+		$this->searchOptions[CONTAINS] = "Contains";
+		$this->searchOptions[EQUALS] = "Equals";
+		$this->searchOptions[STARTS_WITH] = "Starts with";
+		$this->searchOptions[MORE_THAN] = "More than";
+		$this->searchOptions[LESS_THAN] = "Less than";
+		$this->searchOptions[BETWEEN] = "Between";
+		$this->searchOptions[EMPTY_SEARCH] = "Empty";
+		$this->searchOptions[NOT_CONTAINS] = "Doesn't contain";
+		$this->searchOptions[NOT_EQUALS] = "Doesn't equal";
+		$this->searchOptions[NOT_STARTS_WITH] = "Doesn't start with";
+		$this->searchOptions[NOT_MORE_THAN] = "Is not more than";
+		$this->searchOptions[NOT_LESS_THAN] = "Is not less than";
+		$this->searchOptions[NOT_BETWEEN] = "Is not between";
+		$this->searchOptions[NOT_EMPTY] = "Is not empty";
+		
+		$this->init();
+	}
+	
+	function setID($id)
+	{
+		$this->id = $id;		
+		$this->cfieldname = $this->goodFieldName."_".$id;
+		$this->cfield = "value_".$this->goodFieldName."_".$id;
+		$this->ctype = "type_".$this->goodFieldName."_".$id;
+	}
+	 
+	/**
+	 * addJSFiles
+	 * Add control JS files to page object
+	 */
+	function addJSFiles()
+	{
+		//example
+		// $this->pageObject->AddJSFile("include/mupload.js");
+	}
+	
+	/**
+	 * addCSSFiles
+	 * Add control CSS files to page object
+	 */ 
+	function addCSSFiles()
+	{
+		//example
+		// $this->pageObject->AddCSSFile("include/mupload.css");
+	}
+	
+	function getSetting($key)
+	{
+		return $this->pageObject->pSetEdit->getFieldData($this->field, $key);
+	}
+	
+	function addJSSetting($key, $value)
+	{
+		$this->pageObject->jsSettings['tableSettings'][ $this->pageObject->tName ]['fieldSettings'][ $this->field ][ $this->container->pageType ][ $key ] = $value;
+	}
+	
+	function buildControl($value, $mode, $fieldNum, $validate, $additionalCtrlParams, $data)
+	{
+		$this->searchPanelControl = $this->isSearchPanelControl( $mode, $additionalCtrlParams );
+		$this->inputStyle = $this->getInputStyle( $mode );
+	
+		if($fieldNum)
+		{
+			$this->cfield="value".$fieldNum."_".$this->goodFieldName."_".$this->id;
+			$this->ctype="type".$fieldNum."_".$this->goodFieldName."_".$this->id;
+		}
+
+		$this->iquery = "field=".rawurlencode($this->field);
+	
+		$arrKeys = $this->pageObject->pSetEdit->getTableKeys();
+		for ($j = 0; $j < count($arrKeys); $j++) 
+		{
+			$this->keylink .= "&key".($j+1)."=".rawurlencode( $data[ $arrKeys[$j] ] );
+		}
+		$this->iquery .= $this->keylink;
+					
+		$isHidden = (isset($additionalCtrlParams['hidden']) && $additionalCtrlParams['hidden']);
+
+		$additionalClass = "";
+		if( $this->pageObject->isBootstrap() )
+		{		
+			if( $this->pageObject->isPD() ) {
+				$additionalClass.= "bs-ctrlspan ";
+			} else {
+				$additionalClass.= "bs-ctrlspan rnr-nowrap ";
+			}
+			if( $this->format == EDIT_FORMAT_READONLY )
+				$additionalClass.= "form-control-static ";
+			
+			if( $validate['basicValidate'] && array_search('IsRequired', $validate['basicValidate']) !== false )	
+				$additionalClass.= "bs-inlinerequired";
+		}
+		else
+		{
+			$additionalClass.= "rnr-nowrap ";
+		}
+
+		echo '<span id="edit'.$this->id.'_'.$this->goodFieldName.'_'.$fieldNum.'" class="'.$additionalClass.'"'.($isHidden ? ' style="display:none"' : '').'>';
+	}
+
+	function getFirstElementId()
+	{
+		return false;
+	}
+	
+	/**
+	 * Check if the control belongs to the Search Panel
+	 * @param Number mode
+	 * @param Array additionalCtrlParams
+	 * @return Boolean
+	 */
+	function isSearchPanelControl( $mode, $additionalCtrlParams )
+	{
+		return $mode == MODE_SEARCH && isset( $additionalCtrlParams['searchPanelControl'] ) && $additionalCtrlParams['searchPanelControl'] && !$this->pageObject->mobileTemplateMode();
+	}
+	
+	function buildControlEnd($validate, $mode)
+	{
+		if( $this->pageObject->isBootstrap() )
+			echo '</span>';
+		else if( $validate['basicValidate'] && array_search('IsRequired', $validate['basicValidate'])!==false)
+			echo'&nbsp;<font color="red">*</font></span>';
+		else
+			echo '</span>';
+	}
+	
+	function getPostValueAndType()
+	{
+		$this->webValue = postvalue("value_".$this->goodFieldName."_".$this->id);
+		$this->webType = postvalue("type_".$this->goodFieldName."_".$this->id);
+	}
+	
+	function getWebValue()
+	{
+		return $this->webValue;
+	}
+	
+	function readWebValue(&$avalues, &$blobfields, $legacy1, $legacy2, &$filename_values)
+	{
+		$this->getPostValueAndType();
+		
+		if (FieldSubmitted($this->goodFieldName."_".$this->id))
+			$this->webValue = prepare_for_db($this->field, $this->webValue, $this->webType);
+		else
+			$this->webValue = false;
+			
+		if($this->pageObject->pageType == PAGE_EDIT && $this->pageObject->getEditFormat( $this->field) === EDIT_FORMAT_READONLY )
+		{
+			//	??
+			if( $this->pageObject->pSetEdit->getAutoUpdateValue($this->field) ) 
+				$this->webValue = $this->pageObject->pSetEdit->getAutoUpdateValue($this->field);
+			else if( !originalTableField( $this->field, $this->pageObject->pSetEdit ) ){
+				$this->webValue = false;
+			}
+		}
+		
+		if(!($this->webValue===false))
+		{
+			if( $this->connection->dbType == nDATABASE_Informix )
+			{
+				if(IsTextType($this->pageObject->pSetEdit->getFieldType($this->field)))
+					$blobfields[] = $this->field;
+			}
+			$avalues[ $this->field ] = $this->webValue;
+		}
+	}
+	
+	/**
+	 * Get the substitute columns list for the SELECT Clause and the FORM clause part 
+	 * that will be joined to the basic page's FROM clause 	 
+	 * @param String searchFor
+	 * @param String searchOpt
+	 * @param Boolean isSuggest
+	 * @return Array
+	 */
+	public function getSelectColumnsAndJoinFromPart($searchFor, $searchOpt, $isSuggest)
+	{
+		return array(
+			"selectColumns"=> $this->getFieldSQLDecrypt(),
+			"joinFromPart"=> ""
+		);
+	}
+	
+	/**
+	 * @param String strSearchOption
+	 * @return Boolean
+	 */
+	public function checkIfDisplayFieldSearch( $strSearchOption )
+	{
+		return false;
+	}	
+	
+	/**
+	 * Form the control's search options markup basing on user's search options settings
+	 * @param Array optionsArray	Control specified search options
+	 * @param String selOpt		 	The control selected search option
+	 * @param Boolean not			It indicates if the search option passed should be inverted ($selOpt should be considered as "NOT ".$selOpt)
+	 * @param Boolean both			It indicates if control needs both positive and negative("NOT ...") search options
+	 * @return String
+	 */
+	function buildSearchOptions($optionsArray, $selOpt, $not, $both)
+	{
+		$userSearchOptions = $this->pageObject->pSetEdit->getSearchOptionsList( $this->field );
+		
+		$currentOption = $not ? 'NOT '.$selOpt : $selOpt;
+		if( $userSearchOptions && isset( $this->searchOptions[ $currentOption ] ) )
+			$userSearchOptions[] = $currentOption;
+			
+		if( !!$userSearchOptions ) 
+			$optionsArray = array_intersect($optionsArray, $userSearchOptions);
+
+		$defaultOption = $this->pageObject->pSetEdit->getDefaultSearchOption( $this->field );	
+		if( !$defaultOption )
+			$defaultOption = $optionsArray[0];
+			
+		$result = ''; 
+		foreach($optionsArray as $option)
+		{
+			if( !isset( $this->searchOptions[ $option ] ) || !$both && substr($option, 0, 4) == 'NOT ' )
+				continue;
+
+			$selected = $currentOption == $option ? 'selected' : '';
+			$dataAttr = $defaultOption == $option ? ' data-default-option="true"' : '';
+			$result.= '<option value="'.$option.'" '.$selected.$dataAttr.'>'.$this->searchOptions[ $option ].'</option>';
+		}
+		return $result;
+	}
+
+	/**
+	 * Form the control specified search options array and built the control's search options markup
+	 * @param String selOpt		The search option value	
+	 * @param Boolean not		It indicates if the search option negation is set 	
+	 * @param Boolean both		It indicates if the control needs 'NOT'-options
+	 * @return String			A string containing options markup
+	 */	
+	function getSearchOptions($selOpt, $not, $both)
+	{
+		return $this->buildSearchOptions(array(EQUALS, NOT_EQUALS), $selOpt, $not, $both);
+	}
+
+	/**
+	 * Fill the response array with the suggest values
+	 *
+	 * @param String value	
+	 *		Note: value is preceeded with "_" 
+	 * @param String searchFor
+	 * @param &Array response
+	 * @param &Array row
+	 */	
+	function suggestValue($value, $searchFor, &$response, &$row)
+	{
+		$suggestStringSize = GetGlobalData("suggestStringSize", 40);
+		
+		if( $suggestStringSize <= runner_strlen($searchFor) )
+		{
+			$response[ "_".$searchFor ] = $searchFor;
+			return;
+		}
+		
+		$viewFormat = $this->pageObject->pSetEdit->getViewFormat($this->field);
+		if( $viewFormat == FORMAT_NUMBER )
+		{
+			$dotPosition = strpos($value, '.'); 
+			if($dotPosition !== FALSE)
+			{
+				for($i = strlen($value) - 1; $i > $dotPosition; $i--) 
+				{
+					if(substr($value, $i, 1) != '0')
+					{
+						if($i < strlen($value) - 1)
+							$value = substr($value, 0, $i + 1);
+						break;
+					}
+					if($i == $dotPosition + 1 && $dotPosition > 0)
+					{
+						$value = substr($value, 0, $dotPosition);
+						break;
+					}
+				}
+			}
+		}
+		
+		$realValue = $value;
+		
+		if( $viewFormat == FORMAT_HTML )
+		{
+			// declarate patterns for regex
+			$html_tags = '/<.*?>/i'.($useUTF8 ? 'u':'');
+			$get_text = '/(.*<.*>|^.*?)([.]*'.preg_quote($searchFor, "/").'.*?)(<.*>|$)/i'.($useUTF8 ? 'u':'');
+			
+			// decode html entity and delete all html tags from value
+			$value = preg_replace($html_tags, '', runner_html_entity_decode($value));
+			
+			// if not searchFor in value return
+			if (stristr($value, $searchFor) === false)
+				return;
+			
+			// get realValue (string between html tags)
+			if (preg_match($get_text, $realValue, $match))
+				$realValue = $match[2];
+			else
+				$realValue = $value;
+		}
+		
+		// if large string cut value and add dots
+		if( $suggestStringSize < runner_strlen($value) )
+		{
+            $startPos = 0;
+            $valueLength = 0;
+			$suggestValues = $this->cutSuggestString( $value, $searchFor );
+			if( $suggestValues ) {
+				if( $viewFormat == FORMAT_HTML ) {
+					$suggestValues["search"] = $realValue;
+				}
+				$response[ $suggestValues["display"] ] = $suggestValues["search"];
+			}
+		} else {
+			$response[ $value ] = $realValue;
+		}
+	}
+	
+	/**
+	 * Reduce long field value to leave only the text relevant to search suggest
+	 * ( "There was a time when Mary had a little lamb", "Mary" ) => "when Mary had"
+	 * @return Array - array of ( 
+	 * 	"search" => "when Mary had" - value that will be used for searching
+	 * 	"display" => "...when Mary had..." - value to show to the user in the suggest list
+	 * )
+	 * Returns false if anything went wrong
+	 */
+	function cutSuggestString( $_value, $searchFor ) 
+	{
+		$suggestStringSize = GetGlobalData("suggestStringSize", 40);
+		$caseIns = $this->pageObject->pSetEdit->getNCSearch();
+		
+		//	split to lines. Line breaks shouldn't appear in the suggested values
+		$lines = explode( "\n", $_value );
+		$value = "";
+		for( $lineIdx = 0; $lineIdx< count( $lines); ++$lineIdx ) {
+			$line = $lines[ $lineIdx ];
+			if( $caseIns )
+			{
+					// case-insensitive search 
+					$startPos = stripos($line, $searchFor);
+					if( $startPos )
+						$startPos = runner_strlen( substr($line, 0 , $startPos) ); //UTF-8 support
+			}
+			else 
+			{
+					$startPos = runner_strpos($line, $searchFor);
+			}
+			if( $startPos !== false )
+			{
+				$value = $line;
+				break;
+			}
+		}
+		if( $startPos === false ) {
+			return false;
+		}
+		
+		//	cut a chunk of the $value around the $searchFor. 
+		//	Paddings are parts of the chunk before and after $searchFor
+		//	There are two "gray zones" at the begining and end of the chunk.
+		//	If there are stop symbols ( spaces, commas ) in the gray zone, cut it up to them
+		//	"tion of the next occu" => "of the next"
+		
+		$grayZoneLength = 5;
+		
+		$leftPaddingLength = min( $suggestStringSize / 2, $startPos );
+		$leftPadding = runner_substr( $value, $startPos - $leftPaddingLength, $leftPaddingLength );
+		$leftGrayZoneLength = $leftPaddingLength < $suggestStringSize / 2
+			? 0
+			: $grayZoneLength;
+
+		$rightPaddingLength = min( $suggestStringSize - $leftPaddingLength, runner_strlen( $value ) - $startPos - runner_strlen( $searchFor ) );
+		$rightPadding = runner_substr( $value, $startPos + runner_strlen( $searchFor ), $rightPaddingLength );
+		$rightGrayZoneLength = $rightPaddingLength < $suggestStringSize / 2
+			? 0
+			: $grayZoneLength;
+
+		$leftGrayZone = runner_substr( $leftPadding, 0, $leftGrayZoneLength );
+		$stopPos = $this->findFirstStop( $leftGrayZone, true );
+		if( $stopPos !== false ) {
+			$leftPadding = runner_substr( $leftPadding, $stopPos );
+		}
+
+		$rightGrayZone = runner_substr( $rightPadding, $rightPaddingLength - $rightGrayZoneLength );
+		$stopPos = $this->findFirstStop( $rightGrayZone );
+		if( $stopPos !== false ) {
+			$rightPadding = runner_substr( $rightPadding, 0, runner_strlen( $rightPadding ) - $rightGrayZoneLength + $stopPos );
+		}
+
+		$leftEllipsis = $lineIdx > 0 || runner_strlen( $leftPadding ) < $startPos
+			? "... "
+			: "";
+		$rightEllipsis = $lineIdx < count( $lines) - 1 || runner_strlen( $rightPadding ) < runner_strlen( $value ) - $startPos - runner_strlen( $searchFor )
+			? " ..."
+			: "";
+		
+		$searchValue = $leftPadding . runner_substr( $value, $startPos,  runner_strlen( $searchFor )) . $rightPadding;
+		return array( 
+			"search" => $searchValue,
+			"display" => $leftEllipsis . $searchValue . $rightEllipsis
+		);
+	}
+
+	function findFirstStop( $str, $reverse = false ) {
+		$stopSymbols = " .,;:\"'?!|\\/=(){}[]*-+\n\r";
+		$length = runner_strlen( $str);
+		for( $i = 0; $i < $length; ++$i ) {
+			$idx = $reverse ? $length - $i - 1 : $i;
+			$c = runner_substr( $str, $idx, 1 );
+			if( runner_strpos( $stopSymbols, $c ) !== false )
+				return $idx;
+		}
+		return false;
+	}
+	
+	/**
+	 * This function ivokes after successful saving of added/edited record
+	 */
+	function afterSuccessfulSave()
+	{
+	}
+	
+	/**
+	 * Control settings filling
+	 */
+	function init()
+	{
+	}
+	
+	/**
+	 * Is the search string valid for LIKE search
+	 */
+	function isStringValidForLike($str)
+	{
+		if(!IsCharType($this->type) && hasNonAsciiSymbols($str))
+			return false;
+		
+		return true;
+	}
+	
+	/**
+	 * Get the displayed control elemnt's style attribute string
+	 * @return String
+	 */
+	function getInputStyle( $mode )
+	{
+		return "";
+		if( $this->pageObject->isBootstrap() 
+			&& ($this->pageObject->pageType != PAGE_ADD || $this->pageObject->mode != ADD_INLINE) 
+			&& ($this->pageObject->pageType != PAGE_EDIT || $this->pageObject->mode != EDIT_INLINE) )
+		{
+			return "";
+		}
+		
+		$width = $this->searchPanelControl ? 150 : $this->pageObject->pSetEdit->getControlWidth( $this->field );
+		$style = $this->makeWidthStyle( $width );
+		
+		return 'style="'.$style.'"';		
+	}
+	
+	/** 
+	 * Create a CSS rule specifying the control's width
+	 * @param Number widthPx
+	 */
+	function makeWidthStyle( $widthPx )
+	{
+		return "";
+/*
+		if( 0 == $widthPx )
+			return "";
+			
+		return "width: ".$widthPx."px;";
+*/		
+	}
+	
+	public function loadLookupContent( $parentValuesData, $childVal = "", $doCategoryFilter = true, $initialLoad = true )
+	{
+		return ""; // .net compatibility
+	}
+
+	public function getLookupContentToReload( $isExistParent, $mode, $parentCtrlsData )
+	{
+		return ""; // .net compatibility
+	}
+	
+	/**
+	 * A stub
+	 */
+	public function getFieldValueCopy( $value )
+	{
+		return $value;
+	}
+	
+	public function getFieldSQLDecrypt()
+	{
+		return RunnerPage::_getFieldSQLDecrypt( $this->field, $this->connection, $this->pageObject->pSetEdit,  $this->pageObject->cipherer );
+	}
+	
+	/**
+	 * @return String
+	 */
+	protected function getPlaceholderAttr()
+	{
+		if( !$this->searchPanelControl && $this->container->pageType != PAGE_SEARCH )
+			return ' placeholder="'.runner_htmlspecialchars(GetFieldPlaceHolder( GoodFieldname( $this->pageObject->tName ), GoodFieldname( $this->field ) )).'"';
+			
+		return "";
+	}
+	
+	/**
+	 *
+	 */
+	public function getConnection()
+	{
+		return $this->connection();
+	}
+
+	/**
+	 * 	Returns basic condition, where first operand is field itself
+	 */
+	public function getBasicFieldCondition( $svalue, $strSearchOption, $svalue2 = "", $etype = "" ) {
+		$searchFor = $this->processControlValue( $svalue, $etype );
+		$searchFor2 = $this->processControlValue( $svalue2, $etype );
+		$caseInsensitive = $this->pageObject->pSetEdit->getNCSearch() ? dsCASE_INSENSITIVE : dsCASE_DEFAULT;
+		if( $strSearchOption == EQUALS ) {
+			return DataCondition::FieldEquals( $this->field, $searchFor, 0, $caseInsensitive );
+		} else if( $strSearchOption == STARTS_WITH ) {
+			return DataCondition::FieldIs( $this->field, dsopSTART, $searchFor, $caseInsensitive );
+		} else if( $strSearchOption == CONTAINS ) {
+			return DataCondition::FieldIs( $this->field, dsopCONTAIN, $searchFor, $caseInsensitive );
+		} else if( $strSearchOption == MORE_THAN ) {
+			return DataCondition::FieldIs( $this->field, dsopMORE, $searchFor, $caseInsensitive );
+		} else if( $strSearchOption == LESS_THAN ) {
+			return DataCondition::FieldIs( $this->field, dsopLESS, $searchFor, $caseInsensitive );
+		} else if( $strSearchOption == BETWEEN && ( $searchFor != "" || $searchFor2 != "") ) {
+			if( $searchFor == "" ) {
+				return $this->getSearchCondition( $svalue2, NOT_MORE_THAN, "", $etype );
+			} 
+			if( $searchFor2 == "" ) {
+				return $this->getSearchCondition( $svalue, NOT_LESS_THAN, "", $etype );
+			}
+			return DataCondition::FieldBetween( $this->field, $searchFor, $searchFor2, $caseInsensitive );
+		} else if( $strSearchOption == EMPTY_SEARCH ) {
+			return DataCondition::FieldIs( $this->field, dsopEMPTY, $searchFor );
+		}
+		return null;
+	}
+
+	public function getSearchCondition( $searchFor, $strSearchOption, $searchFor2 = "", $not = false, $etype = "" )
+	{
+		if( substr( $strSearchOption, 0, 4) == "NOT " ) {
+			$strSearchOption = substr( $strSearchOption, 4 );
+			$not = true;
+		}
+		$cond = $this->getBasicFieldCondition( $searchFor, $strSearchOption, $searchFor2, $etype );
+
+		if( $not ) {
+			$cond = DataCondition::_Not( $cond );
+		}
+		return $cond;
+	}
+
+	/**
+	 * Reduce value passed from web to standard format using controlType
+	 * Currently is used for Date and Time controls only
+	 */
+	public function processControlValue( $value, $controlType ) {
+	
+		if(substr($controlType, 0, 4) == "date")
+		{
+			$dformat = substr($controlType, 4);
+			if($dformat == EDIT_DATE_SIMPLE || $dformat == EDIT_DATE_SIMPLE_INLINE || $dformat == EDIT_DATE_SIMPLE_DP)
+			{
+				$time = localdatetime2db($value);
+				if($time == "null")
+					return "";
+				return $time;
+			}
+			else if($dformat == EDIT_DATE_DD || $dformat == EDIT_DATE_DD_INLINE || $dformat == EDIT_DATE_DD_DP)
+			{
+				$a = explode("-",$value);
+				if(count($a) < 3)
+					return "";
+				else
+				{
+					$y = $a[0];
+					$m = $a[1];
+					$d = $a[2];
+				}
+				if($y < 100)
+				{
+					if($y < 70)
+						$y += 2000;
+					else
+						$y += 1900;
+				}
+				return mysprintf("%04d-%02d-%02d",array($y,$m,$d));
+			}
+			else
+				return "";
+		} 
+		else if($controlType == "time")
+		{
+			if(!strlen($value))
+				return "";
+			$ret = localtime2db($value);
+			if( IsDateFieldType( $this->type ) )
+				$ret = "2000-01-01 ".$ret;
+			return $ret;
+
+		}
+	
+		return $value;
+	}
+	
+	/**
+	 *
+	 * @returgn String
+	 */
+	public function getControlMarkup( &$params, $data ) {
+		$fieldNum = 0;
+		if( $params["fieldNum"] )
+			$fieldNum = $params["fieldNum"];
+		
+		$validate = array();
+		if( $params["validate"] )
+			$validate = $params["validate"];
+		
+		$additionalCtrlParams = array();
+		if( $params["additionalCtrlParams"] )
+			$additionalCtrlParams = $params["additionalCtrlParams"];
+		
+		ob_start();
+		
+		$this->buildControl( $data[ $this->field ], $params["mode"], $fieldNum, $validate, $additionalCtrlParams, $data );
+		$markup = ob_get_contents() ;
+		
+		ob_end_clean();
+		return $markup;
+	}
+
+	/**
+	 * 	@return DsCommand - create data command for search suggest
+	 */
+	public function getSuggestCommand( $searchFor, $searchOpt, $numberOfSuggests ) 
+	{
+		$dc = new DsCommand();
+		$dc->filter = DataCondition::_And( array(
+			$this->getSearchCondition( $searchFor, $searchOpt ),
+			Security::SelectCondition( "S", $this->pageObject->pSetEdit )
+		));
+		$dc->totals[] = array(
+			"field" => $this->field,
+			"total" => "distinct"
+		);
+		$dc->skipAggregated = true;
+		$dc->reccount = $numberOfSuggests;
+		return $dc;
+	}
+
+	/**
+	 * Get the field's content
+	 * @param &Array data
+	 * @param Array
+	 * @return String
+	 */
+	public function getDisplayValue( &$data )
+	{
+		$fName = $this->field;
+		$htmlType = $this->pageObject->pSetEdit->getHTML5InputType( $fName );
+		$value = $data[ $fName ];
+		if( $this->format !== EDIT_FORMAT_READONLY ) {
+			if( IsFloatType( $this->type ) && !is_null( $value ) ) {
+				if( $htmlType == "number" ) {
+					//	no thousand delimiters, only dot as decimal delimiter
+					$value = formatNumberForHTML5( $value );
+				} else {
+					$value = formatNumberForEdit( $value );
+				}
+			}
+		}
+		return $value;
+	}
+	
+}
+?>

classes/controls/DatabaseFileField.php

@@ -0,0 +1,287 @@
+<?php
+class DatabaseFileField extends EditControl
+{
+	function __construct($field, $pageObject, $id, $connection)
+	{
+		parent::__construct($field, $pageObject, $id, $connection);
+		$this->format = $pageObject->pSetEdit->getEditFormat($field);
+	}
+
+	/**
+	 * addJSFiles
+	 * Add control JS files to page object
+	 */
+	function addJSFiles()
+	{
+	}
+
+	/**
+	 * addCSSFiles
+	 * Add control CSS files to page object
+	 */
+	function addCSSFiles()
+	{
+	}
+
+	function buildControl($value, $mode, $fieldNum, $validate, $additionalCtrlParams, $data)
+	{
+		parent::buildControl($value, $mode, $fieldNum, $validate, $additionalCtrlParams, $data);
+
+		$disp = "";
+		$strfilename = "";
+
+		if($mode == MODE_EDIT || $mode == MODE_INLINE_EDIT)
+		{
+			$value = $this->connection->stripSlashesBinary( $value );
+			$itype = SupposeImageType($value);
+
+			if($itype)
+			{
+				if( $this->format == EDIT_FORMAT_DATABASE_IMAGE && !$this->pageObject->pSetEdit->showThumbnail( $this->field ) )
+				{
+					// show real db image instead of icon
+					$src = GetTableLink( "file", "", "filename=file.jpg&table=".rawurlencode( $this->container->tName )
+						."&field=".rawurlencode( $this->field )
+						."&nodisp=1"
+						.$this->keylink."&fileHash=".fileAttrHash( $this->keylink, strlen_bin( $value ) ) );
+
+					$imgWidth = $this->container->pSetEdit->getImageWidth( $this->field );
+					$imgHeight = $this->container->pSetEdit->getImageHeight( $this->field );
+
+					$style = '';
+					if( $imgWidth )
+						$style.= 'max-width:'.$imgWidth.'px;';
+					if( $imgHeight )
+						$style.= 'max-height:'.$imgHeight.'px;';
+
+					$imageId = generatePassword( 10 );
+					if( $style != "" ) {
+						//	don't use id attribute since this it should be possible to override this size in other CSS
+						$style = '<style> @media screen and (min-width: 768px) { [data-imageid="'. $imageId . '"] { ' 
+							. $style . '} } </style>';
+					}
+
+					$disp = $style.'<img class="" data-imageid="'.$imageId.'" id="image_'.GoodFieldName( $this->field ).'_'.$this->id.'" name="'.$this->cfield.'"';
+					if( $this->is508 )
+						$disp.= ' alt="Image from DB"';
+					$disp.= ' border=0 src="'.$src.'">';
+				}
+				else if( $this->pageObject->pSetEdit->showThumbnail($this->field) )
+				{
+					$disp = "<a target=_blank";
+
+					$disp.=" href=\"".
+						GetTableLink("imager", "",
+						"page=".$this->pageObject->pageName.
+						"&table=".GetTableURL($this->pageObject->tName).
+						"&".$this->iquery.
+						"&rndVal=".rand(0,32768))."\" >";
+					$disp.= "<img class=\"mupload-preview-img\" id=\"image_".GoodFieldName($this->field)."_".$this->id."\" name=\"".$this->cfield."\" border=0";
+					if($this->is508)
+						$disp .= " alt=\"Image from DB\"";
+					
+					//	show thumbnail or fullsize image
+					$displayField = $this->pageObject->pSetEdit->getStrThumbnail($this->field);
+					if( !strlen( $data[ $displayField ]) ) {
+						$displayField = $this->field;
+					}
+
+					$disp .= " src=\"".
+						GetTableLink("imager", "",
+							"page=".$this->pageObject->pageName.
+							"&table=".GetTableURL($this->pageObject->tName).
+							"&field=".rawurlencode( $displayField ).
+							$this->keylink.
+							"&rndVal=".rand(0,32768))."\">";
+					$disp.= "</a>";
+				}
+				else
+				{
+					$disp='<img class="mupload-preview-img" id="image_'.GoodFieldName($this->field).'_'.$this->id.'" name="'.$this->cfield.'"';
+					if($this->is508)
+						$disp.= ' alt="Image from DB"';
+					$disp.=' border=0 src="'.
+						GetTableLink("imager", "",
+							'table='.GetTableURL($this->pageObject->tName).
+							"&page=".$this->pageObject->pageName.
+							'&'.$this->iquery."&src=1&rndVal=".rand(0,32768)).'">';
+				}
+			}
+			else
+			{
+				if(strlen($value))
+				{
+					$disp = '<img class="mupload-preview-img" id="image_'.GoodFieldName($this->field).'_'.$this->id.'" name="'.$this->cfield.'" border=0 ';
+					if($this->is508)
+						$disp .= ' alt="file"';
+					$disp .= ' src="'.GetRootPathForResources("images/file.gif").'">';
+				}
+			}
+//	filename
+			if($this->format == EDIT_FORMAT_DATABASE_FILE && !$itype && strlen($value))
+			{
+				if(!($filename = @$data[$this->pageObject->pSetEdit->getFilenameField($this->field)]))
+					$filename = "file.bin";
+
+				$disp = '<a href="'.GetTableLink("getfile", "", 'table='.GetTableURL( $this->pageObject->tName ).'&filename='.runner_htmlspecialchars( $filename )
+					.'&pagename='.runner_htmlspecialchars( $this->pageObject->pSetEdit->pageName() )
+					.'&'.$this->iquery).'".>'.$disp.'</a>';
+			}
+//	filename edit
+			if($this->format == EDIT_FORMAT_DATABASE_FILE && $this->pageObject->pSetEdit->getFilenameField($this->field))
+			{
+				if(!($filename = @$data[$this->pageObject->pSetEdit->getFilenameField($this->field)]))
+					$filename = "";
+				if($mode == MODE_INLINE_EDIT)
+				{
+					$strfilename = '<br><label for="filename_'.$this->cfieldname.'">'."Filename"
+						.'</label>&nbsp;&nbsp;<input type="text" '.$this->inputStyle.' id="filename_'.$this->cfieldname
+						.'" name="filename_'.$this->cfieldname.'" size="20" maxlength="50" value="'.runner_htmlspecialchars($filename).'">';
+				}
+				else
+				{
+					$strfilename = '<br><label for="filename_'.$this->cfieldname.'">'."Filename"
+						.'</label>&nbsp;&nbsp;<input type="text" '.$this->inputStyle.' id="filename_'.$this->cfieldname.'" name="filename_'
+						.$this->cfieldname.'" size="20" maxlength="50" value="'.runner_htmlspecialchars($filename).'">';
+				}
+			}
+			if(strlen($value)) {
+				$strtype = '<br><input id="'.$this->ctype.'_keep" type="Radio" name="'.$this->ctype.'" value="file0" checked class="rnr-uploadtype">'."Keep";
+
+			if(strlen($value) && !$this->pageObject->pSetEdit->isRequired($this->field))
+			{
+					$strtype .= '<input id="'.$this->ctype.'_delete" type="Radio" name="'.$this->ctype.'" value="file1" class="rnr-uploadtype">'."Delete";
+			}
+				$strtype .= '<input id="'.$this->ctype.'_update" type="Radio" name="'.$this->ctype.'" value="file2" class="rnr-uploadtype">'."Update";
+			} else {
+				$strtype = '<input id="'.$this->ctype.'_update" type="hidden" name="'.$this->ctype.'" value="file2" class="rnr-uploadtype">';
+		}
+		}
+		else
+		{
+//	if Add mode
+			$strtype = '<input id="'.$this->ctype.'" type="hidden" name="'.$this->ctype.'" value="file2">';
+			if($this->format == EDIT_FORMAT_DATABASE_FILE && $this->pageObject->pSetEdit->getFilenameField($this->field))
+			{
+				$strfilename = '<br><label for="filename_'.$this->cfieldname.'">'."Filename"
+					.'</label>&nbsp;&nbsp;<input type="text" '.$this->inputStyle.' id="filename_'.$this->cfieldname.'" name="filename_'
+					.$this->cfieldname.'" size="20" maxlength="50">';
+			}
+		}
+
+		if($mode == MODE_INLINE_EDIT && $this->format == EDIT_FORMAT_DATABASE_FILE)
+			$disp = "";
+		echo $disp.$strtype;
+		if (($mode == MODE_EDIT || $mode==MODE_INLINE_EDIT) && (strlen($value)))
+		{
+			echo '<br>';
+		}
+		echo '<input type="File" '.$this->inputStyle.' id="'.$this->cfield.'" '
+			.'accept="'.$this->pageObject->pSetEdit->getAcceptFileTypesHtml($this->field).'" '
+			.(($mode==MODE_INLINE_EDIT || $mode==MODE_INLINE_ADD) && $this->is508 ? 'alt="'.$this->strLabel.'" ' : '').' name="'
+			.$this->cfield.'" >'.$strfilename;
+		echo '<input type="Hidden" id="notempty_'.$this->cfieldname.'" value="'.(strlen($value) ? 1 : 0).'">';
+		$this->buildControlEnd($validate, $mode);
+	}
+
+	/**
+	* Create CSS code for specifying control's width
+	*/
+	function makeWidthStyle($widthPx)
+	{
+		if(0 == $widthPx)
+			return "";
+		return "min-width: ".$widthPx."px";
+	}
+
+	function readWebValue(&$avalues, &$blobfields, $legacy1, $legacy2, &$filename_values)
+	{
+		$filename = "";
+		$this->getPostValueAndType();
+		if (FieldSubmitted($this->goodFieldName."_".$this->id))
+		{
+			$fileNameForPrepareFunc = securityCheckFileName(postvalue("filename_".$this->goodFieldName."_".$this->id));
+			if( $this->pageObject->pageType != PAGE_EDIT && $this->pageObject->pageType != PAGE_USERINFO )
+			{
+				$prepearedFile = prepare_file($this->webValue, $this->field, "file2", $fileNameForPrepareFunc, $this->id);
+				if($prepearedFile !== false)
+				{
+					$this->webValue = $prepearedFile["value"];
+					$filename = $prepearedFile["filename"];
+				}
+				else
+					$this->webValue = false;
+			}
+			else
+			{
+				if(substr($this->webType, 0, 4) == "file")
+				{
+					$prepearedFile = prepare_file($this->webValue, $this->field, $this->webType, $fileNameForPrepareFunc, $this->id);
+					if($prepearedFile !== false)
+					{
+						$this->webValue = $prepearedFile["value"];
+						$filename = $prepearedFile["filename"];
+					}
+					else
+						$this->webValue = false;
+				}
+				else if(substr($this->webType, 0, 6) == "upload")
+				{
+					if($this->webType == "upload1")
+					{
+						// file deletion, read filename from the database
+						$oldValues = $this->pageObject->getOldRecordData();
+						$fileNameForPrepareFunc = $oldValues[$this->field];
+					}
+					$this->webValue = prepare_upload($this->field, $this->webType, $fileNameForPrepareFunc, $this->webValue, "", $this->id, $this->pageObject);
+				}
+				else
+					$this->webValue = false;
+			}
+		}
+		else
+			$this->webValue = false;
+
+		if(!($this->webValue === false))
+		{
+			if($this->webValue)
+			{
+				if($this->pageObject->pSetEdit->getCreateThumbnail($this->field))
+				{
+					$ext = CheckImageExtension(GetUploadedFileName("value_".$this->goodFieldName."_".$this->id));
+					if( $ext ) {
+						$thumb = CreateThumbnail($this->webValue, $this->pageObject->pSetEdit->getThumbnailSize($this->field), $ext);
+						$blobfields[] = $this->pageObject->pSetEdit->getStrThumbnail($this->field);
+						$avalues[$blobfields[count($blobfields) - 1]] = $thumb;
+					}
+				}
+				//	resize on upload
+				$resizeImageSize = 0;
+				if( $this->pageObject->pSetEdit->getResizeOnUpload($this->field) ) {
+					$resizeImageSize = $this->pageObject->pSetEdit->getNewImageSize($this->field);
+				} else if( $this->fieldIsUserpic() ) {
+					$resizeImageSize = 400;
+				}
+				if( $resizeImageSize ) {
+					$ext = CheckImageExtension( GetUploadedFileName("value_".$this->goodFieldName."_".$this->id) );
+					$this->webValue = CreateThumbnail($this->webValue, $resizeImageSize, $ext);
+				}
+			}
+			else if($this->pageObject->pageType == PAGE_EDIT && $this->pageObject->pSetEdit->getCreateThumbnail($this->field))
+			{
+				$blobfields[] = $this->pageObject->pSetEdit->getStrThumbnail($this->field);
+				$avalues[$blobfields[count($blobfields) - 1]] = "";
+			}
+			$blobfields[] = $this->field;
+			$avalues[$this->field] = $this->webValue;
+		}
+		if($filename && $this->pageObject->pSetEdit->getStrFilename($this->field))
+			$filename_values[$this->pageObject->pSetEdit->getStrFilename($this->field)] = $filename;
+	}
+	
+	protected function fieldIsUserpic() {
+		return  $this->field === Security::userpicField()
+			&& $this->container->tName === Security::loginTable();
+	 }
+}
+?>

classes/controls/DateField.php

@@ -0,0 +1,293 @@
+<?php
+require_once getabspath('classes/controls/DateTimeControl.php');
+class DateField extends DateTimeControl
+{
+	function __construct($field, $pageObject, $id, $connection)
+	{
+		EditControl::__construct($field, $pageObject, $id, $connection);
+		$this->format = EDIT_FORMAT_DATE;
+	}
+
+	function addCSSFiles() {
+		$this->pageObject->AddCSSFile("include/bootstrap/css/bootstrap-datetimepicker.min.css");
+	}
+
+	function getProjectSettings() 
+	{
+		if($this->pageObject->pageType == PAGE_LIST)
+			return new ProjectSettings($this->pageObject->tName, PAGE_SEARCH);
+		else 
+			return $this->pageObject->pSetEdit;
+	}
+	
+	function getDateEditType( $pSet = null )
+	{
+		if( !$pSet )
+			$pSet = $this->getProjectSettings();
+
+		$dateEditType = $pSet->getDateEditType($this->field);
+
+		//	search panel control
+		if( !$this->forSpreadsheetGrid 
+			&& ( ( $this->pageObject->pageType == PAGE_LIST || $this->pageObject->pageType == PAGE_CHART || $this->pageObject->pageType == PAGE_REPORT) 
+			|| $this->pageObject->pageType == PAGE_SEARCH && $this->pageObject->mode == SEARCH_LOAD_CONTROL) )
+		{
+			if( $dateEditType == EDIT_DATE_DD )
+				return EDIT_DATE_SIMPLE;
+			if( $dateEditType == EDIT_DATE_DD_DP )
+				return EDIT_DATE_SIMPLE_DP;
+			if( $dateEditType == EDIT_DATE_DD_INLINE )
+				return EDIT_DATE_SIMPLE_INLINE;
+		}
+		
+		return $dateEditType;
+	}
+
+	function buildControl($value, $mode, $fieldNum, $validate, $additionalCtrlParams, $data)
+	{
+		global $locale_info;
+		parent::buildControl($value, $mode, $fieldNum, $validate, $additionalCtrlParams, $data);		
+
+		if($fieldNum)
+			$this->cfield = "value".$fieldNum."_".GoodFieldName($this->field).'_'.$this->id;
+
+		$pSet = $this->getProjectSettings();
+
+		$dateEditType = $this->getDateEditType( $pSet );
+		
+		//if( $this->pageObject->pageType == PAGE_LIST ) // 
+		echo '<input id="'.$this->ctype.'" type="hidden" name="'.$this->ctype.'" value="date'
+			.$dateEditType.'">';
+
+		$tvalue = $value;
+
+		$time = db2time($tvalue);
+		if( !$time )
+			$time = array(0, 0, 0, 0, 0, 0);
+
+		$classString = ' form-control';
+
+		$dp = 0;
+		$hasImgCal = true;
+		$showTime = $pSet->dateEditShowTime($this->field);
+		switch( $dateEditType )
+		{
+			case EDIT_DATE_SIMPLE_INLINE:
+				$hasImgCal = false;
+			case EDIT_DATE_SIMPLE_DP:
+				$ovalue = $value;
+
+				if($locale_info["LOCALE_IDATE"] == 1)
+					$fmt = "dd".$locale_info["LOCALE_SDATE"]."MM".$locale_info["LOCALE_SDATE"]."yyyy";
+				else if($locale_info["LOCALE_IDATE"] == 0)
+					$fmt = "MM".$locale_info["LOCALE_SDATE"]."dd".$locale_info["LOCALE_SDATE"]."yyyy";
+				else
+					$fmt = "yyyy".$locale_info["LOCALE_SDATE"]."MM".$locale_info["LOCALE_SDATE"]."dd";
+
+				if($showTime || $time[3] || $time[4] || $time[5]){
+					$timeAttrs = $this->pageObject->pSetEdit->getFormatTimeAttrs($this->field);
+					$fmt.= " " . $locale_info["LOCALE_STIMEFORMAT"];
+				}
+
+				if($time[0])
+					$ovalue = format_datetime_custom($time, $fmt);
+
+				$ovalue1 = $time[2]."-".$time[1]."-".$time[0];
+				if($showTime || $time[3] || $time[4] || $time[5])
+					$ovalue1.= " ".$time[3].":".$time[4].":".$time[5];
+				
+				$ret= '<input '.$this->getPlaceholderAttr().' id="'.$this->cfield.'" '.$this->inputStyle.' class="'.$classString.'" type="Text" name="'.$this->cfield.'" value="'.$ovalue.'">';								
+				$ret.= '<input id="ts'.$this->cfield.'" type="Hidden" name="ts'.$this->cfield.'" value="'.$ovalue1.'">';
+				
+				$ret .= '<span class="input-group-addon" id="imgCal_'.$this->cfield.'"><span class="glyphicon glyphicon-calendar"></span></span>';
+
+				if ( isRTL() )
+					$ret .= "<span></span>"; // for bootstrap calend icon anomaly
+				
+				$ret = '<div class="input-group date">' . $ret . '</div>';
+
+				echo $ret;
+			break;
+
+			case EDIT_DATE_DD_INLINE:
+			case EDIT_DATE_DD_DP:
+				$dp=1;
+			case EDIT_DATE_DD:
+				$controlWidth = $pSet->getControlWidth($this->field);
+				if($controlWidth > 0)
+				{
+					$controlWidth -= 10;
+					$yearWidth = floor($controlWidth * 0.3);
+					$yearStyle = 'style="min-width: '.$yearWidth.'px;margin-right:5px;" ';
+					$dayWidth = floor($controlWidth * 0.2);
+					$dayStyle = 'style="min-width: '.$dayWidth.'px; margin-right:5px;" ';
+					$mothWidth = $controlWidth - $yearWidth - $dayWidth;
+					$monthStyle = 'style="min-width: '.$mothWidth.'px; margin-right:5px;" ';
+				}
+				else
+				{
+					$dayStyle = '';
+					$monthStyle = '';
+					$yearStyle = '';
+				}
+				$alt = 'alt="'.$this->strLabel.'" ';
+
+				// for init normal select width/ After load js, this options will clear
+				$initMonthOpt = "<option>&nbsp;</option>";
+				if ( $time[1] )
+				{
+					$months = getMountNames();
+					$initMonthOpt = "<option>" . $months[$time[1]] . "</option>";
+				}
+				$initMonthOpt .= "<option>" . $this->maxLengthMonth() . "</option>";
+				$initDayOpt = "<option>" . ($time[2] ? $time[2] : "&nbsp;") ." </option><option>22</option>";							
+				$initYearOpt = "<option>" . ($time[0] ? $time[0] : "&nbsp;") . "</option><option>2000</option>";
+				$retday='<select class="'. $classString.'" id="day'.$this->cfield.'" '.$dayStyle.$alt.'name="day'.$this->cfield.'" >'.$initDayOpt.'</select>';
+				$retmonth='<select class="'. $classString.'" id="month'.$this->cfield.'" '.$monthStyle.$alt.'name="month'.$this->cfield.'" >'.$initMonthOpt.'</option></select>';
+				$retyear='<select class="'. $classString.'" id="year'.$this->cfield.'" '.$yearStyle.$alt.'name="year'.$this->cfield.'" >'.$initYearOpt.'</select>';
+
+				$space = ($controlWidth > 0 ? '' : "&nbsp;");
+
+				if($locale_info["LOCALE_ILONGDATE"] == 1)
+					$ret = $retday.$space.$retmonth.$space.$retyear;
+				else if($locale_info["LOCALE_ILONGDATE"] == 0)
+					$ret = $retmonth.$space.$retday.$space.$retyear;
+				else
+					$ret = $retyear.$space.$retmonth.$space.$retday;
+				
+				$setHiddenElem = 'class="'. $classString.' hiddenPickerElement"';
+				
+				if($time[0] && $time[1] && $time[2])
+					$ret.="<input id=\"".$this->cfield."\" ".$setHiddenElem." name=\"".$this->cfield."\" value=\"".$time[0]."-".$time[1]."-".$time[2]."\">";
+				else
+					$ret.="<input id=\"".$this->cfield."\" ".$setHiddenElem." name=\"".$this->cfield."\" value=\"\">";
+
+				// calendar handling for three DD
+				if( $dp ) {					
+					$ret .= '<button class="btn btn-default" id="imgCal_'.$this->cfield.'" aria-hidden=true><span class="glyphicon glyphicon-calendar"  ></span></button>';				
+				}
+
+				$ret = '<span class="bs-date-control form-inline">' . $ret . '</span>';
+				echo $ret;
+			break;
+
+			default: //	case EDIT_DATE_SIMPLE:
+				$ovalue = $value;
+				if($time[0])
+				{
+					if($showTime || $time[3] || $time[4] || $time[5])
+						$ovalue = str_format_datetime($time);
+					else
+						$ovalue = format_shortdate($time);
+				}
+				echo '<input '.$this->getPlaceholderAttr().' id="'.$this->cfield.'" type=text class="'.$classString.'" name="'.$this->cfield.'" '.$this->inputStyle.' value="'.runner_htmlspecialchars($ovalue).'">';
+		}
+		$this->buildControlEnd($validate, $mode);
+	}
+
+	function getFirstElementId()
+	{
+		global $locale_info;
+		$dateEditType = $this->getDateEditType();
+
+		if ( !$dateEditType )
+		{
+			return $this->cfield;
+		}
+
+		switch( $dateEditType )
+		{
+			case EDIT_DATE_DD:
+			case EDIT_DATE_DD_INLINE:
+			case EDIT_DATE_DD_DP:
+				if($locale_info["LOCALE_ILONGDATE"] == 1)
+					return "day".$this->cfield;
+				else if($locale_info["LOCALE_ILONGDATE"] == 0)
+					return "month".$this->cfield;
+				else
+					return "year".$this->cfield;
+			break;
+
+			default:
+				return $this->cfield;
+			break;
+		}
+	}
+
+	function maxLengthMonth()
+	{
+		$maxLengthMonth = "";
+		$mounts = getMountNames();		
+		$maxLenght = 0;
+		for ( $i =0; $i < count($mounts); $i++ )
+		{
+			$curMontn = $mounts[$i];
+			$curMonthLen = runner_strlen($curMontn);
+			if ( $maxLenght < $curMonthLen )
+			{
+				$maxLenght = $curMonthLen;				
+				$maxLengthMonth = $curMontn;
+			}			
+		}
+
+		return $maxLengthMonth;
+	}
+
+	/**
+	 * 	Returns basic condition
+	 */
+	public function getBasicFieldCondition( $svalue, $strSearchOption, $svalue2 = "", $etype = "" ) {
+		$searchFor = $this->processControlValue( $svalue, $etype );
+		$searchFor2 = $this->processControlValue( $svalue2, $etype );
+		$etype = "";
+		$pSet = $this->getProjectSettings();
+		if( !$pSet->dateEditShowTime($this->field) && IsDateTimeFieldType( $pSet->getFieldType($this->field) ) ) {
+			//	search for date only in a datetime field
+			
+			if( $strSearchOption == EQUALS ) {
+				//	 ( NOT field < date ) AND field < ( date + 1 day )
+				$tm = db2time( $searchFor );
+				if( !$tm[0] ) {
+					return DataCondition::_False();
+				}
+				$nextDay = adddays( $tm, 1 );
+				return DataCondition::_And( array( 
+					DataCondition::_Not( 
+						DataCondition::FieldIs( $this->field, dsopLESS, date2db( $tm ) )
+					),
+					DataCondition::FieldIs( $this->field, dsopLESS, date2db( $nextDay ) )
+				));
+			} else if( $strSearchOption == MORE_THAN ) {
+				//	 NOT ( field < ( date + 1 day ) )
+				$tm = db2time( $searchFor );
+				if( !$tm[0] ) {
+					return DataCondition::_False();
+				}
+				$nextDay = adddays( $tm, 1 );
+				return DataCondition::_Not( 
+					DataCondition::FieldIs( $this->field, dsopLESS, date2db( $nextDay ) )
+				);
+
+			} else if( $strSearchOption == BETWEEN && $searchFor != "" && $searchFor2 != "" ) {
+				//	true between only
+				//	NOT ( field < date ) AND field < (date2+1)
+				$tm = db2time( $searchFor );
+				$tm2 = db2time( $searchFor2 );
+				if( !$tm[0] || !$tm2[0] ) {
+					return DataCondition::_False();
+				}
+				$tm2 = adddays( $tm2, 1 );
+				return DataCondition::_And( array( 
+					DataCondition::_Not( 
+						DataCondition::FieldIs( $this->field, dsopLESS, date2db( $tm ) )
+					),
+					DataCondition::FieldIs( $this->field, dsopLESS, date2db( $tm2 ) )
+				));
+
+			}
+
+		}
+		return parent::getBasicFieldCondition( $searchFor, $strSearchOption, $searchFor2, $etype );
+	}
+}
+?>

classes/controls/DateTimeControl.php

@@ -0,0 +1,25 @@
+<?php
+class DateTimeControl extends EditControl
+{
+	/**
+	 * Form the control specified search options array and built the control's search options markup
+	 * @param String selOpt		The search option value	
+	 * @param Boolean not		It indicates if the search option negation is set 	
+	 * @param Boolean both		It indicates if the control needs 'NOT'-options
+	 * @return String			A string containing options markup
+	 */	
+	function getSearchOptions($selOpt, $not, $both)
+	{
+		$optionsArray = array(EQUALS, MORE_THAN, LESS_THAN, BETWEEN, EMPTY_SEARCH);
+		if($both)
+		{
+			$optionsArray[] = NOT_EQUALS;
+			$optionsArray[] = NOT_MORE_THAN;
+			$optionsArray[] = NOT_LESS_THAN;
+			$optionsArray[] = NOT_BETWEEN;
+			$optionsArray[] = NOT_EMPTY;
+		}
+		return $this->buildSearchOptions($optionsArray, $selOpt, $not, $both);
+	}
+}
+?>

classes/controls/EditControlsContainer.php

@@ -0,0 +1,330 @@
+<?php
+class EditControlsContainer
+{
+	public $controls = array();
+	public $jsSettings = array();
+	public $pSetEdit = null;
+	public $pageType = "";
+	public $cipherer = null;
+	
+	public $tName = "";
+	
+	public $pageObject = null;
+	
+	public $pageLikeInline = false;
+	
+	public $tableBasedSearchPanelAdded = false;
+	
+	public $searchPanelActivated = false;
+	
+	/**
+	 * Associative array used like a container to exchange some data between controls on one page
+	 * @var {array}
+	 */
+	public $globalVals = array();
+	
+	/**
+	 * @type Connection 
+	 */
+	protected $connection;
+	
+	public $classNamesForEdit = array();
+		
+	public $classNamesForSearch = array();
+	
+	public function __construct($pageObject, $pSetEdit, $pageType, $cipherer = "")
+	{
+		if($pageObject != null)
+		{
+			$this->pageObject = $pageObject;
+			$this->tName = $pageObject->tName;
+			
+			$this->pageLikeInline = $pageObject->pageType == PAGE_ADD && $pageObject->mode == ADD_INLINE ||
+				$pageObject->pageType == PAGE_EDIT && $pageObject->mode == EDIT_INLINE;
+		}
+		else 
+		{
+			$this->tName = $pSetEdit->_table;
+			$this->cipherer	= $cipherer;
+		}
+		
+		$this->fillControlClassNames();
+
+		$this->setEditControlsConnection();
+		
+		$this->pSetEdit = $pSetEdit;
+		$this->pageType = $pageType;		
+		$this->searchPanelActivated = true;
+	}
+	
+	/**
+	 * Set the connection property
+	 */
+	protected function setEditControlsConnection()
+	{
+		global $cman;
+		
+		if( $this->pageObject != null )
+			$this->connection = $this->pageObject->connection;
+		else
+			$this->connection = $cman->byTable( $this->tName );
+	}
+	
+	/**
+	 * @return Boolean
+	 */
+	public function isSearchPanelActivated()
+	{
+		if( $this->pageObject != null )
+			return $this->pageObject->isSearchPanelActivated();
+			
+		return $this->pageType == PAGE_SEARCH;
+	}
+	
+	function addControlsJSAndCSS()
+	{
+		$allowedPageTypes = array( PAGE_ADD, PAGE_EDIT, PAGE_VIEW, PAGE_LIST, 
+			PAGE_SEARCH, PAGE_REGISTER, PAGE_LOGIN, PAGE_USERINFO );
+	
+		// showing if there is Search panel on the page		
+		$searchPanelActivated = $this->isSearchPanelActivated();
+		
+		if( !in_array( $this->pageType, $allowedPageTypes ) && !$searchPanelActivated ) 
+			return;
+
+		switch( $this->pageType )
+		{
+			case PAGE_ADD:
+				$pageTypeStr = "Add";
+				break;
+			case PAGE_EDIT:
+				$pageTypeStr = "Edit";
+				break;
+			case PAGE_VIEW:	
+			case PAGE_LIST:
+				$pageTypeStr = "List";
+				break;		
+			default:
+				$pageTypeStr = "";
+		}
+
+		if( $pageTypeStr != "" )
+		{
+			$getEditFieldsFunc = "get".($this->pageLikeInline ? "Inline" : "").$pageTypeStr."Fields";
+			if( $this->pageLikeInline )
+				$appearOnPageFunc = "appearOnInline".$pageTypeStr;
+			else 
+				$appearOnPageFunc = "appearOn".$pageTypeStr."Page";
+		}
+		
+		switch( $this->pageType )
+		{
+			case PAGE_LOGIN:
+			case PAGE_REGISTER:
+			case PAGE_USERINFO:
+				$fields = $this->pSetEdit->getPageFields();
+				break;
+			case PAGE_SEARCH:
+				$fields = $this->pSetEdit->getAdvSearchFields();
+				break;
+			default:
+				$fields = array();
+				if( $getEditFieldsFunc )
+					$fields = $this->pSetEdit->$getEditFieldsFunc();	
+		}
+		
+		// Addign fields that aren't appear at list page, but appear on search panel  
+		$searchFields = array();
+		if( $searchPanelActivated )
+		{
+			$searchFields = $this->pSetEdit->getPanelSearchFields();
+			$searchFields = array_merge($searchFields, $this->pSetEdit->getAllSearchFields());
+			$fields = array_merge($searchFields, $fields);
+			$fields = array_unique($fields);			
+		}
+		
+		foreach( $fields as $i => $f )
+		{
+			$appear = false;
+			
+			if( $this->pageType == PAGE_REGISTER || $this->pageType == PAGE_SEARCH 
+				|| $this->pageType == PAGE_LOGIN || $this->pageType == PAGE_USERINFO 
+				|| in_array($f, $searchFields) )
+			{
+				$appear = true;
+			} 
+			else if( $appearOnPageFunc )
+				$appear = $this->pSetEdit->$appearOnPageFunc($f);
+			
+			if( $appear )
+			{
+				$editControl = $this->getControl($f);
+				$editControl->addJSFiles();
+				$editControl->addCSSFiles();
+			}
+		}
+	}
+	
+	/**
+	 * @param String field
+	 * @param String id	(optional)
+	 * @param Array extraParmas (optional)
+	 * @return Control
+	 */
+	function getControl($field, $id = "", $extraParmas = array())
+	{
+/*
+		if( count($extraParmas) && $extraParmas["makeReadonly"] ) {
+			include_once(getabspath("classes/controls/Control.php"));
+			$className = $this->classNamesForEdit[ EDIT_FORMAT_READONLY ];
+			
+			$ctrl = createControlClass($className, $field, $this->pageObject != null ? $this->pageObject : $this, $id, $this->connection);
+			$ctrl->container = $this;
+			
+			return $ctrl;
+		}
+*/		
+		
+		if( count($extraParmas) && $extraParmas["getConrirmFieldCtrl"] ) 
+		{
+			include_once(getabspath("classes/controls/Control.php"));
+			$className = $this->classNamesForEdit[ EDIT_FORMAT_PASSWORD ];
+			
+			$ctrl = createControlClass($className, $field, $this->pageObject != null ? $this->pageObject : $this, $id, $this->connection);
+			if($extraParmas['isConfirm'])
+				$ctrl->field = Security::passwordField();
+			$ctrl->container = $this;
+			
+			return $ctrl;
+		}
+		
+		// if conrol does not created previously  
+		if(!array_key_exists($field, $this->controls))
+		{
+			include_once(getabspath("classes/controls/Control.php"));
+			
+			$userControl = false;
+			$editFormat = $this->getEditFormat($field);
+			
+			if( ($this->pageType == PAGE_SEARCH || $this->pageType == PAGE_LIST ) && !$extraParmas["spreadsheet"] )
+			{
+				// Text field may be Lookup field on some page
+				$pageTypebyLookupFormat = $this->pSetEdit->getPageTypeByFieldEditFormat($field, EDIT_FORMAT_LOOKUP_WIZARD);
+				
+				if( $editFormat == EDIT_FORMAT_TEXT_FIELD && $pageTypebyLookupFormat != "" )
+				{
+					$localPSet = new ProjectSettings($this->pSetEdit->_table, $pageTypebyLookupFormat);
+						
+					if( $localPSet->getLinkField($field) != $localPSet->getDisplayField($field) )
+						$className = "LookupTextField";
+					else 
+						$className = $this->classNamesForSearch[ $editFormat ];
+				}
+				else
+					$className = $this->classNamesForSearch[ $editFormat ];
+			}
+			else
+				$className = $this->classNamesForEdit[ $editFormat ];
+			
+			if( $className == $this->classNamesForEdit[ EDIT_FORMAT_FILE ] && $this->pSetEdit->isBasicUploadUsed($field) )
+				$className = "FileFieldSingle";
+			
+			if( !$className )
+			{
+				if($editFormat != "")
+				{
+					$className = "Edit".$editFormat;
+					$userControl = true;
+					include_once(getabspath("classes/controls/UserControl.php"));
+					if( !is_null($this->pageObject) )
+						$this->pageObject->AddJSFile("include/runnerJS/controls/".$className.".js", "include/runnerJS/editControls/Control.js");
+				}
+				else
+					$className = $this->classNamesForEdit[ EDIT_FORMAT_TEXT_FIELD ];
+			}
+					
+			$this->controls[ $field ] = createControlClass($className, $field, $this->pageObject != null ? $this->pageObject : $this, $id, $this->connection);
+			$this->controls[ $field ]->container = $this;
+			$this->controls[ $field ]->forSpreadsheetGrid = $extraParmas["spreadsheet"];
+			
+			if($userControl)
+			{
+				$this->controls[ $field ]->format = $className;
+				$this->controls[ $field ]->initUserControl();
+			}
+		}
+		
+		if( $id !== "" )
+			$this->controls[ $field ]->setID($id);
+		
+		return $this->controls[ $field ];
+	}
+	
+	/**
+	 * @deprecated
+	 */
+	function isSystemControl($className)
+	{
+		include_once(getabspath("classes/controls/Control.php"));
+		if($this->pageType == PAGE_SEARCH || $this->pageType == PAGE_LIST)
+			return isset($this->classNamesForSearch[$className]);
+		else
+			return isset($this->classNamesForEdit[$className]);
+	}
+	
+	/**
+	 * Check if the host page is table based
+	 * @return Boolean
+	 */
+	function isPageTableBased()
+	{
+		if($this->pageType == PAGE_MENU || $this->pageType == PAGE_LOGIN || $this->pageType == PAGE_REMIND || $this->pageType == PAGE_CHANGEPASS)
+		{
+			return false;
+		}		
+		return true;
+	}
+	
+	function mobileTemplateMode() 
+	{
+		return false;
+	}
+	
+	protected function fillControlClassNames() 
+	{
+		$this->classNamesForEdit[EDIT_FORMAT_TEXT_FIELD] = "TextField";
+		$this->classNamesForEdit[EDIT_FORMAT_TIME] = "TimeField";
+		$this->classNamesForEdit[EDIT_FORMAT_TEXT_AREA] = "TextAreaField";
+		$this->classNamesForEdit[EDIT_FORMAT_PASSWORD] = "PasswordField";
+		$this->classNamesForEdit[EDIT_FORMAT_DATE] = "DateField";
+		$this->classNamesForEdit[EDIT_FORMAT_CHECKBOX] = "CheckboxField";
+		$this->classNamesForEdit[EDIT_FORMAT_DATABASE_IMAGE] = "DatabaseFileField";
+		$this->classNamesForEdit[EDIT_FORMAT_DATABASE_FILE] = "DatabaseFileField";
+		$this->classNamesForEdit[EDIT_FORMAT_HIDDEN] = "HiddenField";
+		$this->classNamesForEdit[EDIT_FORMAT_READONLY] = "ReadOnlyField";
+		$this->classNamesForEdit[EDIT_FORMAT_FILE] = "FileField";
+		$this->classNamesForEdit[EDIT_FORMAT_LOOKUP_WIZARD] = "LookupField";
+			
+		$this->classNamesForSearch[EDIT_FORMAT_TEXT_FIELD] = "TextField";
+		$this->classNamesForSearch[EDIT_FORMAT_TIME] = "TimeField";
+		$this->classNamesForSearch[EDIT_FORMAT_TEXT_AREA] = "TextField";
+		$this->classNamesForSearch[EDIT_FORMAT_PASSWORD] = "TextField";
+		$this->classNamesForSearch[EDIT_FORMAT_DATE] = "DateField";
+		$this->classNamesForSearch[EDIT_FORMAT_CHECKBOX] = "CheckboxField";
+		$this->classNamesForSearch[EDIT_FORMAT_DATABASE_IMAGE] = "TextField";
+		$this->classNamesForSearch[EDIT_FORMAT_DATABASE_FILE] = "TextField";
+		$this->classNamesForSearch[EDIT_FORMAT_HIDDEN] = "TextField";
+		$this->classNamesForSearch[EDIT_FORMAT_READONLY] = "TextField";
+		$this->classNamesForSearch[EDIT_FORMAT_FILE] = "FileField";
+		$this->classNamesForSearch[EDIT_FORMAT_LOOKUP_WIZARD] = "LookupField";
+	
+	}
+
+	protected function getEditFormat( $field ) {
+		if( $this->pageObject ) {
+			return $this->pageObject->getEditFormat( $field );
+		}
+		return $this->pSetEdit->getEditFormat( $field );
+	}
+}
+?>

classes/controls/FileField.php

@@ -0,0 +1,455 @@
+<?php
+require_once getabspath('classes/filehandler.php');
+
+class FileField extends EditControl
+{
+	/**
+	 * Field random identifier for sessions values
+	 * @var {string}
+	 */
+	var $formStamp = "";
+
+	function __construct($field, $pageObject, $id, $connection)
+	{
+		parent::__construct($field, $pageObject, $id, $connection);
+		$this->format = EDIT_FORMAT_FILE;
+	}
+
+	function addJSFiles() {
+		if ( $this->format = EDIT_FORMAT_FILE ) {
+			$this->pageObject->AddJSFile("include/mupload.js");
+		}
+	}
+
+	function buildControl($value, $mode, $fieldNum, $validate, $additionalCtrlParams, $data)
+	{
+		parent::buildControl($value, $mode, $fieldNum, $validate, $additionalCtrlParams, $data);
+
+		if( $mode == MODE_SEARCH ) {
+			$this->format = "";
+			
+			$classString = "";
+			if( $this->pageObject->isBootstrap() )
+				$classString = " class=\"form-control\"";
+			
+			echo '<input id="'.$this->cfield.'" '.$classString.$this->inputStyle.' type="text" '
+				.('autocomplete="off" ')
+				.( $this->is508==true ? 'alt="'.$this->strLabel.'" ' : '')
+				.'name="'.$this->cfield.'" '.$this->pageObject->pSetEdit->getEditParams($this->field).' value="'
+				.runner_htmlspecialchars($value).'">';
+			
+			$this->buildControlEnd($validate, $mode);
+			return;
+		}
+
+		$this->formStamp = generatePassword(15);
+
+		$filesArray = $this->getFileData( $value );
+
+		$keylink = "";
+		if($this->pageObject->pageType == PAGE_EDIT) {
+			if( $this->pageObject->keys )
+			{
+				$i = 1;
+				foreach($this->pageObject->keys as $keyName => $keyValue)
+				{
+					$keylink .= "&key".$i."=".rawurlencode( $keyValue );
+					$i++;
+				}
+			}
+		}
+		$fh = new RunnerFileHandler( $this->field, $this->pageObject->pSet, $this->formStamp );
+		$userFilesArray = $fh->loadFiles( $filesArray );
+		
+		$jsonValue = my_json_encode($userFilesArray);
+		$multiple = "";
+		if( $this->pageObject->pSetEdit->getMaxNumberOfFiles($this->field) != 1 )
+			$multiple = "multiple ";
+		echo '
+ <!-- The file upload form used as target for the file upload widget -->
+    <form id="fileupload_'.$this->cfieldname.'" action="'.GetTableLink("mfhandler").'" method="POST" enctype="multipart/form-data">
+
+    <input type="hidden" name="formStamp_'.$this->cfieldname.'" id="formStamp_'.$this->cfieldname.'" value="'.$this->formStamp.'" />
+    <input type="hidden" name="_action" value="POST" />
+    <input type="hidden" id="value_'.$this->cfieldname.'" name="value_'.$this->cfieldname.'" value="'.runner_htmlspecialchars($jsonValue).'" />
+
+    <!-- The fileupload-buttonbar contains buttons to add/delete files and start/cancel the upload -->
+        <div class="fileupload-buttonbar">
+            <div class="span7">
+                <!-- The fileinput-button span is used to style the file input field as button -->
+ 				<SPAN class="btn btn-primary btn-sm fileinput-button filesUpload">
+					<!--<A class="rnr-button filesUpload button" href="#" >-->
+					<input class="fileinput-button-input" type="file" accept="'.$this->pageObject->pSetEdit->getAcceptFileTypesHtml($this->field).'" name="files[]" value="'
+				."Add files"
+				.'" '. $multiple .' />'
+				."Add files"
+				.'<!--</A>-->
+				</SPAN>'
+		.'
+
+            </div>
+            <!-- The global progress information -->
+            <div class="fileupload-progress fade">
+                <!-- The global progress bar -->
+                <div class="progress" role="progressbar" aria-valuemin="0" aria-valuenow="0" aria-valuemax="100">
+                    <div style="width:0;" class="bar progress-bar progress-bar-info progress-bar-striped active"  ></div>
+                </div>
+                <!-- The extended global progress information -->
+                <div class="progress-extended">&nbsp;</div>
+            </div>
+        </div>
+        <!-- The loading indicator is shown during file processing -->
+        <div class="fileupload-loading"></div>
+        <!-- The table listing the files available for upload/download -->
+        <table class="mupload-files"><tbody class="files"></tbody></table>
+    </form>
+    ';
+		if(!isset($this->container->globalVals["muploadTemplateIncluded"]))
+		{
+			echo '<script type="text/x-tmpl" id="template-download">{% for (var i=0, file; file=o.files[i]; i++) { %}
+    <tr class="template-download fade">
+        {% if (file.error) { %}
+            <td></td>
+            <td class="name"><span class="text-muted">{%=file.name%}</span></td>
+            <td class="size"><span class="text-muted" dir="LTR">{%=o.formatFileSize(file.size)%}</span></td>
+            <td colspan=2 class="error"><span class="text-danger rnr-error">'
+			.""
+			.' {%=locale.fileupload.errors[file.error] || file.error%}</span></td>
+        {% } else { %}
+            <td class="preview">{% if (file.thumbnail_url) { %}
+                <a href="{%=file.url%}" title="{%=file.name%}" rel="gallery" download="{%=file.name%}"
+                	{% if (!file.isIco) { %} {% } %}
+                	><img class="mupload-preview-img" src="{%=file.thumbnail_url%}&src=1"></a>
+            {% } else { %}
+            	{% if (file.isImg) { %}
+            		<a href="{%=file.url%}&nodisp=1" title="{%=file.name%}" rel="gallery" download="{%=file.name%}" ><img class="mupload-preview-img" src="{%=file.url%}&src=1"></a>
+            	{% } %}
+            {% } %}</td>
+            <td class="name">
+                <a href="{%=file.url%}" title="{%=file.name%}" rel="{%=file.thumbnail_url&&\'gallery\'%}" download="{%=file.name%}">{%=file.name%}</a>
+            </td>
+            <td class="size"><span dir="LTR">{%=o.formatFileSize(file.size)%}</span></td>
+			<td></td>
+			<td class="delete">
+				{% if (!file.error) { %}
+				<SPAN class="btn btn-xs btn-default delete" data-type="{%=file.delete_type%}" data-url="{%=file.delete_url%}" data-name="{%=file.name%}">
+				<!--<A href="#" >-->'
+				."Delete"
+				.'<!--</A>-->
+					</SPAN>
+				{% } %}
+			</td>
+        {% } %}
+    </tr>
+{% } %}
+</script>
+<script type="text/x-tmpl" id="template-upload">{% for (var i=0, file; file=o.files[i]; i++) { %}
+    <tr class="template-upload fade">
+        <td class="preview"><span class="fade"></span></td>
+        {% if (file.error) { %}
+			<td class="name"><span class="text-muted">{%=file.name%}</span></td>
+			<td class="size"><span class="text-muted">{%=o.formatFileSize(file.size)%}</span></td>
+            <td class="error" colspan="2"><span class="text-danger rnr-error">'
+			.""
+			.' {%=locale.fileupload.errors[file.error] || file.error%}</span></td>
+        {% } else if (o.files.valid && !i) { %}
+			<td class="name"><span>{%=file.name%}</span></td>
+			<td class="size"><span>{%=o.formatFileSize(file.size)%}</span></td>
+            <td>
+                <div class="progress progress-success progress-striped active" role="progressbar" aria-valuemin="0"
+                	aria-valuemax="100" aria-valuenow="0"><div class="progress-bar bar" style="width:0;"></div></div>
+            </td>
+        {% } else { %}
+            <td></td>
+        {% } %}
+        <td class="cancel">{% if (!i) { %}
+        	{% if (!file.error) { %}
+        	<SPAN class="btn btn-default btn-xs">
+			<!--<A href="#" >-->'
+			."Cancel"
+			.'<!--</A>-->
+				</SPAN>
+			{% } %}
+        {% } %}</td>
+    </tr>
+{% } %}</script>';
+			$this->container->globalVals["muploadTemplateIncluded"] = true;
+		}
+		$this->buildControlEnd($validate, $mode);
+	}
+
+	/**
+	* Create CSS code for specifying control's width
+	*/
+	function makeWidthStyle($widthPx)
+	{
+		if(0 == $widthPx)
+			return "";
+		return "min-width: ".$widthPx."px";
+	}
+
+	public function readWebValue(&$avalues, &$blobfields, $legacy1, $legacy2, &$filename_values)
+	{
+		$this->getPostValueAndType();
+		$this->formStamp = postvalue("formStamp_".$this->goodFieldName."_".$this->id);
+		if (FieldSubmitted($this->goodFieldName."_".$this->id) && $this->formStamp != "")
+		{
+			$filesArray = my_json_decode($this->webValue);
+			if(!is_array($filesArray) || count($filesArray) == 0)
+				$this->webValue = "";
+			else
+			{
+				if(count($_SESSION["mupload_".$this->formStamp]) > 0)
+				{
+					foreach($_SESSION["mupload_".$this->formStamp] as $fileArray)
+						$fileArray["deleted"] = true;
+				}
+				$result = array();
+				$uploadDir = $this->pageObject->pSetEdit->getLinkPrefix($this->field);
+				$searchStr = "";
+				foreach ($filesArray as $file)
+				{
+					if(isset($_SESSION["mupload_".$this->formStamp][$file["name"]]))
+					{
+						$sessionFile = $_SESSION["mupload_".$this->formStamp][$file["name"]]["file"];
+						$searchStr .= $file["name"].",!";
+						$result[] = array("name" => $sessionFile["name"],
+							"usrName" => $file["name"], "size" => $sessionFile["size"], "type" => $sessionFile["type"]
+						);
+						if($this->pageObject->pSetEdit->getCreateThumbnail($this->field)
+							&& $sessionFile["thumbnail"] != "")
+						{
+							$lastIndex = count($result) - 1;
+							$result[$lastIndex]["thumbnail"] = $sessionFile["thumbnail"];
+							$result[$lastIndex]["thumbnail_type"] = $sessionFile["thumbnail_type"];
+							$result[$lastIndex]["thumbnail_size"] = $sessionFile["thumbnail_size"];
+						}
+						$_SESSION["mupload_".$this->formStamp][$file["name"]]["deleted"] = false;
+					}
+				}
+				if(count($result) > 0)
+				{
+					$result[0]["searchStr"] = $searchStr.":sStrEnd";
+					$this->webValue = my_json_encode_unescaped_unicode($result);
+				}
+				else
+					$this->webValue = "";
+			}
+		}
+		else
+			$this->webValue = false;
+
+		if(!($this->webValue===false))
+		{
+			if( $this->connection->dbType == nDATABASE_Informix )
+			{
+				if(IsTextType($this->pageObject->pSetEdit->getFieldType($this->field)))
+					$blobfields[] = $this->field;
+			}
+			$avalues[$this->field] = $this->webValue;
+		}
+	}
+
+	/**
+	 * Form the control specified search options array and built the control's search options markup
+	 * @param String selOpt		The search option value
+	 * @param Boolean not		It indicates if the search option negation is set
+	 * @param Boolean both		It indicates if the control needs 'NOT'-options
+	 * @return String			A string containing options markup
+	 */
+	public function getSearchOptions($selOpt, $not, $both)
+	{
+		$optionsArray = array();
+		$isPHPEncripted = $this->pageObject->cipherer->isFieldPHPEncrypted($this->field);
+		if(!$isPHPEncripted){
+			$optionsArray[] = CONTAINS;
+			$optionsArray[] = EQUALS;
+		}
+		$optionsArray[] = EMPTY_SEARCH;
+		if($both)
+		{
+			if(!$isPHPEncripted){
+				$optionsArray[] = NOT_CONTAINS;
+				$optionsArray[] = NOT_EQUALS;
+			}
+			$optionsArray[] = NOT_EMPTY;
+		}
+		return $this->buildSearchOptions($optionsArray, $selOpt, $not, $both);
+	}
+
+	/**
+	 * Fill the response array with the suggest values
+	 *
+	 * @param String value
+	 *		Note: the real value is preceeded with "_" so It's necessary to remove
+	 *		the first character before json decoding . Also It's important to add "_"
+	 *		to the beggining of the response suggest value because Searchsuggest
+	 *		expects that it starts with this character.
+	 * @param String searchFor
+	 * @param &Array response
+	 * @param &Array row
+	 */
+	public function suggestValue($value, $searchFor, &$response, &$row)
+	{
+		if(!$value)
+			return;
+
+		//value is preceeded with "_"
+		$value = substr($value, 1);
+
+		$filesArray = my_json_decode($value);
+
+		if(!is_array($filesArray) || count($filesArray) == 0)
+			$response[ "_".$value ] = "_".$value;
+		else
+		{
+			for($i = 0; $i < count($filesArray) && count($response) < 10; $i++)
+			{
+				if($this->pageObject->pSetEdit->getNCSearch())
+					$pos = stripos($filesArray[$i]["usrName"], $searchFor);
+				else
+					$pos = strpos($filesArray[$i]["usrName"], $searchFor);
+
+				if($pos !== false)
+					$response[ "_".$filesArray[$i]["usrName"] ] = "_".$filesArray[$i]["usrName"];
+			}
+		}
+	}
+
+	public function afterSuccessfulSave()
+	{
+		if( !$_SESSION["mupload_".$this->formStamp] ) {
+			return;
+		}
+		$fs = getStorageProvider( $this->pageObject->pSet, $this->field );			
+		foreach( $_SESSION["mupload_".$this->formStamp] as $fileArray ) {
+			if( !$fileArray["deleted"] ) {
+				continue;
+			}
+			$fs->delete( $fileArray["file"]["name"] );
+			if( $fileArray["file"]["thumbnail"] ) {
+				$fs->delete( $fileArray["file"]["thumbnail"] );
+			}
+		}
+		unset($_SESSION["mupload_".$this->formStamp]);
+	}
+
+	/**
+	 * @param String fieldValue
+	 * @return String
+	 */
+	public function getFieldValueCopy( $fieldValue )
+	{
+		$fs = getStorageProvider( $this->pageObject->pSet, $this->field );
+		if( !$fs->fast() ) {
+			return "[]";
+		}
+		$uploadFolder = $this->pageObject->pSetEdit->getUploadFolder( $this->field );
+
+		$filesData = $this->getFileData( $fieldValue );
+		foreach( array_keys( $filesData ) as $idx ) {
+			$file =& $filesData[ $idx ];
+			$newName = $fs->copyFile( $file["name"], $file["usrName"] );
+			if( !$newName ) {
+				continue;
+			}
+			$file["name"] = $newName;
+			
+			if( $this->pageObject->pSetEdit->getCreateThumbnail( $this->field ) && $file["thumbnail"] ) {
+				$thumbnailPrefix = $this->pageObject->pSetEdit->getStrThumbnail( $this->field );
+				$newThumbnail = $fs->copyFile( $file["thumbnail"], $thumbnailPrefix.$file["usrName"] );
+				if( $newThumbnail ) {
+					$file["thumbnail"] = $newThumbnail;
+				} else {
+					unset( $file["thumbnail"] );
+				}
+			}
+		}
+
+		return my_json_encode( $filesData );
+	}
+	
+	/**
+	 * 	Returns basic condition
+	 */
+	public function getBasicFieldCondition( $searchFor, $strSearchOption, $searchFor2 = "", $etype = "" ) {
+		if( $strSearchOption == EQUALS ) {			
+			return $this->getFilenameCondition( dsopEQUAL, $searchFor );
+		} else if( $strSearchOption == STARTS_WITH ) {
+			return $this->getFilenameCondition( dsopSTART, $searchFor );
+		} else if( $strSearchOption == CONTAINS ) {
+			return $this->getFilenameCondition( dsopCONTAIN, $searchFor );
+		} else if( $strSearchOption == EMPTY_SEARCH ) {
+			return DataCondition::FieldIs( $this->field, dsopEMPTY, $searchFor );
+		}
+		return null;
+	}
+	
+	/**
+	 * Get file field search condition
+	 * @param operation dsopEQUAL | dsopSTART | dsopCONTAIN
+	 * @param String searchFor
+	 * @return DsCondition
+	 */	
+	protected function getFilenameCondition( $operation, $searchFor ) {
+		$caseInsensitive = $this->pageObject->pSetEdit->getNCSearch() ? dsCASE_INSENSITIVE : dsCASE_DEFAULT;
+				
+		$startCondition = DataCondition::FieldIs( $this->field, dsopSTART, "[{", $caseInsensitive );
+					
+		// To extend like condition pattern
+		$likeWrapper = null;
+		$before = 'searchStr":"';
+		$after = ':sStrEnd"';
+		
+		// set up suitable value and like wrapper parts
+		// to get proper like pattern for Condition with dsopCONTAIN op 
+		// b $before, a $after, v $searchFor
+		if( $operation == dsopEQUAL ) {
+			// %bva%   		eg '%searchStr":"test.gif,!:sStrEnd"%'
+			// ',!' is added to the downloaded file name (ex. "test.gif,!")
+			$fileSearchFor = $before. $searchFor.',!' .$after;
+		} else if( $operation == dsopSTART ) {
+			// %bv%a% 		eg '%searchStr":"test.gif%:sStrEnd"%'
+			$fileSearchFor = $before.$searchFor;
+			$likeWrapper = array( 'after' => $after );
+		} else /* dsopCONTAIN */ {
+			// %b%v%a%		eg '%searchStr":"%test.gif%:sStrEnd"%'
+			$fileSearchFor = $searchFor;
+			$likeWrapper = array( 'before' => $before, 'after' => $after );
+		}
+						
+		return new DsCondition(
+			array(
+				new DsOperand( dsotCONDITION, DataCondition::_And( array( 
+					$startCondition,				
+					DataCondition::FieldIs( $this->field, dsopCONTAIN, $fileSearchFor, $caseInsensitive, 0, $likeWrapper )	
+				))),
+				new DsOperand( dsotCONDITION, DataCondition::_And( array( 
+					DataCondition::_Not( $startCondition ), 
+					DataCondition::FieldIs( $this->field, $operation, $searchFor, $caseInsensitive )
+				)))
+			),
+			dsopOR,
+			$caseInsensitive
+		);		
+	}	
+	/**
+	 * return parsed  file info in unified format
+	 * @return Array of arrays [
+	 * 		"usrName" => user-provided filename
+	 * 		"name" => file path if saved in filesystem
+	 * 		"type" => (optional) file type in HTTP-ready format.
+	 * 		"size" => (optional)size in bytes
+	 * 		"thumbnail" => (optional)thumbnail file path
+	 * 		"thumbnail_size" => (optional)thumbnail size
+	 * 		"thumbnail_type" => (optional)thumbnail file type in HTTP-ready format
+	 * ]
+	 */
+	protected function getFileData( $value ) {
+		return RunnerFileHandler::getFileArray( $value, $this->field, $this->pageObject->pSet );
+	}
+
+
+
+}
+?>

classes/controls/FileFieldSingle.php

@@ -0,0 +1,277 @@
+<?php
+require_once getabspath('classes/filehandler.php');
+
+class FileFieldSingle extends EditControl
+{
+	function __construct($field, $pageObject, $id, $connection)
+	{
+		parent::__construct($field, $pageObject, $id, $connection);
+		$this->format = EDIT_FORMAT_FILE;
+
+	}
+
+
+	/**
+	 * addJSFiles
+	 * Add control JS files to page object
+	 */
+	function addJSFiles()
+	{
+	}
+
+	/**
+	 * addCSSFiles
+	 * Add control CSS files to page object
+	 */
+	function addCSSFiles()
+	{
+	}
+
+	function buildControl($value, $mode, $fieldNum, $validate, $additionalCtrlParams, $data)
+	{
+		parent::buildControl($value, $mode, $fieldNum, $validate, $additionalCtrlParams, $data);
+
+		if( $mode == MODE_SEARCH  )
+		{
+			$this->format = "";
+			
+			$classString = "";
+			if( $this->pageObject->isBootstrap() )
+				$classString = " class=\"form-control\"";
+			
+			echo '<input id="'.$this->cfield.'" '.$classString.$this->inputStyle.' type="text" '
+				.('autocomplete="off" ')
+				.( $this->is508 == true ? 'alt="'.$this->strLabel.'" ' : '' )
+				.'name="'.$this->cfield.'" '.$this->pageObject->pSetEdit->getEditParams($this->field).' value="'
+				.runner_htmlspecialchars($value).'">';
+
+			$this->buildControlEnd($validate, $mode);
+			return;
+		}
+
+		$keyParams = array();
+		foreach( $this->pageObject->pSetEdit->getTableKeys() as $i => $kf ) {
+			$keyParams[] = "key".($i + 1). "=".runner_htmlspecialchars(rawurlencode( @$data[ $kf ] ));
+		}
+		$keyLink = "&" . implode("&", $keyParams);
+
+
+		$disp = "";
+		$strfilename = "";
+
+		$filename_size = $this->pageObject->pSetEdit->isUseTimestamp( $this->field )
+			? 50
+			: 30;
+
+		if( $mode == MODE_EDIT || $mode == MODE_INLINE_EDIT )
+		{
+			// show current file
+			$filesArray = $this->getFileData( $value );
+			$fileName = "";
+			if( $filesArray ) {
+				$fileData = $filesArray[0];
+				$fileName = $fileData["usrName"];
+
+				$viewFormat = $this->pageObject->pSetEdit->getViewFormat( $this->field );
+				if( $viewFormat == FORMAT_FILE || $viewFormat == FORMAT_FILE_IMAGE )
+					$disp = $this->getFileOrImageMarkup( $fileData, $keyLink ) . "<br />";
+			}
+
+
+			//	filename edit
+			$strfilename = '<input type=hidden name="filenameHidden_'.$this->cfieldname.'" value="'.runner_htmlspecialchars( $fileName ).'"><br>'
+				."Filename"
+				.'&nbsp;&nbsp;<input type="text" style="background-color:gainsboro" disabled id="filename_'.$this->cfieldname
+				.'" name="filename_'.$this->cfieldname.'" size="'.$filename_size.'" maxlength="100" value="'.runner_htmlspecialchars( $fileName ).'">';
+
+			$strtype = '<br><input id="'.$this->ctype.'_keep" type="Radio" name="'.$this->ctype
+					.'" value="upload0" checked class="rnr-uploadtype">'."Keep";
+
+			if( (strlen($value) || $mode == MODE_INLINE_EDIT) && !$this->pageObject->pSetEdit->isRequired($this->field) )
+			{
+				$strtype .= '<input id="'.$this->ctype.'_delete" type="Radio" name="'.$this->ctype
+					.'" value="upload1" class="rnr-uploadtype">'."Delete";
+			}
+			$strtype .= '<input id="'.$this->ctype.'_update" type="Radio" name="'.$this->ctype
+				.'" value="upload2" class="rnr-uploadtype">'."Update";
+		}
+		else
+		{
+			//	if Adding record
+			$strtype = '<input id="'.$this->ctype.'" type="hidden" name="'.$this->ctype.'" value="upload2">';
+
+			$strfilename = '<br>'."Filename"
+				.'&nbsp;&nbsp;<input type="text" id="filename_'.$this->cfieldname.'" name="filename_'.$this->cfieldname.'" size="'
+				.$filename_size.'" maxlength="100">';
+		}
+
+		echo $disp.$strtype;
+
+		if( $mode == MODE_EDIT || $mode == MODE_INLINE_EDIT )
+			echo '<br>';
+
+		echo '<input type="File" id="'.$this->cfield.'" '
+			.'accept="'.$this->pageObject->pSetEdit->getAcceptFileTypesHtml($this->field).'" '
+			.( ($mode == MODE_INLINE_EDIT || $mode == MODE_INLINE_ADD) && $this->is508 == true ? 'alt="'.$this->strLabel.'" ' : '')
+			.' name="'.$this->cfield.'" >'.$strfilename;
+
+		echo '<input type="Hidden" id="notempty_'.$this->cfieldname.'" value="'.(strlen($value)? 1 : 0).'">';
+
+		$this->buildControlEnd($validate, $mode);
+	}
+
+	/**
+	 * Get the image or file link markup
+	 * @param String value
+	 * @param String fileName
+	 * @param Boolean newUploaderWasUsed
+	 * @param Array fileData
+	 * @return String
+	 */
+	function getFileOrImageMarkup( $fileData, $keylink )
+	{
+		$fileName = $fileData["usrName"];
+		$urls = $this->getFileUrls( $fileData, $keylink );
+		if( !$urls["url"] ) {
+			return "";
+		}
+
+
+		if( !CheckImageExtension( $fileName ) )
+		{
+			return "<a target=\"_blank\" href=\"". runner_htmlspecialchars( $urls["url"] )."\">"
+				.runner_htmlspecialchars( $fileName )."</a>";
+		}
+
+		if( !$urls["thumbnail"] ) {
+			$urls["thumbnail"] = $urls["url"];
+		}
+
+		$altAttr = " alt=\"".runner_htmlspecialchars( $fileName )."\"" ;
+		return "<a target=\"_blank\" href=\"". runner_htmlspecialchars( $urls["url"] ) . "\" >"
+				."<img class=\"r-editfile-img\" ". $altAttr ." border=0 src=\"". runner_htmlspecialchars( $urls["thumbnail"] ) . "\"></a>";
+
+	}
+
+	/**
+	 *
+	 */
+	function readWebValue(&$avalues, &$blobfields, $legacy1, $legacy2, &$filename_values)
+	{
+		$this->getPostValueAndType();
+
+		if( FieldSubmitted( $this->goodFieldName."_".$this->id ) )
+		{
+			$fileNameForPrepareFunc = securityCheckFileName( postvalue("filename_".$this->goodFieldName."_".$this->id) );
+			if( $this->pageObject->pageType != PAGE_EDIT )
+			{
+				$this->webValue = prepare_upload($this->field, "upload2", $fileNameForPrepareFunc, $fileNameForPrepareFunc, ""
+					, $this->id, $this->pageObject);
+			}
+			else
+			{
+				if(substr($this->webType, 0, 4) == "file")
+				{
+					$prepearedFile = prepare_file($this->webValue, $this->field, $this->webType, $fileNameForPrepareFunc, $this->id);
+					if($prepearedFile !== false)
+					{
+						$this->webValue = $prepearedFile["value"];
+						$filename = $prepearedFile["filename"];
+					}
+					else
+						$this->webValue = false;
+				}
+				else if(substr($this->webType, 0, 6) == "upload")
+				{
+					if($fileNameForPrepareFunc)
+						$this->webValue = $fileNameForPrepareFunc;
+					if($this->webType == "upload1")
+					{
+						// file deletion, read filename from the database
+						$oldValues = $this->pageObject->getOldRecordData();
+						$fileNameForPrepareFunc = $oldValues[$this->field];
+					}
+					$this->webValue = prepare_upload($this->field, $this->webType, $fileNameForPrepareFunc, $this->webValue, "", $this->id, $this->pageObject);
+				}
+			}
+		}
+		else
+			$this->webValue = false;
+
+		if(!($this->webValue === false))
+		{
+			if( $this->webValue && $this->pageObject->pSetEdit->getCreateThumbnail($this->field) )
+			{
+				$contents = GetUploadedFileContents("value_".$this->goodFieldName."_".$this->id);
+				$ext = CheckImageExtension( GetUploadedFileName("value_".$this->goodFieldName."_".$this->id) );
+				if( $ext ) {
+					$thumb = CreateThumbnail($contents, $this->pageObject->pSetEdit->getThumbnailSize($this->field), $ext);
+					$this->pageObject->filesToSave[] = new SaveFile($thumb, $this->pageObject->pSetEdit->GetStrThumbnail($this->field)
+						.$this->webValue, $this->pageObject->pSetEdit->getUploadFolder($this->field), $this->pageObject->pSetEdit->isAbsolute($this->field));
+				}
+			}
+
+			$avalues[ $this->field ] = $this->webValue;
+		}
+	}
+
+	function makeWidthStyle($widthPx)
+	{
+		if(0 == $widthPx)
+			return "";
+		return "min-width: ".$widthPx."px";
+	}
+
+	protected function getFileData( $value ) {
+		return RunnerFileHandler::getFileArray( $value, $this->field, $this->pageObject->pSet );
+	}
+
+	/**
+	 * @return Array
+	 * 	"url" => string
+	 * 	"thumbnail" => string 
+	 * Each element can be empty if no corresponding file exists
+	 * 
+	 */
+	protected function getFileUrls( $fileData, $keylink ) {
+		$pSet = $this->pageObject->pSet;
+		$fs = getStorageProvider( $pSet, $this->field );
+		$fsInfo = $fs->getFileInfo( $fileData["name"] );
+		if( !$fsInfo ) {
+			return array();
+		}
+		$lastModified = time();
+		if( $fsInfo["lastModified"]) {
+			$lastModified = $fsInfo["lastModified"];
+		}
+
+		$params = array();
+		$params["file"] = $fileData["usrName"];
+		$params["table"] = $pSet->table();
+		$params["field"] = $this->field;
+		$params["hash"] = fileAttrHash( $keylink, $file["size"], $lastModified );
+		
+		foreach( $additionalParams as $k => $val ) {
+			$params[ $k ] = $val;
+		}
+		$ret = array();
+		$ret["url"] = GetTableLink("file", "", prepareUrlQuery( $params ).$keylink );
+
+
+		if( $fileData["thumbnail"] && $fs->getFileInfo( $fileData["thumbnail"] ) ) {
+			$params["thumbnail"] = 1;
+			$ret["thumbnail"] = GetTableLink("file", "", prepareUrlQuery( $params ).$keylink );
+		}
+
+		if( !$ret["thumbnail"] && $fsInfo["size"] > 512000 ) {
+			$ret["thumbnail"] = "images/icons/jpg.png";
+		}
+
+		
+		return $ret;
+		
+
+	}
+
+}
+?>