src/detail.php

   1 <?php
   2 /**
   3  * @file detail.php
   4  * Page to edit an error report
   5  * @author Roland Hieber (roland.hieber@wilhelm-gym.net)
   6  * @date 22.10.2007
   7  *
   8  * Copyright © 2007 Roland Hieber
   9  *
  10  * Permission is hereby granted, free of charge, to any person obtaining
  11  * copy of this software and associated documentation files (the "Software"),
  12  * to deal in the Software without restriction, including without limitation
  13  * the rights to use, copy, modify, merge, publish, distribute, sublicense,
  14  * and/or sell copies of the Software, and to permit persons to whom the
  15  * Software is furnished to do so, subject to the following conditions:
  16  *
  17  * The above copyright notice and this permission notice shall be included in
  18  * all copies or substantial portions of the Software.
  19  *
  20  * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
  21  * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
  22  * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
  23  * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
  24  * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
  25  * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
  26  * THE SOFTWARE.
  27  */
  28
  29 require_once("mod_error-reporter/init.inc");
  30 require_once("sec/secure.inc");
  31 require_once("js.inc");
  32
  33 PageBlue(_c("error-reporter:Change an error report"), "mod_error-reporter");
  34
  35 if(!$cfgErrors->userHasAccess()) {
  36   printf("<p class='err'>%s</p>\n", ER_ERROR_ACCESS_DENIED);
  37   _PageBlue();
  38   die();
  39 }
  40
  41 $getAction = @$_GET["action"];
  42 $getUid = @intval($_GET["uid"]);
  43 $postSubmit = @$_POST["submit"];
  44
  45 isset($getUid) or  die();
  46
  47 // Check if the specified report exists
  48 if(!is_object($doc->getErrorReportByID($getUid))) {
  49   echo sprintf("<p class='err'>%s</p>",
  50     _c("error-reporter:The specified error report does not exist!"));
  51   _PageBlue();
  52   die();
  53 }
  54
  55 // Only admins or owners can view this page
  56 if(!($cfgErrors->userIsAdmin() or $doc->userIsOwner($getUid))) {
  57   echo sprintf("<p class='err'>%s</div>", _c("error-reporter:You are not ".
  58     "allowed to edit this report."));
  59   _PageBlue();
  60   die();
  61 }
  62
  63 // Load old dataset
  64 $er = $doc->getErrorReportByID($getUid);
  65 $strOldComment = $er->getComment();
  66
  67 // Probably we have to update an error report
  68 if($getAction == "update" and $postSubmit == _c("Change"))
  69 {
  70   if($cfgErrors->userIsAdmin()) {
  71     $postComment = stripslashes(@$_POST["comment"]);
  72     $postCommentOld = stripslashes(@$_POST["comment_old"]);
  73   }
  74
  75   // change the fields of the old dataset
  76   $er->setMachine(stripslashes(@$_POST["machine"]));
  77   $er->setText(stripslashes(@$_POST["text"]));
  78   $er->setVisibility(isset($_POST["hidden"]) ? true : false);
  79
  80   // Do we have to change the comment and his owner?
  81   if($cfgErrors->userIsAdmin()) {
  82     if(@$_POST["comment_old"] != @$_POST["comment"]) {
  83       $er->setComment(stripslashes(@$_POST["comment"]), $_SESSION["act"]);
  84     }
  85   }
  86
  87   // write into database, reload parent and close window
  88   if($doc->writeErrorReport($er) != -1) {
  89     js_try("opener.location.href = 'index.php';");
  90     js_close(500);
  91   } else {
  92     printLastError();
  93     _PageBlue();
  94     die();
  95   }
  96 }
  97
  98 // output form
  99 $hidctrl = "input type='hidden'";
 100 Title(_c("error-reporter:Change an error report"));
 101 echo sprintf("<form action='?action=update&amp;uid=%d' method='post'>\n",
 102   $getUid);
 103 echo "<table>\n";
 104 echo sprintf("<tr><td>%s</td><td>%s</td></tr>\n",
 105   _c("error-reporter:Reported by:"), q(erGetRealUserName($er->getOwner())));
 106 echo sprintf("<tr><td>%s</td><td>%s</td></tr>\n", _c("error-reporter:Date:"),
 107   SmartDate($er->getDate()));
 108 echo sprintf("<tr><td>%s</td><td><{$GLOBALS["stdedt"]} name='machine' ".
 109   "value='%s' /></td></tr>\n", _c("error-reporter:Affected machine:"),
 110   q($er->getMachine()));
 111 echo sprintf("<tr><td>%s</td><td><textarea name='text' cols='40' rows='7'>%s".
 112   "</textarea></td></tr>\n", _c("error-reporter:Text:"), $er->getText());
 113 echo sprintf("<tr><td><label for='hidden'>%s</label></td><td>".
 114   "<input type='checkbox' id='hidden' name='hidden' value='true'%s /></td>".
 115   "</tr>\n", _c("error-reporter:Hidden:"), $er->isHidden() ?
 116   " checked='checked'" : "");
 117 if($cfgErrors->userIsAdmin()) {
 118   echo sprintf("<tr><td>%s</td><td><textarea name='comment' cols='40' ".
 119   "rows='3'>%s</textarea>", _c("error-reporter:Comment:"), $er->getComment());
 120   if($er->getComment() != "") {
 121     echo sprintf("<input type='hidden' name='comment_old' value='%s' /></td>".
 122       "</tr>\n", $strOldComment);
 123     echo sprintf("<tr><td>%s</td><td>%s</td></tr>\n", _c("error-reporter:".
 124       "Comment written by:"), erGetRealUserName($er->getCommentOwner()));
 125   }
 126 }
 127 echo sprintf("<tr><td /><td><{$GLOBALS["smlbtn"]} value='%s' /></td></tr>\n",
 128   _("Change"));
 129 echo "</table></form><p />\n";
 130 _PageBlue();
 131 ?>