fixed translation: if it is not granted at all, the admin privilege does _not_ apply...
[iserv-mod-error-reporter.git] / src / detail.php
1 <?php
2 /**
3 * @file detail.php
4 * Page to edit an error report
5 * @author Roland Hieber (roland.hieber@wilhelm-gym.net)
6 * @date 22.10.2007
7 *
8 * Copyright © 2007 Roland Hieber
9 *
10 * Permission is hereby granted, free of charge, to any person obtaining
11 * copy of this software and associated documentation files (the "Software"),
12 * to deal in the Software without restriction, including without limitation
13 * the rights to use, copy, modify, merge, publish, distribute, sublicense,
14 * and/or sell copies of the Software, and to permit persons to whom the
15 * Software is furnished to do so, subject to the following conditions:
16 *
17 * The above copyright notice and this permission notice shall be included in
18 * all copies or substantial portions of the Software.
19 *
20 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
21 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
22 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
23 * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
24 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
25 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
26 * THE SOFTWARE.
27 */
28
29 require_once("mod_error-reporter/init.inc");
30 require_once("sec/secure.inc");
31 require_once("js.inc");
32
33 PageBlue(_c("error-reporter:Change an error report"), "mod_error-reporter");
34
35 if(!$cfgErrors->userHasAccess()) {
36 printf("<p class='err'>%s</p>\n", ER_ERROR_ACCESS_DENIED);
37 _PageBlue();
38 die();
39 }
40
41 $getAction = @$_GET["action"];
42 $getUid = @intval($_GET["uid"]);
43 $postSubmit = @$_POST["submit"];
44
45 isset($getUid) or die();
46
47 // Check if the specified report exists
48 if(!is_object($doc->getErrorReportByID($getUid))) {
49 echo sprintf("<p class='err'>%s</p>",
50 _c("error-reporter:The specified error report does not exist!"));
51 _PageBlue();
52 die();
53 }
54
55 // Only admins or owners can view this page
56 if(!($cfgErrors->userIsAdmin() or $doc->userIsOwner($getUid))) {
57 echo sprintf("<p class='err'>%s</div>", _c("error-reporter:You are not allowed to edit this report."));
58 _PageBlue();
59 die();
60 }
61
62 // Load old dataset
63 $er = $doc->getErrorReportByID($getUid);
64 $strOldComment = $er->getComment();
65
66 // Probably we have to update an error report
67 if($getAction == "update" and $postSubmit == _c("Change"))
68 {
69 if($cfgErrors->userIsAdmin()) {
70 $postComment = stripslashes(@$_POST["comment"]);
71 $postCommentOld = stripslashes(@$_POST["comment_old"]);
72 }
73
74 // change the fields of the old dataset
75 $er->setMachine(stripslashes(@$_POST["machine"]));
76 $er->setText(stripslashes(@$_POST["text"]));
77 $er->setVisibility(isset($_POST["hidden"]) ? true : false);
78
79 // Do we have to change the comment and his owner?
80 if($cfgErrors->userIsAdmin()) {
81 if(@$_POST["comment_old"] != @$_POST["comment"]) {
82 $er->setComment(stripslashes(@$_POST["comment"]), $_SESSION["act"]);
83 }
84 }
85
86 // write into database, reload parent and close window
87 if($doc->writeErrorReport($er) != -1) {
88 js_try("opener.location.href = 'index.php';");
89 js_close(500);
90 } else {
91 printLastError();
92 _PageBlue();
93 die();
94 }
95 }
96
97 // output form
98 $hidctrl = "input type='hidden'";
99 Title(_c("error-reporter:Change an error report"));
100 echo sprintf("<form action='?action=update&amp;uid=%d' method='post'>\n", $getUid);
101 echo "<table>\n";
102 echo sprintf("<tr><td>%s</td><td>%s</td></tr>\n", _c("error-reporter:Reported by:"),
103 q(erGetRealUserName($er->getOwner())));
104 echo sprintf("<tr><td>%s</td><td>%s</td></tr>\n", _c("error-reporter:Date:"), SmartDate($er->getDate()));
105 echo sprintf("<tr><td>%s</td><td><{$GLOBALS["stdedt"]} name='machine' value='%s' /></td></tr>\n",
106 _c("error-reporter:Affected machine:"), q($er->getMachine()));
107 echo sprintf("<tr><td>%s</td><td><textarea name='text' cols='40' rows='7'>%s".
108 "</textarea></td></tr>\n", _c("error-reporter:Text:"), $er->getText());
109 echo sprintf("<tr><td><label for='hidden'>%s</label></td><td><input type='checkbox' id='hidden' ".
110 "name='hidden' value='true'%s /></td></tr>\n", _c("error-reporter:Hidden:"),
111 $er->isHidden() ? " checked='checked'" : "");
112 if($cfgErrors->userIsAdmin()) {
113 echo sprintf("<tr><td>%s</td><td><textarea name='comment' cols='40' rows='3'>%s</textarea>",
114 _c("error-reporter:Comment:"), $er->getComment());
115 if($er->getComment() != "") {
116 echo sprintf("<input type='hidden' name='comment_old' value='%s' /></td></tr>\n", $strOldComment);
117 echo sprintf("<tr><td>%s</td><td>%s</td></tr>\n", _c("error-reporter:Comment written by:"),
118 erGetRealUserName($er->getCommentOwner()));
119 }
120 }
121 echo sprintf("<tr><td /><td><{$GLOBALS["smlbtn"]} value='%s' /></td></tr>\n", _("Change"));
122 echo "</table></form><p />\n";
123 _PageBlue();
124 ?>
This page took 0.052822 seconds and 5 git commands to generate.