src/detail.php

   1 <?php
   2 /**
   3  * @file detail.php
   4  * Page to edit an error report
   5  * @author Roland Hieber (roland.hieber@wilhelm-gym.net)
   6  * @date 22.10.2007
   7  *
   8  * Copyright © 2007 Roland Hieber
   9  *
  10  * Permission is hereby granted, free of charge, to any person obtaining
  11  * copy of this software and associated documentation files (the "Software"),
  12  * to deal in the Software without restriction, including without limitation
  13  * the rights to use, copy, modify, merge, publish, distribute, sublicense,
  14  * and/or sell copies of the Software, and to permit persons to whom the
  15  * Software is furnished to do so, subject to the following conditions:
  16  *
  17  * The above copyright notice and this permission notice shall be included in
  18  * all copies or substantial portions of the Software.
  19  *
  20  * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
  21  * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
  22  * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
  23  * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
  24  * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
  25  * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
  26  * THE SOFTWARE.
  27  */
  28
  29 require_once("mod_error-reporter/init.inc");
  30 require_once("sec/secure.inc");
  31 require_once("js.inc");
  32
  33 PageBlue(_c("error-reporter:Change an error report"), "mod_error-reporter");
  34
  35 if(!$cfgErrors->userHasAccess()) {
  36   printf("<p class='err'>%s</p>\n", ER_ERROR_ACCESS_DENIED);
  37   _PageBlue();
  38   die();
  39 }
  40
  41 $getAction = @$_GET["action"];
  42 $getUid = @intval($_GET["uid"]);
  43 $postSubmit = @$_POST["submit"];
  44
  45 isset($getUid) or       die();
  46
  47 // Check if the specified report exists
  48 if(!is_object($doc->getErrorReportByID($getUid))) {
  49   echo sprintf("<p class='err'>%s</p>",
  50     _c("error-reporter:The specified error report does not exist!"));
  51   _PageBlue();
  52   die();
  53 }
  54
  55 // Only admins or owners can view this page
  56 if(!($cfgErrors->userIsAdmin() or $doc->userIsOwner($getUid))) {
  57   echo sprintf("<p class='err'>%s</div>", _c("error-reporter:You are not allowed to edit this report."));
  58   _PageBlue();
  59   die();
  60 }
  61
  62 // Load old dataset
  63 $er = $doc->getErrorReportByID($getUid);
  64 $strOldComment = $er->getComment();
  65
  66 // Probably we have to update an error report
  67 if($getAction == "update" and $postSubmit == _c("Change"))
  68 {
  69   if($cfgErrors->userIsAdmin()) {
  70     $postComment = stripslashes(@$_POST["comment"]);
  71     $postCommentOld = stripslashes(@$_POST["comment_old"]);
  72   }
  73
  74         // change the fields of the old dataset
  75         $er->setMachine(stripslashes(@$_POST["machine"]));
  76         $er->setText(stripslashes(@$_POST["text"]));
  77         $er->setVisibility(isset($_POST["hidden"]) ? true : false);
  78
  79         // Do we have to change the comment and his owner?
  80   if($cfgErrors->userIsAdmin()) {
  81     if(@$_POST["comment_old"] != @$_POST["comment"]) {
  82       $er->setComment(stripslashes(@$_POST["comment"]), $_SESSION["act"]);
  83     }
  84   }
  85
  86   // write into database, reload parent and close window
  87         if($doc->writeErrorReport($er) != -1) {
  88     js_try("opener.location.href = 'index.php';");
  89     js_close(500);
  90         } else {
  91           printLastError();
  92           _PageBlue();
  93           die();
  94         }
  95 }
  96
  97 // output form
  98 $hidctrl = "input type='hidden'";
  99 Title(_c("error-reporter:Change an error report"));
 100 echo sprintf("<form action='?action=update&amp;uid=%d' method='post'>\n", $getUid);
 101 echo "<table>\n";
 102 echo sprintf("<tr><td>%s</td><td>%s</td></tr>\n", _c("error-reporter:Reported by:"),
 103   q(erGetRealUserName($er->getOwner())));
 104 echo sprintf("<tr><td>%s</td><td>%s</td></tr>\n", _c("error-reporter:Date:"), SmartDate($er->getDate()));
 105 echo sprintf("<tr><td>%s</td><td><{$GLOBALS["stdedt"]} name='machine' value='%s' /></td></tr>\n",
 106   _c("error-reporter:Affected machine:"), q($er->getMachine()));
 107 echo sprintf("<tr><td>%s</td><td><textarea name='text' cols='40' rows='7'>%s".
 108   "</textarea></td></tr>\n", _c("error-reporter:Text:"), $er->getText());
 109 echo sprintf("<tr><td><label for='hidden'>%s</label></td><td><input type='checkbox' id='hidden' ".
 110   "name='hidden' value='true'%s /></td></tr>\n", _c("error-reporter:Hidden:"),
 111   $er->isHidden() ? " checked='checked'" : "");
 112 if($cfgErrors->userIsAdmin()) {
 113   echo sprintf("<tr><td>%s</td><td><textarea name='comment' cols='40' rows='3'>%s</textarea>",
 114     _c("error-reporter:Comment:"), $er->getComment());
 115   if($er->getComment() != "") {
 116     echo sprintf("<input type='hidden' name='comment_old' value='%s' /></td></tr>\n", $strOldComment);
 117     echo sprintf("<tr><td>%s</td><td>%s</td></tr>\n", _c("error-reporter:Comment written by:"),
 118       erGetRealUserName($er->getCommentOwner()));
 119   }
 120 }
 121 echo sprintf("<tr><td /><td><{$GLOBALS["smlbtn"]} value='%s' /></td></tr>\n", _("Change"));
 122 echo "</table></form><p />\n";
 123 _PageBlue();
 124 ?>