/ - Diff - WB 2.08.x - Tracking

     =============================== FEATURES FREEZE ================================
     ----------------------------------- Fixes 2.8.2 --------------------------------
 Aug-2011 Build 1493 Dietmar Woellbrink (Luisehahne)
     # Ticket #1106 FatalError in groups module
 Aug-2011 Build 1492 Dietmar Woellbrink (Luisehahne)
     # Ticket #1107 Deleting users not possible
       Change handling, first user will be set to inactive

     	$admin->print_header();
     	$admin->print_error($MESSAGE['GENERIC_SECURITY_ACCESS'],$js_back);
+    }
     // After check print the header
     $admin->print_header();
     // Check if group group_id is a valid number and doesnt equal 1
     if(!isset($_POST['group_id']) OR !is_numeric($_POST['group_id']) OR $_POST['group_id'] == 1) {
     	header("Location: index.php");
     	exit(0);
     } else {
     	$group_id = $_POST['group_id'];
     $group_id = intval($admin->checkIDKEY('group_id', 0, $_SERVER['REQUEST_METHOD']));
     if( ($group_id < 2 ) )
+    {
     	// if($admin_header) { $admin->print_header(); }
     	$admin->print_header();
     	$admin->print_error($MESSAGE['GENERIC_SECURITY_ACCESS'] );
+    }
     // Gather details entered
-...
     if($group_name == "") {
     	$admin->print_error($MESSAGE['GROUPS']['GROUP_NAME_BLANK'], $js_back);
+    }
     // After check print the header
     $admin->print_header();
     // Get system permissions
     require_once(ADMIN_PATH.'/groups/get_permissions.php');
     // Update the database
     $query = "UPDATE ".TABLE_PREFIX."groups SET name = '$group_name', system_permissions = '$system_permissions', module_permissions = '$module_permissions', template_permissions = '$template_permissions' WHERE group_id = '$group_id'";
     $query = "UPDATE `".TABLE_PREFIX."groups` SET `name` = '$group_name', `system_permissions` = '$system_permissions', `module_permissions` = '$module_permissions', `template_permissions` = '$template_permissions' WHERE `group_id` = '$group_id'";
     $database->query($query);
     if($database->is_error()) {

     // Set parameter 'action' as alternative to javascript mechanism
     $action = 'cancel';
     // Set parameter 'action' as alternative to javascript mechanism
     $action = (isset($_POST['action']) && ($_POST['action'] ='modify')   ? 'modify' : $action );
     $action = (isset($_POST['modify']) ? 'modify' : $action );
     $action = (isset($_POST['delete']) ? 'delete' : $action );
-...
     			$admin = new admin('Access', 'groups_modify' );
     			// Check if group group_id is a valid number and doesnt equal 1
     			$group_id = intval($admin->checkIDKEY('group_id', 0, $_SERVER['REQUEST_METHOD']));
                 if($group_id == 0){
     				$admin->print_error($MESSAGE['USERS_NO_GROUP'] );
+                }
     			if( ($group_id < 2 ) )
+    			{
     				// if($admin_header) { $admin->print_header(); }
-...
     			$template->set_var(	array(
     									'ACTION_URL' => ADMIN_URL.'/groups/save.php',
     									'SUBMIT_TITLE' => $TEXT['SAVE'],
     									'GROUP_ID' => $group['group_id'],
     									'GROUP_ID' => $admin->getIDKEY($group['group_id']),
     									'GROUP_NAME' => $group['name'],
     									'ADVANCED_ACTION' => 'groups.php',
     									'ADVANCED_LINK' => 'groups.php',
     									'FTAN' => $admin->getFTAN()
     								));
     			// Tell the browser whether or not to show advanced options
-...
     			// Parse template object
     			$template->parse('main', 'main_block', false);
     			$template->pparse('output', 'page');
     			break;
     			// Print admin footer
     			$admin->print_footer();			break;
     		case 'delete' :
     			// Create new admin object
     			$admin = new admin('Access', 'groups_delete');
     			$group_id = intval($admin->checkIDKEY('group_id', 0, $_SERVER['REQUEST_METHOD']));
                 if($group_id == 0){
     				$admin->print_error($MESSAGE['USERS_NO_GROUP'] );
+                }
     			// Check if user id is a valid number and doesnt equal 1
     			if( ($group_id < 2 ) )
+    			{
-...
     			// Print header
     			$admin->print_header();
     			// Delete the group
     			$database->query("DELETE FROM ".TABLE_PREFIX."groups WHERE group_id = '".$group_id."' LIMIT 1");
     			$database->query("DELETE FROM `".TABLE_PREFIX."groups` WHERE `group_id` = '".$group_id."' LIMIT 1");
     			if($database->is_error()) {
     				$admin->print_error($database->get_error());
     			} else {
     				// Delete users in the group
     				$database->query("DELETE FROM ".TABLE_PREFIX."users WHERE group_id = '".$group_id."'");
     				$database->query("DELETE FROM `".TABLE_PREFIX."users` WHERE `group_id` = '".$group_id."'");
     				if($database->is_error()) {
     					$admin->print_error($database->get_error());
     				} else {
     					$admin->print_success($MESSAGE['GROUPS']['DELETED']);
+    				}
+    			}
     			// Print admin footer
     			$admin->print_footer();
     			break;
     	default:
     			break;
     endswitch;
     // Print admin footer
     $admin->print_footer();

     $template->set_var('DISPLAY_EXTRA', 'display:none;');
     $template->set_var('ACTION_URL', ADMIN_URL.'/groups/add.php');
     $template->set_var('SUBMIT_TITLE', $TEXT['ADD']);
     $template->set_var('ADVANCED_ACTION', 'index.php');
     $template->set_var('ADVANCED_LINK', 'index.php');
     // Tell the browser whether or not to show advanced options
     if ( true == (isset( $_POST['advanced']) AND ( strpos( $_POST['advanced'], ">>") > 0 ) ) ) {

branches/2.8.x/wb/admin/interface/version.php
52	52
53	53	// check if defined to avoid errors during installation (redirect to admin panel fails if PHP error/warnings are enabled)
54	54	if(!defined('VERSION')) define('VERSION', '2.8.2');
55		if(!defined('REVISION')) define('REVISION', '1492');
	55	if(!defined('REVISION')) define('REVISION', '1493');

     </tr>
     <tr>
     	<td colspan="2"><input type="submit" name="submit" value="{SUBMIT_TITLE}" /></td>
     	<td colspan="2"><input type="submit" name="save" value="{SUBMIT_TITLE}" /></td>
         <td colspan="2" align="right"><input type="reset" name="reset" value="{TEXT_RESET}" /></td>
     </tr>
     </table>
-...
     <table summary="" cellpadding="5" cellspacing="0" border="0" width="100%">
     <tr>
     	<td align="center">
     	<form name="advanced" action="{ADVANCED_ACTION}" method="post">
     	<form name="advanced" action="{ADVANCED_LINK}" method="post">
     		<input type="hidden" name="advanced" value="{ADVANCED}" />
             <input type="hidden" name="group_id" value="{GROUP_ID}" />
             <input type="hidden" name="action" value="modify" />
     		{FTAN}

branches/2.8.x/wb/templates/wb_theme/templates/groups.htt
1	1	<!-- BEGIN main_block -->
2	2
3	3	<form name="groups" action="groups.php" method="post">
4		<input type="hidden" name="action" value="delete" />
5	4	{FTAN}
6	5	<table summary="" cellpadding="0" cellspacing="0" border="0" width="100%">
7	6	<tr>

     <!-- BEGIN main_block -->
     <form name="groups" action="groups.php" method="post">
       <input type="hidden" name="action" value="delete" />
      {FTAN}
      {FTAN}
       <table summary="" cellpadding="5" cellspacing="0" border="0" align="center" width="100%" style="margin-bottom:10px;">
     	<tr style="background:#f0f0f0;">
     		<td align="left"><h2>{HEADING_MODIFY_DELETE_GROUP}</h2></td>

     <tr style="text-align:center;width:100%">
         <td>&nbsp;</td>
     	<td style="text-align:right;">
     		<input type="submit" name="submit" value="{SUBMIT_TITLE}" />
     		<input type="submit" name="save" value="{SUBMIT_TITLE}" />
     	</td>
     	<td style="text-align:left;">
     		<input type="reset" name="reset" value="{TEXT_RESET}" />
-...
     </form>
     <form name="advanced" action="{ADVANCED_ACTION}" method="post">
     <form name="advanced" action="{ADVANCED_LINK}" method="post">
     <input type="hidden" name="group_id" value="{GROUP_ID}" />
     <input type="hidden" name="action" value="modify" />
     {FTAN}

Project

General

Profile

WB 2.08.x

Revision 1493

Added by Dietmar over 13 years ago