From 7a86a045dad88b73c0d91761297d300963937a2c Mon Sep 17 00:00:00 2001 From: Franck VILLAUME Date: Fri, 18 Mar 2011 17:27:42 +0000 Subject: [PATCH] fix update package in frs admin --- src/www/frs/admin/index.php | 74 ++++++++++++++++++------------------- 1 file changed, 37 insertions(+), 37 deletions(-) diff --git a/src/www/frs/admin/index.php b/src/www/frs/admin/index.php index 39cb6a887e..f40efc4f10 100644 --- a/src/www/frs/admin/index.php +++ b/src/www/frs/admin/index.php @@ -5,7 +5,7 @@ * * Copyright 1999-2001 (c) VA Linux Systems * Copyright 2002-2004 (c) GForge Team - * Copyright 2010 (c) Franck Villaume - Capgemini + * Copyright 2010-2011, Franck Villaume - Capgemini * Copyright (C) 2011 Alain Peyrat - Alcatel-Lucent * http://fusionforge.org/ * @@ -42,10 +42,10 @@ $project = group_get_object($group_id); if (!$project || !is_object($project)) { exit_no_group(); } elseif ($project->isError()) { - exit_error($project->getErrorMessage(),'frs'); + exit_error($project->getErrorMessage(), 'frs'); } -session_require_perm ('frs', $group_id, 'write') ; +session_require_perm('frs', $group_id, 'write'); /* Relatively simple form to edit/add packages of releases @@ -55,8 +55,9 @@ session_require_perm ('frs', $group_id, 'write') ; if (getStringFromRequest('submit')) { $func = getStringFromRequest('func'); $package_id = getIntFromRequest('package_id'); - $package_name = trim(getStringFromRequest('package_name')); - $is_public = getStringFromRequest('is_public'); + $package_name = htmlspecialchars(trim(getStringFromRequest('package_name'))); + $is_public = getIntFromRequest('is_public'); + $status_id = getIntFromRequest('status_id'); /* make updates to the database @@ -66,44 +67,43 @@ if (getStringFromRequest('submit')) { //create a new package $frsp = new FRSPackage($project); if (!$frsp || !is_object($frsp)) { - exit_error(_('Could Not Get FRS Package'),'frs'); + exit_error(_('Could Not Get FRS Package'), 'frs'); } elseif ($frsp->isError()) { - exit_error($frsp->getErrorMessage(),'frs'); + exit_error($frsp->getErrorMessage(), 'frs'); } if (!$frsp->create($package_name,$is_public)) { - exit_error($frsp->getErrorMessage(),'frs'); + exit_error($frsp->getErrorMessage(), 'frs'); } else { - $feedback .=_('Added Package'); + $feedback .= _('Added Package'); } } elseif ($func=='delete_package' && $package_id) { //delete a package - $frsp = new FRSPackage($project,$package_id); + $frsp = new FRSPackage($project, $package_id); if (!$frsp || !is_object($frsp)) { - exit_error(_('Could Not Get FRS Package'),'frs'); + exit_error(_('Could Not Get FRS Package'), 'frs'); } elseif ($frsp->isError()) { - exit_error($frsp->getErrorMessage(),'frs'); + exit_error($frsp->getErrorMessage(), 'frs'); } - + $sure = getIntFromRequest("sure"); $really_sure = getIntFromRequest("really_sure"); - if (!$frsp->delete($sure,$really_sure)) { - exit_error($frsp->getErrorMessage(),'frs'); + if (!$frsp->delete($sure, $really_sure)) { + exit_error($frsp->getErrorMessage(), 'frs'); } else { - $feedback .=_('Deleted'); + $feedback .= _('Deleted'); } - } else if ($func=='update_package' && $package_id && $package_name && $status_id) { - $frsp = new FRSPackage($project,$package_id); + } else if ($func=='update_package' && $package_id && $package_name) { + $frsp = new FRSPackage($project, $package_id); if (!$frsp || !is_object($frsp)) { - exit_error(_('Could Not Get FRS Package'),'frs'); + exit_error(_('Could Not Get FRS Package'), 'frs'); } elseif ($frsp->isError()) { - exit_error($frsp->getErrorMessage(),'frs'); + exit_error($frsp->getErrorMessage(), 'frs'); } - $status_id = $frsp->getStatus(); - if (!$frsp->update($package_name,$status_id)) { - exit_error($frsp->getErrorMessage(),'frs'); + if (!$frsp->update($package_name, $status_id)) { + exit_error($frsp->getErrorMessage(), 'frs'); } else { $feedback .= _('Updated Package'); } @@ -111,10 +111,10 @@ if (getStringFromRequest('submit')) { } -frs_admin_header(array('title'=>_('Release Edit/File Releases'),'group'=>$group_id)); +frs_admin_header(array('title'=>_('Release Edit/File Releases'), 'group'=>$group_id)); -$res=db_query_params ('SELECT status_id,package_id,name AS package_name - FROM frs_package WHERE group_id=$1', +$res=db_query_params('SELECT status_id,package_id,name AS package_name + FROM frs_package WHERE group_id=$1', array($group_id)); $rows=db_numrows($res); if ($res && $rows > 0) { @@ -150,12 +150,12 @@ if ($res && $rows > 0) { if (!$res || $rows < 1) { echo '
'._('You Have No Packages Defined').'
'; } else { - $title_arr=array(); - $title_arr[]=_('Releases'); - $title_arr[]=_('Package name'); - $title_arr[]=_('Status'); + $title_arr = array(); + $title_arr[] = _('Releases'); + $title_arr[] = _('Package name'); + $title_arr[] = _('Status'); - echo $GLOBALS['HTML']->listTableTop ($title_arr); + echo $GLOBALS['HTML']->listTableTop($title_arr); for ($i=0; $i<$rows; $i++) { echo ' @@ -165,11 +165,11 @@ if (!$res || $rows < 1) { boxGetAltRowStyle($i) .'> - ['._('Add Release').'] - - ['._('Edit Releases').'] @@ -177,11 +177,11 @@ if (!$res || $rows < 1) { '.frs_show_status_popup ('status_id', db_result($res,$i,'status_id')).' - - ['._('Delete').'] - + '; } -- 2.30.2