ISPConfig3 devel
blame | history | patch | commit | commitdiff | ignore whitespace
Falko Timme
2013-10-22 391e05cbee6ff84bce60b665be60b4e5f049ee7f 
 interface/lib/classes/tform.inc.php


@@ -251,6 +251,7 @@


                  unset($tmp_recordid);


                  


                        $querystring = str_replace("{AUTHSQL}",$this->getAuthSQL('r'),$querystring);


                  $querystring = preg_replace_callback('@{AUTHSQL::(.+?)}@', "self::table_auth_sql", $querystring);


                  


                        // Getting the records


                        $tmp_records = $app->db->queryAllRecords($querystring);


@@ -291,6 +292,10 @@


                return $values;




        }


		


      function table_auth_sql($matches){


         return $this->getAuthSQL('r', $matches[1]);


      }


      


      //* If the parameter 'valuelimit' is set


      function applyValueLimit($limit,$values) {


@@ -553,7 +558,8 @@


                                        break;




                                case 'PASSWORD':


                                        $new_record[$key] = '';


                                        //$new_record[$key] = '';


                              $new_record[$key] = htmlspecialchars($field['default']);


                                break;




                                case 'CHECKBOX':


@@ -887,6 +893,7 @@


                                }


                                        }


                                break;


            /*


            case 'ISV6PREFIX':


               $v6_prefix_ok = 0;


               $explode_field_value = explode(':',$field_value);


@@ -918,6 +925,7 @@


                  $this->errorMessage .= $errmsg."<br />\r\n"; 


               }


            break;


            */


                        case 'ISIPV4':


                        $vip=1;


                        if(preg_match("/^[0-9]{1,3}(\.)[0-9]{1,3}(\.)[0-9]{1,3}(\.)[0-9]{1,3}$/", $field_value)){


@@ -949,6 +957,7 @@


                              $field_value_array[] = $field_value;


                           }


                           foreach($field_value_array as $field_value) {


                              $field_value = trim($field_value);


                              if(function_exists('filter_var')) {


                                 if(!filter_var($field_value,FILTER_VALIDATE_IP)) {


                                    $errmsg = $validator['errmsg'];


@@ -1256,7 +1265,7 @@


      function getDataRecord($primary_id) {


         global $app;


         $escape = '`';


         $sql = "SELECT * FROM ".$escape.$this->formDef['db_table'].$escape." WHERE ".$this->formDef['db_table_idx']." = ".$primary_id;


         $sql = "SELECT * FROM ".$escape.$this->formDef['db_table'].$escape." WHERE ".$this->formDef['db_table_idx']." = ".$primary_id." AND ".$this->getAuthSQL('r',$this->formDef['db_table']);


            return $app->db->queryOneRecord($sql);


      }


      


@@ -1266,70 +1275,6 @@


            


            $app->db->datalogSave($this->formDef['db_table'], $action, $this->formDef['db_table_idx'], $primary_id, $record_old, $record_new);


            return true;


				


            /*


                // Add backticks for incomplete table names.


                if(stristr($this->formDef['db_table'],'.')) {


                        $escape = '';


                } else {


                        $escape = '`';


                }




                $this->diffrec = array();


				


            // Full diff records for ISPConfig, they have a different format then the simple diffrec


            $diffrec_full = array();




                if(is_array($record_old) && count($record_old) > 0) {


                        foreach($record_old as $key => $val) {


                                //if(isset($record_new[$key]) && $record_new[$key] != $val) {


                        if(!isset($record_new[$key]) || $record_new[$key] != $val) {


                                    // Record has changed


                           $diffrec_full['old'][$key] = $val;


                           $diffrec_full['new'][$key] = $record_new[$key];


                           $this->diffrec[$key] = array(   'new' => $record_new[$key],


                                                                     'old' => $val);


                                } else {


                           $diffrec_full['old'][$key] = $val;


                           $diffrec_full['new'][$key] = $val;


                        }


                        }


                } elseif(is_array($record_new)) {


                        foreach($record_new as $key => $val) {


                                if(isset($record_new[$key]) && $record_old[$key] != $val) {


                                    // Record has changed


                           $diffrec_full['new'][$key] = $val;


                           $diffrec_full['old'][$key] = $record_old[$key];


                           $this->diffrec[$key] = array(   'old' => @$record_old[$key],


                                                                     'new' => $val);


                                } else {


                           $diffrec_full['new'][$key] = $val;


                           $diffrec_full['old'][$key] = $val;


                        }


                        }


                }


				


            //$this->diffrec = $diffrec;


            // Insert the server_id, if the record has a server_id


            $server_id = (isset($record_old["server_id"]) && $record_old["server_id"] > 0)?$record_old["server_id"]:0;


            if(isset($record_new["server_id"])) $server_id = $record_new["server_id"];




                if(count($this->diffrec) > 0) {


                  $diffstr = addslashes(serialize($diffrec_full));


                        $username = $app->db->quote($_SESSION["s"]["user"]["username"]);


                        $dbidx = $this->formDef['db_table_idx'].":".$primary_id;


                        // $action = ($action == 'INSERT')?'i':'u';


						


                  if($action == 'INSERT') $action = 'i';


                  if($action == 'UPDATE') $action = 'u';


                  if($action == 'DELETE') $action = 'd';


                        $sql = "INSERT INTO sys_datalog (dbtable,dbidx,server_id,action,tstamp,user,data) VALUES ('".$this->formDef['db_table']."','$dbidx','$server_id','$action','".time()."','$username','$diffstr')";


                  $app->db->query($sql);


                }




                return true;


            */




        }




        function getAuthSQL($perm, $table = '') {