ISPConfig3 devel
parent: df0089f3 | patch | commit | ignore whitespace
mcramer
2009-06-08 16230fd2f438716f57bc085a1c829fe7a2000885 
Fixed http://bugtracker.ispconfig.org/index.php?do=details&task_id=753
1 files modified
8 ■■■■ changed files
interface/lib/classes/tform_actions.inc.php 8 ●●●● patch | view | raw | blame | history 
 interface/lib/classes/tform_actions.inc.php


@@ -359,7 +359,7 @@


            if($app->tform->formDef['auth'] == 'no') {


                $sql = "SELECT * FROM ".$app->tform->formDef['db_table']." WHERE ".$app->tform->formDef['db_table_idx']." = ".$this->id;


            } else {


                $sql = "SELECT * FROM ".$app->tform->formDef['db_table']." WHERE ".$app->tform->formDef['db_table_idx']." = ".$this->id." AND ".$app->tform->getAuthSQL('u');


                $sql = "SELECT * FROM ".$app->tform->formDef['db_table']." WHERE ".$app->tform->formDef['db_table_idx']." = ".$this->id." AND ".$app->tform->getAuthSQL('r');


            }


            if(!$record = $app->db->queryOneRecord($sql)) $app->error($app->lng('error_no_view_permission'));


            


@@ -400,7 +400,7 @@


                if($app->tform->formDef['auth'] == 'no') {


                    $sql = "SELECT * FROM ".$app->tform->formDef['db_table']." WHERE ".$app->tform->formDef['db_table_idx']." = ".$this->id;


                } else {


                    $sql = "SELECT * FROM ".$app->tform->formDef['db_table']." WHERE ".$app->tform->formDef['db_table_idx']." = ".$this->id." AND ".$app->tform->getAuthSQL('u');


                    $sql = "SELECT * FROM ".$app->tform->formDef['db_table']." WHERE ".$app->tform->formDef['db_table_idx']." = ".$this->id." AND ".$app->tform->getAuthSQL('r');


                }


                if(!$record = $app->db->queryOneRecord($sql)) $app->error($app->lng('error_no_view_permission'));


            


@@ -436,7 +436,7 @@


            if($app->tform->formDef['auth'] == 'no') {


                $sql = "SELECT * FROM ".$app->tform->formDef['db_table']." WHERE ".$app->tform->formDef['db_table_idx']." = ".$this->id;


            } else {


                $sql = "SELECT * FROM ".$app->tform->formDef['db_table']." WHERE ".$app->tform->formDef['db_table_idx']." = ".$this->id." AND ".$app->tform->getAuthSQL('u');


                $sql = "SELECT * FROM ".$app->tform->formDef['db_table']." WHERE ".$app->tform->formDef['db_table_idx']." = ".$this->id." AND ".$app->tform->getAuthSQL('r');


            }


            if(!$record = $app->db->queryOneRecord($sql)) $app->error($app->lng('error_no_view_permission'));


            


@@ -527,7 +527,7 @@


                // bestehenden Datensatz anzeigen


                if($app->tform->errorMessage == '') {


                        if($app->tform->formDef['auth'] == 'yes' && $_SESSION["s"]["user"]["typ"] != 'admin') {


                            $sql = "SELECT * FROM ".$app->tform->formDef['db_table']." WHERE ".$app->tform->formDef['db_table_idx']." = ".$this->id." AND ".$app->tform->getAuthSQL('u');


                            $sql = "SELECT * FROM ".$app->tform->formDef['db_table']." WHERE ".$app->tform->formDef['db_table_idx']." = ".$this->id." AND ".$app->tform->getAuthSQL('r');


                        } else {


                            $sql = "SELECT * FROM ".$app->tform->formDef['db_table']." WHERE ".$app->tform->formDef['db_table_idx']." = ".$this->id;


                        }