isLoggedIn() || (!$_SESSION['current']->hasPriv("admin") && !$_SESSION['current']->isMaintainer($ob->appId,$ob->versionId)) ) { errorpage("Insufficient Privileges!"); exit; } if(isset($_REQUEST['sub'])) { $sOldNoteTitle = $ob->noteTitle; $sOldNoteDesc = $ob->noteDesc; $sFullAppName = "Application: ".lookupAppName($ob->appId)." Version: ".lookupVersionName($ob->appId, $ob->versionId); /* Start of e-mail */ $sMsg = APPDB_ROOT."appview.php?appId={$ob->appId}&versionId={$ob->versionId}\r\n"; $sMsg .= "\r\n"; $sEmail = get_notify_email_address_list($ob->appId, $ob->versionId); if ($_REQUEST['sub'] == 'Delete') { // delete Note query_appdb("DELETE from `appNotes` where noteId = {$_REQUEST['noteId']}"); if($sEmail) { $sMsg .= $_SESSION['current']->realname." deleted note from ".$sFullAppName."\r\n"; $sMsg .= "\r\n"; $sMsg .= "title: ".$sOldNoteTitle."\r\n"; $sMsg .= "\r\n"; $sMsg .= $sOldNoteDesc."\r\n"; $sMsg .= "\r\n"; mail_appdb($sEmail, $sFullAppName ,$sMsg); } // success addmsg("Note Deleted.", "green"); } else if ($_REQUEST['sub'] == 'Update') { $sUpdate = compile_update_string(array( 'noteTitle' => $_REQUEST['noteTitle'], 'noteDesc' => $_REQUEST['noteDesc'])); query_appdb("UPDATE appNotes SET $sUpdate WHERE noteId = {$_REQUEST['noteId']}"); if($sEmail) { $sMsg .= $_SESSION['current']->realname." changed note for ".$sFullAppName."\r\n"; $sMsg .= "From --------------------------\r\n"; $sMsg .= "title: ".$sOldNoteTitle."\r\n"; $sMsg .= "\r\n"; $sMsg .= $sOldNoteDesc."\r\n"; $sMsg .= "To --------------------------\r\n"; $sMsg .= "title: ".$_REQUEST['noteTitle']."\r\n"; $sMsg .= "\r\n"; $sMsg .= $_REQUEST['noteDesc']."\r\n"; $sMsg .= "\r\n"; mail_appdb($sEmail, $sFullAppName ,$sMsg); } addmsg("Note Updated", "green"); } redirect(apidb_fullurl("appview.php?appId={$ob->appId}&versionId={$ob->versionId}")); } else { if (!isset($_REQUEST['preview'])) { $_REQUEST['noteTitle'] = $ob->noteTitle; $_REQUEST['noteDesc'] = $ob->noteDesc; $_REQUEST['appId'] = $ob->appId; $_REQUEST['versionId'] = $ob->versionId; } // show form apidb_header("Edit Application Note"); echo "

\n"; echo html_frame_start("Edit Application Note {$_REQUEST['noteId']}", "90%","",0); echo html_table_begin("width='100%' border=0 align=left cellpadding=6 cellspacing=0 class='box-body'"); echo ''; echo 'You can use html to make your Warning, Howto or Note look better.'; echo '',"\n"; echo add_br($_REQUEST['noteDesc']); echo ''; if ($_REQUEST['noteTitle'] == "HOWTO" || $_REQUEST['noteTitle'] == "WARNING") { echo 'Title (Do not change)'; echo '',"\n"; } else { echo 'Title',"\n"; } echo 'Description', "\n"; echo ''.stripslashes($_REQUEST['noteDesc']).'',"\n"; echo '',"\n"; echo ' ',"\n"; echo ' ',"\n"; echo '',"\n"; echo html_table_end(); echo html_frame_end(); echo html_back_link(); } apidb_footer(); ?>