is_maintainer($appId,$versionId)) )
{
errorpage("Insufficient Privileges!");
exit;
}
//set link for version
if ($versionId != 0)
{
$versionLink = "&versionId=$versionId";
}
if($sub)
{
$query = "SELECT * from appNotes where noteId = $noteId;";
$result = mysql_query($query);
if(!$result)
{
$ob = mysql_fetch_object($result);
$oldNoteTitle = $ob->noteTitle;
$oldNoteDesc = $ob->noteDesc;
}
if ($sub == 'Delete')
{
//delete Note
$query = "DELETE from appNotes where noteId = $noteId;";
$result = mysql_query($query);
if(!$result)
{
//error
addmsg("Internal Error: unable to delete selected note!", "red");
}
else
{
$email = getNotifyEmailAddressList($appId, $versionId);
if($email)
{
$fullAppName = "Application: ".lookupAppName($appId)." Version: ".lookupVersionName($appId, $versionId);
$ms = APPDB_ROOT."appview.php?appId=$appId&versionId=$versionId"."\n";
$ms .= "\n";
$ms .= ($_SESSION['current']->username ? $_SESSION['current']->username : "Anonymous")." deleted note from ".$fullAppName."\n";
$ms .= "\n";
$ms .= "title: ".$oldNoteTitle."\n";
$ms .= "\n";
$ms .= $oldNoteDesc."\n";
$ms .= "\n";
$ms .= STANDARD_NOTIFY_FOOTER;
mail(stripslashes($email), "[AppDB] ".$fullAppName ,$ms);
} else
{
$email = "no one";
}
addmsg("mesage sent to: ".$email, green);
//success
addmsg("Note Deleted.", "green");
}
}
if ($sub == 'Update')
{
//Update Note
$NewNoteTitle = addslashes($noteTitle);
$NewNoteDesc = addslashes($noteDesc);
if (!mysql_query("UPDATE appNotes SET noteTitle = '".$NewNoteTitle."', ".
"noteDesc = '".$NewNoteDesc."'".
" WHERE noteId = $noteId"))
{
$statusMessage = "Database Error!
".mysql_error()."
\n";
addmsg($statusMessage, "red");
}
else
{
$email = getNotifyEmailAddressList($appId, $versionId);
if($email)
{
$fullAppName = "Application: ".lookupAppName($appId)." Version: ".lookupVersionName($appId, $versionId);
$ms = APPDB_ROOT."appview.php?appId=$appId&versionId=$versionId"."\n";
$ms .= "\n";
$ms .= ($_SESSION['current']->username ? $_SESSION['current']->username : "Anonymous")." changed note for ".$fullAppName."\n";
$ms .= "\n";
$ms .= "From --------------------------\n";
$ms .= "title: ".$oldNoteTitle."\n";
$ms .= "\n";
$ms .= $oldNoteDesc."\n";
$ms .= "To --------------------------\n";
$ms .= "title: ".$noteTitle."\n";
$ms .= "\n";
$ms .= $noteDesc."\n";
$ms .= "\n";
$ms .= STANDARD_NOTIFY_FOOTER;
mail(stripslashes($email), "[AppDB] ".$fullAppName ,$ms);
} else
{
$email = "no one";
}
addmsg("mesage sent to: ".$email, green);
addmsg("Note Updated", "green");
}
}
redirect(apidb_fullurl("appview.php?appId=".$appId.$versionLink));
}
else
{
if (!$preview)
{
$table = "appNotes";
$query = "SELECT * FROM $table WHERE noteId = $noteId";
$result = mysql_query($query);
$ob = mysql_fetch_object($result);
$noteTitle = $ob->noteTitle;
$noteDesc = $ob->noteDesc;
$appId = $ob->appId;
$versionId = $ob->versionId;
}
// show form
apidb_header("Edit Application Note");
echo "