chamilo
/
chamilo-lms
mirror of https://github.com/chamilo/chamilo-lms/tree/1.11.x
2
0
Fork 0
Code Issues Projects Releases Wiki Activity

[svn r21146] prevent double post

Browse Source
skala
Juan Carlos Raña 17 years ago
parent 56245c52af
commit f3a64cfe28
1 changed files with 41 additions and 2 deletions
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Show Stats Download Patch File Download Diff File
  1. 43
      main/wiki/index.php

43
main/wiki/index.php
Unescape View File

@ -198,10 +198,15 @@ else
// saving a change // saving a change
if (isset($_POST['SaveWikiChange']) AND $_POST['title']<>'') if (isset($_POST['SaveWikiChange']) AND $_POST['title']<>'')
{ {
if(empty($_POST['title'])) if(empty($_POST['title']))
{ {
Display::display_error_message(get_lang("NoWikiPageTitle")); Display::display_error_message(get_lang("NoWikiPageTitle"));
} }
elseif(!double_post($_POST['wpost_id']))
{
//double post
}
else else
{ {
$return_message=save_wiki(); $return_message=save_wiki();
@ -216,6 +221,10 @@ if (isset($_POST['SaveWikiNew']))
{ {
Display::display_error_message(get_lang("NoWikiPageTitle")); Display::display_error_message(get_lang("NoWikiPageTitle"));
} }
elseif(!double_post($_POST['wpost_id']))
{
//double post
}
else else
{ {
$_clean['assignment']=Database::escape_string($_POST['assignment']); // for mode assignment $_clean['assignment']=Database::escape_string($_POST['assignment']); // for mode assignment
@ -1259,7 +1268,8 @@ if ($_GET['action']=='edit')
//echo '<INPUT TYPE="hidden" NAME="enddate_assig" VALUE="'.stripslashes($row['enddate_assig']).'"/>'; //off for now //echo '<INPUT TYPE="hidden" NAME="enddate_assig" VALUE="'.stripslashes($row['enddate_assig']).'"/>'; //off for now
//echo '<INPUT TYPE="hidden" NAME="delayedsubmit" VALUE="'.stripslashes($row['delayedsubmit']).'"/>'; //off for now //echo '<INPUT TYPE="hidden" NAME="delayedsubmit" VALUE="'.stripslashes($row['delayedsubmit']).'"/>'; //off for now
echo '<INPUT TYPE="hidden" NAME="version" VALUE="'.stripslashes($row['version']).'"/>'; //get current version echo '<INPUT TYPE="hidden" NAME="version" VALUE="'.stripslashes($row['version']).'"/>'; //get current version
echo get_lang('Progress').':&nbsp;&nbsp;<select name="progress" id="progress">'; echo get_lang('Progress').':&nbsp;&nbsp;<select name="progress" id="progress">';
echo '<option value="'.stripslashes($row['progress']).'" selected>'.stripslashes($row['progress']).'</option>'; echo '<option value="'.stripslashes($row['progress']).'" selected>'.stripslashes($row['progress']).'</option>';
echo '<option value="10">10</option> echo '<option value="10">10</option>
@ -1274,6 +1284,7 @@ if ($_GET['action']=='edit')
<option value="100">100</option> <option value="100">100</option>
</select> %'; </select> %';
echo '<br/><br/>'; echo '<br/><br/>';
echo '<input type="hidden" name="wpost_id" value="'.md5(uniqid(rand(), true)).'">';//prevent double post
echo '<input type="hidden" name="SaveWikiChange" value="'.get_lang('langSave').'">'; //for save icon echo '<input type="hidden" name="SaveWikiChange" value="'.get_lang('langSave').'">'; //for save icon
echo '<button class="save" type="submit" name="SaveWikiChange">'.get_lang('langSave').'</button>';//for save button echo '<button class="save" type="submit" name="SaveWikiChange">'.get_lang('langSave').'</button>';//for save button
echo '</form>'; echo '</form>';
@ -1771,6 +1782,7 @@ if ($_GET['action']=='discuss')
<table> <table>
<tr> <tr>
<td valign="top" ><?php echo get_lang('Comments');?>:</td> <td valign="top" ><?php echo get_lang('Comments');?>:</td>
<?php echo '<input type="hidden" name="wpost_id" value="'.md5(uniqid(rand(), true)).'">';//prevent double post ?>
<td><textarea name="comment" cols="80" rows="5" id="comment"></textarea></td> <td><textarea name="comment" cols="80" rows="5" id="comment"></textarea></td>
</tr> </tr>
@ -1812,7 +1824,7 @@ if ($_GET['action']=='discuss')
</form> </form>
<?php <?php
if (isset($_POST['Submit'])) if (isset($_POST['Submit']) && double_post($_POST['wpost_id']))
{ {
$dtime = date( "Y-m-d H:i:s" ); $dtime = date( "Y-m-d H:i:s" );
$message_author=api_get_user_id(); $message_author=api_get_user_id();
@ -2436,6 +2448,7 @@ function display_new_wiki_form()
<option value="100">100</option> <option value="100">100</option>
</select> %'; </select> %';
echo '<br/><br/>'; echo '<br/><br/>';
echo '<input type="hidden" name="wpost_id" value="'.md5(uniqid(rand(), true)).'">';//prevent double post
echo '<input type="hidden" name="SaveWikiNew" value="'.get_lang('langSave').'">'; //for save icon echo '<input type="hidden" name="SaveWikiNew" value="'.get_lang('langSave').'">'; //for save icon
echo '<button class="save" type="submit" name="SaveWikiNew">'.get_lang('langSave').'</button>';//for button icon echo '<button class="save" type="submit" name="SaveWikiNew">'.get_lang('langSave').'</button>';//for button icon
echo '</div>'; echo '</div>';
@ -3504,6 +3517,32 @@ function export2doc($wikiTitle, $wikiContents, $groupId)
} }
/**
* Function prevent double post (reload or F5)
*/
function double_post($wpost_id)
{
if(isset($_SESSION['wpost_id']))
{
if ($wpost_id == $_SESSION['wpost_id'])
{
return false;
}
else
{
$_SESSION['wpost_id'] = $wpost_id;
return true;
}
}
else
{
$_SESSION['wpost_id'] = $wpost_id;
return true;
}
}
/** /**
* Function wizard individual assignment * Function wizard individual assignment
* @author Juan Carlos Raña <herodoto@telefonica.net> * @author Juan Carlos Raña <herodoto@telefonica.net>

Write Preview
Loading…
Cancel
Save