open-dsi
/
nextcloud-server
mirror of https://github.com/nextcloud/server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

fix calendarid in eventform and validation of calendarid

Browse Source
remotes/origin/stable4
Georg Ehrke 13 years ago
parent a7908ba76b
commit df2e788a1c
4 changed files with 8 additions and 11 deletions
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Show Stats Download Patch File Download Diff File
  1. 2
      apps/calendar/ajax/event/edit.form.php
  2. 5
      apps/calendar/lib/object.php
  3. 10
      apps/calendar/lib/share.php
  4. 2
      apps/calendar/templates/part.eventform.php

2
apps/calendar/ajax/event/edit.form.php
Unescape View File

@ -195,6 +195,8 @@ if($data['repeating'] == 1){
}
if($access == 'owner'){
$calendar_options = OC_Calendar_Calendar::allCalendars(OC_User::getUser());
}else{
$calendar_options = array(OC_Calendar_App::getCalendar($data['calendarid'], false));
}
$category_options = OC_Calendar_App::getCategoryOptions();
$repeat_options = OC_Calendar_App::getRepeatOptions();

5
apps/calendar/lib/object.php
Unescape View File

@ -451,11 +451,6 @@ class OC_Calendar_Object{
$errarr['title'] = 'true';
$errnum++;
}
$calendar = OC_Calendar_App::getCalendar($request['calendar'], true, true);
if(!$calendar){
$errarr['cal'] = 'true';
$errnum++;
}
if(isset($request['categories']) && !is_array($request['categories'])){
$errarr['categories'] = $l10n->t('Not an array');

10
apps/calendar/lib/share.php
Unescape View File

@ -211,17 +211,17 @@ class OC_Calendar_Share{
*/
public static function check_access($share, $id, $type){
$group_where = self::group_sql(OC_Group::getUserGroups($share));
$stmt = OC_DB::prepare('SELECT * FROM *PREFIX*calendar_share_' . $type . ' WHERE ((share = ? AND sharetype = "user") ' . $group_where . ')');
$result = $stmt->execute(array($share));
$stmt = OC_DB::prepare('SELECT * FROM *PREFIX*calendar_share_' . $type . ' WHERE (' . $type . 'id = ? AND (share = ? AND sharetype = "user") ' . $group_where . ')');
$result = $stmt->execute(array($id,$share));
$rows = $result->numRows();
if($rows > 0){
return true;
}
if($type == self::EVENT){
}elseif($type == self::EVENT){
$event = OC_Calendar_App::getEventObject($id, false, false);
return self::check_access($share, $event['calendarid'], self::CALENDAR);
}else{
return false;
}
return false;
}
/*
* @brief: returns the calendardata of an event or a calendar

2
apps/calendar/templates/part.eventform.php
Unescape View File

@ -44,7 +44,7 @@ echo 'Calendar.UI.Share.idtype = "event";' . "\n" . 'Calendar.UI.Share.currentid
<?php } else { ?>
<th width="75px">&nbsp;</th>
<td>
<input type="hidden" name="calendar" value="<?php echo $_['calendar']; ?>">
<input type="hidden" name="calendar" value="<?php echo $_['calendar_options'][0]['id']; ?>">
</td>
<?php } ?>
</tr>

Write Preview
Loading…
Cancel
Save