Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
Newer
Older
100644 72 lines (57 sloc) 2.788 kB
bee502d Fix line endings in all files
Julian Fitzell authored
1 <?php
4d63b48 @siebrand Mantis -> MantisBT in file headers, comments, and elsewhere.
siebrand authored
2 # MantisBT - a php based bugtracking system
2669909 @giallu Merge back to HEAD the changes between tags:
giallu authored
3
4d63b48 @siebrand Mantis -> MantisBT in file headers, comments, and elsewhere.
siebrand authored
4 # MantisBT is free software: you can redistribute it and/or modify
2669909 @giallu Merge back to HEAD the changes between tags:
giallu authored
5 # it under the terms of the GNU General Public License as published by
6 # the Free Software Foundation, either version 2 of the License, or
7 # (at your option) any later version.
8 #
4d63b48 @siebrand Mantis -> MantisBT in file headers, comments, and elsewhere.
siebrand authored
9 # MantisBT is distributed in the hope that it will be useful,
2669909 @giallu Merge back to HEAD the changes between tags:
giallu authored
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 # GNU General Public License for more details.
13 #
14 # You should have received a copy of the GNU General Public License
4d63b48 @siebrand Mantis -> MantisBT in file headers, comments, and elsewhere.
siebrand authored
15 # along with MantisBT. If not, see <http://www.gnu.org/licenses/>.
c305578 Just adding $Id$ CVS headers to all the files up to the point I've cl…
Julian Fitzell authored
16
526bbaa @grangeway Comment updates for phpdoc ( http://www.mantisforge.org/dev/phpdoc/ )…
grangeway authored
17 /**
18 * @package MantisBT
19 * @copyright Copyright (C) 2000 - 2002 Kenzaburo Ito - kenito@300baud.org
c757c81 @dregad Update copyright year to 2012
dregad authored
20 * @copyright Copyright (C) 2002 - 2012 MantisBT Team - mantisbt-dev@lists.sourceforge.net
526bbaa @grangeway Comment updates for phpdoc ( http://www.mantisforge.org/dev/phpdoc/ )…
grangeway authored
21 * @link http://www.mantisbt.org
22 */
23 /**
4d63b48 @siebrand Mantis -> MantisBT in file headers, comments, and elsewhere.
siebrand authored
24 * MantisBT Core API's
526bbaa @grangeway Comment updates for phpdoc ( http://www.mantisforge.org/dev/phpdoc/ )…
grangeway authored
25 */
1ac5f0b More require_once statements added. Note that these new statements en…
Jeroen Latour authored
26 require_once( 'core.php' );
d5d7959 @grangeway Enchance custom fields support:
grangeway authored
27
c36df5b @grangeway following giallu's change to use set_include_path to set first requir…
grangeway authored
28 require_once( 'custom_field_api.php' );
bb4f40f @jreese Fix #8336: Require re-login for high impact tasks.
jreese authored
29
0dc4027 @giallu Add form security tokens to prevent CSRF issues
giallu authored
30 form_security_validate('manage_custom_field_update');
31
b69fe75 @jreese Move all form_security_validate() calls before any processing happens.
jreese authored
32 auth_reauthenticate();
11a27c9 Renamed config option manage_custom_fields to manage_custom_fieds_thr…
Jeroen Latour authored
33 access_ensure_global_level( config_get( 'manage_custom_fields_threshold' ) );
bee502d Fix line endings in all files
Julian Fitzell authored
34
81ad05d Cleanup of manage_custom_field_*.php
Julian Fitzell authored
35 $f_field_id = gpc_get_int( 'field_id' );
8b7fcd3 * Fix #4044: Cross Site Scripting Vulnerability
int2str authored
36 $f_return = strip_tags( gpc_get_string( 'return', 'manage_custom_field_page.php' ) );
81ad05d Cleanup of manage_custom_field_*.php
Julian Fitzell authored
37 $t_values['name'] = gpc_get_string( 'name' );
38 $t_values['type'] = gpc_get_int( 'type' );
39 $t_values['possible_values'] = gpc_get_string( 'possible_values' );
40 $t_values['default_value'] = gpc_get_string( 'default_value' );
41 $t_values['valid_regexp'] = gpc_get_string( 'valid_regexp' );
42 $t_values['access_level_r'] = gpc_get_int( 'access_level_r' );
43 $t_values['access_level_rw'] = gpc_get_int( 'access_level_rw' );
44 $t_values['length_min'] = gpc_get_int( 'length_min' );
45 $t_values['length_max'] = gpc_get_int( 'length_max' );
d19f94f bug #7508 - Those with access to manage custom fields can choose
Daryn Warriner authored
46 $t_values['display_report'] = gpc_get_bool( 'display_report' );
47 $t_values['display_update'] = gpc_get_bool( 'display_update' );
8565b16 @grangeway rename resolve->resolved, close->closed
grangeway authored
48 $t_values['display_resolved'] = gpc_get_bool( 'display_resolved' );
49 $t_values['display_closed'] = gpc_get_bool( 'display_closed' );
d5d7959 @grangeway Enchance custom fields support:
grangeway authored
50 $t_values['require_report'] = gpc_get_bool( 'require_report' );
51 $t_values['require_update'] = gpc_get_bool( 'require_update' );
8565b16 @grangeway rename resolve->resolved, close->closed
grangeway authored
52 $t_values['require_resolved'] = gpc_get_bool( 'require_resolved' );
53 $t_values['require_closed'] = gpc_get_bool( 'require_closed' );
d19f94f bug #7508 - Those with access to manage custom fields can choose
Daryn Warriner authored
54 $t_values['filter_by'] = gpc_get_bool( 'filter_by' );
bee502d Fix line endings in all files
Julian Fitzell authored
55
ff5b7fa I started playing with the custom field stuff tonight and these are t…
Julian Fitzell authored
56 custom_field_update( $f_field_id, $t_values );
bee502d Fix line endings in all files
Julian Fitzell authored
57
8c537f8 @jreese First step to implementing new form security purge().
jreese authored
58 form_security_purge('manage_custom_field_update');
59
230e3f4 @grangeway HTML api documentation + tidy up of api names
grangeway authored
60 html_page_top( null, $f_return );
bee502d Fix line endings in all files
Julian Fitzell authored
61
18b13dc @vboctor Moved some custom field validation from action scripts to API. Also …
vboctor authored
62 echo '<br />';
63 echo '<div align="center">';
81ad05d Cleanup of manage_custom_field_*.php
Julian Fitzell authored
64
65 echo lang_get( 'operation_successful' ) . '<br />';
bee502d Fix line endings in all files
Julian Fitzell authored
66
81ad05d Cleanup of manage_custom_field_*.php
Julian Fitzell authored
67 print_bracket_link( $f_return, lang_get( 'proceed' ) );
bee502d Fix line endings in all files
Julian Fitzell authored
68
18b13dc @vboctor Moved some custom field validation from action scripts to API. Also …
vboctor authored
69 echo '</div>';
70
624fafd @grangeway We dont use __FILE__ param of html_page_bottom. Note: someone who wer…
grangeway authored
71 html_page_bottom();
Something went wrong with that request. Please try again.