dbxe
/
fusionpbx
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Update contact_settings.php

This commit is contained in:
FusionPBX 2018-06-08 00:24:58 -06:00 committed by GitHub
parent d6a4242d22
commit fc8d1f4ef3
1 changed files with 28 additions and 24 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

52
app/contacts/contact_settings.php
View File

@ -17,23 +17,27 @@
The Initial Developer of the Original Code is The Initial Developer of the Original Code is
Mark J Crane <markjcrane@fusionpbx.com> Mark J Crane <markjcrane@fusionpbx.com>
Portions created by the Initial Developer are Copyright (C) 2008-2012 Portions created by the Initial Developer are Copyright (C) 2008-2018
the Initial Developer. All Rights Reserved. the Initial Developer. All Rights Reserved.
Contributor(s): Contributor(s):
Mark J Crane <markjcrane@fusionpbx.com> Mark J Crane <markjcrane@fusionpbx.com>
Luis Daniel Lucio Quiroz <dlucio@okay.com.mx> Luis Daniel Lucio Quiroz <dlucio@okay.com.mx>
*/ */
require_once "root.php";
require_once "resources/require.php"; //includes
require_once "resources/check_auth.php"; require_once "root.php";
if (permission_exists('contact_setting_view')) { require_once "resources/require.php";
//access granted require_once "resources/check_auth.php";
}
else { //check permissions
echo "access denied"; if (permission_exists('contact_setting_view')) {
exit; //access granted
} }
else {
echo "access denied";
exit;
}
//get the list //get the list
$sql = "select * from v_contact_settings "; $sql = "select * from v_contact_settings ";
@ -79,38 +83,38 @@ else {
$previous_category = ''; $previous_category = '';
foreach($result as $row) { foreach($result as $row) {
if (permission_exists('contact_setting_edit')) { if (permission_exists('contact_setting_edit')) {
$tr_link = " href='contact_setting_edit.php?contact_uuid=".$contact_uuid."&id=".$row['contact_setting_uuid']."'"; $tr_link = " href='contact_setting_edit.php?contact_uuid=".$contact_uuid."&id=".escape($row['contact_setting_uuid'])."'";
} }
echo "<tr ".$tr_link.">\n"; echo "<tr ".$tr_link.">\n";
echo " <td valign='top' class='".$row_style[$c]."'>".$row['contact_setting_category']."&nbsp;</td>\n"; echo " <td valign='top' class='".$row_style[$c]."'>".escape($row['contact_setting_category'])."&nbsp;</td>\n";
echo " <td valign='top' class='".$row_style[$c]."'><a href='contact_setting_edit.php?contact_uuid=".$contact_uuid."&id=".$row['contact_setting_uuid']."'>".$row['contact_setting_subcategory']."</a></td>\n"; echo " <td valign='top' class='".$row_style[$c]."'><a href='contact_setting_edit.php?contact_uuid=".$contact_uuid."&id=".escape($row['contact_setting_uuid'])."'>".escape($row['contact_setting_subcategory'])."</a></td>\n";
echo " <td valign='top' class='".$row_style[$c]."'>".$row['contact_setting_name']."&nbsp;</td>\n"; echo " <td valign='top' class='".$row_style[$c]."'>".escape($row['contact_setting_name'])."&nbsp;</td>\n";
echo " <td valign='top' class='".$row_style[$c]."'>\n"; echo " <td valign='top' class='".$row_style[$c]."'>\n";
$category = $row['contact_setting_category']; $category = escape($row['contact_setting_category']);
$subcategory = $row['contact_setting_subcategory']; $subcategory = escape($row['contact_setting_subcategory']);
$name = $row['contact_setting_name']; $name = escape($row['contact_setting_name']);
if ($category == "callingcard" && $subcategory == "username" && $name == "var" ) { if ($category == "callingcard" && $subcategory == "username" && $name == "var" ) {
echo " ******** &nbsp;\n"; echo " ******** &nbsp;\n";
} }
elseif ($category == "callingcard" && $subcategory == "password" && $name == "var" ) { elseif ($category == "callingcard" && $subcategory == "password" && $name == "var" ) {
echo " ******** &nbsp;\n"; echo " ******** &nbsp;\n";
} else { } else {
echo $row['contact_setting_value']; echo escape($row['contact_setting_value']);
} }
echo " &nbsp;\n"; echo " &nbsp;\n";
echo " </td>\n"; echo " </td>\n";
echo " <td valign='top' class='".$row_style[$c]."' style='text-align: center;'>".$text['label-'.$row['contact_setting_enabled']]."&nbsp;</td>\n"; echo " <td valign='top' class='".$row_style[$c]."' style='text-align: center;'>".$text['label-'.escape($row['contact_setting_enabled'])]."&nbsp;</td>\n";
echo " <td valign='top' class='row_stylebg'>".$row['contact_setting_description']."&nbsp;</td>\n"; echo " <td valign='top' class='row_stylebg'>".$row['contact_setting_description']."&nbsp;</td>\n";
echo " <td class='list_control_icons' nowrap='nowrap'>"; echo " <td class='list_control_icons' nowrap='nowrap'>";
if (permission_exists('contact_setting_edit')) { if (permission_exists('contact_setting_edit')) {
echo "<a href='contact_setting_edit.php?contact_uuid=".$row['contact_uuid']."&id=".$row['contact_setting_uuid']."' alt='".$text['button-edit']."'>$v_link_label_edit</a>"; echo "<a href='contact_setting_edit.php?contact_uuid=".escape($row['contact_uuid'])."&id=".escape($row['contact_setting_uuid'])."' alt='".$text['button-edit']."'>$v_link_label_edit</a>";
} }
if (permission_exists('contact_setting_delete')) { if (permission_exists('contact_setting_delete')) {
echo "<a href='contact_setting_delete.php?contact_uuid=".$row['contact_uuid']."&id=".$row['contact_setting_uuid']."' alt='".$text['button-delete']."' onclick=\"return confirm('".$text['confirm-delete']."')\">$v_link_label_delete</a>"; echo "<a href='contact_setting_delete.php?contact_uuid=".escape($row['contact_uuid'])."&id=".escape($row['contact_setting_uuid'])."' alt='".$text['button-delete']."' onclick=\"return confirm('".$text['confirm-delete']."')\">$v_link_label_delete</a>";
} }
echo " </td>\n"; echo " </td>\n";
echo "</tr>\n"; echo "</tr>\n";
$previous_category = $row['contact_setting_category']; $previous_category = escape($row['contact_setting_category']);
$c = ($c) ? 0 : 1; $c = ($c) ? 0 : 1;
} //end foreach } //end foreach
unset($sql, $result, $row_count); unset($sql, $result, $row_count);
@ -118,4 +122,4 @@ else {
echo "</table>"; echo "</table>";
?> ?>