зеркало из https://github.com/mozilla/pjs.git
137 строки
4.0 KiB
Perl
Executable File
137 строки
4.0 KiB
Perl
Executable File
#!/usr/bin/perl -wT
|
|
# -*- Mode: perl; indent-tabs-mode: nil -*-
|
|
#
|
|
# The contents of this file are subject to the Mozilla Public
|
|
# License Version 1.1 (the "License"); you may not use this file
|
|
# except in compliance with the License. You may obtain a copy of
|
|
# the License at http://www.mozilla.org/MPL/
|
|
#
|
|
# Software distributed under the License is distributed on an "AS
|
|
# IS" basis, WITHOUT WARRANTY OF ANY KIND, either express or
|
|
# implied. See the License for the specific language governing
|
|
# rights and limitations under the License.
|
|
#
|
|
# The Original Code is the Bugzilla Bug Tracking System.
|
|
#
|
|
# The Initial Developer of the Original Code is Netscape Communications
|
|
# Corporation. Portions created by Netscape are
|
|
# Copyright (C) 1998 Netscape Communications Corporation. All
|
|
# Rights Reserved.
|
|
#
|
|
# Contributor(s): Owen Taylor <otaylor@redhat.com>
|
|
# Gervase Markham <gerv@gerv.net>
|
|
# David Fallon <davef@tetsubo.com>
|
|
# Tobias Burnus <burnus@net-b.de>
|
|
|
|
use strict;
|
|
|
|
use vars qw(
|
|
%FORM
|
|
$userid
|
|
$template
|
|
$vars
|
|
);
|
|
|
|
use lib qw(.);
|
|
|
|
require "CGI.pl";
|
|
|
|
ConnectToDatabase();
|
|
confirm_login();
|
|
|
|
my $cgi = Bugzilla->cgi;
|
|
|
|
if (Param('enablequips') eq "off") {
|
|
ThrowUserError("quips_disabled");
|
|
}
|
|
|
|
my $action = $::FORM{'action'} || "";
|
|
|
|
if ($action eq "show") {
|
|
# Read in the entire quip list
|
|
SendSQL("SELECT quipid, userid, quip, approved FROM quips");
|
|
|
|
my $quips;
|
|
my @quipids;
|
|
while (MoreSQLData()) {
|
|
my ($quipid, $userid, $quip, $approved) = FetchSQLData();
|
|
$quips->{$quipid} = {'userid' => $userid, 'quip' => $quip,
|
|
'approved' => $approved};
|
|
push(@quipids, $quipid);
|
|
}
|
|
|
|
my $users;
|
|
foreach my $quipid (@quipids) {
|
|
my $userid = $quips->{$quipid}{'userid'};
|
|
if (not defined $users->{$userid}) {
|
|
SendSQL("SELECT login_name FROM profiles WHERE userid = $userid");
|
|
$users->{$userid} = FetchOneColumn();
|
|
}
|
|
}
|
|
$vars->{'quipids'} = \@quipids;
|
|
$vars->{'quips'} = $quips;
|
|
$vars->{'users'} = $users;
|
|
$vars->{'show_quips'} = 1;
|
|
}
|
|
|
|
if ($action eq "add") {
|
|
(Param('enablequips') eq "on" or Param('enablequips') eq "approved")
|
|
|| ThrowUserError("no_new_quips");
|
|
|
|
# Add the quip
|
|
my $approved = (Param('enablequips') eq "on") ? '1' : '0';
|
|
$approved = 1 if(UserInGroup('admin'));
|
|
my $comment = $::FORM{"quip"};
|
|
$comment || ThrowUserError("need_quip");
|
|
$comment !~ m/</ || ThrowUserError("no_html_in_quips");
|
|
|
|
SendSQL("INSERT INTO quips (userid, quip, approved) VALUES " .
|
|
'(' . $userid . ', ' . SqlQuote($comment) . ', ' . $approved . ')');
|
|
|
|
$vars->{'added_quip'} = $comment;
|
|
}
|
|
|
|
if ($action eq 'approve') {
|
|
# Read in the entire quip list
|
|
SendSQL("SELECT quipid, approved FROM quips");
|
|
|
|
my %quips;
|
|
while (MoreSQLData()) {
|
|
my ($quipid, $approved) = FetchSQLData();
|
|
$quips{$quipid} = $approved;
|
|
}
|
|
|
|
my @approved;
|
|
my @unapproved;
|
|
foreach my $quipid (keys %quips) {
|
|
my $form = ($::FORM{'quipid_'.$quipid}) ? 1 : 0;
|
|
if($quips{$quipid} ne $form) {
|
|
if($form) { push(@approved, $quipid); }
|
|
else { push(@unapproved, $quipid); }
|
|
}
|
|
}
|
|
SendSQL("UPDATE quips SET approved = 1 WHERE quipid IN (" .
|
|
join(",", @approved) . ")") if($#approved > -1);
|
|
SendSQL("UPDATE quips SET approved = 0 WHERE quipid IN (" .
|
|
join(",", @unapproved) . ")") if($#unapproved > -1);
|
|
$vars->{ 'approved' } = \@approved;
|
|
$vars->{ 'unapproved' } = \@unapproved;
|
|
}
|
|
|
|
if ($action eq "delete") {
|
|
if (!UserInGroup('admin')) {
|
|
ThrowUserError("quips_edit_denied");
|
|
}
|
|
my $quipid = $::FORM{"quipid"};
|
|
ThrowCodeError("need_quipid") unless $quipid =~ /(\d+)/;
|
|
$quipid = $1;
|
|
|
|
SendSQL("SELECT quip FROM quips WHERE quipid = $quipid");
|
|
$vars->{'deleted_quip'} = FetchSQLData();
|
|
SendSQL("DELETE FROM quips WHERE quipid = $quipid");
|
|
}
|
|
|
|
print $cgi->header();
|
|
$template->process("list/quips.html.tmpl", $vars)
|
|
|| ThrowTemplateError($template->error());
|