sub form_header {
$lxdebug->enter_sub();
+
+ $auth->assert('license_edit');
+
$form->{jsscript} = 1;
$form->header();
sub form_footer {
$lxdebug->enter_sub();
- my @items = qw(login password old_callback previousform);
+
+ $auth->assert('license_edit');
+
+ my @items = qw(old_callback previousform);
push(@items, @{ $form->{"hidden"} });
map({
print("<input type=hidden name=$_ value=\"" . quot($form->{$_}) . "\">\n"
} @items);
print(
- qq|</form>
+ qq|<input type="hidden" name="cursor_field" value='$form->{cursor_field}'></form>
</body>
</html>
|);
sub print_part_selection {
$lxdebug->enter_sub();
+
+ $auth->assert('license_edit');
+
form_header();
set_std_hidden("business");
sub print_customer_selection {
$lxdebug->enter_sub();
+
+ $auth->assert('license_edit');
+
form_header();
set_std_hidden("parts_id", "partnumber", "description");
sub print_license_form {
$lxdebug->enter_sub();
+
+ $auth->assert('license_edit');
+
print(
qq|
<table width=100%>
sub add {
$lxdebug->enter_sub();
+
+ $auth->assert('license_edit');
+
if (!$lizenzen) {
$form->error(
$locale->text(
sub do_add {
$lxdebug->enter_sub();
+
+ $auth->assert('license_edit');
+
$form->{"hidden"} = ["parts_id"];
form_header();
sub update {
$lxdebug->enter_sub();
+
+ $auth->assert('license_edit');
+
do_add();
+
$lxdebug->leave_sub();
}
sub save {
$lxdebug->enter_sub();
+ $auth->assert('license_edit');
+
($form->{customername}, $form->{customer_id}) = split /--/,
$form->{customer};
# put callback together
foreach $key (keys %$form) {
+ next if (($key eq 'login') || ($key eq 'password') || ('' ne ref $form->{$key}));
# do single escape for Apache 2.0
$value = $form->escape($form->{$key}, 1);
sub search {
$lxdebug->enter_sub();
+
+ $auth->assert('license_edit');
+
if (!$lizenzen) {
$form->error(
$locale->text(
sub do_search {
$lxdebug->enter_sub();
+
+ $auth->assert('license_edit');
+
LICENSES->search(\%myconfig, $form);
$callback = "";
map { $callback .= "\&${_}=" . $form->escape($form->{$_}, 1) }
- qw(db login password partnumber description customer_name all expiring_in show_expired);
+ qw(db partnumber description customer_name all expiring_in show_expired);
$details = $form->{"script"} . "?action=details" . $callback . "\&id=";
$invdetails = "is.pl?action=edit" . $callback . "\&id=";
$callback = $form->{"script"} . "?action=do_search" . $callback;
sub details {
$lxdebug->enter_sub();
+
+ $auth->assert('license_edit');
+
LICENSES->get_license(\%myconfig, $form);
map(
{ $form->{$_} = $form->{"license"}->{$_}; } keys(%{ $form->{"license"} }));