exit();
}
$cl_id = (int)$request->getParameter('id');
-// Get the time record we are deleting.
-$time_rec = ttTimeHelper::getRecord($cl_id, $user->getActiveUser());
+$user_id = $user->getUser();
+$time_rec = ttTimeHelper::getRecord($cl_id, $user_id);
if (!$time_rec || $time_rec['invoice_id']) {
// Prohibit deleting not ours or invoiced records.
header('Location: access_denied.php');
exit();
}
+// End of access checks.
// Escape comment for presentation.
$time_rec['comment'] = htmlspecialchars($time_rec['comment']);
$err->add($i18n->get('error.range_locked'));
if ($err->no()) {
-
// Delete the record.
- $result = ttTimeHelper::delete($cl_id, $user->getActiveUser());
-
- if ($result) {
+ if (ttTimeHelper::delete($cl_id)) {
header('Location: time.php');
exit();
} else {