X-Git-Url: http://wagnertech.de/git?a=blobdiff_plain;f=invoice_delete.php;h=6fd8270d2cac45d87b811dc8eb2b19e5915e0bca;hb=3f7ed883e1c7d75aacc49900b403f8e84a68dc3f;hp=4f9ed2425632dcb0658b9ab0a84bfa8dff83ffc7;hpb=4426ed3bc8e53d5013d356505283c916e3826392;p=timetracker.git diff --git a/invoice_delete.php b/invoice_delete.php index 4f9ed242..6fd8270d 100644 --- a/invoice_delete.php +++ b/invoice_delete.php @@ -31,7 +31,7 @@ import('form.Form'); import('ttInvoiceHelper'); // Access check. -if (!ttAccessCheck(right_manage_team)) { +if (!ttAccessAllowed('manage_invoices') || !$user->isPluginEnabled('iv')) { header('Location: access_denied.php'); exit(); } @@ -46,24 +46,24 @@ $form->addInput(array('type'=>'combobox', 'name'=>'delete_invoice_entries', 'data'=>array('0'=>$i18n->getKey('dropdown.do_not_delete'),'1'=>$i18n->getKey('dropdown.delete')), )); -$form->addInput(array('type'=>'submit','name'=>'btn_delete','value'=>$i18n->getKey('label.delete'))); +$form->addInput(array('type'=>'submit','name'=>'btn_delete','value'=>$i18n->getKey('label.delete'),'onclick'=>'return confirm_deleting_entries();')); $form->addInput(array('type'=>'submit','name'=>'btn_cancel','value'=>$i18n->getKey('button.cancel'))); -if ($request->getMethod() == 'POST') { +if ($request->isPost()) { if ($request->getParameter('btn_delete')) { if (ttInvoiceHelper::getInvoice($cl_invoice_id)) { if (ttInvoiceHelper::delete($cl_invoice_id, $request->getParameter('delete_invoice_entries'))) { header('Location: invoices.php'); exit(); } else - $errors->add($i18n->getKey('error.db')); + $err->add($i18n->getKey('error.db')); } else - $errors->add($i18n->getKey('error.db')); - } else if ($request->getParameter('btn_cancel')) { + $err->add($i18n->getKey('error.db')); + } elseif ($request->getParameter('btn_cancel')) { header('Location: invoices.php'); exit(); } -} // POST +} // isPost $smarty->assign('invoice_to_delete', $invoice_to_delete); $smarty->assign('forms', array($form->getName()=>$form->toArray()));