X-Git-Url: http://wagnertech.de/git?a=blobdiff_plain;f=mobile%2Ftime_delete.php;h=a68da767a861e82fd48a9bfb6420f0bf51c59773;hb=ce2df23479c88d1bc9db04a68164af3feb6346e1;hp=399895c7a8eac84ce47c4c4b9a519ecb900feab1;hpb=11bfec0ff88b649a934556e8b4812d65715c7509;p=timetracker.git diff --git a/mobile/time_delete.php b/mobile/time_delete.php index 399895c7..a68da767 100644 --- a/mobile/time_delete.php +++ b/mobile/time_delete.php @@ -38,9 +38,9 @@ if (!ttAccessAllowed('track_own_time')) { exit(); } $cl_id = (int)$request->getParameter('id'); -$time_rec = ttTimeHelper::getRecord($cl_id, $user->getActiveUser()); -if (!$time_rec || $time_rec['invoice_id']) { - // Prohibit deleting not ours or invoiced records. +$time_rec = ttTimeHelper::getRecord($cl_id); +if (!$time_rec || $time_rec['approved'] || $time_rec['timesheet_id'] || $time_rec['invoice_id']) { + // Prohibit deleting not ours, approved, assigned to timesheet, or invoiced records. header('Location: access_denied.php'); exit(); } @@ -62,11 +62,8 @@ if ($request->isPost()) { $err->add($i18n->get('error.range_locked')); if ($err->no()) { - // Delete the record. - $result = ttTimeHelper::delete($cl_id, $user->getActiveUser()); - - if ($result) { + if (ttTimeHelper::delete($cl_id)) { header('Location: time.php'); exit(); } else {