From: Jan Büren Date: Fri, 18 Sep 2009 06:33:52 +0000 (+0200) Subject: Bugfix für Bug 1127. webpages/ct/get_delivery_master ist nicht customer/vendor sicher... X-Git-Tag: release-2.6.1beta1~283 X-Git-Url: http://wagnertech.de/git?a=commitdiff_plain;h=e1cb00366d40cc3a1b07e065b51ad39c84baf7e6;p=kivitendo-erp.git Bugfix für Bug 1127. webpages/ct/get_delivery_master ist nicht customer/vendor sicher. Eine entsprechende Abfrage in das Template eingefügt. Ferner vor dem Aufruf von parse_html noch ->IS_CUSTOMER gesetzt --- diff --git a/bin/mozilla/ct.pl b/bin/mozilla/ct.pl index 0128c29e4..35f106475 100644 --- a/bin/mozilla/ct.pl +++ b/bin/mozilla/ct.pl @@ -599,6 +599,7 @@ sub get_delivery { $auth->assert('customer_vendor_edit'); CT->get_delivery(\%myconfig, \%$form ); + $form->{IS_CUSTOMER} = $form->{db} eq 'customer'; print $form->ajax_response_header(), $form->parse_html_template('ct/get_delivery'); diff --git a/templates/webpages/ct/get_delivery_de.html b/templates/webpages/ct/get_delivery_de.html index 1d71757d8..ddfd0750a 100644 --- a/templates/webpages/ct/get_delivery_de.html +++ b/templates/webpages/ct/get_delivery_de.html @@ -16,7 +16,7 @@ [%- FOREACH row = DELIVERY %] [% HTML.escape(row.shiptoname) UNLESS loop.prev.shiptoname == row.shiptoname %]  - [% IF row.id %][% END %][% HTML.escape(row.invnumber) || ' ' %][% IF row.id %][% END %] + [% IF row.id %][% END %][% HTML.escape(row.invnumber) || ' ' %][% IF row.id %][% END %] [% IF row.oe_id %][% END %][% HTML.escape(row.ordnumber) || ' ' %][% IF row.oe_id %][% END %] [% HTML.escape(row.transdate) || ' ' %] [% HTML.escape(row.description) || ' ' %] diff --git a/templates/webpages/ct/get_delivery_master.html b/templates/webpages/ct/get_delivery_master.html index 774909e09..0ca76e103 100644 --- a/templates/webpages/ct/get_delivery_master.html +++ b/templates/webpages/ct/get_delivery_master.html @@ -16,7 +16,7 @@ [%- FOREACH row = DELIVERY %] [% HTML.escape(row.shiptoname) UNLESS loop.prev.shiptoname == row.shiptoname %]  - [% IF row.id %][% END %][% HTML.escape(row.invnumber) || ' ' %][% IF row.id %][% END %] + [% IF row.id %][% END %][% HTML.escape(row.invnumber) || ' ' %][% IF row.id %][% END %] [% IF row.oe_id %][% END %][% HTML.escape(row.ordnumber) || ' ' %][% IF row.oe_id %][% END %] [% HTML.escape(row.transdate) || ' ' %] [% HTML.escape(row.description) || ' ' %]