<?php
-# function mask_fields($list)
-# {
-# $ret = array();
-#
-# foreach ($list as $field => $data)
-# $ret[] = $field;
-#
-# return $ret;
-# }
+function check_edit($name)
+{
+ $sql = sprintf("SELECT sys_mask.id,edit FROM sys_mask "
+ . "JOIN sys_group_mask ON sys_mask.id = sys_group_mask.mask "
+ . "WHERE gid = %d AND fname = '%s' "
+ . "ORDER BY edit DESC LIMIT 1",
+ $_SESSION['sys']['group'], pg_escape_string($name));
+
+ $sth = pg_query($sql);
+
+ if ($sth === false) return false;
+
+ $row = pg_fetch_assoc($sth);
+ if ($row === false) return false;
+
+ if ($row['edit'] == '0')
+ return false;
+
+ return true;
+}
function build_form($name, $mask)
{
if (is_array($info['options'])) $options = $info['options'];
else $options = query_db($info['options']);
foreach ($options as $row)
- $ret[] = sprintf('<option value="%s">%s</option>', $row['id'], $row['text']);
+ $ret[] = sprintf('<option value="%s"%s>%s</option>',
+ $row['id'],
+ !empty($info['selected']) && $row['id'] == $info['selected'] ? ' selected' : '',
+ $row['text']);
$ret[] = '</select>';
} elseif ($info['type'] == 'textarea') {
$ret[] = sprintf('<label for="edit_%s">%s</label><br>', $id, $info['name']);
$v = array('id="edit_'.$id.'"',
'name="'.$id.'"');
- $v[] = sprintf('cols="%d"', empty($info['columns'])?'25':$info['columns']);
- $v[] = sprintf('rows="%d"', empty($info['rows'])?'5':$info['columns']);
+ $v[] = sprintf('cols="%d"', empty($info['columns'])?33:$info['columns']);
+ $v[] = sprintf('rows="%d"', empty($info['rows'])?5:$info['columns']);
$ret[] = sprintf('<textarea %s></textarea>', implode(' ', $v));
}
if (array_key_exists('comment',$info))
$ret[] = '<br>';
}
+ $v_save = array('id="button_save"',
+ 'onclick="return form_save(this);"');
+ if ($mask['buttons']['save'] === false) $v_save[] = 'style="display: none"';
+
+ $v_insert = array('id="button_insert"',
+ 'onclick="return form_insert(this);"');
+ if ($mask['buttons']['insert'] === false) $v_insert[] = 'style="display: none"';
+
+ $v_delete = array('id="button_delete"',
+ 'onclick="return form_delete(this);"');
+ if ($mask['buttons']['delete'] === false) $v_delete[] = 'style="display: none"';
+
$ret[] = '<span id="form_status"> </span>';
$ret[] = '<div class="buttons">';
- $ret[] = '<button id="button_save" onclick="return form_save(this);">Speichern</button>';
+ $ret[] = sprintf('<button %s>%s</button>', implode(' ', $v_save), 'Speichern');
$ret[] = '<span></span>';
- $ret[] = '<button id="button_insert" onclick="return form_insert(this);">Hinzufügen</button>';
+ $ret[] = sprintf('<button %s>%s</button>', implode(' ', $v_insert), 'Hinzufügen');
$ret[] = '<span></span>';
- $ret[] = '<button id="button_delete" onclick="return form_delete(this);">Löschen</button>';
+ $ret[] = sprintf('<button %s>%s</button>', implode(' ', $v_delete), 'Löschen');
$ret[] = '</div>';
$ret[] = '</form>';
else
$select = array();
- if (array_key_exists('edit', $mask))
+ if (array_key_exists('edit', $mask) && check_edit($name))
$edit = build_form($name, $mask);
else
$edit = array();
projects / misc / kostenrechnung / blobdiff