<?php include_once "global/includes.php"; if (!$user->loggedIn()) { header("Location: index.php"); } if (isset($_POST['form'])) { if (!isset($_POST['form']['name']) || !isset($_POST['form']['description']) || !isset($_POST['form']['machine_type_id'])) { redirect_to(array('location' => 'form.php' . (isset($_REQUEST['id']) ? "?id=" . intval($_REQUEST['id']) : ""), 'status' => 'One or more required fields are missing. Please check your input and try again.')); } try { $form = new Form($database, intval($_REQUEST['id'])); } catch (Exception $e) { redirect_to(array('location' => 'form.php' . (isset($_REQUEST['id']) ? "?action=show&id=" . intval($_REQUEST['id']) : ""), 'status' => 'This form does not exist.', 'class' => 'error')); } if (!$form->allow($user, '')) { redirect_to(array('location' => 'form.php' . (isset($_REQUEST['id']) ? "?action=show&id=" . intval($_REQUEST['id']) : ""), 'status' => 'You are not authorized to create or update forms.', 'class' => 'error')); } $formID = $form->create_or_update($_POST['form']); if ($formID) { redirect_to(array('location' => 'form.php?action=view&id=' . intval($formID), 'status' => 'Successfully ' . (intval($_REQUEST['id']) == 0 ? 'created' : 'updated') . ' form.', 'class' => 'success')); } else { redirect_to(array('location' => 'form.php' . (isset($_REQUEST['id']) ? "?id=" . intval($_REQUEST['id']) : ""), 'status' => 'An error occurred while ' . (intval($_REQUEST['id']) == 0 ? 'creating' : 'updating') . ' this form. Please try again.', 'class' => 'error')); } } start_html($user, "UC Medicine QA", "Manage Forms", $_REQUEST['status'], $_REQUEST['class']); switch ($_REQUEST['action']) { case 'new': if (!$user->isAdmin()) { display_error("Error: Insufficient privileges", "You must be an administrator to create forms."); break;