<!-- in if -->';
$cnt = 0;
while (($row = dbi_fetch_row($res)) && $cnt < $num) {
$out .= '
<!-- in while type: $row[2] -->
<log>
<login>' . ws_escape_xml($row[0]) . '</login>
<calendar>' . ws_escape_xml($row[1]) . '</calendar>
<type>' . ws_escape_xml($row[2]) . '</type>
<date>' . ws_escape_xml($row[3]) . '</date>
<time>' . ws_escape_xml($row[4]) . '</time>
<action>' . ws_escape_xml($row[5]) . '</action>
<id>' . ws_escape_xml($row[6]) . '</id>
</log>
';
$cnt++;
}
dbi_free_result($res);
} else {
$out .= '
<error>' . ws_escape_xml(dbi_error()) . '</error>';
}
$out .= '
</activitylog>
';
// If web servic debugging is on...
if (!empty($WS_DEBUG) && $WS_DEBUG) {
ws_log_message($out);
}
// Send output now...
echo $out;
}
// Only admin users can modify events on the public calendar.
if (empty($error) && $PUBLIC_ACCESS == 'Y' && $user == '__public__' && !$is_admin) {
// translate ( 'not admin' )
$error = translate('Not authorized (not admin).');
}
if (empty($error) && !$is_admin && $user != $login) {
// Non-admin user has request to modify event on someone else's calendar.
if (access_is_enabled()) {
if (!access_user_calendar('approve', $user)) {
$error = translate('Not authorized');
}
} else {
// TODO: Support boss/assistant when UAC is not enabled.
$error = translate('Not authorized');
}
}
if (strpos(' approvedeletereject', $action)) {
update_status(ucfirst($action), $user, $id);
}
$out .= (empty($error) ? '
<success/>' : '
<error>' . ws_escape_xml($error) . '</error>') . '
</result>
';
// If web service debugging is on...
if (!empty($WS_DEBUG) && $WS_DEBUG) {
ws_log_message($out);
}
// Send output now...
echo $out;
function ws_print_event_xml($id, $event_date, $extra_tags = '')
{
global $ALLOW_EXTERNAL_USERS, $DISABLE_PARTICIPANTS_FIELD, $DISABLE_PRIORITY_FIELD, $EXTERNAL_REMINDERS, $SERVER_URL, $single_user, $single_user_login, $site_extras, $WS_DEBUG;
// Get participants first...
$res = dbi_execute('SELECT cal_login, cal_status FROM webcal_entry_user
WHERE cal_id = ? AND cal_status IN (\'A\',\'W\') ORDER BY cal_login', array($id));
$participants = array();
if ($res) {
while ($row = dbi_fetch_row($res)) {
$participants[] = array('cal_login' => $row[0], 'cal_status' => $row[1]);
}
}
// Get external participants.
$ext_participants = array();
$num_ext_participants = 0;
if (!empty($ALLOW_EXTERNAL_USERS) && $ALLOW_EXTERNAL_USERS == 'Y' && !empty($EXTERNAL_REMINDERS) && $EXTERNAL_REMINDERS == 'Y') {
$res = dbi_execute('SELECT cal_fullname, cal_email
FROM webcal_entry_ext_user WHERE cal_id = ? AND cal_email IS NOT NULL
ORDER BY cal_fullname', array($id));
if ($res) {
while ($row = dbi_fetch_row($res)) {
$ext_participants[$num_ext_participants] = $row[0];
$ext_participants_email[$num_ext_participants++] = $row[1];
}
}
}
if (count($participants) == 0 && !$num_ext_participants && $WS_DEBUG) {
$out .= '
<!-- ' . str_replace('XXX', $id, translate('No participants found for event id XXX.')) . ' -->';
return;
}
// Get event details.
$res = dbi_execute('SELECT cal_create_by, cal_date, cal_time, cal_mod_date,
cal_mod_time, cal_duration, cal_priority, cal_type, cal_access, cal_name,
cal_description FROM webcal_entry WHERE cal_id = ?', array($id));
if (!$res) {
$out .= '
' . str_replace('XXX', $id, translate('Db error Could not find event id XXX.'));
return;
}
if (!($row = dbi_fetch_row($res))) {
$out .= '
' . str_replace('XXX', $id, translate('Error Could not find event id XXX in database.'));
return;
}
$create_by = $row[0];
$name = $row[9];
$description = $row[10];
$out = '
<event>
<id>' . $id . '</id>
<name>' . ws_escape_xml($name) . '</name>' . (!empty($SERVER_URL) ? '
<url>' . $SERVER_URL . (substr($SERVER_URL, -1, 1) == '/' ? '' : '/') . 'view_entry.php?id=' . $id . '</url>' : '') . '
<description>' . ws_escape_xml($description) . '</description>
<dateFormatted>' . date_to_str($event_date) . '</dateFormatted>
<date>' . $event_date . '</date>
<time>';
if ($row[2] == 0 && $row[5] == 1440) {
$out .= '0</time>
<timeFormatted>All Day';
} elseif ($row[2] >= 0) {
$out .= sprintf("%04d", $row[2] / 100) . '</time>
<timeFormatted>' . display_time($event_date . sprintf("%06d", $row[2]));
} else {
$out .= '-1</time>
<timeFormatted>Untimed';
}
$out .= '</timeFormatted>' . ($row[5] > 0 ? '
<duration>' . $row[5] . '</duration>' : '');
if (!empty($DISABLE_PRIORITY_FIELD) && $DISABLE_PRIORITY_FIELD == 'Y') {
$pri[1] = translate('High');
$pri[2] = translate('Medium');
$pri[3] = translate('Low');
$out .= '
<priority>' . $row[6] . '-' . $pri[ceil($row[6] / 3)] . '</priority>';
}
$out .= (!empty($DISABLE_ACCESS_FIELD) && $DISABLE_ACCESS_FIELD == 'Y' ? '
<access>' . ($row[8] == 'P' ? translate('Public') : translate('Confidential')) . '</access>' : '') . (!strlen($single_user_login) ? '
<createdBy>' . $row[0] . '</createdBy>' : '') . '
<updateDate>' . date_to_str($row[3]) . '</updateDate>
<updateTime>' . display_time($row[4]) . '</updateTime>';
// Site extra fields.
$extras = get_site_extra_fields($id);
$se = '';
for ($i = 0, $cnt = count($site_extras); $i < $cnt; $i++) {
$extra_name = $site_extras[$i][0];
$extra_descr = $site_extras[$i][1];
$extra_type = $site_extras[$i][2];
if (!empty($extras[$extra_name]['cal_name'])) {
$tag = strtolower(preg_replace('/[^A-Za-z0-9]+/', '', translate($extra_descr)));
$tagname = str_replace('"', '', $extra_name);
$se .= '
<siteExtra>
<number>' . $i . '</number>
<name>' . ws_escape_xml($extra_name) . '</name>
<description>' . ws_escape_xml($extra_descr) . '</description>
<type>' . $extra_type . '</type>
<value>';
if ($extra_type == EXTRA_DATE) {
// $se .= date_to_str ( $extras[$extra_name]['cal_date'] );
$se .= $extras[$extra_name]['cal_date'];
} elseif ($extra_type == EXTRA_MULTILINETEXT) {
$se .= ws_escape_xml($extras[$extra_name]['cal_data']);
} elseif ($extra_type == EXTRA_REMINDER) {
$se .= $extras[$extra_name]['cal_remind'] > 0 ? translate('Yes') : translate('No');
} else {
// Default method for EXTRA_URL, EXTRA_TEXT, etc...
$se .= ws_escape_xml($extras[$extra_name]['cal_data']);
}
$se .= '</value>
</siteExtra>';
}
}
$out .= $se != '' ? '
<siteExtras>' . $se . '
</siteExtras>' : '';
if ($single_user != 'Y' && (empty($DISABLE_PARTICIPANTS_FIELD) || $DISABLE_PARTICIPANTS_FIELD != 'Y')) {
$out .= '
<participants>';
for ($i = 0, $cnt = count($participants); $i < $cnt; $i++) {
$out .= '
<participant status="' . $participants[$i]['cal_status'] . '">' . $participants[$i]['cal_login'] . '</participant>';
}
for ($i = 0, $cnt = count($ext_participants); $i < $cnt; $i++) {
$out .= '
<participant>' . ws_escape_xml($ext_participants[$i]) . '</participant>';
}
$out .= '
</participants>';
}
return $out . (!empty($extra_tags) ? $extra_tags : '') . '
</event>
';
}
//TODO add $user_enabled
if (user_add_user($user_login, $user_password, $user_firstname, $user_lastname, $user_email, $user_admin)) {
// success :-)
} else {
// error
$error = empty($error) ? translate('Unknown error saving user') : ws_escape_xml($error);
}
} else {
if (empty($error)) {
// update
//TODO add $user_enabled
if (user_update_user($user_login, $user_firstname, $user_lastname, $user_email, $user_admin)) {
// success :-)
} else {
// error
$error = empty($error) ? translate('Unknown error saving user') : ws_escape_xml($error);
}
}
}
}
$out .= (empty($error) ? '
<success/>' : '
<error>' . $error . '</error>') . '
</result>
';
// If web service debugging is on...
if (!empty($WS_DEBUG) && $WS_DEBUG) {
ws_log_message($out);
}
// Send output now...
echo $out;
<error>' . translate('Not authorized') . '</error>
</events>
';
exit;
}
$sentIds = array();
// Get users that this user can approve.
$userList = get_users_to_approve();
$out = '
<unapproved>
<userlist>';
$out2 = '';
$unapprovedStr = translate('Getting unapproved for user XXX.');
for ($i = 0, $cnt = count($userList); $i < $cnt; $i++) {
$out .= '
<login>' . ws_escape_xml($userList[$i]) . '</login>';
$out2 .= ($WS_DEBUG ? '
<!-- ' . str_replace('XXX', $userList[$i], $unapprovedStr) . ' -->' : '') . get_unapproved($userList[$i]);
}
$out .= '
</userlist>
<events>' . $out2 . '
</events>
</unapproved>
';
// If web service debugging is on...
if (!empty($WS_DEBUG) && $WS_DEBUG) {
ws_log_message($out);
}
// Send output now...
echo $out;