// make html in description secure
$_POST['ann_description'] = admFuncVariableIsValid($_POST, 'ann_description', 'html');
// POST Variablen in das Ankuendigungs-Objekt schreiben
foreach ($_POST as $key => $value) {
if (strpos($key, 'ann_') === 0) {
$announcement->setValue($key, $value);
}
}
// Daten in Datenbank schreiben
$return_code = $announcement->save();
if ($return_code < 0) {
$gMessage->show($gL10n->get('SYS_NO_RIGHTS'));
} else {
if ($getAnnId == 0) {
$message = $gL10n->get('ANN_EMAIL_NOTIFICATION_MESSAGE', $gCurrentOrganization->getValue('org_longname'), $_POST['ann_headline'], $gCurrentUser->getValue('FIRST_NAME') . ' ' . $gCurrentUser->getValue('LAST_NAME'), date($gPreferences['system_date'], time()));
$notification = new Email();
$notification->adminNotfication($gL10n->get('ANN_EMAIL_NOTIFICATION_TITLE'), $message, $gCurrentUser->getValue('FIRST_NAME') . ' ' . $gCurrentUser->getValue('LAST_NAME'), $gCurrentUser->getValue('EMAIL'));
}
}
unset($_SESSION['announcements_request']);
$gNavigation->deleteLastUrl();
header('Location: ' . $gNavigation->getUrl());
exit;
} elseif ($getMode == 2) {
// Ankuendigung loeschen, wenn diese zur aktuellen Orga gehoert
if ($announcement->getValue('ann_org_shortname') == $gCurrentOrganization->getValue('org_shortname')) {
$announcement->delete();
// Loeschen erfolgreich -> Rueckgabe fuer XMLHttpRequest
echo 'done';
}
}
