function create_review_edit_dlg()
{
global $wb;
include PATH_FORM . "yc_review_edit.form.php";
include PATH_CONFIG . "common.php";
$items = array_values($ReviewwayOption);
wb_set_text(wb_get_control($winmain, IDC_REVIEW_CATEGORY), $items);
wb_set_text(wb_get_control($winmain, IDC_REVIEW_REVIEWDATE), date("Y-m-d H:i:s"));
// wb_set_visible (wb_get_control($winmain, IDC_REVIEW_CALENDAR), false);
//-------- view detail -------
if ($id = $wb->current_ids) {
get_review_by_id($winmain, $id);
// wb_message_box($wb->mainwin,$id);//implode(",",$all_ctrl)
}
if ($wb->current_action == "insert") {
wb_set_enabled(wb_get_control($winmain, IDC_SAVE), true);
wb_set_enabled(wb_get_control($winmain, IDC_UPDATE), false);
} else {
wb_set_enabled(wb_get_control($winmain, IDC_SAVE), false);
wb_set_enabled(wb_get_control($winmain, IDC_UPDATE), true);
}
wb_set_handler($winmain, "process_review_edit");
wb_set_visible($winmain, true);
}
session_check();
// Check if access is authorized
if ($_SESSION["access"] != "granted") {
header("Location: /");
exit(0);
}
// Check if a risk ID was sent
if (isset($_GET['id'])) {
$id = htmlentities($_GET['id']);
// Get the details of the risk
$risk = get_risk_by_id($id);
$status = htmlentities($risk[0]['status']);
$subject = htmlentities($risk[0]['subject']);
$mgmt_review = htmlentities($risk[0]['mgmt_review']);
// Get the management reviews for the risk
$mgmt_reviews = get_review_by_id($id);
$review_date = htmlentities($mgmt_reviews[0]['submission_date']);
$review = htmlentities($mgmt_reviews[0]['review']);
$reviewer = htmlentities($mgmt_reviews[0]['reviewer']);
$next_step = htmlentities($mgmt_reviews[0]['next_step']);
$comments = htmlentities($mgmt_reviews[0]['comments']);
if ($review_date == "") {
$review_date = "N/A";
} else {
$review_date = date('Y-m-d g:i A T', strtotime($review_date));
}
}
?>
<!doctype html>
<html>
