<?php
// review.php -- HotCRP paper review display/edit page
// HotCRP is Copyright (c) 2006-2016 Eddie Kohler and Regents of the UC
// Distributed under an MIT-like license; see LICENSE
$Error = array();
require_once "src/initweb.php";
require_once "src/papertable.php";
// special case: if "accept" or "refuse" is set, and "email" and "password"
// are both set, vector through the signin page
if (isset($_REQUEST["email"]) && isset($_REQUEST["password"]) && (isset($_REQUEST["accept"]) || isset($_REQUEST["refuse"]) || isset($_REQUEST["decline"]))) {
PaperTable::cleanRequest();
$after = "";
foreach (array("paperId" => "p", "pap" => "p", "reviewId" => "r", "commentId" => "c") as $k => $v) {
if (isset($_REQUEST[$k]) && !isset($_REQUEST[$v])) {
$_REQUEST[$v] = $_GET[$v] = $_POST[$v] = $_REQUEST[$k];
}
}
foreach (array("p", "r", "c", "accept", "refuse", "decline") as $opt) {
if (isset($_REQUEST[$opt])) {
$after .= ($after === "" ? "" : "&") . $opt . "=" . urlencode($_REQUEST[$opt]);
}
}
$url = hoturl_site_relative_raw("review", $after);
go(hoturl("index", "email=" . urlencode($_REQUEST["email"]) . "&password="******"password"]) . "&go=" . urlencode($url)));
}
if ($Me->is_empty()) {
$Me->escape();
}
$rf = ReviewForm::get();
// header
