if ((int) $question_id != 0) { $question = steam_factory::get_object($steam, $question_id); } } else { header("Location: {$config_webserver_ip}/index.php"); } //create new RIGHTS object $rights = new rights($steam, $questionary, $question_folder, $answer_folder); //check author permission $login_user = $steam->get_login_user(); $login_user_id = $login_user->get_id(); $login_user_groups = $login_user->get_groups(); foreach ($login_user_groups as $login_user_group) { $login_user_group_ids[] = $login_user_group->get_id(); } $is_author = $rights->check_access_edit($login_user, $login_user_group_ids); if (!$is_author || count($answer_folder->get_inventory()) > 0) { //Disconnect & close $steam->disconnect(); die("<html>\n<body onload='javascript:window.close();'>\n</body>\n</html>"); } //load question if ($action == "edit" && isset($question)) { $geo = $question->get_attribute("bid:question:geometry"); } //add/edit description if ($action != "" && isset($_POST["text"])) { //check for error if (trim($_POST["text"]) == "") { $error = "error_no_text"; } else {
header("Location: {$config_webserver_ip}/index.php"); } //owner of the questionary $owner = $questionary->get_creator(); $owner_id = $owner->get_id(); $owner_name = $owner->get_name(); //create new RIGHTS object $rights = new rights($steam, $questionary, $question_folder, $answer_folder); //check author permission $login_user = $steam->get_login_user(); $login_user_id = $login_user->get_id(); $login_user_groups = $login_user->get_groups(); foreach ($login_user_groups as $login_user_group) { $login_user_group_ids[] = $login_user_group->get_id(); } $is_author = $rights->check_access_edit($login_user, $login_user_group_ids); if (!$is_author || count($answer_folder->get_inventory()) > 0 || $owner_id != $login_user_id) { //Disconnect & close $steam->disconnect(); die("<html>\n<body onload='javascript:window.close();'>\n</body>\n</html>"); } //get questionary name $questionary_name = $questionary->get_name(); //get groups from user $groups = array(steam_factory::groupname_to_object($steam, "everyone")); $groups_tmp = $owner->get_groups(); if (is_array($groups_tmp)) { $groups = array_merge($groups, $groups_tmp); } //get favourites from user $favourites = $owner->get_buddies();