// make html in description secure $_POST['ann_description'] = admFuncVariableIsValid($_POST, 'ann_description', 'html'); // POST Variablen in das Ankuendigungs-Objekt schreiben foreach ($_POST as $key => $value) { if (strpos($key, 'ann_') === 0) { $announcement->setValue($key, $value); } } // Daten in Datenbank schreiben $return_code = $announcement->save(); if ($return_code < 0) { $gMessage->show($gL10n->get('SYS_NO_RIGHTS')); } else { if ($getAnnId == 0) { $message = $gL10n->get('ANN_EMAIL_NOTIFICATION_MESSAGE', $gCurrentOrganization->getValue('org_longname'), $_POST['ann_headline'], $gCurrentUser->getValue('FIRST_NAME') . ' ' . $gCurrentUser->getValue('LAST_NAME'), date($gPreferences['system_date'], time())); $notification = new Email(); $notification->adminNotfication($gL10n->get('ANN_EMAIL_NOTIFICATION_TITLE'), $message, $gCurrentUser->getValue('FIRST_NAME') . ' ' . $gCurrentUser->getValue('LAST_NAME'), $gCurrentUser->getValue('EMAIL')); } } unset($_SESSION['announcements_request']); $gNavigation->deleteLastUrl(); header('Location: ' . $gNavigation->getUrl()); exit; } elseif ($getMode == 2) { // Ankuendigung loeschen, wenn diese zur aktuellen Orga gehoert if ($announcement->getValue('ann_org_shortname') == $gCurrentOrganization->getValue('org_shortname')) { $announcement->delete(); // Loeschen erfolgreich -> Rueckgabe fuer XMLHttpRequest echo 'done'; } }