function access_denied() { if (!auth_is_user_authenticated()) { if (basename($_SERVER['SCRIPT_NAME']) != 'login_page.php') { $t_return_page = $_SERVER['PHP_SELF']; if (isset($_SERVER['QUERY_STRING'])) { $t_return_page .= '?' . $_SERVER['QUERY_STRING']; } $t_return_page = string_url(string_sanitize_url($t_return_page)); print_header_redirect('login_page.php?return=' . $t_return_page); } } else { if (auth_get_current_user_id() == user_get_id_by_name(config_get_global('anonymous_account'))) { if (basename($_SERVER['SCRIPT_NAME']) != 'login_page.php') { $t_return_page = $_SERVER['PHP_SELF']; if (isset($_SERVER['QUERY_STRING'])) { $t_return_page .= '?' . $_SERVER['QUERY_STRING']; } $t_return_page = string_url(string_sanitize_url($t_return_page)); echo '<center>'; echo '<p>' . error_string(ERROR_ACCESS_DENIED) . '</p>'; print_bracket_link('login_page.php?return=' . $t_return_page, lang_get('click_to_login')); echo '<p></p>'; print_bracket_link('main_page.php', lang_get('proceed')); echo '</center>'; } } else { echo '<center>'; echo '<p>' . error_string(ERROR_ACCESS_DENIED) . '</p>'; print_bracket_link('main_page.php', lang_get('proceed')); echo '</center>'; } } exit; }
function print_version_header($p_version_row) { $t_project_id = $p_version_row['project_id']; $t_version_id = $p_version_row['id']; $t_version_name = $p_version_row['version']; $t_project_name = project_get_field($t_project_id, 'name'); $t_release_title = '<a href="roadmap_page.php?project_id=' . $t_project_id . '">' . string_display_line($t_project_name) . '</a> - <a href="roadmap_page.php?version_id=' . $t_version_id . '">' . string_display_line($t_version_name) . '</a>'; if (config_get('show_roadmap_dates')) { $t_version_timestamp = $p_version_row['date_order']; $t_scheduled_release_date = ' (' . lang_get('scheduled_release') . ' ' . string_display_line(date(config_get('short_date_format'), $t_version_timestamp)) . ')'; } else { $t_scheduled_release_date = ''; } echo '<tt>'; echo '<br />', $t_release_title, $t_scheduled_release_date, lang_get('word_separator'), print_bracket_link('view_all_set.php?type=1&temporary=y&' . FILTER_PROPERTY_PROJECT_ID . '=' . $t_project_id . '&' . filter_encode_field_and_value(FILTER_PROPERTY_TARGET_VERSION, $t_version_name), lang_get('view_bugs_link')), '<br />'; $t_release_title_without_hyperlinks = $t_project_name . ' - ' . $t_version_name . $t_scheduled_release_date; echo utf8_str_pad('', utf8_strlen($t_release_title_without_hyperlinks), '='), '<br />'; }
function ERP_print_menu($p_page = '') { $t_pages = array('plugin_lang_get' => array('manage_config', 'manage_mailbox'), 'lang_get' => array('documentation_link' => 'view_readme', 'changelog_link' => 'view_changelog')); if (plugin_config_get('mail_rule_system') == TRUE) { $t_pages['plugin_lang_get'] = array_merge($t_pages['plugin_lang_get'], array('manage_rule')); } if (access_has_global_level(config_get('manage_plugin_threshold'))) { echo '<div align="center"><p>'; foreach ($t_pages as $t_lang_function => $t_pageset) { foreach ($t_pageset as $t_page_lang => $t_page_name) { if (is_int($t_page_lang)) { $t_page_lang = $t_page_name; } $t_page = $p_page !== $t_page_name ? plugin_page($t_page_name) : NULL; print_bracket_link($t_page, $t_lang_function($t_page_lang)); } } echo '</p></div>'; } }
/** * Print header for the specified project version. * @param int $p_version_id a valid version id * @return null */ function print_version_header($p_version_id) { $t_project_id = version_get_field($p_version_id, 'project_id'); $t_version_name = version_get_field($p_version_id, 'version'); $t_project_name = project_get_field($t_project_id, 'name'); $t_release_title = '<a href="changelog_page.php?project_id=' . $t_project_id . '">' . string_display_line($t_project_name) . '</a> - <a href="changelog_page.php?version_id=' . $p_version_id . '">' . string_display_line($t_version_name) . '</a>'; if (config_get('show_changelog_dates')) { $t_version_released = version_get_field($p_version_id, 'released'); $t_release_timestamp = version_get_field($p_version_id, 'date_order'); if ((bool) $t_version_released) { $t_release_date = ' (' . lang_get('released') . ' ' . string_display_line(date(config_get('short_date_format'), $t_release_timestamp)) . ')'; } else { $t_release_date = ' (' . lang_get('not_released') . ')'; } } else { $t_release_date = ''; } echo '<br />', $t_release_title, $t_release_date, lang_get('word_separator'), print_bracket_link('view_all_set.php?type=1&temporary=y&' . FILTER_PROPERTY_PROJECT_ID . '=' . $t_project_id . '&' . filter_encode_field_and_value(FILTER_PROPERTY_FIXED_IN_VERSION, $t_version_name), lang_get('view_bugs_link')), '<br />'; $t_release_title_without_hyperlinks = $t_project_name . ' - ' . $t_version_name . $t_release_date; echo utf8_str_pad('', utf8_strlen($t_release_title_without_hyperlinks), '='), '<br />'; }
function access_denied($p_url = null) { if (null === $p_url) { global $g_logout; $p_url = $g_logout; } print_html_top(); print_head_top(); print_title(config_get('window_title')); print_css(config_get('css_inc_file')); print_head_bottom(); print_body_top(); print_header(config_get('page_title')); print_top_page(config_get('top_page_inc')); echo '<div class="warning">'; echo '<div align="center">Access Denied<br /><br />'; print_bracket_link($p_url, lang_get('proceed')); print '</div></div>'; print_bottom_page(config_get('bottom_page_inc')); print_footer(__FILE__); print_body_bottom(); print_html_bottom(); exit; }
function access_denied() { if (!php_version_at_least('4.1.0')) { global $_SERVER; } if (!auth_is_user_authenticated()) { if (basename($_SERVER['SCRIPT_NAME']) != 'login_page.php') { if (!isset($_SERVER['REQUEST_URI'])) { if (!isset($_SERVER['QUERY_STRING'])) { $_SERVER['QUERY_STRING'] = ''; } $_SERVER['REQUEST_URI'] = $_SERVER['SCRIPT_NAME'] . '?' . $_SERVER['QUERY_STRING']; } $t_return_page = string_url($_SERVER['REQUEST_URI']); print_header_redirect('login_page.php?return=' . $t_return_page); } } else { echo '<center>'; echo '<p>' . error_string(ERROR_ACCESS_DENIED) . '</p>'; print_bracket_link('main_page.php', lang_get('proceed')); echo '</center>'; } exit; }
function print_lost_password_link() { # lost password feature disabled or reset password via email disabled -> stop here! if (LDAP != config_get_global('login_method') && ON == config_get('lost_password_feature') && ON == config_get('send_reset_password') && ON == config_get('enable_email_notification')) { print_bracket_link('lost_pwd_page.php', lang_get('lost_password_link')); } }
require_api('constant_inc.php'); require_api('gpc_api.php'); require_api('html_api.php'); require_api('lang_api.php'); require_api('news_api.php'); require_api('print_api.php'); news_ensure_enabled(); $f_news_id = gpc_get_int('news_id', null); html_page_top(); ?> <?php if ($f_news_id !== null) { $t_project_id = news_get_field($f_news_id, 'project_id'); if (news_is_private($f_news_id)) { access_ensure_project_level(config_get('private_news_threshold'), $t_project_id); } else { access_ensure_project_level(VIEWER, $t_project_id); } print_news_string_by_news_id($f_news_id); } ?> <div id="news-menu"> <?php print_bracket_link('news_list_page.php', lang_get('archives')); ?> </div> <?php html_page_bottom();
echo form_security_field('news_update'); ?> <table class="width75" cellspacing="1"> <tr> <td class="form-title"> <input type="hidden" name="news_id" value="<?php echo $v_id; ?> " /> <?php echo lang_get('headline'); ?> </td> <td class="right"> <?php print_bracket_link('news_menu_page.php', lang_get('go_back')); ?> </td> </tr> <tr class="row-1"> <td class="category" width="25%"> <span class="required">*</span><?php echo lang_get('headline'); ?> </td> <td width="75%"> <input type="text" name="headline" size="64" maxlength="64" value="<?php echo $v_headline; ?> " /> </td>
/** * print HTML relationship form * @param integer $p_bug_id A bug identifier. * @return void */ function relationship_view_box($p_bug_id) { ?> <br/> <?php collapse_open('relationships'); ?> <table class="width100" cellspacing="1"> <tr class="row-2"> <td width="15%" class="form-title" colspan="2"> <?php collapse_icon('relationships'); echo lang_get('bug_relationships'); if (ON == config_get('relationship_graph_enable')) { ?> <span class="small"><?php print_bracket_link('bug_relationship_graph.php?bug_id=' . $p_bug_id . '&graph=relation', lang_get('relation_graph')); ?> </span> <span class="small"><?php print_bracket_link('bug_relationship_graph.php?bug_id=' . $p_bug_id . '&graph=dependency', lang_get('dependency_graph')); ?> </span> <?php } ?> </td> </tr> <?php # bug not read-only and user authenticated if (!bug_is_readonly($p_bug_id)) { # user access level at least updater if (access_has_bug_level(config_get('update_bug_threshold'), $p_bug_id)) { ?> <tr class="row-1"> <th class="category"><?php echo lang_get('add_new_relationship'); ?> </th> <td><?php echo lang_get('this_bug'); ?> <form method="post" action="bug_relationship_add.php"> <?php echo form_security_field('bug_relationship_add'); ?> <input type="hidden" name="src_bug_id" value="<?php echo $p_bug_id; ?> " size="4" /> <?php relationship_list_box(config_get('default_bug_relationship')); ?> <input type="text" name="dest_bug_id" value="" /> <input type="submit" name="add_relationship" class="button" value="<?php echo lang_get('add_new_relationship_button'); ?> " /> </form> </td></tr> <?php } } ?> <tr> <td colspan="2"><?php echo relationship_get_summary_html($p_bug_id); ?> </td> </tr> </table> <?php collapse_closed('relationships'); ?> <table class="width100" cellspacing="1"> <tr> <td class="form-title"> <?php collapse_icon('relationships'); echo lang_get('bug_relationships'); ?> </td> </tr> </table> <?php collapse_end('relationships'); }
echo $f_master_bug_id; ?> " /> <input type="hidden" name="project_id" value="<?php echo $t_project_id; ?> " /> <input type="hidden" name="handler_id" value="0" /> <?php echo lang_get('enter_report_details_title'); ?> </td> <td class="right"> <?php if (BOTH == config_get('show_report')) { print_bracket_link('bug_report_advanced_page.php' . ($f_master_bug_id > 0 ? '?m_id=' . $f_master_bug_id : ''), lang_get('advanced_report_link')); } ?> </td> </tr> <!-- Category --> <tr <?php echo helper_alternate_class(); ?> > <td class="category" width="30%"> <?php echo '<span class="required">*</span>', lang_get('category'); ?>
<table class="width100" cellspacing="1"> <!-- Title --> <tr> <td class="form-title" colspan="2"> <?php echo sprintf(lang_get('tag_update'), $t_name); ?> <input type="hidden" name="tag_id" value="<?php echo $f_tag_id; ?> "/> </td> <td class="right" colspan="3"> <?php print_bracket_link('tag_view_page.php?tag_id=' . $f_tag_id, lang_get('tag_update_return')); ?> </td> </tr> <!-- Info --> <tr class="row-category"> <td width="15%"><?php echo lang_get('tag_id'); ?> </td> <td width="25%"><?php echo lang_get('tag_name'); ?> </td> <td width="20%"><?php
function print_summary_menu($p_page = '') { print '<div align="center">'; print_bracket_link('print_all_bug_page.php', lang_get('print_all_bug_page_link')); if (config_get('use_jpgraph') != 0) { $t_summary_page = 'summary_page.php'; $t_summary_jpgraph_page = 'summary_jpgraph_page.php'; switch ($p_page) { case $t_summary_page: $t_summary_page = ''; break; case $t_summary_jpgraph_page: $t_summary_jpgraph_page = ''; break; } print_bracket_link($t_summary_page, lang_get('summary_link')); print_bracket_link($t_summary_jpgraph_page, lang_get('summary_jpgraph_link')); } print '</div>'; }
} } } } if (0 < count($t_depends)) { $t_depends = implode($t_depends, '<br />'); } else { $t_depends = '<span class="small dependency_met">' . lang_get('plugin_no_depends') . '</span>'; } echo '<tr ', helper_alternate_class(), '>'; echo '<td class="small center">', $t_name, '</td>'; echo '<td class="small">', $t_description, $t_author, $t_url, '</td>'; echo '<td class="center">', $t_depends, '</td>'; echo '<td class="center">'; if ($t_ready) { print_bracket_link('manage_plugin_install.php?name=' . $t_basename . form_security_param('manage_plugin_install'), lang_get('plugin_install')); } echo '</td></tr>'; } ?> </table> <?php } ?> <br /><?php echo lang_get('plugin_key'); ?> : <span class='dependency_met'><?php
<?php require "faq_api.php"; require "css_faq.php"; html_page_top1(); html_page_top2(); access_ensure_project_level(DEVELOPER); $f_id = gpc_get_int('f_id'); # Delete the faq entry $result = faq_delete_query($f_id); $t_redirect_url = $g_faq_menu_page; if ($result) { ?> <div align="center"> <?php print lang_get('operation_successful') . '<p>'; } else { print_mantis_error(ERROR_GENERIC); } if (ON == plugin_config_get('faq_view_window')) { ?> <a href="javascript:window.opener='x';window.close();">Close Window</a> <?php } else { print_bracket_link($g_faq_menu_page, lang_get('proceed')); } ?> </div> <?php html_page_bottom1();
access_ensure_project_level( config_get( 'manage_news_threshold' ), $v_project_id ); $v_headline = string_attribute( $v_headline ); $v_body = string_textarea( $v_body ); html_page_top( lang_get( 'edit_news_title' ) ); # Edit News Form BEGIN ?> <div id="news-update-div" class="form-container"> <form id="news-update-form" method="post" action="news_update.php"> <fieldset class="has-required"> <legend><span><?php echo lang_get( 'headline' ) ?></span></legend> <div class="section-link"><?php print_bracket_link( 'news_menu_page.php', lang_get( 'go_back' ) ) ?></div> <?php echo form_security_field( 'news_update' ); ?> <input type="hidden" name="news_id" value="<?php echo $v_id ?>" /> <div class="field-container <?php echo helper_alternate_class_no_attribute(); ?>"> <label for="news-update-headline" class="required"><span><?php echo lang_get( 'headline' ) ?></span></label> <span class="input"><input type="text" id="news-update-headline" name="headline" size="64" maxlength="64" value="<?php echo $v_headline ?>" /></span> <span class="label-style"></span> </div> <div class="field-container <?php echo helper_alternate_class_no_attribute(); ?>"> <label for="news-update-body" class="required"><span><?php echo lang_get( 'body' ) ?></span></label> <span class="textarea"><textarea id="news-update-body" name="body" cols="60" rows="10"><?php echo $v_body ?></textarea></span> <span class="label-style"></span> </div> <div class="field-container <?php echo helper_alternate_class_no_attribute(); ?>"> <label for=""><span><?php echo lang_get( 'post_to' ) ?></span></label> <span class="select">
/> </td> <td class="center"> <?php echo get_enum_element('project_view_state', $t_subproject['view_state']); ?> </td> <td> <?php echo string_display_links($t_subproject['description']); ?> </td> <td class="center"> <?php print_bracket_link('manage_proj_edit_page.php?project_id=' . $t_subproject['id'], lang_get('edit_link')); print_bracket_link("manage_proj_subproj_delete.php?project_id={$f_project_id}&subproject_id=" . $t_subproject['id'] . form_security_param('manage_proj_subproj_delete'), lang_get('unlink_link')); ?> </td> </tr> <?php } # End of foreach loop over subprojects } # End of hiding subproject listing if there are no subprojects ?> <tr> <td colspan="6"> <input type="submit" value="<?php echo lang_get('update_subproject_inheritance'); ?>
auth_ensure_user_authenticated(); current_user_ensure_unprotected(); # Only allow users to delete their own accounts if allow_account_delete = ON or # the user has permission to manage user accounts. if (OFF == config_get('allow_account_delete') && !access_has_global_level(config_get('manage_user_threshold'))) { print_header_redirect('account_page.php'); } # check that we are not deleting the last administrator account $t_admin_threshold = config_get_global('admin_site_threshold'); if (current_user_is_administrator() && user_count_level($t_admin_threshold) <= 1) { trigger_error(ERROR_USER_CHANGE_LAST_ADMIN, ERROR); } helper_ensure_confirmed(lang_get('confirm_delete_msg'), lang_get('delete_account_button')); form_security_purge('account_delete'); $t_user_id = auth_get_current_user_id(); auth_logout(); user_delete($t_user_id); html_page_top1(); html_page_top2a(); ?> <br /> <div align="center"> <?php echo lang_get('account_removed_msg') . '<br />'; print_bracket_link(config_get('logout_redirect_page'), lang_get('proceed')); ?> </div> <?php html_page_bottom1a();
function show_revision($t_revision) { static $s_can_drop = null; static $s_drop_token = null; static $s_user_access = null; if (is_null($s_can_drop)) { $s_can_drop = access_has_bug_level(config_get('bug_revision_drop_threshold'), $t_revision['bug_id']); $s_drop_token = form_security_param('bug_revision_drop'); } switch ($t_revision['type']) { case REV_DESCRIPTION: $t_label = lang_get('description'); break; case REV_STEPS_TO_REPRODUCE: $t_label = lang_get('steps_to_reproduce'); break; case REV_ADDITIONAL_INFO: $t_label = lang_get('additional_information'); break; case REV_BUGNOTE: if (is_null($s_user_access)) { $s_user_access = access_has_bug_level(config_get('private_bugnote_threshold'), $t_revision['bug_id']); } if (!$s_user_access) { return null; } $t_label = lang_get('bugnote'); break; default: $t_label = ''; } $t_by_string = sprintf(lang_get('revision_by'), string_display_line(date(config_get('normal_date_format'), $t_revision['timestamp'])), string_display_line(user_get_name($t_revision['user_id']))); ?> <tr class="spacer"><td><a id="revision-<?php echo $t_revision['id']; ?> "></a></td></tr> <tr <?php echo helper_alternate_class(); ?> > <th class="category"><?php echo lang_get('revision'); ?> </th> <td colspan="2"><?php echo $t_by_string; ?> </td> <td class="center" width="5%"> <?php if ($s_can_drop) { print_bracket_link('bug_revision_drop.php?id=' . $t_revision['id'] . $s_drop_token, lang_get('revision_drop')); } ?> </tr> <tr <?php echo helper_alternate_class(); ?> > <th class="category"><?php echo $t_label; ?> </th> <td colspan="3"><?php echo string_display_links($t_revision['value']); ?> </td> </tr> <?php }
?> <table> <thead> <tr> <td class="form-title" colspan="3"> <input type="hidden" name="bug_id" value="<?php echo $t_bug_id; ?> " /> <?php echo lang_get('updating_bug_advanced_title'); ?> </td> <td class="right" colspan="3"> <?php print_bracket_link(string_get_bug_view_url($t_bug_id), lang_get('back_to_bug_link')); ?> </td> </tr> <?php # Submit Button if ($t_top_buttons_enabled) { ?> <tr> <td class="center" colspan="6"> <input ', helper_get_tab_index(), ' type="submit" class="button" value="', lang_get( 'update_information_button' ), '" /> </td> </tr>
require_once 'core.php'; $t_core_path = config_get('core_path'); require_once $t_core_path . 'custom_field_api.php'; form_security_validate('manage_custom_field_delete'); auth_reauthenticate(); access_ensure_global_level(config_get('manage_custom_fields_threshold')); $f_field_id = gpc_get_int('field_id'); $f_return = strip_tags(gpc_get_string('return', 'manage_custom_field_page.php')); $t_definition = custom_field_get_definition($f_field_id); if (0 < count(custom_field_get_project_ids($f_field_id))) { helper_ensure_confirmed(lang_get('confirm_used_custom_field_deletion') . '<br/>' . lang_get('custom_field') . ': ' . string_attribute($t_definition['name']), lang_get('field_delete_button')); } else { helper_ensure_confirmed(lang_get('confirm_custom_field_deletion') . '<br/>' . lang_get('custom_field') . ': ' . string_attribute($t_definition['name']), lang_get('field_delete_button')); } custom_field_destroy($f_field_id); form_security_purge('manage_custom_field_delete'); html_page_top1(); html_meta_redirect($f_return); html_page_top2(); ?> <br /> <div align="center"> <?php echo lang_get('operation_successful') . '<br />'; print_bracket_link($f_return, lang_get('proceed')); ?> </div> <?php html_page_bottom1(__FILE__);
# (at your option) any later version. # # Mantis is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with Mantis. If not, see <http://www.gnu.org/licenses/>. # -------------------------------------------------------- # $Id: permalink_page.php,v 1.4.2.1 2007-10-13 22:34:11 giallu Exp $ # -------------------------------------------------------- require_once 'core.php'; $t_core_path = config_get('core_path'); html_page_top1(); html_page_top2(); $f_url = string_sanitize_url(gpc_get_string('url')); ?> <div align="center"> <p> <?php echo lang_get('filter_permalink'), '<br />'; echo "<a href=\"{$f_url}\">{$f_url}</a>"; ?> </p><br /> <?php print_bracket_link(sprintf(config_get('create_short_url'), $f_url), lang_get('create_short_link'), true); ?> </div> <?php html_page_bottom1(__FILE__);
/** * MantisBT Core API's */ require_once 'core.php'; require_once 'news_api.php'; require_once 'print_api.php'; news_ensure_enabled(); form_security_validate('news_add'); access_ensure_project_level(config_get('manage_news_threshold')); $f_view_state = gpc_get_int('view_state'); $f_headline = gpc_get_string('headline'); $f_announcement = gpc_get_bool('announcement'); $f_body = gpc_get_string('body'); $t_news_id = news_create(helper_get_current_project(), auth_get_current_user_id(), $f_view_state, $f_announcement, $f_headline, $f_body); form_security_purge('news_add'); $t_news_row = news_get_row($t_news_id); html_page_top(); ?> <br /> <div align="center"> <?php echo lang_get('operation_successful') . '<br />'; print_bracket_link('news_menu_page.php', lang_get('proceed')); echo '<br /><br />'; print_news_entry_from_row($t_news_row); ?> </div> <?php html_page_bottom();
<tr> <td class="worklog-content"> <?php echo $v_content; ?> </td> </tr> </table> </div> <?php } # end for loop ?> <p> <div align="center"> <?php if (access_has_project_level(DEVELOPER)) { global $g_worklog_edit_page, $g_worklog_delete_page; print_bracket_link($g_worklog_edit_page . "&f_id={$v_id}", lang_get('bugnote_edit_link')); print_bracket_link($g_worklog_delete_page . "&f_id={$v_id}", lang_get('delete_link')); } global $g_worklog_menu_page; if (OFF == plugin_config_get('worklog_view_window')) { print_bracket_link($g_worklog_menu_page, lang_get('back_link')); } ?> </div> <?php html_page_bottom1();
<b><?php echo lang_get('signup_done_title'); ?> </b><br /> <?php echo "[{$f_username} - {$f_email}] "; ?> </td> </tr> <tr> <td> <br /> <?php echo lang_get('password_emailed_msg'); ?> <br /><br /> <?php echo lang_get('no_reponse_msg'); ?> <br /><br /> </td> </tr> </table> <br /> <?php print_bracket_link('login_page.php', lang_get('proceed')); ?> </div> <?php html_page_bottom1a(__FILE__);
print "<input type=\"hidden\" name=\"offset\" value=\"0\" />"; } ?> <table class="width100" cellspacing="1"> <tr> <td class="right" colspan="<?php print 8 * $t_custom_cols; ?> "> <?php $f_switch_view_link = 'view_filters_page.php?target_field=' . $t_target_field . '&view_type='; if (SIMPLE_ONLY != config_get('view_filters') && ADVANCED_ONLY != config_get('view_filters')) { if ('advanced' == $f_view_type) { print_bracket_link($f_switch_view_link . 'simple', lang_get('simple_filters')); } else { print_bracket_link($f_switch_view_link . 'advanced', lang_get('advanced_filters')); } } ?> </td> </tr> <tr class="row-category2"> <td class="small-caption" colspan="<?php echo 1 * $t_custom_cols; ?> "><?php echo lang_get('reporter'); ?> </td> <td class="small-caption" colspan="<?php echo 1 * $t_custom_cols;
/** * Function to be called when a user is attempting to access a page that * he/she is not authorised to. This outputs an access denied message then * re-directs to the mainpage. */ function access_denied() { if (!auth_is_user_authenticated()) { if (basename($_SERVER['SCRIPT_NAME']) != 'login_page.php') { $t_return_page = $_SERVER['SCRIPT_NAME']; if (isset($_SERVER['QUERY_STRING'])) { $t_return_page .= '?' . $_SERVER['QUERY_STRING']; } $t_return_page = string_url(string_sanitize_url($t_return_page)); print_header_redirect('login_page.php' . '?return=' . $t_return_page); } } else { if (current_user_is_anonymous()) { if (basename($_SERVER['SCRIPT_NAME']) != 'login_page.php') { $t_return_page = $_SERVER['SCRIPT_NAME']; if (isset($_SERVER['QUERY_STRING'])) { $t_return_page .= '?' . $_SERVER['QUERY_STRING']; } $t_return_page = string_url(string_sanitize_url($t_return_page)); echo '<p class="center">' . error_string(ERROR_ACCESS_DENIED) . '</p><p class="center">'; print_bracket_link(helper_mantis_url('login_page.php') . '?return=' . $t_return_page, lang_get('click_to_login')); echo '</p><p class="center">'; print_bracket_link(helper_mantis_url('main_page.php'), lang_get('proceed')); echo '</p>'; } } else { echo '<p class="center">' . error_string(ERROR_ACCESS_DENIED) . '</p>'; echo '<p class="center">'; print_bracket_link(helper_mantis_url('main_page.php'), lang_get('proceed')); echo '</p>'; } } exit; }
<?php if ($t_can_view_history) { ?> <!-- History --> <span class="small"><?php print_bracket_link('bug_view_advanced_page.php?bug_id=' . $f_bug_id . '&history=1#history', lang_get('bug_history')); ?> </span> <?php } ?> <!-- Print Bug --> <span class="small"><?php print_bracket_link('print_bug_page.php?bug_id=' . $f_bug_id, lang_get('print')); ?> </span> </td> </tr> <!-- Labels --> <tr class="row-category"> <td width="15%"> <?php echo lang_get('id'); ?> </td>
*/ /** * MantisBT Core API's */ require_once 'core.php'; require_once 'custom_field_api.php'; form_security_validate('manage_proj_custom_field_update'); auth_reauthenticate(); $f_field_id = gpc_get_int('field_id'); $f_project_id = gpc_get_int('project_id'); $f_sequence = gpc_get_int('sequence'); # We should check both since we are in the project section and an # admin might raise the first threshold and not realize they need # to raise the second access_ensure_project_level(config_get('manage_project_threshold'), $f_project_id); access_ensure_project_level(config_get('custom_field_link_threshold'), $f_project_id); custom_field_set_sequence($f_field_id, $f_project_id, $f_sequence); form_security_purge('manage_proj_custom_field_update'); $t_redirect_url = 'manage_proj_edit_page.php?project_id=' . $f_project_id; html_page_top(null, $t_redirect_url); ?> <br /> <div align="center"> <?php echo lang_get('operation_successful') . '<br />'; print_bracket_link($t_redirect_url, lang_get('proceed')); ?> </div> <?php html_page_bottom();
if ($t_bug_data->resolution != config_get('default_bug_resolution')) { history_log_event($t_bug_id, 'resolution', config_get('default_bug_resolution')); } form_security_purge('bug_report'); html_page_top1(); if (!$f_report_stay) { html_meta_redirect('view_all_bug_page.php'); } html_page_top2(); ?> <br /> <div align="center"> <?php echo lang_get('operation_successful') . '<br />'; print_bracket_link(string_get_bug_view_url($t_bug_id), sprintf(lang_get('view_submitted_bug_link'), $t_bug_id)); print_bracket_link('view_all_bug_page.php', lang_get('view_bugs_link')); if ($f_report_stay) { ?> <p> <form method="post" action="<?php echo string_get_bug_report_url(); ?> "> <?php # CSRF protection not required here - form does not result in modifications ?> <input type="hidden" name="category_id" value="<?php echo string_attribute($t_bug_data->category_id); ?> " /> <input type="hidden" name="severity" value="<?php