} } else { if ($action == 'classifyrefunded' && $user->rights->deplacement->creer) { $object->fetch($id); if ($object->statut == 1) { $result = $object->setStatut(2); if ($result > 0) { header("Location: " . $_SERVER["PHP_SELF"] . "?id=" . $id); exit; } else { setEventMessages($object->error, $object->errors, 'errors'); } } } else { if ($action == 'confirm_delete' && $confirm == "yes" && $user->rights->deplacement->supprimer) { $result = $object->delete($id); if ($result >= 0) { header("Location: index.php"); exit; } else { setEventMessages($object->error, $object->errors, 'errors'); } } else { if ($action == 'add' && $user->rights->deplacement->creer) { if (!GETPOST('cancel', 'alpha')) { $error = 0; $object->date = dol_mktime(12, 0, 0, GETPOST('remonth', 'int'), GETPOST('reday', 'int'), GETPOST('reyear', 'int')); $object->km = price2num(GETPOST('km', 'alpha'), 'MU'); // Not 'int', it may be a formated amount $object->type = GETPOST('type', 'alpha'); $object->socid = GETPOST('socid', 'int');
// Security check $id=isset($_GET["id"])?$_GET["id"]:$_POST["id"]; if ($user->societe_id) $socid=$user->societe_id; $result = restrictedArea($user, 'deplacement', $id,''); $mesg = ''; /* * Actions */ if ($_POST["action"] == 'confirm_delete' && $_POST["confirm"] == "yes" && $user->rights->deplacement->supprimer) { $deplacement = new Deplacement($db); $result=$deplacement->delete($_GET["id"]); if ($result >= 0) { Header("Location: index.php"); exit; } else { $mesg=$deplacement->error; } } if ($_POST["action"] == 'add' && $user->rights->deplacement->creer) { if (! $_POST["cancel"]) {