function get_item_review_block($item_r) { $buffer .= "<h3>" . get_opendb_lang_var('review(s)') . "</h3>"; $result = fetch_review_rs($item_r['item_id']); if ($result) { $buffer .= "<ul>"; while ($review_r = db_fetch_assoc($result)) { $action_links = NULL; $buffer .= "<li>"; // even if already review author its possible to revoke rights to // edit / modify own reviews by revoking the PERM_USER_REVIEWER grant! if (is_user_granted_permission(PERM_ADMIN_REVIEWER) || is_user_granted_permission(PERM_USER_REVIEWER) && is_review_author($review_r['sequence_number'])) { $action_links_rs = NULL; if (get_opendb_config_var('item_review', 'update_support') !== FALSE) { $action_links[] = array(url => "item_review.php?op=edit&sequence_number=" . $review_r['sequence_number'] . "&item_id=" . $item_r['item_id'] . "&instance_no=" . $item_r['instance_no'], text => get_opendb_lang_var('edit')); } if (get_opendb_config_var('item_review', 'delete_support') !== FALSE) { $action_links[] = array(url => "item_review.php?op=delete&sequence_number=" . $review_r['sequence_number'] . "&item_id=" . $item_r['item_id'] . "&instance_no=" . $item_r['instance_no'], text => get_opendb_lang_var('delete')); } $buffer .= format_footer_links($action_links); } $buffer .= "<p class=\"author\">"; $buffer .= get_opendb_lang_var('on_date_name_wrote_the_following', array('date' => get_localised_timestamp(get_opendb_config_var('item_display', 'review_datetime_mask'), $review_r['update_on']), 'fullname' => fetch_user_name($review_r['author_id']), 'user_id' => $review_r['author_id'])); $buffer .= "</p>"; $buffer .= "<p class=\"comments\">" . nl2br(trim($review_r['comment'])); if ($review_r['item_id'] != $item_r['item_id']) { $buffer .= "<span class=\"reference\">" . get_opendb_lang_var('review_for_item_type_title', array('s_item_type' => $review_r['s_item_type'], 'item_id' => $review_r['item_id'])) . "</span>"; } $buffer .= "</p>"; $average = $review_r['rating']; $attribute_type_r = fetch_attribute_type_r("S_RATING"); $buffer .= "<span class=\"rating\">" . get_display_field($attribute_type_r['s_attribute_type'], NULL, 'review()', $average, FALSE) . "</span>"; $buffer .= "</li>"; } //while $buffer .= "</ul>"; } else { $buffer .= '<p>' . get_opendb_lang_var('no_item_reviews') . '</p>'; } $action_links = NULL; if (is_user_granted_permission(PERM_USER_REVIEWER)) { $action_links[] = array(url => "item_review.php?op=add&item_id=" . $item_r['item_id'] . "&instance_no=" . $item_r['instance_no'], text => get_opendb_lang_var('review')); $buffer .= format_footer_links($action_links); } return $buffer; }
if ($HTTP_VARS['confirmed'] == 'false') { echo "<p class=\"success\">" . get_opendb_lang_var('review_not_deleted') . "</p>"; } else { echo get_op_confirm_form($PHP_SELF, get_opendb_lang_var('confirm_delete_review'), $HTTP_VARS); } } } else { echo "<p class=\"error\">" . get_opendb_lang_var('operation_not_available') . "</p>"; } } else { echo "<p class=\"error\">" . get_opendb_lang_var('operation_not_available') . "</p>"; } } else { if ($HTTP_VARS['op'] == 'edit') { if (get_opendb_config_var('item_review', 'update_support') !== FALSE) { if (is_review_author($review_r['sequence_number']) || is_user_granted_permission(PERM_ADMIN_REVIEWER)) { echo get_edit_form('update', $review_r, $HTTP_VARS); } else { echo "<p class=\"error\">" . get_opendb_lang_var('operation_not_available') . "</p>"; } } else { echo "<p class=\"error\">" . get_opendb_lang_var('operation_not_available') . "</p>"; } } else { if ($HTTP_VARS['op'] == 'add') { echo get_edit_form('insert', array(), $HTTP_VARS); } } } } }