function get_item_review_block($item_r)
{
$buffer .= "<h3>" . get_opendb_lang_var('review(s)') . "</h3>";
$result = fetch_review_rs($item_r['item_id']);
if ($result) {
$buffer .= "<ul>";
while ($review_r = db_fetch_assoc($result)) {
$action_links = NULL;
$buffer .= "<li>";
// even if already review author its possible to revoke rights to
// edit / modify own reviews by revoking the PERM_USER_REVIEWER grant!
if (is_user_granted_permission(PERM_ADMIN_REVIEWER) || is_user_granted_permission(PERM_USER_REVIEWER) && is_review_author($review_r['sequence_number'])) {
$action_links_rs = NULL;
if (get_opendb_config_var('item_review', 'update_support') !== FALSE) {
$action_links[] = array(url => "item_review.php?op=edit&sequence_number=" . $review_r['sequence_number'] . "&item_id=" . $item_r['item_id'] . "&instance_no=" . $item_r['instance_no'], text => get_opendb_lang_var('edit'));
}
if (get_opendb_config_var('item_review', 'delete_support') !== FALSE) {
$action_links[] = array(url => "item_review.php?op=delete&sequence_number=" . $review_r['sequence_number'] . "&item_id=" . $item_r['item_id'] . "&instance_no=" . $item_r['instance_no'], text => get_opendb_lang_var('delete'));
}
$buffer .= format_footer_links($action_links);
}
$buffer .= "<p class=\"author\">";
$buffer .= get_opendb_lang_var('on_date_name_wrote_the_following', array('date' => get_localised_timestamp(get_opendb_config_var('item_display', 'review_datetime_mask'), $review_r['update_on']), 'fullname' => fetch_user_name($review_r['author_id']), 'user_id' => $review_r['author_id']));
$buffer .= "</p>";
$buffer .= "<p class=\"comments\">" . nl2br(trim($review_r['comment']));
if ($review_r['item_id'] != $item_r['item_id']) {
$buffer .= "<span class=\"reference\">" . get_opendb_lang_var('review_for_item_type_title', array('s_item_type' => $review_r['s_item_type'], 'item_id' => $review_r['item_id'])) . "</span>";
}
$buffer .= "</p>";
$average = $review_r['rating'];
$attribute_type_r = fetch_attribute_type_r("S_RATING");
$buffer .= "<span class=\"rating\">" . get_display_field($attribute_type_r['s_attribute_type'], NULL, 'review()', $average, FALSE) . "</span>";
$buffer .= "</li>";
}
//while
$buffer .= "</ul>";
} else {
$buffer .= '<p>' . get_opendb_lang_var('no_item_reviews') . '</p>';
}
$action_links = NULL;
if (is_user_granted_permission(PERM_USER_REVIEWER)) {
$action_links[] = array(url => "item_review.php?op=add&item_id=" . $item_r['item_id'] . "&instance_no=" . $item_r['instance_no'], text => get_opendb_lang_var('review'));
$buffer .= format_footer_links($action_links);
}
return $buffer;
}
if ($HTTP_VARS['confirmed'] == 'false') {
echo "<p class=\"success\">" . get_opendb_lang_var('review_not_deleted') . "</p>";
} else {
echo get_op_confirm_form($PHP_SELF, get_opendb_lang_var('confirm_delete_review'), $HTTP_VARS);
}
}
} else {
echo "<p class=\"error\">" . get_opendb_lang_var('operation_not_available') . "</p>";
}
} else {
echo "<p class=\"error\">" . get_opendb_lang_var('operation_not_available') . "</p>";
}
} else {
if ($HTTP_VARS['op'] == 'edit') {
if (get_opendb_config_var('item_review', 'update_support') !== FALSE) {
if (is_review_author($review_r['sequence_number']) || is_user_granted_permission(PERM_ADMIN_REVIEWER)) {
echo get_edit_form('update', $review_r, $HTTP_VARS);
} else {
echo "<p class=\"error\">" . get_opendb_lang_var('operation_not_available') . "</p>";
}
} else {
echo "<p class=\"error\">" . get_opendb_lang_var('operation_not_available') . "</p>";
}
} else {
if ($HTTP_VARS['op'] == 'add') {
echo get_edit_form('insert', array(), $HTTP_VARS);
}
}
}
}
}
