require_once '../../include/filter.class.php';
if (!($db = new basis_db())) {
die('Es konnte keine Verbindung zum Server aufgebaut werden.');
}
$user = get_uid();
$rechte = new benutzerberechtigung();
$rechte->getBerechtigungen($user);
if (!$rechte->isBerechtigt('basis/statistik')) {
die('Sie haben keine Berechtigung fuer diese Seite!');
}
if (!isset($_GET['filter_id'])) {
die('falscher Parameter');
}
$filter_id = $_GET['filter_id'];
echo '
<!DOCTYPE HTML>
<html>
<head>
<title>Filter</title>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<link rel="stylesheet" href="../../skin/vilesci.css" type="text/css">
</head>
<body>
';
$filter = new filter();
$filter->load($filter_id);
$filter->result[] = $filter;
echo $filter->getHtmlWidget($filter->kurzbz);
echo '
</body>
</html>';
$filter->filter_id = '';
$filter->kurzbz = 'NewFilter';
$filter->sql = 'SELECT foo AS value, bar AS name FROM foobar WHERE ... ORDER BY name';
$filter->valuename = '';
$filter->showvalue = true;
$filter->type = 'select';
$filter->htmlattr = '';
$filter->insertvon = $user;
$filter->updatevon = $user;
if (isset($_POST["action"]) && isset($_REQUEST["filter_id"])) {
if (!$rechte->isBerechtigt('basis/statistik', null, 'suid')) {
die('Sie haben keine Berechtigung fuer diese Aktion');
}
if ($_POST["action"] == 'save') {
if ($_REQUEST["filter_id"] != '') {
if ($filter->load($_REQUEST["filter_id"])) {
$filter->updatevon = $user;
} else {
die('Fehlgeschlagen:' . $filter->errormsg);
}
}
$filter->kurzbz = $_POST["kurzbz"];
$filter->valuename = $_POST["valuename"];
$filter->sql = $_POST["sql"];
$filter->showvalue = isset($_POST["showvalue"]);
$filter->type = $_POST["type"];
$filter->htmlattr = $_POST["htmlattr"];
if (!$filter->save()) {
$errorstr .= $filter->errormsg;
}
$reloadstr .= "<script type='text/javascript'>\n";
