$cellular = smart_addslashes($_POST["cellular"]);
$country = smart_addslashes($_POST["country"]);
$state = smart_addslashes($_POST["state"]);
$city = smart_addslashes($_POST["city"]);
$zip = smart_addslashes($_POST["zip"]);
$address = smart_addslashes($_POST["address"]);
$department = smart_addslashes($_POST["department"]);
$function = smart_addslashes($_POST["function"]);
$comment = smart_addslashes($_POST["comment"]);
if ($first_name == '' && $last_name == '') {
$feedback = "<p class=\"Error\">" . $error_missing_field . "</p>";
} else {
$company_name = isset($_POST['company_name']) ? smart_addslashes(trim($_POST['company_name'])) : '';
if (isset($_POST['company_name']) && $company_name == '') {
$company_id = 0;
} elseif ($company_name != '' && !($new_company_id = $ab->get_company_id_by_name($company_name, $addressbook_id))) {
$acl_read = $GO_SECURITY->get_new_acl('company read');
$acl_write = $GO_SECURITY->get_new_acl('company write');
if ($acl_read > 0 && $acl_write > 0 && ($company_id = $ab->add_company($addressbook_id, $GO_SECURITY->user_id, $company_name, '', '', '', '', '', '', '', '', '', '', '', '', '', '', $acl_read, $acl_write, 0))) {
if ($addressbook = $ab->get_addressbook($addressbook_id)) {
$GO_SECURITY->copy_acl($addressbook['acl_read'], $acl_read);
$GO_SECURITY->copy_acl($addressbook['acl_write'], $acl_write);
}
} else {
$GO_SECURITY->delete_acl($acl_read);
$GO_SECURITY->delete_acl($acl_write);
$feedback = "<p class=\"Error\">" . $strSaveError . "</p>";
}
} elseif (isset($new_company_id) && $new_company_id != $company_id) {
$company_id = $new_company_id;
}
$fax = isset($record[$_POST['fax']]) ? addslashes(trim($record[$_POST['fax']])) : '';
$work_fax = isset($record[$_POST['work_fax']]) ? addslashes(trim($record[$_POST['work_fax']])) : '';
$cellular = isset($record[$_POST['cellular']]) ? addslashes(trim($record[$_POST['cellular']])) : '';
$country = isset($record[$_POST['country']]) ? addslashes(trim($record[$_POST['country']])) : '';
$state = isset($record[$_POST['state']]) ? addslashes(trim($record[$_POST['state']])) : '';
$city = isset($record[$_POST['city']]) ? addslashes(trim($record[$_POST['city']])) : '';
$zip = isset($record[$_POST['zip']]) ? addslashes(trim($record[$_POST['zip']])) : '';
$address = isset($record[$_POST['address']]) ? addslashes(trim($record[$_POST['address']])) : '';
$company_name = isset($record[$_POST['company_name']]) ? addslashes(trim($record[$_POST['company_name']])) : '';
$department = isset($record[$_POST['department']]) ? addslashes(trim($record[$_POST['department']])) : '';
$function = isset($record[$_POST['function']]) ? addslashes(trim($record[$_POST['function']])) : '';
$acl_read = $GO_SECURITY->get_new_acl('contact read');
$acl_write = $GO_SECURITY->get_new_acl('contact write');
if ($acl_read > 0 && $acl_write > 0) {
if ($company_name != '') {
$company_id = $ab->get_company_id_by_name($company_name, $_POST['addressbook_id']);
} else {
$company_id = 0;
}
if ($ab->add_contact("", $GO_SECURITY->user_id, $_POST['addressbook_id'], $first_name, $middle_name, $last_name, $initials, $title, $sex, $birthday, $email, $work_phone, $home_phone, $fax, $cellular, $country, $state, $city, $zip, $address, $company_id, $work_fax, $department, $function, '', $group_id, '', $acl_read, $acl_write)) {
$GO_SECURITY->copy_acl($addressbook['acl_read'], $acl_read);
$GO_SECURITY->copy_acl($addressbook['acl_write'], $acl_write);
} else {
$GO_SECURITY->delete_acl($acl_read);
$GO_SECURITY->delete_acl($acl_write);
}
}
}
} else {
if (isset($record[$_POST['name']]) && $record[$_POST['name']] != '') {
$name = addslashes(trim($record[$_POST['name']]));
