function org_select() { global $_STATE; list_setup(); //restore the org list if (!array_key_exists(strval($_POST["selOrg"]), $_STATE->records)) { throw_the_bum_out(NULL, "Evicted(" . __LINE__ . "): invalid org id " . $_POST["selOrg"]); //we're being spoofed } $_STATE->record_id = intval($_POST["selOrg"]); }
function record_select() { global $_DB, $_STATE; list_setup(); //restore the record list if (!array_key_exists(strval($_POST["selTask"]), $_STATE->records)) { throw_the_bum_out(NULL, "Evicted(" . __LINE__ . "): invalid task id " . $_POST["selTask"]); //we're being spoofed } $_STATE->record_id = intval($_POST["selTask"]); $sql = "SELECT name, description FROM " . $_DB->prefix . "a12_task\n\t\t\tWHERE task_id=" . $_STATE->record_id . ";"; $row = $_DB->query($sql)->fetchObject(); $_STATE->forwho = $row->name . ": " . $row->description; //PROPERTIES wants to see this }