function handler_ajax_modify($page) { S::assert_xsrf_token(); if (!S::user()->hasRights(Group::from('qdj'), Rights::admin())) { return PL_FORBIDDEN; } $qdj = new QDJ(Json::i('id')); $page->jsonAssign('success', false); if (Json::has('date')) { $date = Json::t('date'); if (!$date) { $qdj->date(false); $page->jsonAssign('success', true); } else { try { $qdj->date(new FrankizDateTime($date)); $page->jsonAssign('success', true); } catch (Exception $e) { } } } else { if (Json::has('delete')) { if (Json::b('delete')) { $qdj->delete(); $page->jsonAssign('success', true); } } } return PL_JSON; }
function handler_ajax_comment($page) { S::assert_xsrf_token(); $g = Group::fromId(Json::i('gid')); if ($g) { $user = Json::has('uid') ? new User(Json::i('uid')) : S::user(); if ($user->isMe(S::user()) || S::user()->hasRights($g, Rights::admin()) || S::user()->isWeb()) { $comments = Json::t('comments'); $user->comments($g, $comments); $page->jsonAssign('uid', $user->id()); } } else { $page->jsonAssign('error', "Ce groupe n'existe pas"); } return PL_JSON; }