<?php require_once "../../global.php"; $slug = Filter::text($_GET['slug']); $project = Project::getProjectFromSlug($slug); // kick us out if slug invalid or not organizer/creator if ($project == null) { header('Location: ' . Url::error()); exit; } elseif (!Session::isAdmin() && !$project->isTrusted(Session::getUserID()) && !$project->isCreator(Session::getUserID())) { header('Location: ' . Url::error()); exit; } //do not allow banned members to access project $isBanned = ProjectUser::isBanned(Session::getUserID(), $project->getID()); if ($isBanned) { header('Location: ' . Url::error()); exit; } $yourTasks = Task::getYourTasks(Session::getUserID(), $project->getID()); $soup = new Soup(); $soup->set('project', $project); $soup->set('yourTasks', $yourTasks); $soup->render('project/page/taskNew');
<?php require_once "../../global.php"; $slug = Filter::text($_GET['slug']); $filter = Filter::text($_GET['filter']); $project = Project::getProjectFromSlug($slug); // kick us out if slug invalid if ($project == null) { header('Location: ' . Url::error()); exit; } // if private project, limit access to invited users, members, and admins // and exclude banned members if ($project->getPrivate()) { if (!Session::isAdmin() && !$project->isCreator(Session::getUserID())) { if (!$project->isInvited(Session::getUserID()) && !$project->isMember(Session::getUserID()) && !$project->isTrusted(Session::getUserID()) || ProjectUser::isBanned(Session::getUserID(), $project->getID())) { header('Location: ' . Url::error()); exit; } } } $projectID = $project->getID(); // page number, if any if (empty($_GET['page'])) { $page = 1; } else { $page = Filter::numeric($_GET['page']); } define('EVENTS_PER_PAGE', 10); // how many events per page switch ($filter) {
public function isBanned($userID = null) { return ProjectUser::isBanned($userID, $this->id); }