function isHandleUnique($handle, $element_id = "") { $handle = formulizeForm::sanitize_handle_name($handle); if (isMetaDataField($handle)) { return false; // don't allow reserved words that will be used in the main data extraction queries } global $xoopsDB; $element_id_condition = $element_id ? " AND ele_id != " . intval($element_id) : ""; $sql = "SELECT count(ele_handle) FROM " . $xoopsDB->prefix("formulize") . " WHERE ele_handle = '" . formulize_db_escape($handle) . "' {$element_id_condition}"; if (!($res = $xoopsDB->query($sql))) { print "Error: could not verify uniqueness of handle '{$handle}' in form {$fid}"; } else { $row = $xoopsDB->fetchRow($res); if ($row[0] == 0) { // zero rows found with that handle in this form return true; } else { return false; } } }
$original_handle = $element->getVar('ele_handle'); } $element->setVar('ele_order', figureOutOrder($_POST['orderpref'], $element->getVar('ele_order'), $fid)); $form_handler = xoops_getmodulehandler('forms', 'formulize'); $formObject = $form_handler->get($fid); if ($formObject->getVar('lockedform')) { return; } // check if the user has permission to edit the form if (!$gperm_handler->checkRight("edit_form", $fid, $groups, $mid)) { return; } $isNew = $_POST['formulize_admin_key'] == "new" ? true : false; foreach ($processedValues['elements'] as $property => $element_handle_name) { if ($property == "ele_handle") { $element_handle_name = formulizeForm::sanitize_handle_name($element_handle_name); if (strlen($element_handle_name)) { $firstUniqueCheck = true; while (!($uniqueCheck = $form_handler->isHandleUnique($element_handle_name, $ele_id))) { if ($firstUniqueCheck) { $element_handle_name = $element_handle_name . "_" . $fid; $firstUniqueCheck = false; } else { $element_handle_name = $element_handle_name . "_copy"; } } } $ele_handle = $element_handle_name; if ($element_handle_name != $processedValues['elements']['ele_handle']) { $_POST['reload_names_page'] = 1; }
// check if the user has permission to edit the form if (!$gperm_handler->checkRight("edit_form", $fid, $groups, $mid) and $_POST['formulize_admin_key'] != "new") { return; } if ($_POST['new_app_yes_no'] == "yes" and $_POST['applications-name']) { $newAppObject = $application_handler->create(); } // get all the existing applcations that this form object was assigned to if (isset($_POST['apps']) and count($_POST['apps']) > 0) { $selectedAppObjects = $application_handler->get($_POST['apps']); } // interpret form object values that were submitted and need special handling $processedValues['forms']['headerlist'] = (isset($_POST['headerlist']) and is_array($_POST['headerlist'])) ? "*=+*:" . implode("*=+*:", $_POST['headerlist']) : ""; // form_handle cannot have any period, strip all of the periods out $form_handle_from_ui = $processedValues['forms']['form_handle']; $corrected_form_handle = formulizeForm::sanitize_handle_name($form_handle_from_ui); if ($corrected_form_handle != $form_handle_from_ui) { $formulize_altered_form_handle = true; $processedValues['forms']['form_handle'] = $corrected_form_handle; } // form_handle can not be blank, default to form id if blank if ($processedValues['forms']['form_handle'] == "") { $processedValues['forms']['form_handle'] = $fid; } $old_form_handle = $formObject->getVar("form_handle"); foreach ($processedValues['forms'] as $property => $value) { $formObject->setVar($property, $value); } if (!$form_handler->insert($formObject)) { print "Error: could not save the form properly: " . $xoopsDB->error(); }