Move Document Versions to a seperate table much more efficient and allow to reference same document using a link Note this update will delete previous document versions

ajax/ajax_document_edit.php

@@ -10,12 +10,7 @@ $row = mysqli_fetch_array($sql);
 $document_name = nullable_htmlentities($row['document_name']);
 $document_description = nullable_htmlentities($row['document_description']);
 $document_content = nullable_htmlentities($row['document_content']);
-$document_created_by_id = intval($row['document_created_by']);
-$document_created_at = nullable_htmlentities($row['document_created_at']);
-$document_updated_at = nullable_htmlentities($row['document_updated_at']);
-$document_archived_at = nullable_htmlentities($row['document_archived_at']);
 $document_folder_id = intval($row['document_folder_id']);
-$document_parent = intval($row['document_parent']);
 $document_client_visible = intval($row['document_client_visible']);
 $client_id = intval($row['document_client_id']);
 
@@ -30,10 +25,8 @@ ob_start();
     </button>
 </div>
 <form action="post.php" method="post" autocomplete="off">
-    <input type="hidden" name="document_id" value="<?php if($document_parent == 0){ echo $document_id; } else { echo $document_parent; } ?>">
-    <input type="hidden" name="document_parent" value="<?php echo $document_parent; ?>">
+    <input type="hidden" name="document_id" value="<?php echo $document_id; ?>">
     <input type="hidden" name="client_id" value="<?php echo $client_id; ?>">
-    <input type="hidden" name="created_by" value="<?php echo $document_created_by_id; ?>">
     <div class="modal-body bg-white">
 
         <div class="form-group">

ajax/ajax_document_version_view.php

@@ -0,0 +1,39 @@
+<?php
+
+require_once '../includes/ajax_header.php';
+
+// Initialize the HTML Purifier to prevent XSS
+require_once "../plugins/htmlpurifier/HTMLPurifier.standalone.php";
+
+$purifier_config = HTMLPurifier_Config::createDefault();
+$purifier_config->set('Cache.DefinitionImpl', null); // Disable cache by setting a non-existent directory or an invalid one
+$purifier_config->set('URI.AllowedSchemes', ['data' => true, 'src' => true, 'http' => true, 'https' => true]);
+$purifier = new HTMLPurifier($purifier_config);
+
+$document_version_id = intval($_GET['id']);
+
+$sql = mysqli_query($mysqli, "SELECT * FROM document_versions WHERE document_version_id = $document_version_id LIMIT 1");
+                     
+$row = mysqli_fetch_array($sql);
+$document_version_name = nullable_htmlentities($row['document_version_name']);
+$document_version_content = $purifier->purify($row['document_version_content']);
+
+
+// Generate the HTML form content using output buffering.
+ob_start();
+?>
+
+<div class="modal-header">
+    <h5 class="modal-title text-white"><i class="fa fa-fw fa-file-alt mr-2"></i><?php echo $document_version_name; ?></h5>
+    <button type="button" class="close text-white" data-dismiss="modal">
+        <span>&times;</span>
+    </button>
+</div>
+<div class="modal-body bg-white prettyContent">
+    <?php echo $document_version_content; ?>
+</div>
+
+<script src="../js/pretty_content.js"></script>
+
+<?php
+require_once "../includes/ajax_footer.php";

ajax/ajax_document_view.php

@@ -33,5 +33,8 @@ ob_start();
     <?php echo $document_content; ?>
 </div>
 
+<script src="../js/pretty_content.js"></script>
+
 <?php
 require_once "../includes/ajax_footer.php";
+