AS1024/itflow
1
0
Fork 0
mirror of https://github.com/itflow-org/itflow synced 2026-03-21 21:15:38 +00:00
Code Issues Packages Projects Releases Wiki Activity

More TinyMCE in more places

Browse Source
This commit is contained in:
johnnyq
2023-05-08 19:53:42 -04:00
parent 01a37cb1e1
commit c3a711d75d
7 changed files with 7 additions and 35 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
client_document_edit_modal.php
View File

@@ -17,7 +17,7 @@
</div> </div>
<div class="form-group"> <div class="form-group">
<textarea class="form-control tinymce" name="content"><?php echo htmlentities($document_content); ?></textarea> <textarea class="form-control tinymce" name="content"><?php echo $document_content; ?></textarea>
</div> </div>
<div class="form-group"> <div class="form-group">

9
client_document_templates.php
View File

@@ -2,12 +2,6 @@
require_once("inc_all_client.php"); require_once("inc_all_client.php");
//Initialize the HTML Purifier to prevent XSS
require("plugins/htmlpurifier/HTMLPurifier.standalone.php");
$purifier_config = HTMLPurifier_Config::createDefault();
$purifier_config->set('URI.AllowedSchemes', ['data' => true, 'src' => true, 'http' => true, 'https' => true]);
$purifier = new HTMLPurifier($purifier_config);
// Sort by // Sort by
if (!empty($_GET['sb'])) { if (!empty($_GET['sb'])) {
$sb = sanitizeInput($_GET['sb']); $sb = sanitizeInput($_GET['sb']);
@@ -87,8 +81,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
while ($row = mysqli_fetch_array($sql)) { while ($row = mysqli_fetch_array($sql)) {
$document_id = intval($row['document_id']); $document_id = intval($row['document_id']);
$document_name = htmlentities($row['document_name']); $document_name = htmlentities($row['document_name']);
//$document_content = $purifier->purify($row['document_content']); $document_content = htmlentities($row['document_content']);
$document_content = $row['document_content'];
$document_created_at = htmlentities($row['document_created_at']); $document_created_at = htmlentities($row['document_created_at']);
$document_updated_at = htmlentities($row['document_updated_at']); $document_updated_at = htmlentities($row['document_updated_at']);
$document_folder_id = intval($row['document_folder_id']); $document_folder_id = intval($row['document_folder_id']);

9
client_documents.php
View File

@@ -6,12 +6,6 @@ $o = "ASC";
require_once("inc_all_client.php"); require_once("inc_all_client.php");
//Initialize the HTML Purifier to prevent XSS
require("plugins/htmlpurifier/HTMLPurifier.standalone.php");
$purifier_config = HTMLPurifier_Config::createDefault();
$purifier_config->set('URI.AllowedSchemes', ['data' => true, 'src' => true, 'http' => true, 'https' => true]);
$purifier = new HTMLPurifier($purifier_config);
// Folder // Folder
if (!empty($_GET['folder_id'])) { if (!empty($_GET['folder_id'])) {
$folder = intval($_GET['folder_id']); $folder = intval($_GET['folder_id']);
@@ -179,7 +173,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
while ($row = mysqli_fetch_array($sql)) { while ($row = mysqli_fetch_array($sql)) {
$document_id = intval($row['document_id']); $document_id = intval($row['document_id']);
$document_name = htmlentities($row['document_name']); $document_name = htmlentities($row['document_name']);
$document_content = $purifier->purify($row['document_content']); $document_content = htmlentities($row['document_content']);
$document_created_at = htmlentities($row['document_created_at']); $document_created_at = htmlentities($row['document_created_at']);
$document_updated_at = htmlentities($row['document_updated_at']); $document_updated_at = htmlentities($row['document_updated_at']);
$document_folder_id = intval($row['document_folder_id']); $document_folder_id = intval($row['document_folder_id']);
@@ -212,7 +206,6 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
<?php } ?> <?php } ?>
</div> </div>
</div> </div>
<?php require("client_document_view_modal.php"); ?>
</td> </td>
</tr> </tr>

8
client_tickets.php
View File

@@ -6,12 +6,6 @@ $o = "DESC";
require_once("inc_all_client.php"); require_once("inc_all_client.php");
//Initialize the HTML Purifier to prevent XSS
require("plugins/htmlpurifier/HTMLPurifier.standalone.php");
$purifier_config = HTMLPurifier_Config::createDefault();
$purifier_config->set('URI.AllowedSchemes', ['data' => true, 'src' => true, 'http' => true, 'https' => true]);
$purifier = new HTMLPurifier($purifier_config);
//Rebuild URL //Rebuild URL
$url_query_strings_sb = http_build_query(array_merge($_GET, array('sb' => $sb, 'o' => $o))); $url_query_strings_sb = http_build_query(array_merge($_GET, array('sb' => $sb, 'o' => $o)));
@@ -88,7 +82,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
$ticket_prefix = htmlentities($row['ticket_prefix']); $ticket_prefix = htmlentities($row['ticket_prefix']);
$ticket_number = htmlentities($row['ticket_number']); $ticket_number = htmlentities($row['ticket_number']);
$ticket_subject = htmlentities($row['ticket_subject']); $ticket_subject = htmlentities($row['ticket_subject']);
$ticket_details = $purifier->purify($row['ticket_details']); $ticket_details = htmlentities($row['ticket_details']);
$ticket_priority = htmlentities($row['ticket_priority']); $ticket_priority = htmlentities($row['ticket_priority']);
$ticket_status = htmlentities($row['ticket_status']); $ticket_status = htmlentities($row['ticket_status']);
$ticket_created_at = htmlentities($row['ticket_created_at']); $ticket_created_at = htmlentities($row['ticket_created_at']);

2
scheduled_ticket_add_modal.php
View File

@@ -133,7 +133,7 @@
<?php } ?> <?php } ?>
<div class="form-group"> <div class="form-group">
<textarea class="form-control summernote" rows="8" name="details"></textarea> <textarea class="form-control tinymce" name="details"></textarea>
</div> </div>
</div> </div>

2
scheduled_ticket_edit_modal.php
View File

@@ -77,7 +77,7 @@
</div> </div>
<div class="form-group"> <div class="form-group">
<textarea class="form-control summernote" rows="8" name="details" id="editTicketDetails"></textarea> <textarea class="form-control tinymce" name="details" id="editTicketDetails"></textarea>
</div> </div>
</div> </div>

10
tickets.php
View File

@@ -6,12 +6,6 @@ $o = "DESC";
require_once("inc_all.php"); require_once("inc_all.php");
//Initialize the HTML Purifier to prevent XSS
require("plugins/htmlpurifier/HTMLPurifier.standalone.php");
$purifier_config = HTMLPurifier_Config::createDefault();
$purifier_config->set('URI.AllowedSchemes', ['data' => true, 'src' => true, 'http' => true, 'https' => true]);
$purifier = new HTMLPurifier($purifier_config);
// Ticket status from GET // Ticket status from GET
if (!isset($_GET['status'])) { if (!isset($_GET['status'])) {
// If nothing is set, assume we only want to see open tickets // If nothing is set, assume we only want to see open tickets
@@ -267,9 +261,7 @@ $user_active_assigned_tickets = intval($row['total_tickets_assigned']);
$ticket_prefix = htmlentities($row['ticket_prefix']); $ticket_prefix = htmlentities($row['ticket_prefix']);
$ticket_number = intval($row['ticket_number']); $ticket_number = intval($row['ticket_number']);
$ticket_subject = htmlentities($row['ticket_subject']); $ticket_subject = htmlentities($row['ticket_subject']);
$ticket_details = $purifier->purify($row['ticket_details']); $ticket_details = htmlentities($row['ticket_details']);
//$ticket_details = htmlentities($row['ticket_details']);
//$ticket_details = $row['ticket_details'];
$ticket_priority = htmlentities($row['ticket_priority']); $ticket_priority = htmlentities($row['ticket_priority']);
$ticket_status = htmlentities($row['ticket_status']); $ticket_status = htmlentities($row['ticket_status']);
$ticket_created_at = htmlentities($row['ticket_created_at']); $ticket_created_at = htmlentities($row['ticket_created_at']);