mirror of https://github.com/itflow-org/itflow
58 lines
1.6 KiB
PHP
58 lines
1.6 KiB
PHP
<?php
|
|
|
|
/*
|
|
* ITFlow - GET/POST request handler for custom fields
|
|
*/
|
|
|
|
defined('FROM_POST_HANDLER') || die("Direct file access is not allowed");
|
|
|
|
if(isset($_POST['create_custom_field'])){
|
|
|
|
require_once 'custom_field_model.php';
|
|
|
|
$table = sanitizeInput($_POST['table']);
|
|
|
|
mysqli_query($mysqli,"INSERT INTO custom_fields SET custom_field_table = '$table', custom_field_label = '$label', custom_field_type = '$type'");
|
|
|
|
$custom_field_id = mysqli_insert_id($mysqli);
|
|
|
|
logAction("Custom Field", "Create", "$session_name created custom field $label", 0, $custom_field_id);
|
|
|
|
flash_alert("Custom field <strong>$label</strong> created");
|
|
|
|
redirect();
|
|
|
|
}
|
|
|
|
if(isset($_POST['edit_custom_field'])){
|
|
|
|
require_once 'custom_field_model.php';
|
|
|
|
$custom_field_id = intval($_POST['custom_field_id']);
|
|
|
|
mysqli_query($mysqli,"UPDATE custom_fields SET custom_field_label = '$label', custom_field_type = '$type' WHERE custom_field_id = $custom_field_id");
|
|
|
|
logAction("Custom Field", "Edit", "$session_name edited custom field $label", 0, $custom_field_id);
|
|
|
|
flash_alert("Custom field <strong>$label</strong> edited");
|
|
|
|
redirect();
|
|
|
|
}
|
|
|
|
if(isset($_GET['delete_custom_field'])){
|
|
|
|
$custom_field_id = intval($_GET['delete_custom_field']);
|
|
|
|
$label = sanitizeInput(getFieldById('custom_fields', $custom_field_id, 'custom_field_label'));
|
|
|
|
mysqli_query($mysqli,"DELETE FROM custom_fields WHERE custom_field_id = $custom_field_id");
|
|
|
|
logAction("Custom Field", "Delete", "$session_name deleted custom field $label");
|
|
|
|
flash_alert("Custom field <strong>$label</strong> deleted", 'error');
|
|
|
|
redirect();
|
|
|
|
}
|