''); $errors = array(); $groupid = ''; function group_by_name($name) { global $mysqlprefix; $link = connect(); $group = select_one_row( "select * from ${mysqlprefix}chatgroup where vclocalname = '" . db_escape_string($name) . "'", $link); close_connection($link); return $group; } function create_group($name, $descr, $commonname, $commondescr, $weight ,$email) { global $mysqlprefix; $link = connect(); $query = sprintf( "insert into ${mysqlprefix}chatgroup (vclocalname,vclocaldescription,vccommonname,vccommondescription,iweight,vcemail) values ('%s','%s','%s','%s',%u,'%s')", db_escape_string($name), db_escape_string($descr), db_escape_string($commonname), db_escape_string($commondescr), $weight, db_escape_string($email)); perform_query($query, $link); $id = db_insert_id($link); $newdep = select_one_row("select * from ${mysqlprefix}chatgroup where groupid = $id", $link); close_connection($link); return $newdep; } function update_group($groupid, $name, $descr, $commonname, $commondescr, $weight, $email) { global $mysqlprefix; $link = connect(); $query = sprintf( "update ${mysqlprefix}chatgroup set vclocalname = '%s', vclocaldescription = '%s', vccommonname = '%s', vccommondescription = '%s', iweight = %u, vcemail = '%s' where groupid = %s", db_escape_string($name), db_escape_string($descr), db_escape_string($commonname), db_escape_string($commondescr), $weight, db_escape_string($email), $groupid); perform_query($query, $link); close_connection($link); } if (isset($_POST['name'])) { $groupid = verifyparam("gid", "/^(\d{1,9})?$/", ""); $name = getparam('name'); $description = getparam('description'); $commonname = getparam('commonname'); $commondescription = getparam('commondescription'); $weight = getparam('weight'); $email = getparam('email'); if (!$name) $errors[] = no_field("form.field.groupname"); if (! preg_match("/^\d{1,9}$/", $weight)) $errors[] = wrong_field("form.field.groupweight"); if ($email != '' && !is_valid_email($email)) $errors[] = wrong_field("form.field.mail"); $existing_group = group_by_name($name); if ((!$groupid && $existing_group) || ($groupid && $existing_group && $groupid != $existing_group['groupid'])) $errors[] = getlocal("page.group.duplicate_name"); if (count($errors) == 0) { if (!$groupid) { $newdep = create_group($name, $description, $commonname, $commondescription, $weight, $email); header("Location: $webimroot/operator/groupmembers.php?gid=" . $newdep['groupid']); exit; } else { update_group($groupid, $name, $description, $commonname, $commondescription, $weight, $email); header("Location: $webimroot/operator/group.php?gid=$groupid&stored"); exit; } } else { $page['formname'] = topage($name); $page['formdescription'] = topage($description); $page['formcommonname'] = topage($commonname); $page['formcommondescription'] = topage($commondescription); $page['formweight'] = topage($weight); $page['formemail'] = topage($email); $page['grid'] = topage($groupid); } } else if (isset($_GET['gid'])) { $groupid = verifyparam('gid', "/^\d{1,9}$/"); $group = group_by_id($groupid); if (!$group) { $errors[] = getlocal("page.group.no_such"); $page['grid'] = topage($groupid); } else { $page['formname'] = topage($group['vclocalname']); $page['formdescription'] = topage($group['vclocaldescription']); $page['formcommonname'] = topage($group['vccommonname']); $page['formcommondescription'] = topage($group['vccommondescription']); $page['formweight'] = topage($group['iweight']); $page['formemail'] = topage($group['vcemail']); $page['grid'] = topage($group['groupid']); } } $page['stored'] = isset($_GET['stored']); prepare_menu($operator); setup_group_settings_tabs($groupid, 0); start_html_output(); require('../view/group.php'); ?>