extern/egroupware
1
0
Fork 1
mirror of https://github.com/EGroupware/egroupware.git synced 2025-02-25 06:31:59 +01:00
Code Issues Packages Projects Releases Wiki Activity

Escape quotes in user names

Browse Source
This commit is contained in:
Nathan Gray 2011-03-09 18:45:08 +00:00
parent 8104bd46c4
commit 17f00ad134
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
phpgwapi/inc/class.uiaccountsel.inc.php
View File

@ -443,7 +443,7 @@ function addOption(id,label,value,do_onchange)
$link_data['group_id'] = $group['account_id']; $link_data['group_id'] = $group['account_id'];
$GLOBALS['egw']->template->set_var('onclick',"addOption('$element_id','". $GLOBALS['egw']->template->set_var('onclick',"addOption('$element_id','".
common::grab_owner_name($group['account_id'])."','$group[account_id]',".(int)($multiple==1).")". addslashes(common::grab_owner_name($group['account_id']))."','$group[account_id]',".(int)($multiple==1).")".
(!$multiple ? '; window.close()' : '')); (!$multiple ? '; window.close()' : ''));
if (!$app || in_array($group['account_id'],$app_groups)) if (!$app || in_array($group['account_id'],$app_groups))
@ -456,7 +456,7 @@ function addOption(id,label,value,do_onchange)
{ {
$GLOBALS['egw']->template->fp('cal','group_cal',True); $GLOBALS['egw']->template->fp('cal','group_cal',True);
$GLOBALS['egw']->template->set_var('js_addAllGroups',"addOption('$element_id','". $GLOBALS['egw']->template->set_var('js_addAllGroups',"addOption('$element_id','".
common::grab_owner_name($group['account_id'])."','$group[account_id]',".(int)($multiple==1).")". addslashes(common::grab_owner_name($group['account_id']))."','$group[account_id]',".(int)($multiple==1).")".
(!$multiple ? '; window.close();' : ';')); (!$multiple ? '; window.close();' : ';'));
$GLOBALS['egw']->template->fp('selectAllGroups','group_selectAll',True); $GLOBALS['egw']->template->fp('selectAllGroups','group_selectAll',True);
} }
@ -520,12 +520,12 @@ function addOption(id,label,value,do_onchange)
'firstname' => $user['account_firstname'] ? $user['account_firstname'] : ' ', 'firstname' => $user['account_firstname'] ? $user['account_firstname'] : ' ',
'lastname' => $user['account_lastname'] ? $user['account_lastname'] : ' ', 'lastname' => $user['account_lastname'] ? $user['account_lastname'] : ' ',
'onclick' => "addOption('$element_id','". 'onclick' => "addOption('$element_id','".
common::grab_owner_name($user['account_id'])."','$user[account_id]',".(int)($multiple==1).")". addslashes(common::grab_owner_name($user['account_id']))."','$user[account_id]',".(int)($multiple==1).")".
(!$multiple ? '; window.close()' : ''), (!$multiple ? '; window.close()' : ''),
)); ));
$GLOBALS['egw']->template->fp('list','accounts_list',True); $GLOBALS['egw']->template->fp('list','accounts_list',True);
$GLOBALS['egw']->template->set_var('js_addAllAccounts',"addOption('$element_id','". $GLOBALS['egw']->template->set_var('js_addAllAccounts',"addOption('$element_id','".
common::grab_owner_name($user['account_id'])."','$user[account_id]',".(int)($multiple==1).")". addslashes(common::grab_owner_name($user['account_id']))."','$user[account_id]',".(int)($multiple==1).")".
(!$multiple ? '; window.close()' : ';')); (!$multiple ? '; window.close()' : ';'));
$GLOBALS['egw']->template->fp('selectAllAccounts','accounts_selectAll',True); $GLOBALS['egw']->template->fp('selectAllAccounts','accounts_selectAll',True);
} }