index 87aab8e730d490d1bb2cba3cbf8f53a0c3176116..2d2e581bf16e3d71a5d00ec568bf6dd4ac1b9798 100644 (file)
/* Edit selected Sub Object */
if((isset($_POST['EditSubObject']))&&(isset($_POST['SubObject']))){
- $this->dialog= new $this->subClassName($this->config,$this->dn,$this->SubObjects[$_POST['SubObject']]);
- $_SESSION['objectinfo'] = $this->SubObjects[$_POST['SubObject']]['dn'];
+
+ $var = $_POST['SubObject'][0];
+
+ $this->dialog= new $this->subClassName($this->config,$this->dn,$this->SubObjects[$var]);
+ $_SESSION['objectinfo'] = $this->SubObjects[$var]['dn'];
$this->is_dialog=true;
}
/* Remove Sub object */
if((isset($_POST['DelSubObject']))&&(isset($_POST['SubObject']))){
- if($this->SubObjects[$_POST['SubObject']]['status'] == "edited"){
- $this->SubObjects[$_POST['SubObject']]['status']= "delete";
- }else{
- unset($this->SubObjects[$_POST['SubObject']]);
+ foreach($_POST['SubObject'] as $var){
+ if($this->SubObjects[$var]['status'] == "edited"){
+ $this->SubObjects[$var]['status']= "delete";
+ }else{
+ unset($this->SubObjects[$var]);
+ }
}
}
/* Magic quotes GPC, escapes every ' " \, to solve some security risks
* If we post the escaped strings they will be escaped again
*/
+
foreach($this->attributes as $attrs){
if(get_magic_quotes_gpc()){
- $smarty->assign($attrs,stripslashes($this->$attrs));
+ $smarty->assign($attrs,htmlentities (stripslashes(utf8_decode($this->$attrs))));
}else{
- $smarty->assign($attrs,($this->$attrs));
+ $smarty->assign($attrs,htmlentities (utf8_decode($this->$attrs)));
}
}
-
$display.= $smarty->fetch(get_template_path('faiVariable.tpl', TRUE));
return($display);
}