Fix: ajout d'un jeton alatoire dans les requetes POST
This commit is contained in:
Regis Houssin
parent
35072b99bf
commit
e63c142ce7
@ -97,6 +97,9 @@ function dol_loginfunction($langs,$conf,$mysoc)
|
||||
print $_SERVER['PHP_SELF'];
|
||||
print $_SERVER["QUERY_STRING"]?'?'.$_SERVER["QUERY_STRING"]:'';
|
||||
print '">'."\n";
|
||||
|
||||
// Token field
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
|
||||
// Table 1
|
||||
$title='Dolibarr '.DOL_VERSION;
|
||||
|
||||
@ -198,6 +198,7 @@ if ($_GET["action"] == 'create')
|
||||
* Commande
|
||||
*/
|
||||
print '<form action="fiche.php" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="add">';
|
||||
print '<input type="hidden" name="commande_id" value="'.$commande->id.'">';
|
||||
if (!$conf->expedition_bon->enabled && $conf->stock->enabled)
|
||||
|
||||
@ -139,6 +139,7 @@ if ($_GET["action"] == 'vendre' )
|
||||
print '<td>'.$langs->trans('Qty').'</td>';
|
||||
print '</tr>';
|
||||
print '<form action="OSCvente.php?action=vendre" method="POST">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="prod" value="test"/>';
|
||||
print '<tr><td>';
|
||||
print $html->select_produits('','idprod'.$i,'',$conf->produit->limit_size,$soc->price_level);
|
||||
|
||||
@ -201,14 +201,15 @@ if ($_REQUEST["action"] == 'import')
|
||||
print '</tr>'."\n";
|
||||
print '<tr>';
|
||||
print '<form method="post" action="categories.php">';
|
||||
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<td><input name="osccat" value="'.$_POST["catid"].'"></td><td>';
|
||||
print '<input type="hidden" name="action" value="maj"/>';
|
||||
// print '<input type="hidden" name="dolicat" value="'.$obj->dolicatid.'"/>';
|
||||
print $langs->trans("ChooseCategory").' ';
|
||||
print $html->select_all_categories(0,$categorie->id_mere).' <input type="submit" name="doit" class="button" value="'.$langs->trans("Classify").'"></td>';
|
||||
print "</form>\n";
|
||||
print '<form method="post" action="categories.php">';
|
||||
print '<form method="post" action="categories.php">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="create"/>';
|
||||
print '<input type="hidden" name="nom" value="'.$_POST["description"].'"/>';
|
||||
print '<input type="hidden" name="description" value="'.$_POST["description"].'"/>';
|
||||
@ -263,7 +264,9 @@ else
|
||||
print "\t<tr ".$bc[$var].">\n";
|
||||
print "\t\t<td><a href='../../categories/viewcat.php?id=".$obj->dolicatid."'>".$obj->dolicatid."</a></td>\n";
|
||||
print "\t\t<td><a href='../../categories/viewcat.php?id=".$obj->dolicatid."'>".$obj->label."</a></td>\n";
|
||||
print '<td><form action="categories.php" METHOD="POST"><input type="text" size="5" name="osccat" value="'.$obj->osccatid.'"/></td>'."\n";
|
||||
print '<td><form action="categories.php" METHOD="POST">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="text" size="5" name="osccat" value="'.$obj->osccatid.'"/></td>'."\n";
|
||||
print '<input type="hidden" name="action" value="maj"/>';
|
||||
print '<input type="hidden" name="dolicat" value="'.$obj->dolicatid.'"/>';
|
||||
print '<td align="center"><input type="submit" class="button" value="'.$langs->trans('maj').'"></td>';
|
||||
@ -330,6 +333,7 @@ elseif ( !($err = $client->getError()) )
|
||||
|
||||
//print '<td><a href="categories.php?action=import&catid='.$result[$i]['categories_id'].'">Importer</a></td>';
|
||||
print '<form method="POST" action="categories.php">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="description" value="'.$result[$i]['categories_name'].'"/>';
|
||||
print '<input type="hidden" name="nom" value="'.$result[$i]['categories_name'].'"/>';
|
||||
print '<input type="hidden" name="visible" value="1"/>';
|
||||
|
||||
@ -154,6 +154,7 @@ print '</td><td colspan="2">';
|
||||
if ($_GET['action'] == 'editbarcode')
|
||||
{
|
||||
print '<form method="post" action="'.$_SERVER["PHP_SELF"].'?id='.$product->id.'">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="setbarcode">';
|
||||
print '<input size="40" type="text" name="barcode" value="'.$product->barcode.'">';
|
||||
print ' <input type="submit" class="button" value="'.$langs->trans("Modify").'">';
|
||||
|
||||
@ -79,6 +79,7 @@ $lastRapport = $obj->lastRapport;
|
||||
|
||||
|
||||
print '<form action="index.php?action=create" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
|
||||
|
||||
print '<table class="border" width="100%">';
|
||||
|
||||
@ -590,6 +590,7 @@ if ($_GET["action"] == 'create' && $user->rights->produit->creer)
|
||||
if (! $conf->global->PRODUCT_CANVAS_ABILITY || !$_GET["canvas"])
|
||||
{
|
||||
print '<form action="fiche.php" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="add">';
|
||||
print '<input type="hidden" name="type" value="'.$_GET["type"].'">'."\n";
|
||||
|
||||
@ -1244,6 +1245,7 @@ if ($_GET["id"] && $_GET["action"] == '' && $product->status)
|
||||
$objp = $db->fetch_object($result);
|
||||
$var=!$var;
|
||||
print '<form method="POST" action="fiche.php?id='.$product->id.'">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print "<tr $bc[$var]>";
|
||||
print "<td nowrap>";
|
||||
print '<input type="hidden" name="action" value="addinpropal">';
|
||||
@ -1286,6 +1288,7 @@ if ($_GET["id"] && $_GET["action"] == '' && $product->status)
|
||||
{
|
||||
$var=!$var;
|
||||
print '<form method="POST" action="fiche.php?id='.$product->id.'">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<tr '.$bc[$var].'><td colspan="3">';
|
||||
print '<input type="hidden" name="action" value="addinpropal">';
|
||||
print $langs->trans("OtherPropals").'</td><td>';
|
||||
@ -1361,6 +1364,7 @@ if ($_GET["id"] && $_GET["action"] == '' && $product->status)
|
||||
$objc = $db->fetch_object($result);
|
||||
$var=!$var;
|
||||
print '<form method="POST" action="fiche.php?id='.$product->id.'">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print "<tr $bc[$var]>";
|
||||
print "<td nowrap>";
|
||||
print '<input type="hidden" name="action" value="addincommande">';
|
||||
@ -1403,6 +1407,7 @@ if ($_GET["id"] && $_GET["action"] == '' && $product->status)
|
||||
{
|
||||
$var=!$var;
|
||||
print '<form method="POST" action="fiche.php?id='.$product->id.'">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<tr '.$bc[$var].'><td colspan="3">';
|
||||
print '<input type="hidden" name="action" value="addincommande">';
|
||||
print $langs->trans("OtherOrders").'</td><td>';
|
||||
@ -1474,6 +1479,7 @@ if ($_GET["id"] && $_GET["action"] == '' && $product->status)
|
||||
$objp = $db->fetch_object($result);
|
||||
$var=!$var;
|
||||
print '<form method="POST" action="fiche.php?id='.$product->id.'">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print "<tr $bc[$var]>";
|
||||
print "<td nowrap>";
|
||||
print '<input type="hidden" name="action" value="addinfacture">';
|
||||
@ -1535,6 +1541,7 @@ if ($_GET["id"] && $_GET["action"] == '' && $product->status)
|
||||
|
||||
$var=!$var;
|
||||
print '<form method="POST" action="fiche.php?id='.$product->id.'">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print "<tr $bc[$var]>";
|
||||
print "<td><a href=\"../compta/facture.php?facid=".$objp->factureid."\">$objp->facnumber</a></td>\n";
|
||||
print "<td><a href=\"../comm/fiche.php?socid=".$objp->socid."\">".dol_trunc($objp->nom,24)."</a></td>\n";
|
||||
|
||||
@ -247,6 +247,7 @@ if ($_GET["id"] || $_GET["ref"])
|
||||
}
|
||||
print '<table class="border" width="100%">';
|
||||
print '<form action="fournisseurs.php?id='.$product->id.'" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="updateprice">';
|
||||
|
||||
print '<tr><td>'.$langs->trans("Supplier").'</td><td colspan="3">';
|
||||
|
||||
@ -57,6 +57,7 @@ print '<tr><td valign="top" width="30%" class="notopnoleft">';
|
||||
$rowspan=2;
|
||||
if ($conf->barcode->enabled) $rowspan++;
|
||||
print '<form method="post" action="'.DOL_URL_ROOT.'/product/liste.php">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="noborder" width="100%">';
|
||||
print "<tr class=\"liste_titre\">";
|
||||
print '<td colspan="3">'.$langs->trans("Search").'</td></tr>';
|
||||
|
||||
@ -207,6 +207,7 @@ if ($resql)
|
||||
else
|
||||
{
|
||||
print '<form action="liste.php" method="post" name="formulaire">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="list">';
|
||||
print '<input type="hidden" name="sortfield" value="'.$sortfield.'">';
|
||||
print '<input type="hidden" name="sortorder" value="'.$sortorder.'">';
|
||||
|
||||
@ -246,6 +246,7 @@ if ($_GET["action"] == 'edit_price' && $user->rights->produit->creer)
|
||||
if (empty($conf->global->PRODUIT_MULTIPRICES))
|
||||
{
|
||||
print '<form action="price.php?id='.$product->id.'" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="update_price">';
|
||||
print '<input type="hidden" name="id" value="'.$product->id.'">';
|
||||
print '<table class="border" width="100%">';
|
||||
@ -302,6 +303,7 @@ if ($_GET["action"] == 'edit_price' && $user->rights->produit->creer)
|
||||
for($i=1; $i<=$conf->global->PRODUIT_MULTIPRICES_LIMIT; $i++)
|
||||
{
|
||||
print '<form action="price.php?id='.$product->id.'" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="update_price">';
|
||||
print '<input type="hidden" name="id" value="'.$product->id.'">';
|
||||
print '<table class="border" width="100%">';
|
||||
|
||||
@ -180,6 +180,7 @@ if ($resql)
|
||||
}
|
||||
|
||||
print '<form action="reassort.php" method="post" name="formulaire">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="sortfield" value="'.$sortfield.'">';
|
||||
print '<input type="hidden" name="sortorder" value="'.$sortorder.'">';
|
||||
print '<input type="hidden" name="type" value="'.$type.'">';
|
||||
|
||||
@ -247,6 +247,7 @@ if ($id || $ref)
|
||||
print '<tr><td colspan="2"><b>'.$langs->trans("ProductToAddSearch").'</b>';
|
||||
print '<table class="noborder">';
|
||||
print '<tr><td><form action="'.DOL_URL_ROOT.'/product/sousproduits/fiche.php?id='.$id.'" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print $langs->trans("KeywordFilter");
|
||||
print '</td><td><input type="text" name="key" value="'.$key.'">';
|
||||
print '<input type="hidden" name="action" value="search">';
|
||||
@ -269,6 +270,7 @@ if ($id || $ref)
|
||||
print '<tr>';
|
||||
print '<td><b>'.$langs->trans("Ref").'</b></td><td><b>'.$langs->trans("Label").'</b></td><td><b>'.$langs->trans("AddDel").'</b></td><td><b>'.$langs->trans("Quantity").'</b></td>';
|
||||
print '<form action="'.DOL_URL_ROOT.'/product/sousproduits/fiche.php?id='.$id.'" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="add_prod"';
|
||||
print '<input type="hidden" name="id" value="'.$id.'"';
|
||||
if ($resql)
|
||||
|
||||
@ -421,6 +421,7 @@ else
|
||||
print_fiche_titre($langs->trans("WarehouseEdit"), $mesg);
|
||||
|
||||
print '<form action="fiche.php" method="POST">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="update">';
|
||||
print '<input type="hidden" name="id" value="'.$entrepot->id.'">';
|
||||
|
||||
|
||||
@ -46,6 +46,7 @@ print '<tr><td valign="top" width="30%" class="notopnoleft">';
|
||||
* Zone recherche entrepot
|
||||
*/
|
||||
print '<form method="post" action="'.DOL_URL_ROOT.'/product/stock/liste.php">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="noborder" width="100%">';
|
||||
print "<tr class=\"liste_titre\">";
|
||||
print '<td colspan="3">'.$langs->trans("Search").'</td></tr>';
|
||||
|
||||
@ -158,6 +158,7 @@ print '</table>';
|
||||
if ($_GET["action"] == 'edit')
|
||||
{
|
||||
print '<form action="" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="vedit">';
|
||||
print '<input type="hidden" name="id" value="'.$_GET["id"].'">';
|
||||
|
||||
@ -253,6 +254,7 @@ if ($_GET["action"] == 'add' || $user->rights->produit->modifier)
|
||||
$select.='</select>';
|
||||
|
||||
print '<form action="" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="vadd">';
|
||||
print '<input type="hidden" name="id" value="'.$_GET["id"].'">';
|
||||
print '<table class="border" width="100%">';
|
||||
|
||||
@ -122,6 +122,7 @@ $tasksarray=$projet->getTasksArray(0,0);
|
||||
//var_dump($tasksarray);
|
||||
|
||||
print '<form name="addtime" method="POST" action="'.$_SERVER["PHP_SELF"].'?id='.$projet->id.'">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="addtime">';
|
||||
|
||||
print '<table class="noborder" width="100%">';
|
||||
|
||||
@ -147,6 +147,7 @@ if ($_GET["action"] == 'create' && $user->rights->projet->creer)
|
||||
if ($mesg) print $mesg.'<br>';
|
||||
|
||||
print '<form action="'.$_SERVER["PHP_SELF"].'" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
//if ($_REQUEST["socid"]) print '<input type="hidden" name="socid" value="'.$_REQUEST["socid"].'">';
|
||||
print '<table class="border" width="100%">';
|
||||
print '<input type="hidden" name="action" value="add">';
|
||||
@ -207,6 +208,7 @@ else
|
||||
if ($_GET["action"] == 'edit')
|
||||
{
|
||||
print '<form method="post" action="fiche.php">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="update">';
|
||||
print '<input type="hidden" name="id" value="'.$_GET["id"].'">';
|
||||
|
||||
|
||||
@ -142,6 +142,7 @@ if ($_GET["action"] == 'create' && $user->rights->projet->creer)
|
||||
if ($mesg) print '<div class="error">'.$mesg.'</div>';
|
||||
|
||||
print '<form action="fiche.php" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="createtask">';
|
||||
if ($_GET['id']) print '<input type="hidden" name="id" value="'.$_GET['id'].'">';
|
||||
if ($_GET['mode']) print '<input type="hidden" name="mode" value="'.$_GET['mode'].'">';
|
||||
@ -190,6 +191,7 @@ else
|
||||
$param=($_REQUEST["mode"]=='mine'?'&mode=mine':'');
|
||||
|
||||
print '<form name="addtime" method="POST" action="fiche.php?id='.$projet->id.'">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
|
||||
print '<table class="border" width="100%">';
|
||||
|
||||
|
||||
@ -97,6 +97,7 @@ if ($_GET["id"] > 0)
|
||||
}
|
||||
|
||||
print '<form method="POST" action="fiche.php?id='.$projet->id.'">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="createtask">';
|
||||
print '<table class="border" width="100%">';
|
||||
|
||||
|
||||
@ -68,6 +68,7 @@ if ($_GET["id"] > 0)
|
||||
if ($mesg) print $mesg.'<br>';
|
||||
|
||||
print '<form method="POST" action="fiche.php?id='.$projet->id.'">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="createtask">';
|
||||
print '<table class="border" width="100%">';
|
||||
|
||||
|
||||
@ -192,6 +192,7 @@ asort($orders);
|
||||
//var_dump($orders);
|
||||
|
||||
print '<form name="choosedemo" action="'.$_SERVER["PHP_SELF"].'" method="POST">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="username" value="demo">';
|
||||
print "\n";
|
||||
|
||||
|
||||
@ -112,6 +112,7 @@ else if (! empty($conf->global->PAYBOX_CREDITOR)) $creditor=$conf->global->PAYBO
|
||||
|
||||
print '<center>';
|
||||
print '<form name="paymentform" action="'.$_SERVER["PHP_SELF"].'" method="POST">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="dopayment">';
|
||||
print '<input type="hidden" name="amount" value="'.$_REQUEST["amount"].'">';
|
||||
print '<input type="hidden" name="tag" value="'.$_REQUEST["tag"].'">';
|
||||
|
||||
@ -140,6 +140,7 @@ if ( $soc->fetch($soc->id) )
|
||||
print_fiche_titre($langs->trans("AddNewNotification"));
|
||||
|
||||
print '<form action="fiche.php?socid='.$socid.'" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
|
||||
// Ligne de titres
|
||||
print '<table width="100%" class="noborder">';
|
||||
|
||||
@ -192,6 +192,7 @@ if ($_GET["socid"] && $_GET["action"] == 'edit' && $user->rights->societe->creer
|
||||
if ($message) { print "$message<br><br>\n"; }
|
||||
|
||||
print '<form action="rib.php?socid='.$soc->id.'" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="update">';
|
||||
print '<input type="hidden" name="id" value="'.$_GET["id"].'">';
|
||||
|
||||
|
||||
@ -211,6 +211,7 @@ function pHeader($soutitre,$next,$action='none')
|
||||
print '</td></tr></table>';
|
||||
|
||||
print '<form action="'.$next.'" method="POST">'."\n";
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="'.$action.'">'."\n";
|
||||
|
||||
// print '<table class="main" width="100%"><tr><td>'."\n";
|
||||
|
||||
@ -743,6 +743,7 @@ if ( $user->rights->telephonie->adsl->commander && $ligne->statut == 1)
|
||||
print '<table class="noborder" cellpadding="2" cellspacing="0" width="100%"><tr><td>';
|
||||
|
||||
print '<form name="commandefourn" action="fiche.php?id='.$ligne->id.'&action=commandefourn" method="POST">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="noborder" cellpadding="2" cellspacing="0">';
|
||||
print '<tr class="liste_titre"><td colspan="2">Commande chez le fournisseur</td><td>';
|
||||
print '<tr><td>Date de la commande</td><td>';
|
||||
@ -766,6 +767,7 @@ if ( $user->rights->telephonie->adsl->gerer && $ligne->statut == 2)
|
||||
print '<table class="noborder" cellpadding="2" cellspacing="0" width="100%"><tr><td>';
|
||||
|
||||
print '<form name="activefourn" action="fiche.php?id='.$ligne->id.'&action=activefourn" method="POST">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="noborder" cellpadding="2" cellspacing="0">';
|
||||
print '<tr class="liste_titre"><td colspan="2">Activ<69>e chez le fournisseur</td><td>';
|
||||
print "<tr><td>Date de l'activation</td><td>";
|
||||
@ -792,6 +794,7 @@ if ( $user->rights->telephonie->adsl->gerer && $ligne->statut == 3)
|
||||
print '<table class="noborder" cellpadding="2" cellspacing="0" width="100%"><tr><td>';
|
||||
|
||||
print '<form name="backbone" action="fiche.php?id='.$ligne->id.'&action=backbone" method="POST">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="noborder" cellpadding="2" cellspacing="0">';
|
||||
print '<tr class="liste_titre"><td colspan="2">Programm<6D> sur le backbone</td><td>';
|
||||
print "<tr><td>Date de la programmation</td><td>";
|
||||
@ -809,6 +812,7 @@ if ( $user->rights->telephonie->adsl->gerer && $ligne->statut == 9)
|
||||
print '<table class="noborder" cellpadding="2" cellspacing="0" width="100%"><tr><td>';
|
||||
|
||||
print '<form name="livraison" action="fiche.php?id='.$ligne->id.'&action=livraison" method="POST">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="noborder" cellpadding="2" cellspacing="0">';
|
||||
print '<tr class="liste_titre"><td colspan="2">Livr<76>e au client</td><td>';
|
||||
print "<tr><td>Date de la livraison client</td><td>";
|
||||
@ -825,6 +829,7 @@ if ( $user->rights->telephonie->adsl->gerer && $ligne->statut == 4)
|
||||
{
|
||||
print '<table class="noborder" cellpadding="2" cellspacing="0" width="100%"><tr><td>';
|
||||
print '<form name="resilier" action="fiche.php?id='.$ligne->id.'&action=resilier" method="POST">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="noborder" cellpadding="4" cellspacing="0">';
|
||||
print '<tr class="liste_titre"><td colspan="2">A r<>silier</td><td>';
|
||||
print '<tr class="pair"><td>Date de r<>siliation demand<6E>e</td><td>';
|
||||
@ -840,6 +845,7 @@ if ( $user->rights->telephonie->adsl->gerer && $ligne->statut == 5)
|
||||
{
|
||||
print '<table class="noborder" cellpadding="2" cellspacing="0" width="100%"><tr><td>';
|
||||
print '<form name="resilierfourn" action="fiche.php?id='.$ligne->id.'&action=resilierfourn" method="POST">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="noborder" cellpadding="4" cellspacing="0">';
|
||||
print '<tr class="liste_titre"><td colspan="2">Demande de r<>siliatin fournisseur</td><td>';
|
||||
print '<tr class="pair"><td>Date de la demande de r<>siliation</td><td>';
|
||||
@ -855,6 +861,7 @@ if ( $user->rights->telephonie->adsl->gerer && $ligne->statut == 6)
|
||||
{
|
||||
print '<table class="noborder" cellpadding="2" cellspacing="0" width="100%"><tr><td>';
|
||||
print '<form name="acquitresilierfourn" action="fiche.php?id='.$ligne->id.'&action=acquitresilierfourn" method="POST">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="noborder" cellpadding="4" cellspacing="0">';
|
||||
print '<tr class="liste_titre"><td colspan="2">Confirmation de r<>siliatin fournisseur</td><td>';
|
||||
print '<tr class="pair"><td>Date de la confirmation de r<>siliation</td><td>';
|
||||
|
||||
@ -125,6 +125,7 @@ if ($_GET["id"])
|
||||
print '</table><br />';
|
||||
|
||||
print '<form method="POST" action="commentaires.php?id='.$soc->id.'&action=add">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="border" width="100%" cellspacing="0" cellpadding="4">';
|
||||
print '<tr><td width="15%" valign="center">Nouveau<br>commentaire';
|
||||
print '</td><td><textarea cols="60" rows="3" name="comment"></textarea></td>';
|
||||
|
||||
@ -305,6 +305,7 @@ if ($_GET["facid"] > 0)
|
||||
if ($fac->brouillon == 1 && $user->rights->facture->creer)
|
||||
{
|
||||
print '<form action="facture.php?facid='.$fac->id.'" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="setremise">';
|
||||
print '<td colspan="3"><input type="text" name="remise" size="3" value="'.$fac->remise_percent.'">% ';
|
||||
print '<input type="submit" class="button" value="'.$langs->trans("Modify").'"></td>';
|
||||
|
||||
@ -635,6 +635,7 @@ if ($user->rights->telephonie->ligne->creer)
|
||||
|
||||
|
||||
print '<FORM NAME="formClient" action="new.php" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="codeclient_modifiable" value="1">';
|
||||
print '<input type="hidden" name="codefournisseur_modifiable" value="1">';
|
||||
print '<input type="hidden" name="action" value="add">';
|
||||
|
||||
@ -114,6 +114,7 @@ if ($soc->id)
|
||||
|
||||
print '</table><br />';
|
||||
print '<form method="POST" action="permissions.php?id='.$soc->id.'">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="add">';
|
||||
print '<table class="border" width="100%" cellspacing="0" cellpadding="4">';
|
||||
|
||||
|
||||
@ -215,6 +215,7 @@ if ($_GET["id"])
|
||||
print "</table>\n<br />\n";
|
||||
|
||||
print '<form action="tarifs.php?id='.$soc->id.'" method="POST">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="addtarif">';
|
||||
|
||||
print '<table class="border" width="100%" cellspacing="0" cellpadding="4">';
|
||||
|
||||
@ -58,6 +58,7 @@ print "<br>";
|
||||
*/
|
||||
print_titre("Emails");
|
||||
print '<form method="post" action="compta.php?action=set">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="noborder" cellpadding="3" cellspacing="0" width="100%">';
|
||||
print '<tr class="liste_titre">';
|
||||
print '<td>Nom</td>';
|
||||
|
||||
@ -66,6 +66,7 @@ print "<br>";
|
||||
*/
|
||||
print_titre("Emails");
|
||||
print '<form method="post" action="index.php?action=set">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="noborder" cellpadding="3" cellspacing="0" width="100%">';
|
||||
print '<tr class="liste_titre">';
|
||||
print '<td>Nom</td>';
|
||||
|
||||
@ -59,6 +59,7 @@ print "<br>";
|
||||
*/
|
||||
print_titre("Emails");
|
||||
print '<form method="post" action="mail.php?action=set">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="noborder" cellpadding="3" cellspacing="0" width="100%">';
|
||||
print '<tr class="liste_titre">';
|
||||
print '<td>Nom</td>';
|
||||
|
||||
@ -80,6 +80,7 @@ dol_fiche_head($head, $hselected, "Configuration des liens xDSL");
|
||||
|
||||
print_titre("Fournisseurs");
|
||||
print '<form method="post" action="xdsl.php?action=addfourn">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="noborder" cellpadding="3" cellspacing="0" width="100%">';
|
||||
|
||||
$form = new Form($db);
|
||||
|
||||
@ -80,6 +80,7 @@ dol_fiche_head($head, $hselected, "Configuration des liens xDSL");
|
||||
$form = new Form($db);
|
||||
print_titre($langs->trans("Products"));
|
||||
print '<form method="post" action="xdsl_product.php?action=addproduct">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="noborder" cellpadding="3" cellspacing="0" width="100%">';
|
||||
|
||||
$prods = array();
|
||||
|
||||
@ -82,6 +82,7 @@ dol_fiche_head($head, $hselected, "Configuration des liens xDSL");
|
||||
|
||||
print_titre("Workflow");
|
||||
print '<form method="post" action="xdsl_wkf.php?action=add">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="noborder" cellpadding="3" cellspacing="0" width="100%">';
|
||||
|
||||
$form = new Form($db);
|
||||
|
||||
@ -754,6 +754,7 @@ else
|
||||
print_fiche_titre('Edition du contrat', $mesg);
|
||||
|
||||
print '<form action="fiche.php?id='.$contrat->id.'" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="update">';
|
||||
|
||||
print '<table class="border" width="100%" cellspacing="0" cellpadding="4">';
|
||||
@ -961,6 +962,7 @@ else
|
||||
print_fiche_titre('Ajouter un contact', $mesg);
|
||||
|
||||
print '<form action="fiche.php?id='.$contrat->id.'" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="addcontact">';
|
||||
|
||||
print '<table class="border" width="100%" cellspacing="0" cellpadding="4">';
|
||||
@ -1052,6 +1054,7 @@ else
|
||||
print_fiche_titre('Ajouter une prise d\'ordre mensuelle');
|
||||
|
||||
print '<form action="fiche.php?id='.$contrat->id.'" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="addpo">';
|
||||
print '<table class="border" width="100%" cellspacing="0" cellpadding="4">';
|
||||
print '<tr><td valign="top" width="20%">Montant mensuel</td><td valign="top" colspan="2">';
|
||||
|
||||
@ -252,6 +252,7 @@ if ($_GET["id"])
|
||||
print_fiche_titre('Ajouter un service', $mesg);
|
||||
|
||||
print '<form action="services.php?id='.$contrat->id.'" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="addservice">';
|
||||
print '<table class="border" width="100%" cellspacing="0" cellpadding="4">';
|
||||
print '<tr><td valign="top" width="20%">Service</td><td valign="top" colspan="2">';
|
||||
|
||||
@ -86,6 +86,7 @@ if ($_GET["action"] == 'create_commercial')
|
||||
dol_fiche_head($head, $hselected, $distri->nom);
|
||||
|
||||
print '<form method="POST" action="fiche.php?distri='.$_GET["distri"].'">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="add_commercial"></td></tr>';
|
||||
|
||||
print '<table class="noborder" width="100%" cellspacing="0" cellpadding="4">';
|
||||
@ -120,6 +121,7 @@ $h++;
|
||||
dol_fiche_head($head, $hselected, "Distributeurs");
|
||||
|
||||
print '<form method="POST" action="fiche.php">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="add"></td></tr>';
|
||||
|
||||
print '<table class="noborder" width="100%" cellspacing="0" cellpadding="4">';
|
||||
|
||||
@ -130,7 +130,8 @@ print '</table>';
|
||||
|
||||
print '</td><td valign="top" width="50%" rowspan="3">';
|
||||
|
||||
print '<form name="userfile" action="index.php" enctype="multipart/form-data" METHOD="POST">';
|
||||
print '<form name="userfile" action="index.php" enctype="multipart/form-data" METHOD="POST">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="max_file_size" value="'.$conf->maxfilesize.'">';
|
||||
|
||||
print '<table class="noborder" width="100%" cellspacing="0" cellpadding="4">';
|
||||
|
||||
@ -167,6 +167,7 @@ if ($_GET["id"] > 0)
|
||||
print_titre("Modification fournisseur");
|
||||
|
||||
print '<form action="fiche.php?id='.$fourn->id.'" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="update">';
|
||||
|
||||
print '<table class="border" width="100%" cellspacing="0" cellpadding="4">';
|
||||
|
||||
@ -102,7 +102,8 @@ else
|
||||
|
||||
print '<br>';
|
||||
|
||||
print '<form name="userfile" action="index.php" enctype="multipart/form-data" METHOD="POST">';
|
||||
print '<form name="userfile" action="index.php" enctype="multipart/form-data" METHOD="POST">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="max_file_size" value="'.$conf->maxfilesize.'">';
|
||||
|
||||
print '<table class="noborder" width="100%" cellspacing="0" cellpadding="4">';
|
||||
|
||||
@ -163,6 +163,7 @@ if ($_GET["id"])
|
||||
print '<br />';
|
||||
|
||||
print '<form method="POST" action="commentaires.php?id='.$ligne->id.'&action=add">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="border" width="100%" cellspacing="0" cellpadding="4">';
|
||||
print '<tr><td width="15%" valign="center">Nouveau<br>commentaire';
|
||||
print '</td><td><textarea cols="60" rows="3" name="comment"></textarea></td>';
|
||||
|
||||
@ -217,6 +217,7 @@ if ($_GET["id"] or $_GET["numero"])
|
||||
print_barre_liste("CDR", $page, "conso.php", $urladd, $sortfield, $sortorder, '', $num);
|
||||
|
||||
print '<form action="conso.php?'.$urladd.'" method="POST">'."\n";
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="noborder" width="100%" cellspacing="0" cellpadding="4">'."\n";
|
||||
print '<tr class="liste_titre">';
|
||||
print '<td>Numero</td><td>Date</td><td align="right">Duree</td>';
|
||||
|
||||
@ -374,6 +374,7 @@ elseif ($_GET["action"] == 'create' && $_GET["contratid"] > 0)
|
||||
else
|
||||
{
|
||||
print '<form action="fiche.php" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="add">';
|
||||
print '<input type="hidden" name="contrat" value="'.$contrat->id.'">'."\n";
|
||||
print '<input type="hidden" name="client_comm" value="'.$socc->id.'">'."\n";
|
||||
@ -834,6 +835,7 @@ else
|
||||
*/
|
||||
|
||||
print '<form action="fiche.php?id='.$ligne->id.'" method="POST">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="updateremise">';
|
||||
print '<table class="border" width="100%" cellpadding="4" cellspacing="0">';
|
||||
print '<tr class="liste_titre"><td colspan="2">Modification de la remise Local/Mobile/National</td></tr>';
|
||||
@ -857,6 +859,7 @@ else
|
||||
*/
|
||||
|
||||
print '<form action="fiche.php?id='.$ligne->id.'" method="POST">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="changecontrat">';
|
||||
print '<table class="border" width="100%" cellpadding="4" cellspacing="0">';
|
||||
print '<tr class="liste_titre"><td colspan="2">Migrer vers un autre contrat</td></tr>';
|
||||
@ -1217,11 +1220,12 @@ if ( $user->rights->telephonie->ligne_commander && $ligne->statut == 3 )
|
||||
if (sizeof($ff) > 0 && $ligne->techno == 'presel')
|
||||
{
|
||||
/**
|
||||
* Transf<EFBFBD>rer chez un autre fournisseur
|
||||
* Transferer chez un autre fournisseur
|
||||
*/
|
||||
$form = new Form($db);
|
||||
print '<table class="noborder" cellpadding="2" cellspacing="0" width="100%"><tr><td>';
|
||||
print '<form action="fiche.php?id='.$ligne->id.'&action=transfer" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="noborder" cellpadding="2" cellspacing="0">';
|
||||
print '<tr class="liste_titre">';
|
||||
print '<td colspan="2">Commander la ligne chez un autre fournisseur</td></tr>';
|
||||
@ -1245,6 +1249,7 @@ if ( $user->rights->telephonie->ligne_activer && $ligne->statut == 2 && $ligne->
|
||||
print '<table class="noborder" cellpadding="2" cellspacing="0" width="100%"><tr><td valign="top">';
|
||||
|
||||
print '<form name="active" action="fiche.php?id='.$ligne->id.'&action=active" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="noborder" cellpadding="2" cellspacing="0">';
|
||||
print '<tr class="liste_titre"><td colspan="2">Activer</td><td>';
|
||||
print '<tr><td>Date</td><td>';
|
||||
@ -1257,6 +1262,7 @@ if ( $user->rights->telephonie->ligne_activer && $ligne->statut == 2 && $ligne->
|
||||
|
||||
|
||||
print '<form name="refuse" action="fiche.php?id='.$ligne->id.'&action=refuse" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="noborder" cellpadding="2" cellspacing="0">';
|
||||
print '<tr class="liste_titre"><td colspan="2">Refuser</td><td>';
|
||||
print '<tr><td>Date</td><td>';
|
||||
@ -1272,13 +1278,14 @@ if ( $user->rights->telephonie->ligne_activer && $ligne->statut == 2 && $ligne->
|
||||
if ( $user->rights->telephonie->ligne_activer && ( $ligne->statut == 5 || $ligne->statut == 3) && $ligne->techno == 'presel')
|
||||
{
|
||||
/**
|
||||
* R<EFBFBD>siliation demand<EFBFBD>e
|
||||
* Resiliation demandee
|
||||
*/
|
||||
$form = new Form($db);
|
||||
|
||||
print '<table class="noborder" cellpadding="2" cellspacing="0" width="100%"><tr><td>';
|
||||
|
||||
print '<form name="confirmresilier" action="fiche.php?id='.$ligne->id.'&action=confirmresilier" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="noborder" cellpadding="2" cellspacing="0">';
|
||||
print '<tr class="liste_titre"><td colspan="2">Confirmation de la r<>siliation</td><td>';
|
||||
print '<tr><td>Date</td><td>';
|
||||
@ -1304,6 +1311,7 @@ if ( $user->rights->telephonie->ligne->creer && $ligne->statut == 6 && $ligne->t
|
||||
print '<table class="noborder" cellpadding="2" cellspacing="0" width="100%"><tr><td>';
|
||||
|
||||
print '<form action="fiche.php?id='.$ligne->id.'&action=acommander" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="noborder" cellpadding="2" cellspacing="0">';
|
||||
print '<tr class="liste_titre"><td colspan="2">Recommander la ligne</td><td>';
|
||||
print '<tr><td>Date</td><td>';
|
||||
|
||||
@ -127,6 +127,7 @@ print '</tr>';
|
||||
|
||||
print '<tr class="liste_titre">';
|
||||
print '<form action="numdata.php" method="POST">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="addnum"></td>';
|
||||
print '<td><input type="text" name="numero" size="12" maxlength="12"></td>';
|
||||
|
||||
|
||||
@ -102,6 +102,7 @@ if ($_GET["action"] == 'create')
|
||||
print_titre("Nouveau service");
|
||||
|
||||
print '<form action="fiche.php" method="POST">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="add">';
|
||||
|
||||
print '<table class="border" width="100%" cellspacing="0" cellpadding="4">';
|
||||
|
||||
@ -118,6 +118,7 @@ print "</table>";
|
||||
if ($_GET["action"] == 'delete')
|
||||
{
|
||||
print '<br><br><form action="grilles.php" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="remove">';
|
||||
print '<input type="hidden" name="id" value="'.$_GET['id'].'">';
|
||||
print '<table class="border" width="100%">';
|
||||
@ -138,6 +139,7 @@ if ($_GET["action"] == 'delete')
|
||||
else
|
||||
{
|
||||
print '<br><br><form action="grilles.php" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="add">';
|
||||
|
||||
print '<table class="border" width="100%">';
|
||||
|
||||
@ -129,6 +129,7 @@ if ($resql)
|
||||
|
||||
$form = new Form($db);
|
||||
print '<form action="permissions.php" method="POST">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="perms">';
|
||||
print '<table class="noborder" width="100%" cellspacing="0" cellpadding="4">';
|
||||
print '<tr class="liste_titre"><td>Grille</td>';
|
||||
|
||||
@ -205,6 +205,7 @@ else
|
||||
|
||||
|
||||
print '<br><form action="tarif.php?id='.$_GET["id"].'" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="add_prefix">';
|
||||
|
||||
print '<table class="border" width="100%">';
|
||||
|
||||
@ -55,6 +55,7 @@ if ($user->societe_id > 0)
|
||||
|
||||
|
||||
print '<form action="tarifs.php" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="add">';
|
||||
|
||||
print '<table class="border" width="100%">';
|
||||
|
||||
@ -121,6 +121,7 @@ if ($auth_write)
|
||||
{
|
||||
|
||||
print '<form method="POST" action="grille.php?id='.$_GET["id"].'">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="modif">';
|
||||
print '<table width="100%" class="border">';
|
||||
print '<tr><td colspan="2">Modification</td></tr>';
|
||||
|
||||
@ -129,6 +129,7 @@ if ($resql)
|
||||
|
||||
$form = new Form($db);
|
||||
print '<form action="permissions.php" method="POST">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="perms">';
|
||||
print '<table class="noborder" width="100%" cellspacing="0" cellpadding="4">';
|
||||
print '<tr class="liste_titre"><td>Grille</td>';
|
||||
|
||||
@ -97,6 +97,7 @@ if ($_GET["id"])
|
||||
if ($_GET["action"] == 'edit')
|
||||
{
|
||||
print '<form action="clicktodial.php?id='.$_GET["id"].'" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="update">';
|
||||
print '<table class="border" width="100%">';
|
||||
|
||||
|
||||
@ -473,6 +473,7 @@ if (($action == 'create') || ($action == 'adduserldap'))
|
||||
print "\n\n<!-- Form liste LDAP debut -->\n";
|
||||
|
||||
print '<form name="add_user_ldap" action="'.$_SERVER["PHP_SELF"].'" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table width="100%" class="border"><tr>';
|
||||
print '<td width="160">';
|
||||
print $langs->trans("LDAPUsers");
|
||||
@ -491,6 +492,7 @@ if (($action == 'create') || ($action == 'adduserldap'))
|
||||
}
|
||||
|
||||
print '<form action="fiche.php" method="post" name="createuser">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="add">';
|
||||
if ($ldap_sid) print '<input type="hidden" name="ldap_sid" value="'.$ldap_sid.'">';
|
||||
print '<input type="hidden" name="entity" value="'.$conf->entity.'">';
|
||||
@ -1184,6 +1186,7 @@ else
|
||||
{
|
||||
$form = new Form($db);
|
||||
print '<form action="fiche.php?id='.$_GET["id"].'" method="post">'."\n";
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="addgroup">';
|
||||
print '<table class="noborder" width="100%">'."\n";
|
||||
print '<tr class="liste_titre"><td class="liste_titre" width="25%">'.$langs->trans("GroupsToAdd").'</td>'."\n";
|
||||
@ -1262,6 +1265,7 @@ else
|
||||
{
|
||||
|
||||
print '<form action="fiche.php?id='.$fuser->id.'" method="post" name="updateuser" enctype="multipart/form-data">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="update">';
|
||||
print '<input type="hidden" name="entity" value="'.$conf->entity.'">';
|
||||
print '<table width="100%" class="border">';
|
||||
|
||||
@ -181,6 +181,7 @@ if ($action == 'create')
|
||||
if ($message) { print $message."<br>"; }
|
||||
|
||||
print '<form action="'.$_SERVER["PHP_SELF"].'" method="post">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="add">';
|
||||
|
||||
print '<table class="border" width="100%">';
|
||||
@ -384,6 +385,7 @@ else
|
||||
{
|
||||
$form = new Form($db);
|
||||
print '<form action="fiche.php?id='.$group->id.'" method="post">'."\n";
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="adduser">';
|
||||
print '<table class="noborder" width="100%">'."\n";
|
||||
print '<tr class="liste_titre"><td class="liste_titre" width="25%">'.$langs->trans("NonAffectedUsers").'</td>'."\n";
|
||||
@ -476,6 +478,7 @@ else
|
||||
if ($_GET["action"] == 'edit' && $caneditperms)
|
||||
{
|
||||
print '<form action="fiche.php?id='.$group->id.'" method="post" name="updategroup" enctype="multipart/form-data">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="update">';
|
||||
|
||||
print '<table class="border" width="100%">';
|
||||
|
||||
@ -48,6 +48,7 @@ print '<tr><td valign="top" width="30%" class="notopnoleft">';
|
||||
// Recherche User
|
||||
$var=false;
|
||||
print '<form method="post" action="'.DOL_URL_ROOT.'/user/index.php">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="noborder" width="100%">';
|
||||
print '<tr class="liste_titre"><td colspan="3">'.$langs->trans("SearchAUser").'</td></tr>';
|
||||
print '<tr '.$bc[$var].'><td>';
|
||||
@ -59,6 +60,7 @@ print '</form>';
|
||||
// Recherche Group
|
||||
$var=false;
|
||||
print '<form method="post" action="'.DOL_URL_ROOT.'/user/group/index.php">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<table class="noborder" width="100%">';
|
||||
print '<tr class="liste_titre"><td colspan="3">'.$langs->trans("SearchAGroup").'</td></tr>';
|
||||
print '<tr '.$bc[$var].'><td>';
|
||||
|
||||
@ -142,6 +142,7 @@ print '</table><br>';
|
||||
if ($_GET["action"] == 'edit')
|
||||
{
|
||||
print '<form method="post" action="'.$_SERVER["PHP_SELF"].'">';
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="update">';
|
||||
print '<input type="hidden" name="id" value="'.$_GET["id"].'">';
|
||||
|
||||
|
||||
@ -195,6 +195,7 @@ print '<body class="body" onload="donnefocus();">'."\n";
|
||||
|
||||
// Form
|
||||
print '<form id="login" action="'.$_SERVER["PHP_SELF"].'" method="post" name="login">'."\n";
|
||||
print '<input type="hidden" name="token" value="'.$_SESSION['newtoken'].'">';
|
||||
print '<input type="hidden" name="action" value="buildnewpassword">'."\n";
|
||||
|
||||
// Table 1
|
||||
|
||||
Loading…
Reference in New Issue
Block a user