oqapi/webgui
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

more session related bug fixes

Browse source
This commit is contained in:
JT Smith 2006-01-15 18:34:44 +00:00
parent f2cccdff9f
commit b0ffb721b6
44 changed files with 143 additions and 143 deletions
Download patch file Download diff file Expand all files Collapse all files

10
lib/WebGUI/Asset.pm
View file

@ -77,7 +77,7 @@ Only developers extending this method should use this parameter. By default WebG
sub canAdd { sub canAdd {
my $className = shift; my $className = shift;
my $session = shift; my $session = shift;
my $userId = shift || $session->user->profileField("userId"); my $userId = shift || $session->user->userId;
my $subclassGroupId = shift; my $subclassGroupId = shift;
my $groupId = $session->config->get("assetAddPrivilege")->{$className} || $subclassGroupId || '12'; my $groupId = $session->config->get("assetAddPrivilege")->{$className} || $subclassGroupId || '12';
return $session->user->isInGroup($groupId,$userId); return $session->user->isInGroup($groupId,$userId);
@ -98,7 +98,7 @@ Unique hash identifier for a user. If not supplied, current user.
sub canEdit { sub canEdit {
my $self = shift; my $self = shift;
my $userId = shift || $self->session->user->profileField("userId"); my $userId = shift || $self->session->user->userId;
if ($userId eq $self->get("ownerUserId")) { if ($userId eq $self->get("ownerUserId")) {
return 1; return 1;
} }
@ -123,7 +123,7 @@ Unique hash identifier for a user. If not specified, uses current userId.
sub canView { sub canView {
my $self = shift; my $self = shift;
my $userId = shift || $self->session->user->profileField("userId"); my $userId = shift || $self->session->user->userId;
return 0 unless ($self->get("state") eq "published"); return 0 unless ($self->get("state") eq "published");
if ($userId eq $self->get("ownerUserId")) { if ($userId eq $self->get("ownerUserId")) {
return 1; return 1;
@ -576,7 +576,7 @@ sub getEditForm {
my $clause; my $clause;
if ($self->session->user->isInGroup(3)) { if ($self->session->user->isInGroup(3)) {
my $contentManagers = $self->session->group->getUsers(4,1); my $contentManagers = $self->session->group->getUsers(4,1);
push (@$contentManagers, $self->session->user->profileField("userId")); push (@$contentManagers, $self->session->user->userId);
$clause = "userId in (".$self->session->db->quoteAndJoin($contentManagers).")"; $clause = "userId in (".$self->session->db->quoteAndJoin($contentManagers).")";
} else { } else {
$clause = "userId=".$self->session->db->quote($self->get("ownerUserId")); $clause = "userId=".$self->session->db->quote($self->get("ownerUserId"));
@ -1270,7 +1270,7 @@ sub publish {
my $self = shift; my $self = shift;
my $assetIds = $self->session->db->buildArrayRef("select assetId from asset where lineage like ".$self->session->db->quote($self->get("lineage").'%')); my $assetIds = $self->session->db->buildArrayRef("select assetId from asset where lineage like ".$self->session->db->quote($self->get("lineage").'%'));
my $idList = $self->session->db->quoteAndJoin($assetIds); my $idList = $self->session->db->quoteAndJoin($assetIds);
$self->session->db->write("update asset set state='published', stateChangedBy=".$self->session->db->quote($self->session->user->profileField("userId")).", stateChanged=".$self->session->datetime->time()." where assetId in (".$idList.")"); $self->session->db->write("update asset set state='published', stateChangedBy=".$self->session->db->quote($self->session->user->userId).", stateChanged=".$self->session->datetime->time()." where assetId in (".$idList.")");
my $cache = WebGUI::Cache->new; my $cache = WebGUI::Cache->new;
foreach my $id (@{$assetIds}) { foreach my $id (@{$assetIds}) {
# we do the purge directly cuz it's a lot faster than instantiating all these assets # we do the purge directly cuz it's a lot faster than instantiating all these assets

2
lib/WebGUI/Asset/FilePile.pm
View file

@ -107,7 +107,7 @@ sub edit {
my $clause; my $clause;
if ($self->session->user->isInGroup(3)) { if ($self->session->user->isInGroup(3)) {
my $contentManagers = $group->getUsers(4,1); my $contentManagers = $group->getUsers(4,1);
push (@$contentManagers, $self->session->user->profileField("userId")); push (@$contentManagers, $self->session->user->userId);
$clause = "userId in (".$self->session->db->quoteAndJoin($contentManagers).")"; $clause = "userId in (".$self->session->db->quoteAndJoin($contentManagers).")";
} else { } else {
$clause = "userId=".$self->session->db->quote($self->get("ownerUserId")); $clause = "userId=".$self->session->db->quote($self->get("ownerUserId"));

26
lib/WebGUI/Asset/Post.pm
View file

@ -133,7 +133,7 @@ sub definition {
}, },
username => { username => {
fieldType=>"hidden", fieldType=>"hidden",
defaultValue=>$session->form->process("visitorUsername") || $session->user->profileField("alias") || $session->user->profileField("username") defaultValue=>$session->form->process("visitorUsername") || $session->user->profileField("alias") || $session->user->username
}, },
rating => { rating => {
noFormPost=>1, noFormPost=>1,
@ -525,7 +525,7 @@ sub hasRated {
my $self = shift; my $self = shift;
return 1 if $self->isPoster; return 1 if $self->isPoster;
my ($flag) = $self->session->db->quickArray("select count(*) from Post_rating where assetId=" my ($flag) = $self->session->db->quickArray("select count(*) from Post_rating where assetId="
.$self->session->db->quote($self->getId)." and ((userId=".$self->session->db->quote($self->session->user->profileField("userId"))." and userId<>'1') or (userId='1' and .$self->session->db->quote($self->getId)." and ((userId=".$self->session->db->quote($self->session->user->userId)." and userId<>'1') or (userId='1' and
ipAddress=".$self->session->db->quote($self->session->env->get("REMOTE_ADDR"))."))"); ipAddress=".$self->session->db->quote($self->session->env->get("REMOTE_ADDR"))."))");
return $flag; return $flag;
} }
@ -554,7 +554,7 @@ Returns a boolean indicating whether this post is marked read for the user.
sub isMarkedRead { sub isMarkedRead {
my $self = shift; my $self = shift;
return 1 if $self->isPoster; return 1 if $self->isPoster;
my ($isRead) = $self->session->db->quickArray("select count(*) from Post_read where userId=".$self->session->db->quote($self->session->user->profileField("userId"))." and postId=".$self->session->db->quote($self->getId)); my ($isRead) = $self->session->db->quickArray("select count(*) from Post_read where userId=".$self->session->db->quote($self->session->user->userId)." and postId=".$self->session->db->quote($self->getId));
return $isRead; return $isRead;
} }
@ -568,7 +568,7 @@ Returns a boolean that is true if the current user created this post and is not
sub isPoster { sub isPoster {
my $self = shift; my $self = shift;
return ($self->session->user->profileField("userId") ne "1" && $self->session->user->profileField("userId") eq $self->get("ownerUserId")); return ($self->session->user->userId ne "1" && $self->session->user->userId eq $self->get("ownerUserId"));
} }
@ -597,7 +597,7 @@ Marks this post read for this user.
sub markRead { sub markRead {
my $self = shift; my $self = shift;
unless ($self->isMarkedRead) { unless ($self->isMarkedRead) {
$self->session->db->write("insert into Post_read (userId, postId, threadId, readDate) values (".$self->session->db->quote($self->session->user->profileField("userId")).", $self->session->db->write("insert into Post_read (userId, postId, threadId, readDate) values (".$self->session->db->quote($self->session->user->userId).",
".$self->session->db->quote($self->getId).", ".$self->session->db->quote($self->get("threadId")).", ".$self->session->datetime->time().")"); ".$self->session->db->quote($self->getId).", ".$self->session->db->quote($self->get("threadId")).", ".$self->session->datetime->time().")");
} }
} }
@ -652,12 +652,12 @@ sub processPropertiesFromFormPost {
$self->update({threadId=>$self->getParent->get("threadId")}); $self->update({threadId=>$self->getParent->get("threadId")});
} }
if ($self->session->setting->get("enableKarma") && $self->getThread->getParent->get("karmaPerPost")) { if ($self->session->setting->get("enableKarma") && $self->getThread->getParent->get("karmaPerPost")) {
my $u = WebGUI::User->new($self->session->user->profileField("userId")); my $u = WebGUI::User->new($self->session->user->userId);
$u->addKarma($self->getThread->getParent->get("karmaPerPost"), $self->getId, "Collaboration post"); $u->addKarma($self->getThread->getParent->get("karmaPerPost"), $self->getId, "Collaboration post");
} }
%data = ( %data = (
ownerUserId => $self->session->user->profileField("userId"), ownerUserId => $self->session->user->userId,
username => $self->session->form->process("visitorName") || $self->session->user->profileField("alias") || $self->session->user->profileField("username"), username => $self->session->form->process("visitorName") || $self->session->user->profileField("alias") || $self->session->user->username,
isHidden => 1, isHidden => 1,
); );
$data{url} = $self->fixUrl($self->getThread->get("url")."/1") if ($self->isReply); $data{url} = $self->fixUrl($self->getThread->get("url")."/1") if ($self->isReply);
@ -702,8 +702,8 @@ sub processPropertiesFromFormPost {
} }
$self->session->form->process("proceed") = "redirectToParent"; $self->session->form->process("proceed") = "redirectToParent";
# clear some cache # clear some cache
WebGUI::Cache->new($self->session,"wobject_".$self->getThread->getParent->getId."_".$self->session->user->profileField("userId"))->delete; WebGUI::Cache->new($self->session,"wobject_".$self->getThread->getParent->getId."_".$self->session->user->userId)->delete;
WebGUI::Cache->new($self->session,"cspost_".($self->getParent->getId)."_".$self->session->user->profileField("userId")."_".$self->session->scratch->get("discussionLayout")."_1")->delete; WebGUI::Cache->new($self->session,"cspost_".($self->getParent->getId)."_".$self->session->user->userId."_".$self->session->scratch->get("discussionLayout")."_1")->delete;
} }
@ -748,7 +748,7 @@ sub rate {
my $rating = shift || 3; my $rating = shift || 3;
unless ($self->hasRated) { unless ($self->hasRated) {
$self->session->db->write("insert into Post_rating (assetId,userId,ipAddress,dateOfRating,rating) values (" $self->session->db->write("insert into Post_rating (assetId,userId,ipAddress,dateOfRating,rating) values ("
.$self->session->db->quote($self->getId).", ".$self->session->db->quote($self->session->user->profileField("userId")).", ".$self->session->db->quote($self->session->env->get("REMOTE_ADDR")).", .$self->session->db->quote($self->getId).", ".$self->session->db->quote($self->session->user->userId).", ".$self->session->db->quote($self->session->env->get("REMOTE_ADDR")).",
".$self->session->datetime->time().", ".$self->session->db->quote($rating).")"); ".$self->session->datetime->time().", ".$self->session->db->quote($rating).")");
my ($count) = $self->session->db->quickArray("select count(*) from Post_rating where assetId=".$self->session->db->quote($self->getId)); my ($count) = $self->session->db->quickArray("select count(*) from Post_rating where assetId=".$self->session->db->quote($self->getId));
$count = $count || 1; $count = $count || 1;
@ -882,7 +882,7 @@ Negates the markRead method.
sub unmarkRead { sub unmarkRead {
my $self = shift; my $self = shift;
$self->session->db->write("delete from forumRead where userId=".$self->session->db->quote($self->session->user->profileField("userId"))." and postId=".$self->session->db->quote($self->getId)); $self->session->db->write("delete from forumRead where userId=".$self->session->db->quote($self->session->user->userId)." and postId=".$self->session->db->quote($self->getId));
} }
#------------------------------------------------------------------- #-------------------------------------------------------------------
@ -1044,7 +1044,7 @@ sub www_edit {
$var{'form.footer'} = WebGUI::Form::formFooter($self->session,); $var{'form.footer'} = WebGUI::Form::formFooter($self->session,);
$var{usePreview} = $self->getThread->getParent->get("usePreview"); $var{usePreview} = $self->getThread->getParent->get("usePreview");
$var{'user.isModerator'} = $self->getThread->getParent->canModerate; $var{'user.isModerator'} = $self->getThread->getParent->canModerate;
$var{'user.isVisitor'} = ($self->session->user->profileField("userId") eq '1'); $var{'user.isVisitor'} = ($self->session->user->userId eq '1');
$var{'visitorName.form'} = WebGUI::Form::text({ $var{'visitorName.form'} = WebGUI::Form::text({
name=>"visitorName", name=>"visitorName",
value=>$self->getValue("visitorName") value=>$self->getValue("visitorName")

32
lib/WebGUI/Asset/Post/Thread.pm
View file

@ -31,7 +31,7 @@ sub canReply {
#------------------------------------------------------------------- #-------------------------------------------------------------------
sub canSubscribe { sub canSubscribe {
my $self = shift; my $self = shift;
return ($self->session->user->profileField("userId") ne "1" && $self->canView); return ($self->session->user->userId ne "1" && $self->canView);
} }
#------------------------------------------------------------------- #-------------------------------------------------------------------
@ -189,7 +189,7 @@ sub getNextThread {
and ( and (
assetData.status in ('approved','archived') assetData.status in ('approved','archived')
or assetData.tagId=".$self->session->db->quote($self->session->scratch->get("versionTag"))." or assetData.tagId=".$self->session->db->quote($self->session->scratch->get("versionTag"))."
or (assetData.ownerUserId=".$self->session->db->quote($self->session->user->profileField("userId"))." and assetData.ownerUserId<>'1') or (assetData.ownerUserId=".$self->session->db->quote($self->session->user->userId)." and assetData.ownerUserId<>'1')
) )
group by assetData.assetId group by assetData.assetId
order by ".$sortBy." asc order by ".$sortBy." asc
@ -227,7 +227,7 @@ sub getPreviousThread {
and ( and (
assetData.status in ('approved','archived') assetData.status in ('approved','archived')
or assetData.tagId=".$self->session->db->quote($self->session->scratch->get("versionTag"))." or assetData.tagId=".$self->session->db->quote($self->session->scratch->get("versionTag"))."
or (assetData.ownerUserId=".$self->session->db->quote($self->session->user->profileField("userId"))." and assetData.ownerUserId<>'1') or (assetData.ownerUserId=".$self->session->db->quote($self->session->user->userId)." and assetData.ownerUserId<>'1')
) )
group by assetData.assetId group by assetData.assetId
order by ".$sortBy." desc, assetData.revisionDate desc ",$self->session->db->getSlave); order by ".$sortBy." desc, assetData.revisionDate desc ",$self->session->db->getSlave);
@ -372,7 +372,7 @@ Returns a boolean indicating whether this thread is marked read for the user.
sub isMarkedRead { sub isMarkedRead {
my $self = shift; my $self = shift;
return 1 if $self->isPoster; return 1 if $self->isPoster;
my ($isRead) = $self->session->db->quickArray("select count(*) from Post_read where userId=".$self->session->db->quote($self->session->user->profileField("userId"))." and threadId=".$self->session->db->quote($self->getId)." and postId=".$self->session->db->quote($self->get("lastPostId"))); my ($isRead) = $self->session->db->quickArray("select count(*) from Post_read where userId=".$self->session->db->quote($self->session->user->userId)." and threadId=".$self->session->db->quote($self->getId)." and postId=".$self->session->db->quote($self->get("lastPostId")));
return $isRead; return $isRead;
} }
@ -444,7 +444,7 @@ sub rate {
my $rating = shift; my $rating = shift;
unless ($self->hasRated) { unless ($self->hasRated) {
$self->session->db->write("insert into Post_rating (assetId,userId,ipAddress,dateOfRating,rating) values (" $self->session->db->write("insert into Post_rating (assetId,userId,ipAddress,dateOfRating,rating) values ("
.$self->session->db->quote($self->getId).", ".$self->session->db->quote($self->session->user->profileField("userId")).", ".$self->session->db->quote($self->session->env->get("REMOTE_ADDR")).", .$self->session->db->quote($self->getId).", ".$self->session->db->quote($self->session->user->userId).", ".$self->session->db->quote($self->session->env->get("REMOTE_ADDR")).",
".$self->session->datetime->time().", ".$self->session->db->quote($rating).")"); ".$self->session->datetime->time().", ".$self->session->db->quote($rating).")");
my ($count) = $self->session->db->quickArray("select count(*) from Post left join asset on Post.assetId=asset.assetId where Post.threadId=".$self->session->db->quote($self->getId)." and Post.rating>0"); my ($count) = $self->session->db->quickArray("select count(*) from Post left join asset on Post.assetId=asset.assetId where Post.threadId=".$self->session->db->quote($self->getId)." and Post.rating>0");
$count = $count || 1; $count = $count || 1;
@ -454,7 +454,7 @@ sub rate {
if ($self->session->setting->get("useKarma")) { if ($self->session->setting->get("useKarma")) {
my $poster = WebGUI::User->new($self->get("ownerUserId")); my $poster = WebGUI::User->new($self->get("ownerUserId"));
$poster->karma($rating*$self->getParent->get("karmaRatingMultiplier"),"collaboration rating","someone rated post ".$self->getId); $poster->karma($rating*$self->getParent->get("karmaRatingMultiplier"),"collaboration rating","someone rated post ".$self->getId);
my $rater = WebGUI::User->new($self->session->user->profileField("userId")); my $rater = WebGUI::User->new($self->session->user->userId);
$rater->karma(-$self->getParent->get("karmaSpentToRate"),"collaboration rating","spent karma to rate post ".$self->getId); $rater->karma(-$self->getParent->get("karmaSpentToRate"),"collaboration rating","spent karma to rate post ".$self->getId);
} }
$self->getParent->recalculateRating; $self->getParent->recalculateRating;
@ -546,8 +546,8 @@ Subscribes the user to this thread.
sub subscribe { sub subscribe {
my $self = shift; my $self = shift;
$self->createSubscriptionGroup; $self->createSubscriptionGroup;
WebGUI::Cache->new($self->session,"cspost_".$self->getId."_".$self->session->user->profileField("userId")."_".$self->session->scratch->get("discussionLayout")."_".$self->session->form->process("pn"))->delete; WebGUI::Cache->new($self->session,"cspost_".$self->getId."_".$self->session->user->userId."_".$self->session->scratch->get("discussionLayout")."_".$self->session->form->process("pn"))->delete;
$group->addUsers([$self->session->user->profileField("userId")],[$self->get("subscriptionGroupId")]); $group->addUsers([$self->session->user->userId],[$self->get("subscriptionGroupId")]);
} }
#------------------------------------------------------------------- #-------------------------------------------------------------------
@ -606,8 +606,8 @@ Negates the subscribe method.
sub unsubscribe { sub unsubscribe {
my $self = shift; my $self = shift;
WebGUI::Cache->new($self->session,"cspost_".$self->getId."_".$self->session->user->profileField("userId")."_".$self->session->scratch->get("discussionLayout")."_".$self->session->form->process("pn"))->delete; WebGUI::Cache->new($self->session,"cspost_".$self->getId."_".$self->session->user->userId."_".$self->session->scratch->get("discussionLayout")."_".$self->session->form->process("pn"))->delete;
$group->deleteUsers([$self->session->user->profileField("userId")],[$self->get("subscriptionGroupId")]); $group->deleteUsers([$self->session->user->userId],[$self->get("subscriptionGroupId")]);
} }
@ -620,7 +620,7 @@ sub view {
my $var = $self->getTemplateVars; my $var = $self->getTemplateVars;
$self->getParent->appendTemplateLabels($var); $self->getParent->appendTemplateLabels($var);
$var->{'user.isVisitor'} = ($self->session->user->profileField("userId") eq '1'); $var->{'user.isVisitor'} = ($self->session->user->userId eq '1');
$var->{'user.isModerator'} = $self->getParent->canModerate; $var->{'user.isModerator'} = $self->getParent->canModerate;
$var->{'user.canPost'} = $self->getParent->canPost; $var->{'user.canPost'} = $self->getParent->canPost;
$var->{'user.canReply'} = $self->canReply; $var->{'user.canReply'} = $self->canReply;
@ -655,7 +655,7 @@ sub view {
assetData.status in ('approved','archived') assetData.status in ('approved','archived')
or assetData.tagId=".$self->session->db->quote($self->session->scratch->get("versionTag")); or assetData.tagId=".$self->session->db->quote($self->session->scratch->get("versionTag"));
$sql .= " or assetData.status='pending'" if ($self->getParent->canModerate); $sql .= " or assetData.status='pending'" if ($self->getParent->canModerate);
$sql .= " or (assetData.ownerUserId=".$self->session->db->quote($self->session->user->profileField("userId"))." and assetData.ownerUserId<>'1') $sql .= " or (assetData.ownerUserId=".$self->session->db->quote($self->session->user->userId)." and assetData.ownerUserId<>'1')
)) ))
group by assetData.assetId group by assetData.assetId
order by "; order by ";
@ -795,19 +795,19 @@ sub www_view {
$self->session->form->process("func") eq "" && $self->session->form->process("func") eq "" &&
$self->session->form->process("layout") eq "" && $self->session->form->process("layout") eq "" &&
( (
( $self->getParent->get("cacheTimeout") > 10 && $self->session->user->profileField("userId") ne '1') || ( $self->getParent->get("cacheTimeout") > 10 && $self->session->user->userId ne '1') ||
( $self->getParent->get("cacheTimeoutVisitor") > 10 && $self->session->user->profileField("userId") eq '1') ( $self->getParent->get("cacheTimeoutVisitor") > 10 && $self->session->user->userId eq '1')
) && ) &&
not $self->session->var->get("adminOn") not $self->session->var->get("adminOn")
); );
if ($useCache) { if ($useCache) {
$cache = WebGUI::Cache->new($self->session,"cspost_".($postId||$self->getId)."_".$self->session->user->profileField("userId")."_".$self->session->scratch->get("discussionLayout")."_".$self->session->form->process("pn")); $cache = WebGUI::Cache->new($self->session,"cspost_".($postId||$self->getId)."_".$self->session->user->userId."_".$self->session->scratch->get("discussionLayout")."_".$self->session->form->process("pn"));
$output = $cache->get; $output = $cache->get;
} }
unless ($output) { unless ($output) {
$output = $self->getParent->processStyle($self->view); $output = $self->getParent->processStyle($self->view);
my $ttl; my $ttl;
if ($self->session->user->profileField("userId") eq '1') { if ($self->session->user->userId eq '1') {
$ttl = $self->getParent->get("cacheTimeoutVisitor"); $ttl = $self->getParent->get("cacheTimeoutVisitor");
} else { } else {
$ttl = $self->getParent->get("cacheTimeout"); $ttl = $self->getParent->get("cacheTimeout");

6
lib/WebGUI/Asset/Shortcut.pm
View file

@ -213,7 +213,7 @@ sub definition {
#------------------------------------------------------------------- #-------------------------------------------------------------------
sub discernUserId { sub discernUserId {
my $self = shift; my $self = shift;
return ($self->canManage && $self->session->var->isAdminOn) ? '1' : $self->session->user->profileField("userId"); return ($self->canManage && $self->session->var->isAdminOn) ? '1' : $self->session->user->userId;
} }
#------------------------------------------------------------------- #-------------------------------------------------------------------
@ -376,7 +376,7 @@ sub getOverrides {
my $self = shift; my $self = shift;
my $i = 0; my $i = 0;
#cache by userId, assetId of this shortcut, and whether adminMode is on or not. #cache by userId, assetId of this shortcut, and whether adminMode is on or not.
my $cache = WebGUI::Cache->new($self->session,["shortcutOverrides",$self->getId,$self->session->user->profileField("userId"),$self->session->var->get("adminOn")]); my $cache = WebGUI::Cache->new($self->session,["shortcutOverrides",$self->getId,$self->session->user->userId,$self->session->var->get("adminOn")]);
my $overridesRef = $cache->get; my $overridesRef = $cache->get;
unless ($overridesRef->{cacheNotExpired}) { unless ($overridesRef->{cacheNotExpired}) {
my %overrides; my %overrides;
@ -637,7 +637,7 @@ sub www_edit {
sub www_getUserPrefsForm { sub www_getUserPrefsForm {
#This is a form retrieved by "ajax". #This is a form retrieved by "ajax".
my $self = shift; my $self = shift;
return 'You are no longer logged in' if $self->session->user->profileField("userId") eq '1'; return 'You are no longer logged in' if $self->session->user->userId eq '1';
return 'You are not allowed to personalize this Dashboard.' unless $self->getParent->canPersonalize; return 'You are not allowed to personalize this Dashboard.' unless $self->getParent->canPersonalize;
my $output; my $output;
my @fielden = $self->getPrefFieldsToShow; my @fielden = $self->getPrefFieldsToShow;

10
lib/WebGUI/Asset/Wobject.pm
View file

@ -134,7 +134,7 @@ Deletes the rendered page cache for this wobject.
sub deletePageCache { sub deletePageCache {
my $self = shift; my $self = shift;
WebGUI::Cache->new($self->session,"wobject_".$self->getId."_".$self->session->user->profileField("userId"))->delete; WebGUI::Cache->new($self->session,"wobject_".$self->getId."_".$self->session->user->userId)->delete;
} }
#------------------------------------------------------------------- #-------------------------------------------------------------------
@ -597,19 +597,19 @@ sub www_view {
my $useCache = ( my $useCache = (
$self->session->form->process("op") eq "" && $self->session->form->process("pn") eq "" $self->session->form->process("op") eq "" && $self->session->form->process("pn") eq ""
&& ( && (
( $self->get("cacheTimeout") > 10 && $self->session->user->profileField("userId") ne '1') ( $self->get("cacheTimeout") > 10 && $self->session->user->userId ne '1')
|| ( $self->get("cacheTimeoutVisitor") > 10 && $self->session->user->profileField("userId") eq '1') || ( $self->get("cacheTimeoutVisitor") > 10 && $self->session->user->userId eq '1')
) )
&& !( $self->session->var->get("adminOn") || $disableCache) && !( $self->session->var->get("adminOn") || $disableCache)
); );
if ($useCache) { if ($useCache) {
$cache = WebGUI::Cache->new($self->session,"wobject_".$self->getId."_".$self->session->user->profileField("userId")); $cache = WebGUI::Cache->new($self->session,"wobject_".$self->getId."_".$self->session->user->userId);
$output = $cache->get; $output = $cache->get;
} }
unless ($output) { unless ($output) {
$output = $self->processStyle($self->view); $output = $self->processStyle($self->view);
my $ttl; my $ttl;
if ($self->session->user->profileField("userId") eq '1') { if ($self->session->user->userId eq '1') {
$ttl = $self->get("cacheTimeoutVisitor"); $ttl = $self->get("cacheTimeoutVisitor");
} else { } else {
$ttl = $self->get("cacheTimeout"); $ttl = $self->get("cacheTimeout");

16
lib/WebGUI/Asset/Wobject/Collaboration.pm
View file

@ -199,7 +199,7 @@ sub canPost {
#------------------------------------------------------------------- #-------------------------------------------------------------------
sub canSubscribe { sub canSubscribe {
my $self = shift; my $self = shift;
return ($self->session->user->profileField("userId") ne "1" && $self->canView); return ($self->session->user->userId ne "1" && $self->canView);
} }
#------------------------------------------------------------------- #-------------------------------------------------------------------
@ -864,9 +864,9 @@ Subscribes a user to this collaboration system.
sub subscribe { sub subscribe {
my $self = shift; my $self = shift;
WebGUI::Cache->new($self->session,"wobject_".$self->getId."_".$self->session->user->profileField("userId"))->delete; WebGUI::Cache->new($self->session,"wobject_".$self->getId."_".$self->session->user->userId)->delete;
my $group = WebGUI::Group->new($self->session,$self->get("subscriptionGroupId")); my $group = WebGUI::Group->new($self->session,$self->get("subscriptionGroupId"));
$group->addUsers([$self->session->user->profileField("userId")]); $group->addUsers([$self->session->user->userId]);
} }
#------------------------------------------------------------------- #-------------------------------------------------------------------
@ -879,9 +879,9 @@ Unsubscribes a user from this collaboration system
sub unsubscribe { sub unsubscribe {
my $self = shift; my $self = shift;
WebGUI::Cache->new($self->session,"wobject_".$self->getId."_".$self->session->user->profileField("userId"))->delete; WebGUI::Cache->new($self->session,"wobject_".$self->getId."_".$self->session->user->userId)->delete;
my $group = WebGUI::Group->new($self->session,$self->get("subscriptionGroupId")); my $group = WebGUI::Group->new($self->session,$self->get("subscriptionGroupId"));
$group->deleteUsers([$self->session->user->profileField("userId")],[$self->get("subscriptionGroupId")]); $group->deleteUsers([$self->session->user->userId],[$self->get("subscriptionGroupId")]);
} }
@ -909,7 +909,7 @@ sub view {
$var{"add.url"} = $self->getNewThreadUrl; $var{"add.url"} = $self->getNewThreadUrl;
$var{"rss.url"} = $self->getRssUrl; $var{"rss.url"} = $self->getRssUrl;
$var{'user.isModerator'} = $self->canModerate; $var{'user.isModerator'} = $self->canModerate;
$var{'user.isVisitor'} = ($self->session->user->profileField("userId") eq '1'); $var{'user.isVisitor'} = ($self->session->user->userId eq '1');
$var{'user.isSubscribed'} = $self->isSubscribed; $var{'user.isSubscribed'} = $self->isSubscribed;
$var{'sortby.title.url'} = $self->getSortByUrl("title"); $var{'sortby.title.url'} = $self->getSortByUrl("title");
$var{'sortby.username.url'} = $self->getSortByUrl("username"); $var{'sortby.username.url'} = $self->getSortByUrl("username");
@ -922,7 +922,7 @@ sub view {
$var{"search.url"} = $self->getSearchUrl; $var{"search.url"} = $self->getSearchUrl;
$var{"subscribe.url"} = $self->getSubscribeUrl; $var{"subscribe.url"} = $self->getSubscribeUrl;
$var{"unsubscribe.url"} = $self->getUnsubscribeUrl; $var{"unsubscribe.url"} = $self->getUnsubscribeUrl;
my $constraints = "(assetData.status='approved' or (assetData.ownerUserId=".$self->session->db->quote($self->session->user->profileField("userId"))." and assetData.ownerUserId<>'1') or assetData.tagId=".$self->session->db->quote($self->session->scratch->get("versionTag")); my $constraints = "(assetData.status='approved' or (assetData.ownerUserId=".$self->session->db->quote($self->session->user->userId)." and assetData.ownerUserId<>'1') or assetData.tagId=".$self->session->db->quote($self->session->scratch->get("versionTag"));
if ($var{'user.isModerator'}) { if ($var{'user.isModerator'}) {
$constraints .= " or assetData.status='pending'"; $constraints .= " or assetData.status='pending'";
} }
@ -1058,7 +1058,7 @@ sub www_search {
assetData.status in ('approved','archived') assetData.status in ('approved','archived')
or assetData.tagId=".$self->session->db->quote($self->session->scratch->get("versionTag")); or assetData.tagId=".$self->session->db->quote($self->session->scratch->get("versionTag"));
$sql .= " or assetData.status='pending'" if ($self->canModerate); $sql .= " or assetData.status='pending'" if ($self->canModerate);
$sql .= " or (assetData.ownerUserId=".$self->session->db->quote($self->session->user->profileField("userId"))." and assetData.ownerUserId<>'1') $sql .= " or (assetData.ownerUserId=".$self->session->db->quote($self->session->user->userId)." and assetData.ownerUserId<>'1')
) "; ) ";
$sql .= " and ($all) " if ($all ne ""); $sql .= " and ($all) " if ($all ne "");
$sql .= " and " if ($sql ne "" && $exactPhrase ne ""); $sql .= " and " if ($sql ne "" && $exactPhrase ne "");

14
lib/WebGUI/Asset/Wobject/Dashboard.pm
View file

@ -24,14 +24,14 @@ our @ISA = qw(WebGUI::Asset::Wobject);
#------------------------------------------------------------------- #-------------------------------------------------------------------
sub canManage { sub canManage {
my $self = shift; my $self = shift;
return 0 if $self->session->user->profileField("userId") == 1; return 0 if $self->session->user->userId == 1;
return $self->session->user->isInGroup($self->get("adminsGroupId")); return $self->session->user->isInGroup($self->get("adminsGroupId"));
} }
#------------------------------------------------------------------- #-------------------------------------------------------------------
sub canPersonalize { sub canPersonalize {
my $self = shift; my $self = shift;
return 0 if $self->session->user->profileField("userId") == 1; return 0 if $self->session->user->userId == 1;
return $self->session->user->isInGroup($self->get("usersGroupId")); return $self->session->user->isInGroup($self->get("usersGroupId"));
} }
@ -88,7 +88,7 @@ sub getContentPositions {
#------------------------------------------------------------------- #-------------------------------------------------------------------
sub discernUserId { sub discernUserId {
my $self = shift; my $self = shift;
return ($self->canManage && $self->session->var->isAdminOn) ? '1' : $self->session->user->profileField("userId"); return ($self->canManage && $self->session->var->isAdminOn) ? '1' : $self->session->user->userId;
} }
#------------------------------------------------------------------- #-------------------------------------------------------------------
@ -217,7 +217,7 @@ sub view {
shortcutUrl=>$child->getUrl, shortcutUrl=>$child->getUrl,
canPersonalize=>$self->canPersonalize, canPersonalize=>$self->canPersonalize,
showReloadIcon=>$child->{_properties}{showReloadIcon}, showReloadIcon=>$child->{_properties}{showReloadIcon},
canEditUserPrefs=>(($self->session->user->profileField("userId") ne '1') && (ref $child eq 'WebGUI::Asset::Shortcut') && (scalar($child->getPrefFieldsToShow) > 0)) canEditUserPrefs=>(($self->session->user->userId ne '1') && (ref $child eq 'WebGUI::Asset::Shortcut') && (scalar($child->getPrefFieldsToShow) > 0))
}); });
$newStuff .= 'available_dashlets["'.$child->getId.'"]=\''.$child->getUrl.'\';'; $newStuff .= 'available_dashlets["'.$child->getId.'"]=\''.$child->getUrl.'\';';
@ -229,7 +229,7 @@ sub view {
shortcutUrl=>$child->getUrl, shortcutUrl=>$child->getUrl,
canPersonalize=>$self->canPersonalize, canPersonalize=>$self->canPersonalize,
showReloadIcon=>$child->{_properties}{showReloadIcon}, showReloadIcon=>$child->{_properties}{showReloadIcon},
canEditUserPrefs=>(($self->session->user->profileField("userId") ne '1') && (ref $child eq 'WebGUI::Asset::Shortcut') && (scalar($child->getPrefFieldsToShow) > 0)) canEditUserPrefs=>(($self->session->user->userId ne '1') && (ref $child eq 'WebGUI::Asset::Shortcut') && (scalar($child->getPrefFieldsToShow) > 0))
}); });
$newStuff .= 'available_dashlets["'.$child->getId.'"]=\''.$child->getUrl.'\';'; $newStuff .= 'available_dashlets["'.$child->getId.'"]=\''.$child->getUrl.'\';';
} }
@ -252,7 +252,7 @@ sub view {
shortcutUrl=>$child->getUrl, shortcutUrl=>$child->getUrl,
showReloadIcon=>$child->{_properties}{showReloadIcon}, showReloadIcon=>$child->{_properties}{showReloadIcon},
canPersonalize=>$self->canPersonalize, canPersonalize=>$self->canPersonalize,
canEditUserPrefs=>(($self->session->user->profileField("userId") ne '1') && (ref $child eq 'WebGUI::Asset::Shortcut') && (scalar($child->getPrefFieldsToShow) > 0)) canEditUserPrefs=>(($self->session->user->userId ne '1') && (ref $child eq 'WebGUI::Asset::Shortcut') && (scalar($child->getPrefFieldsToShow) > 0))
}); });
$newStuff .= 'available_dashlets["'.$child->getId.'"]=\''.$child->getUrl.'\';'; $newStuff .= 'available_dashlets["'.$child->getId.'"]=\''.$child->getUrl.'\';';
} }
@ -272,7 +272,7 @@ sub view {
#------------------------------------------------------------------- #-------------------------------------------------------------------
sub www_setContentPositions { sub www_setContentPositions {
my $self = shift; my $self = shift;
return 'Visitors cannot save settings' if($self->session->user->profileField("userId") eq '1'); return 'Visitors cannot save settings' if($self->session->user->userId eq '1');
return $self->session->privilege->insufficient() unless ($self->canPersonalize); return $self->session->privilege->insufficient() unless ($self->canPersonalize);
return 'empty' unless $self->get("isInitialized"); return 'empty' unless $self->get("isInitialized");
my $dummy = $self->initialize unless $self->get("isInitialized"); my $dummy = $self->initialize unless $self->get("isInitialized");

4
lib/WebGUI/Asset/Wobject/DataForm.pm
View file

@ -1052,8 +1052,8 @@ sub www_process {
my $entryId = $self->setCollateral("DataForm_entry","DataForm_entryId",{ my $entryId = $self->setCollateral("DataForm_entry","DataForm_entryId",{
DataForm_entryId=>$self->session->form->process("entryId"), DataForm_entryId=>$self->session->form->process("entryId"),
assetId=>$self->getId, assetId=>$self->getId,
userId=>$self->session->user->profileField("userId"), userId=>$self->session->user->userId,
username=>$self->session->user->profileField("username"), username=>$self->session->user->username,
ipAddress=>$self->session->env->get("REMOTE_ADDR"), ipAddress=>$self->session->env->get("REMOTE_ADDR"),
submissionDate=$self->session->datetime->time() submissionDate=$self->session->datetime->time()
},0); },0);

2
lib/WebGUI/Asset/Wobject/EventsCalendar.pm
View file

@ -23,7 +23,7 @@ our @ISA = qw(WebGUI::Asset::Wobject);
#------------------------------------------------------------------- #-------------------------------------------------------------------
#sub canManage { #sub canManage {
# my $self = shift; # my $self = shift;
# my $userId = shift || $self->session->user->profileField("userId"); # my $userId = shift || $self->session->user->userId;
# if ($userId eq $self->getValue("ownerUserId")) { # if ($userId eq $self->getValue("ownerUserId")) {
# return 1; # return 1;
# } # }

2
lib/WebGUI/Asset/Wobject/HttpProxy.pm
View file

@ -321,7 +321,7 @@ sub view {
$var{content} = "<b>Getting <a href='$proxiedUrl'>$proxiedUrl</a> failed</b>". $var{content} = "<b>Getting <a href='$proxiedUrl'>$proxiedUrl</a> failed</b>".
"<p><i>GET status line: ".$response->status_line."</i>"; "<p><i>GET status line: ".$response->status_line."</i>";
} }
if ($self->session->user->profileField("userId") eq '1') { if ($self->session->user->userId eq '1') {
$ttl = $self->get("cacheTimeoutVisitor"); $ttl = $self->get("cacheTimeoutVisitor");
} else { } else {
$ttl = $self->get("cacheTimeout"); $ttl = $self->get("cacheTimeout");

20
lib/WebGUI/Asset/Wobject/InOutBoard.pm
View file

@ -153,7 +153,7 @@ sub view {
} }
else { $var{canViewReport} = 0; } else { $var{canViewReport} = 0; }
my $statusUserId = $self->session->scratch->get("userId") || $self->session->user->profileField("userId"); my $statusUserId = $self->session->scratch->get("userId") || $self->session->user->userId;
my $statusListString = $self->getValue("statusList"); my $statusListString = $self->getValue("statusList");
chop($statusListString); chop($statusListString);
my @statusListArray = split("\n",$statusListString); my @statusListArray = split("\n",$statusListString);
@ -168,7 +168,7 @@ sub view {
my ($status) = $self->session->db->quickArray("select status from InOutBoard_status where userId=".$self->session->db->quote($statusUserId)." and assetId=".$self->session->db->quote($self->getId)); my ($status) = $self->session->db->quickArray("select status from InOutBoard_status where userId=".$self->session->db->quote($statusUserId)." and assetId=".$self->session->db->quote($self->getId));
##Find all the users for which I am a delegate ##Find all the users for which I am a delegate
my @users = $self->session->db->buildArray("select userId from InOutBoard_delegates where assetId=".$self->session->db->quote($self->getId)." and delegateUserId=".$self->session->db->quote($self->session->user->profileField("userId"))); my @users = $self->session->db->buildArray("select userId from InOutBoard_delegates where assetId=".$self->session->db->quote($self->getId)." and delegateUserId=".$self->session->db->quote($self->session->user->userId));
my $f = WebGUI::HTMLForm->new($self->session,-action=>$self->getUrl); my $f = WebGUI::HTMLForm->new($self->session,-action=>$self->getUrl);
if (@users) { if (@users) {
@ -202,7 +202,7 @@ sub view {
); );
$f->submit; $f->submit;
my ($isInGroup) = $self->session->db->quickArray("select count(*) from groupings where userId=".$self->session->db->quote($self->session->user->profileField("userId"))." and groupId=".$self->session->db->quote($self->get("inOutGroup"))); my ($isInGroup) = $self->session->db->quickArray("select count(*) from groupings where userId=".$self->session->db->quote($self->session->user->userId)." and groupId=".$self->session->db->quote($self->get("inOutGroup")));
if ($isInGroup) { if ($isInGroup) {
$var{displayForm} = 1; $var{displayForm} = 1;
$var{'form'} = $f->print; $var{'form'} = $f->print;
@ -287,7 +287,7 @@ sub www_selectDelegates {
#left join userProfileData a on users.userId=a.userId and a.fieldName='firstName' #left join userProfileData a on users.userId=a.userId and a.fieldName='firstName'
#left join userProfileData b on users.userId=b.userId and b.fieldName='lastName' #left join userProfileData b on users.userId=b.userId and b.fieldName='lastName'
#where users.userId<>'1' and users.status='Active' and users.userId<>%s #where users.userId<>'1' and users.status='Active' and users.userId<>%s
#group by userId", $self->session->db->quote($self->session->user->profileField("userId")); #group by userId", $self->session->db->quote($self->session->user->userId);
#Comment the sql query below (lines 297 - 307) to show all users of the system in the delegate select list #Comment the sql query below (lines 297 - 307) to show all users of the system in the delegate select list
my $sql = sprintf "select users.username, my $sql = sprintf "select users.username,
@ -300,7 +300,7 @@ left join userProfileData b on users.userId=b.userId and b.fieldName='lastName'
left join userProfileData c on users.userId=c.userId and c.fieldName='department' left join userProfileData c on users.userId=c.userId and c.fieldName='department'
left join InOutBoard_status on users.userId=InOutBoard_status.userId and InOutBoard_status.assetId=%s left join InOutBoard_status on users.userId=InOutBoard_status.userId and InOutBoard_status.assetId=%s
where users.userId<>'1' and groupings.groupId=InOutBoard.inOutGroup and users.status='Active' and users.userId <> %s and groupings.userId=users.userId and InOutBoard.inOutGroup=%s where users.userId<>'1' and groupings.groupId=InOutBoard.inOutGroup and users.status='Active' and users.userId <> %s and groupings.userId=users.userId and InOutBoard.inOutGroup=%s
group by userId", $self->session->db->quote($self->getId), $self->session->db->quote($self->session->user->profileField("userId")), $self->session->db->quote($self->getValue("inOutGroup")) ; group by userId", $self->session->db->quote($self->getId), $self->session->db->quote($self->session->user->userId), $self->session->db->quote($self->getValue("inOutGroup")) ;
my %userNames = (); my %userNames = ();
my $sth = $self->session->db->read($sql); my $sth = $self->session->db->read($sql);
while (my $data = $sth->hashRef) { while (my $data = $sth->hashRef) {
@ -308,7 +308,7 @@ group by userId", $self->session->db->quote($self->getId), $self->session->db->q
} }
$sth->finish; $sth->finish;
$sql = sprintf "select delegateUserId from InOutBoard_delegates where userId=%s and assetId=%s", $sql = sprintf "select delegateUserId from InOutBoard_delegates where userId=%s and assetId=%s",
$self->session->db->quote($self->session->user->profileField("userId")), $self->session->db->quote($self->getId); $self->session->db->quote($self->session->user->userId), $self->session->db->quote($self->getId);
my $delegates = $self->session->db->buildArrayRef($sql); my $delegates = $self->session->db->buildArrayRef($sql);
my $i18n = WebGUI::International->new($self->session,"Asset_InOutBoard"); my $i18n = WebGUI::International->new($self->session,"Asset_InOutBoard");
my $f = WebGUI::HTMLForm->new($self->session,-action=>$self->getUrl); my $f = WebGUI::HTMLForm->new($self->session,-action=>$self->getUrl);
@ -336,12 +336,12 @@ group by userId", $self->session->db->quote($self->getId), $self->session->db->q
sub www_selectDelegatesEditSave { sub www_selectDelegatesEditSave {
my $self = shift; my $self = shift;
my @delegates = $self->session->form->selectList("delegates"); my @delegates = $self->session->form->selectList("delegates");
$self->session->db->write("delete from InOutBoard_delegates where assetId=".$self->session->db->quote($self->getId)." and userId=".$self->session->db->quote($self->session->user->profileField("userId"))); $self->session->db->write("delete from InOutBoard_delegates where assetId=".$self->session->db->quote($self->getId)." and userId=".$self->session->db->quote($self->session->user->userId));
foreach my $delegate (@delegates) { foreach my $delegate (@delegates) {
$self->session->db->write("insert into InOutBoard_delegates $self->session->db->write("insert into InOutBoard_delegates
(userId,delegateUserId,assetId) values (userId,delegateUserId,assetId) values
(".$self->session->db->quote($self->session->user->profileField("userId")).",".$self->session->db->quote($delegate).",".$self->session->db->quote($self->getId).")"); (".$self->session->db->quote($self->session->user->userId).",".$self->session->db->quote($delegate).",".$self->session->db->quote($self->getId).")");
} }
return ""; return "";
} }
@ -352,13 +352,13 @@ sub www_setStatus {
#$self->session->errorHandler->warn("userId: ".$self->session->scratch->get("userId") ."\n" ); #$self->session->errorHandler->warn("userId: ".$self->session->scratch->get("userId") ."\n" );
if ($self->session->form->process("delegate") eq $self->session->scratch->get("userId")) { if ($self->session->form->process("delegate") eq $self->session->scratch->get("userId")) {
#$self->session->errorHandler->warn("Wrote data and removed scratch\n"); #$self->session->errorHandler->warn("Wrote data and removed scratch\n");
my $sessionUserId = $self->session->scratch->get("userId") || $self->session->user->profileField("userId"); my $sessionUserId = $self->session->scratch->get("userId") || $self->session->user->userId;
#$self->session->errorHandler->warn("user Id: ".$sessionUserId."\n"); #$self->session->errorHandler->warn("user Id: ".$sessionUserId."\n");
$self->session->scratch->delete("userId"); $self->session->scratch->delete("userId");
$self->session->db->write("delete from InOutBoard_status where userId=".$self->session->db->quote($sessionUserId)." and assetId=".$self->session->db->quote($self->getId)); $self->session->db->write("delete from InOutBoard_status where userId=".$self->session->db->quote($sessionUserId)." and assetId=".$self->session->db->quote($self->getId));
$self->session->db->write("insert into InOutBoard_status (assetId,userId,status,dateStamp,message) values (".$self->session->db->quote($self->getId).",".$self->session->db->quote($sessionUserId)."," $self->session->db->write("insert into InOutBoard_status (assetId,userId,status,dateStamp,message) values (".$self->session->db->quote($self->getId).",".$self->session->db->quote($sessionUserId).","
.$self->session->db->quote($self->session->form->process("status")).",".$self->session->datetime->time().",".$self->session->db->quote($self->session->form->process("message")).")"); .$self->session->db->quote($self->session->form->process("status")).",".$self->session->datetime->time().",".$self->session->db->quote($self->session->form->process("message")).")");
$self->session->db->write("insert into InOutBoard_statusLog (assetId,userId,createdBy,status,dateStamp,message) values (".$self->session->db->quote($self->getId).",".$self->session->db->quote($sessionUserId).",".$self->session->db->quote($self->session->user->profileField("userId"))."," $self->session->db->write("insert into InOutBoard_statusLog (assetId,userId,createdBy,status,dateStamp,message) values (".$self->session->db->quote($self->getId).",".$self->session->db->quote($sessionUserId).",".$self->session->db->quote($self->session->user->userId).","
.$self->session->db->quote($self->session->form->process("status")).",".$self->session->datetime->time().",".$self->session->db->quote($self->session->form->process("message")).")"); .$self->session->db->quote($self->session->form->process("status")).",".$self->session->datetime->time().",".$self->session->db->quote($self->session->form->process("message")).")");
} }
else { else {

14
lib/WebGUI/Asset/Wobject/Matrix.pm
View file

@ -147,7 +147,7 @@ sub hasRated {
return 1 unless ($self->session->user->isInGroup($self->get("groupToRate"))); return 1 unless ($self->session->user->isInGroup($self->get("groupToRate")));
my $ratingTimeout = $self->session->user->isInGroup($self->get("privilegedGroup")) ? $self->get("ratingTimeoutPrivileged") : $self->get("ratingTimeout"); my $ratingTimeout = $self->session->user->isInGroup($self->get("privilegedGroup")) ? $self->get("ratingTimeoutPrivileged") : $self->get("ratingTimeout");
my ($hasRated) = $self->session->db->quickArray("select count(*) from Matrix_rating where my ($hasRated) = $self->session->db->quickArray("select count(*) from Matrix_rating where
((userId=".$self->session->db->quote($self->session->user->profileField("userId"))." and userId<>'1') or (userId='1' and ipAddress=".$self->session->db->quote($self->session->env->get("HTTP_X_FORWARDED_FOR")).")) and ((userId=".$self->session->db->quote($self->session->user->userId)." and userId<>'1') or (userId='1' and ipAddress=".$self->session->db->quote($self->session->env->get("HTTP_X_FORWARDED_FOR")).")) and
listingId=".$self->session->db->quote($listingId)." and timeStamp>".($self->session->datetime->time()-$ratingTimeout)); listingId=".$self->session->db->quote($listingId)." and timeStamp>".($self->session->datetime->time()-$ratingTimeout));
return $hasRated; return $hasRated;
} }
@ -181,7 +181,7 @@ sub setRatings {
foreach my $category ($self->getCategories) { foreach my $category ($self->getCategories) {
if ($ratings->{$category}) { if ($ratings->{$category}) {
$self->session->db->write("insert into Matrix_rating (userId, category, rating, timeStamp, listingId,ipAddress, assetId) values ( $self->session->db->write("insert into Matrix_rating (userId, category, rating, timeStamp, listingId,ipAddress, assetId) values (
".$self->session->db->quote($self->session->user->profileField("userId")).", ".$self->session->db->quote($category).", ".$self->session->db->quote($ratings->{$category}).", ".$self->session->datetime->time() ".$self->session->db->quote($self->session->user->userId).", ".$self->session->db->quote($category).", ".$self->session->db->quote($ratings->{$category}).", ".$self->session->datetime->time()
.", ".$self->session->db->quote($listingId).", ".$self->session->db->quote($self->session->env->get("HTTP_X_FORWARDED_FOR")).",".$self->session->db->quote($self->getId).")"); .", ".$self->session->db->quote($listingId).", ".$self->session->db->quote($self->session->env->get("HTTP_X_FORWARDED_FOR")).",".$self->session->db->quote($self->getId).")");
} }
my $sql = "from Matrix_rating where listingId=".$self->session->db->quote($listingId)." and category=".$self->session->db->quote($category); my $sql = "from Matrix_rating where listingId=".$self->session->db->quote($listingId)." and category=".$self->session->db->quote($category);
@ -442,7 +442,7 @@ sub www_editListing {
my $self = shift; my $self = shift;
my $listing= $self->session->db->getRow("Matrix_listing","listingId",$self->session->form->process("listingId")); my $listing= $self->session->db->getRow("Matrix_listing","listingId",$self->session->form->process("listingId"));
my $i18n = WebGUI::International->new($self->session,'Asset_Matrix'); my $i18n = WebGUI::International->new($self->session,'Asset_Matrix');
return $i18n->get('no edit rights') unless (($self->session->form->process("listingId") eq "new" && $self->session->user->isInGroup($self->get("groupToAdd"))) || $self->session->user->profileField("userId") eq $listing->{maintainerId} || $self->canEdit); return $i18n->get('no edit rights') unless (($self->session->form->process("listingId") eq "new" && $self->session->user->isInGroup($self->get("groupToAdd"))) || $self->session->user->userId eq $listing->{maintainerId} || $self->canEdit);
my $f = WebGUI::HTMLForm->new($self->session,-action=>$self->getUrl); my $f = WebGUI::HTMLForm->new($self->session,-action=>$self->getUrl);
$f->hidden( $f->hidden(
-name=>"func", -name=>"func",
@ -572,7 +572,7 @@ sub www_editListingSave {
my $self = shift; my $self = shift;
my $listing = $self->session->db->getRow("Matrix_listing","listingId",$self->session->form->process("listingId")); my $listing = $self->session->db->getRow("Matrix_listing","listingId",$self->session->form->process("listingId"));
my $i18n = WebGUI::International->new($self->session,'Asset_Matrix'); my $i18n = WebGUI::International->new($self->session,'Asset_Matrix');
return $i18n->get('no edit rights') unless (($self->session->form->process("listingId") eq "new" && $self->session->user->isInGroup($self->get("groupToAdd"))) || $self->session->user->profileField("userId") eq $listing->{maintainerId} || $self->canEdit); return $i18n->get('no edit rights') unless (($self->session->form->process("listingId") eq "new" && $self->session->user->isInGroup($self->get("groupToAdd"))) || $self->session->user->userId eq $listing->{maintainerId} || $self->canEdit);
my %data = ( my %data = (
listingId => $self->session->form->process("listingId"), listingId => $self->session->form->process("listingId"),
lastUpdated => $self->session->datetime->time(), lastUpdated => $self->session->datetime->time(),
@ -585,7 +585,7 @@ sub www_editListingSave {
); );
my $isNew = 0; my $isNew = 0;
if ($self->session->form->process("listingId") eq "new") { if ($self->session->form->process("listingId") eq "new") {
$data{maintainerId} = $self->session->user->profileField("userId") if ($self->session->form->process("listingId") eq "new"); $data{maintainerId} = $self->session->user->userId if ($self->session->form->process("listingId") eq "new");
my $forum = $self->addChild({ my $forum = $self->addChild({
className=>"WebGUI::Asset::Wobject::Collaboration", className=>"WebGUI::Asset::Wobject::Collaboration",
title=>$self->session->form->process("productName"), title=>$self->session->form->process("productName"),
@ -865,7 +865,7 @@ sub view {
my (%var); my (%var);
$var{'compare.form'} = $self->getCompareForm; $var{'compare.form'} = $self->getCompareForm;
$var{'search.url'} = $self->getUrl("func=search"); $var{'search.url'} = $self->getUrl("func=search");
$var{'isLoggedIn'} = ($self->session->user->profileField("userId") ne "1"); $var{'isLoggedIn'} = ($self->session->user->userId ne "1");
$var{'field.list.url'} = $self->getUrl('func=listFields'); $var{'field.list.url'} = $self->getUrl('func=listFields');
$var{'listing.add.url'} = $self->formatURL("editListing","new"); $var{'listing.add.url'} = $self->formatURL("editListing","new");
@ -981,7 +981,7 @@ sub www_viewDetail {
} }
$var{'edit.url'} = $self->formatURL("editListing",$listingId); $var{'edit.url'} = $self->formatURL("editListing",$listingId);
$var{id} = $listingId; $var{id} = $listingId;
$var{'user.canEdit'} = ($self->session->user->profileField("userId") eq $listing->{maintainerId} || $self->canEdit); $var{'user.canEdit'} = ($self->session->user->userId eq $listing->{maintainerId} || $self->canEdit);
$var{'user.canApprove'} = $self->canEdit; $var{'user.canApprove'} = $self->canEdit;
$var{'approve.url'} = $self->getUrl("func=approveListing&listingId=".$listingId."&mlog=".$self->session->form->process("mlog")); $var{'approve.url'} = $self->getUrl("func=approveListing&listingId=".$listingId."&mlog=".$self->session->form->process("mlog"));
$var{'delete.url'} = $self->getUrl("func=deleteListing&listingId=".$listingId."&mlog=".$self->session->form->process("mlog")); $var{'delete.url'} = $self->getUrl("func=deleteListing&listingId=".$listingId."&mlog=".$self->session->form->process("mlog"));

2
lib/WebGUI/Asset/Wobject/Navigation.pm
View file

@ -283,7 +283,7 @@ sub getToolbar {
$returnUrl = ";proceed=goBackToPage;returnUrl=".$self->session->url->escape($self->session->asset->getUrl); $returnUrl = ";proceed=goBackToPage;returnUrl=".$self->session->url->escape($self->session->asset->getUrl);
} }
my $toolbar; my $toolbar;
if (!$self->isLocked || $self->get("isLockedBy") eq $self->session->user->profileField("userId")) { if (!$self->isLocked || $self->get("isLockedBy") eq $self->session->user->userId) {
$toolbar = $self->session->icon->edit('func=edit'.$returnUrl,$self->get("url")); $toolbar = $self->session->icon->edit('func=edit'.$returnUrl,$self->get("url"));
} }
my $i18n = WebGUI::International->new($self->session, "Asset"); my $i18n = WebGUI::International->new($self->session, "Asset");

10
lib/WebGUI/Asset/Wobject/Poll.pm
View file

@ -25,8 +25,8 @@ our @ISA = qw(WebGUI::Asset::Wobject);
sub _hasVoted { sub _hasVoted {
my $self = shift; my $self = shift;
my ($hasVoted) = $self->session->db->quickArray("select count(*) from Poll_answer my ($hasVoted) = $self->session->db->quickArray("select count(*) from Poll_answer
where assetId=".$self->session->db->quote($self->getId)." and ((userId=".$self->session->db->quote($self->session->user->profileField("userId"))." where assetId=".$self->session->db->quote($self->getId)." and ((userId=".$self->session->db->quote($self->session->user->userId)."
and userId<>'1') or (userId=".$self->session->db->quote($self->session->user->profileField("userId"))." and ipAddress='".$self->session->env->get("REMOTE_ADDR")."'))"); and userId<>'1') or (userId=".$self->session->db->quote($self->session->user->userId)." and ipAddress='".$self->session->env->get("REMOTE_ADDR")."'))");
return $hasVoted; return $hasVoted;
} }
@ -280,7 +280,7 @@ sub view {
$var{question} = $self->get("question"); $var{question} = $self->get("question");
if ($self->get("active") eq "0") { if ($self->get("active") eq "0") {
$showPoll = 0; $showPoll = 0;
} elsif ($self->session->user->isInGroup($self->get("voteGroup"),$self->session->user->profileField("userId"))) { } elsif ($self->session->user->isInGroup($self->get("voteGroup"),$self->session->user->userId)) {
if ($self->_hasVoted()) { if ($self->_hasVoted()) {
$showPoll = 0; $showPoll = 0;
} else { } else {
@ -324,9 +324,9 @@ sub www_vote {
my $self = shift; my $self = shift;
my $u; my $u;
if ($self->session->form->process("answer") ne "" && $self->session->user->isInGroup($self->get("voteGroup")) && !($self->_hasVoted())) { if ($self->session->form->process("answer") ne "" && $self->session->user->isInGroup($self->get("voteGroup")) && !($self->_hasVoted())) {
$self->setVote($self->session->form->process("answer"),$self->session->user->profileField("userId"),$self->session->env->get("REMOTE_ADDR")); $self->setVote($self->session->form->process("answer"),$self->session->user->userId,$self->session->env->get("REMOTE_ADDR"));
if ($self->session->setting->get("useKarma")) { if ($self->session->setting->get("useKarma")) {
$u = WebGUI::User->new($self->session->user->profileField("userId")); $u = WebGUI::User->new($self->session->user->userId);
$u->karma($self->get("karmaPerVote"),"Poll (".$self->getId.")","Voted on this poll."); $u->karma($self->get("karmaPerVote"),"Poll (".$self->getId.")","Voted on this poll.");
} }
$self->deletePageCache; $self->deletePageCache;

2
lib/WebGUI/Asset/Wobject/StockData.pm
View file

@ -384,7 +384,7 @@ sub view {
#Set some template variables #Set some template variables
$var->{'extrasFolder'} = $self->session->config->get("extrasURL")."/wobject/StockData"; $var->{'extrasFolder'} = $self->session->config->get("extrasURL")."/wobject/StockData";
$var->{'editUrl'} = $self->getUrl("func=editStocks"); $var->{'editUrl'} = $self->getUrl("func=editStocks");
$var->{'isVisitor'} = $self->session->user->profileField("userId") eq 1; $var->{'isVisitor'} = $self->session->user->userId eq 1;
$var->{'stock.display.url'} = $self->getUrl("func=displayStock&symbol="); $var->{'stock.display.url'} = $self->getUrl("func=displayStock&symbol=");
#Build list of stocks as an array #Build list of stocks as an array

6
lib/WebGUI/Asset/Wobject/Survey.pm
View file

@ -190,7 +190,7 @@ sub generateResponseId {
'Survey_responseId'=>"new", 'Survey_responseId'=>"new",
userId=>$userId, userId=>$userId,
ipAddress=>$ipAddress, ipAddress=>$ipAddress,
username=>$self->session->user->profileField("username"), username=>$self->session->user->username,
startDate=>$self->session->datetime->time(), startDate=>$self->session->datetime->time(),
'Survey_id'=>$self->get("Survey_id") 'Survey_id'=>$self->get("Survey_id")
}); });
@ -555,7 +555,7 @@ sub getSequentialQuestionIds {
#------------------------------------------------------------------- #-------------------------------------------------------------------
sub getUserId { sub getUserId {
my $self = shift; my $self = shift;
my $userId = ($self->get("anonymous") && $self->session->user->profileField("userId") != 1) ? substr(md5_hex($self->session->user->profileField("userId")),0,8) : $self->session->user->profileField("userId"); my $userId = ($self->get("anonymous") && $self->session->user->userId != 1) ? substr(md5_hex($self->session->user->userId),0,8) : $self->session->user->userId;
return $userId; return $userId;
} }
@ -1167,7 +1167,7 @@ sub www_respond {
return "" unless ($self->session->user->isInGroup($self->get("groupToTakeSurvey"))); return "" unless ($self->session->user->isInGroup($self->get("groupToTakeSurvey")));
my $varname = $self->getResponseIdString; my $varname = $self->getResponseIdString;
return "" unless ($self->session->scratch->get($varname)); return "" unless ($self->session->scratch->get($varname));
my $userId = ($self->get("anonymous")) ? substr(md5_hex($self->session->user->profileField("userId")),0,8) : $self->session->user->profileField("userId"); my $userId = ($self->get("anonymous")) ? substr(md5_hex($self->session->user->userId),0,8) : $self->session->user->userId;
my $terminate = 0; my $terminate = 0;
foreach my $key (keys %{$session{form}}) { foreach my $key (keys %{$session{form}}) {
if ($key =~ /^answerId_(.+)$/) { if ($key =~ /^answerId_(.+)$/) {

2
lib/WebGUI/AssetBranch.pm
View file

@ -215,7 +215,7 @@ sub www_editBranch {
my $clause; my $clause;
if ($self->session->user->isInGroup(3)) { if ($self->session->user->isInGroup(3)) {
my $contentManagers = WebGUI::Group->new(4)->getUsers(1); my $contentManagers = WebGUI::Group->new(4)->getUsers(1);
push (@$contentManagers, $self->session->user->profileField("userId")); push (@$contentManagers, $self->session->user->userId);
$clause = "userId in (".$self->session->db->quoteAndJoin($contentManagers).")"; $clause = "userId in (".$self->session->db->quoteAndJoin($contentManagers).")";
} else { } else {
$clause = "userId=".$self->session->db->quote($self->get("ownerUserId")); $clause = "userId=".$self->session->db->quote($self->get("ownerUserId"));

4
lib/WebGUI/AssetClipboard.pm
View file

@ -51,7 +51,7 @@ sub cut {
return undef if ($self->getId eq $self->session->setting->get("defaultPage") || $self->getId eq $self->session->setting->get("notFoundPage")); return undef if ($self->getId eq $self->session->setting->get("defaultPage") || $self->getId eq $self->session->setting->get("notFoundPage"));
$self->session->db->beginTransaction; $self->session->db->beginTransaction;
$self->session->db->write("update asset set state='clipboard-limbo' where lineage like ".$self->session->db->quote($self->get("lineage").'%')." and state='published'"); $self->session->db->write("update asset set state='clipboard-limbo' where lineage like ".$self->session->db->quote($self->get("lineage").'%')." and state='published'");
$self->session->db->write("update asset set state='clipboard', stateChangedBy=".$self->session->db->quote($self->session->user->profileField("userId")).", stateChanged=".$self->session->datetime->time()." where assetId=".$self->session->db->quote($self->getId)); $self->session->db->write("update asset set state='clipboard', stateChangedBy=".$self->session->db->quote($self->session->user->userId).", stateChanged=".$self->session->datetime->time()." where assetId=".$self->session->db->quote($self->getId));
$self->session->db->commit; $self->session->db->commit;
$self->updateHistory("cut"); $self->updateHistory("cut");
$self->{_properties}{state} = "clipboard"; $self->{_properties}{state} = "clipboard";
@ -104,7 +104,7 @@ If not specified, uses current user.
sub getAssetsInClipboard { sub getAssetsInClipboard {
my $self = shift; my $self = shift;
my $limitToUser = shift; my $limitToUser = shift;
my $userId = shift || $self->session->user->profileField("userId"); my $userId = shift || $self->session->user->userId;
my @assets; my @assets;
my $limit; my $limit;
if ($limitToUser) { if ($limitToUser) {

2
lib/WebGUI/AssetExportHtml.pm
View file

@ -95,7 +95,7 @@ sub exportAsHtml {
# Change the stuff we need to change to do the export # Change the stuff we need to change to do the export
my $session = WebGUI::Session->open($self->session->config->getWebguiRoot, $self->session->config->getFilename); my $session = WebGUI::Session->open($self->session->config->getWebguiRoot, $self->session->config->getFilename);
$session->user({userId=>$userId}) unless ($userId eq $self->session->user->profileField("userId")); $session->user({userId=>$userId}) unless ($userId eq $self->session->user->userId);
$self->{_properties}{cacheTimeout} = $self->{_properties}{cacheTimeoutVisitor} = 1; $self->{_properties}{cacheTimeout} = $self->{_properties}{cacheTimeoutVisitor} = 1;
# Generate the page # Generate the page

2
lib/WebGUI/AssetLineage.pm
View file

@ -58,7 +58,7 @@ sub addChild {
$self->{_hasChildren} = 1; $self->{_hasChildren} = 1;
$self->session->db->beginTransaction; $self->session->db->beginTransaction;
my $now =$self->session->datetime->time(); my $now =$self->session->datetime->time();
$self->session->db->write("insert into asset (assetId, parentId, lineage, creationDate, createdBy, className, state) values (".$self->session->db->quote($id).",".$self->session->db->quote($self->getId).", ".$self->session->db->quote($lineage).", ".$now.", ".$self->session->db->quote($self->session->user->profileField("userId")).", ".$self->session->db->quote($properties->{className}).", 'published')"); $self->session->db->write("insert into asset (assetId, parentId, lineage, creationDate, createdBy, className, state) values (".$self->session->db->quote($id).",".$self->session->db->quote($self->getId).", ".$self->session->db->quote($lineage).", ".$now.", ".$self->session->db->quote($self->session->user->userId).", ".$self->session->db->quote($properties->{className}).", 'published')");
my $temp = WebGUI::Asset->newByPropertyHashRef({ my $temp = WebGUI::Asset->newByPropertyHashRef({
assetId=>$id, assetId=>$id,
className=>$properties->{className} className=>$properties->{className}

4
lib/WebGUI/AssetTrash.pm
View file

@ -54,7 +54,7 @@ If not specified, uses current user.
sub getAssetsInTrash { sub getAssetsInTrash {
my $self = shift; my $self = shift;
my $limitToUser = shift; my $limitToUser = shift;
my $userId = shift || $self->session->user->profileField("userId"); my $userId = shift || $self->session->user->userId;
my @assets; my @assets;
my $limit; my $limit;
if ($limitToUser) { if ($limitToUser) {
@ -124,7 +124,7 @@ sub trash {
return undef if ($self->getId eq $self->session->setting->get("defaultPage") || $self->getId eq $self->session->setting->get("notFoundPage")); return undef if ($self->getId eq $self->session->setting->get("defaultPage") || $self->getId eq $self->session->setting->get("notFoundPage"));
$self->session->db->beginTransaction; $self->session->db->beginTransaction;
$self->session->db->write("update asset set state='trash-limbo' where lineage like ".$self->session->db->quote($self->get("lineage").'%')); $self->session->db->write("update asset set state='trash-limbo' where lineage like ".$self->session->db->quote($self->get("lineage").'%'));
$self->session->db->write("update asset set state='trash', stateChangedBy=".$self->session->db->quote($self->session->user->profileField("userId")).", stateChanged=".$self->session->datetime->time()." where assetId=".$self->session->db->quote($self->getId)); $self->session->db->write("update asset set state='trash', stateChangedBy=".$self->session->db->quote($self->session->user->userId).", stateChanged=".$self->session->datetime->time()." where assetId=".$self->session->db->quote($self->getId));
$self->session->db->commit; $self->session->db->commit;
$self->{_properties}{state} = "trash"; $self->{_properties}{state} = "trash";
$self->updateHistory("trashed"); $self->updateHistory("trashed");

14
lib/WebGUI/AssetVersioning.pm
View file

@ -59,7 +59,7 @@ sub addRevision {
my $versionTag = $self->session->scratch->get("versionTag") || 'pbversion0000000000002'; my $versionTag = $self->session->scratch->get("versionTag") || 'pbversion0000000000002';
my $status = $self->session->setting->get("autoCommit") ? 'approved' : 'pending'; my $status = $self->session->setting->get("autoCommit") ? 'approved' : 'pending';
$self->session->db->write("insert into assetData (assetId, revisionDate, revisedBy, tagId, status, url, startDate, endDate, $self->session->db->write("insert into assetData (assetId, revisionDate, revisedBy, tagId, status, url, startDate, endDate,
ownerUserId, groupIdEdit, groupIdView) values (".$self->session->db->quote($self->getId).",".$now.", ".$self->session->db->quote($self->session->user->profileField("userId")).", ownerUserId, groupIdEdit, groupIdView) values (".$self->session->db->quote($self->getId).",".$now.", ".$self->session->db->quote($self->session->user->userId).",
".$self->session->db->quote($versionTag).", ".$self->session->db->quote($status).", ".$self->session->db->quote($self->getId).", 997995720, 32472169200,'3','3','7')"); ".$self->session->db->quote($versionTag).", ".$self->session->db->quote($status).", ".$self->session->db->quote($self->getId).", 997995720, 32472169200,'3','3','7')");
foreach my $definition (@{$self->definition}) { foreach my $definition (@{$self->definition}) {
unless ($definition->{tableName} eq "assetData") { unless ($definition->{tableName} eq "assetData") {
@ -88,12 +88,12 @@ The name of the version tag. If not specified, one will be generated using the c
sub addVersionTag { sub addVersionTag {
my $self = shift; my $self = shift;
my $name = shift || "Autotag created ".$self->session->datetime->epochToHuman()." by ".$self->session->user->profileField("username"); my $name = shift || "Autotag created ".$self->session->datetime->epochToHuman()." by ".$self->session->user->username;
my $tagId = $self->session->db->setRow("assetVersionTag","tagId",{ my $tagId = $self->session->db->setRow("assetVersionTag","tagId",{
tagId=>"new", tagId=>"new",
name=>$name, name=>$name,
creationDate=>$self->session->datetime->time(), creationDate=>$self->session->datetime->time(),
createdBy=>$self->session->user->profileField("userId") createdBy=>$self->session->user->userId
}); });
$self->session->scratch->set("versionTag",$tagId); $self->session->scratch->set("versionTag",$tagId);
return $tagId; return $tagId;
@ -111,7 +111,7 @@ Returns a boolean indicating whether this asset is locked and if the current use
sub canEditIfLocked { sub canEditIfLocked {
my $self = shift; my $self = shift;
return 0 unless ($self->isLocked); return 0 unless ($self->isLocked);
return ($self->get("isLockedBy") eq $self->session->user->profileField("userId")); return ($self->get("isLockedBy") eq $self->session->user->userId);
} }
@ -150,7 +150,7 @@ sub commitVersionTag {
WebGUI::Asset->new($id,$class,$version)->commit; WebGUI::Asset->new($id,$class,$version)->commit;
} }
$sth->finish; $sth->finish;
$self->session->db->write("update assetVersionTag set isCommitted=1, commitDate=".$self->session->datetime->time().", committedBy=".$self->session->db->quote($self->session->user->profileField("userId"))." where tagId=".$self->session->db->quote($tagId)); $self->session->db->write("update assetVersionTag set isCommitted=1, commitDate=".$self->session->datetime->time().", committedBy=".$self->session->db->quote($self->session->user->userId)." where tagId=".$self->session->db->quote($tagId));
$self->session->db->write("delete from userSessionScratch where name='versionTag' and value=".$self->session->db->quote($tagId)); $self->session->db->write("delete from userSessionScratch where name='versionTag' and value=".$self->session->db->quote($tagId));
} }
@ -287,7 +287,7 @@ Sets the versioning lock to "on" so that this piece of content may not be edited
sub setVersionLock { sub setVersionLock {
my $self = shift; my $self = shift;
$self->session->db->write("update asset set isLockedBy=".$self->session->db->quote($self->session->user->profileField("userId"))." where assetId=".$self->session->db->quote($self->getId)); $self->session->db->write("update asset set isLockedBy=".$self->session->db->quote($self->session->user->userId)." where assetId=".$self->session->db->quote($self->getId));
$self->updateHistory("locked"); $self->updateHistory("locked");
$self->purgeCache; $self->purgeCache;
} }
@ -328,7 +328,7 @@ If not specified, current user is used.
sub updateHistory { sub updateHistory {
my $self = shift; my $self = shift;
my $action = shift; my $action = shift;
my $userId = shift || $self->session->user->profileField("userId") || '3'; my $userId = shift || $self->session->user->userId || '3';
my $dateStamp =$self->session->datetime->time(); my $dateStamp =$self->session->datetime->time();
$self->session->db->write("insert into assetHistory (assetId, userId, actionTaken, dateStamp) values (".$self->session->db->quote($self->getId).", ".$self->session->db->quote($userId).", ".$self->session->db->quote($action).", ".$dateStamp.")"); $self->session->db->write("insert into assetHistory (assetId, userId, actionTaken, dateStamp) values (".$self->session->db->quote($self->getId).", ".$self->session->db->quote($userId).", ".$self->session->db->quote($action).", ".$dateStamp.")");
} }

2
lib/WebGUI/Auth.pm
View file

@ -607,7 +607,7 @@ This object's authentication method
=head3 userId =head3 userId
userId for the user requesting authentication. This defaults to $self->session->user->profileField("userId") userId for the user requesting authentication. This defaults to $self->session->user->userId
=head3 callable =head3 callable

2
lib/WebGUI/Auth/LDAP.pm
View file

@ -200,7 +200,7 @@ sub authenticate {
sub createAccount { sub createAccount {
my $self = shift; my $self = shift;
my $vars; my $vars;
if ($self->session->user->profileField("userId") ne "1") { if ($self->session->user->userId ne "1") {
return $self->displayAccount; return $self->displayAccount;
} elsif (!$self->session->setting->get("anonymousRegistration")) { } elsif (!$self->session->setting->get("anonymousRegistration")) {
return $self->displayLogin; return $self->displayLogin;

4
lib/WebGUI/Auth/WebGUI.pm
View file

@ -161,7 +161,7 @@ sub authenticate {
sub createAccount { sub createAccount {
my $self = shift; my $self = shift;
my $vars; my $vars;
if ($self->session->user->profileField("userId") ne "1") { if ($self->session->user->userId ne "1") {
return $self->displayAccount; return $self->displayAccount;
} elsif (!$self->session->setting->get("anonymousRegistration")) { } elsif (!$self->session->setting->get("anonymousRegistration")) {
return $self->displayLogin; return $self->displayLogin;
@ -194,7 +194,7 @@ sub createAccount {
sub createAccountSave { sub createAccountSave {
my $self = shift; my $self = shift;
return $self->displayAccount if ($self->session->user->profileField("userId") ne "1"); return $self->displayAccount if ($self->session->user->userId ne "1");
my $username = $self->session->form->process('authWebGUI.username'); my $username = $self->session->form->process('authWebGUI.username');
my $password = $self->session->form->process('authWebGUI.identifier'); my $password = $self->session->form->process('authWebGUI.identifier');

2
lib/WebGUI/Commerce/Payment/ITransact.pm
View file

@ -106,7 +106,7 @@ sub checkoutForm {
$i18n = WebGUI::International->new($self->session, 'CommercePaymentITransact'); $i18n = WebGUI::International->new($self->session, 'CommercePaymentITransact');
$u = WebGUI::User->new($self->session->user->profileField("userId")); $u = WebGUI::User->new($self->session->user->userId);
$f = WebGUI::HTMLForm->new($self->session); $f = WebGUI::HTMLForm->new($self->session);
$f->text( $f->text(

2
lib/WebGUI/Commerce/Transaction.pm
View file

@ -417,7 +417,7 @@ sub new {
my $session = shift; my $session = shift;
$transactionId = shift; $transactionId = shift;
$gatewayId = shift; $gatewayId = shift;
$userId = shift || $session->user->profileField("userId"); $userId = shift || $session->user->userId;
if ($transactionId eq 'new') { if ($transactionId eq 'new') {
$transactionId = $session->id->generate; $transactionId = $session->id->generate;

2
lib/WebGUI/Form/Template.pm
View file

@ -97,7 +97,7 @@ sub toHtml {
#Remove entries from template list that the user does not have permission to view. #Remove entries from template list that the user does not have permission to view.
for my $assetId ( keys %{$templateList} ) { for my $assetId ( keys %{$templateList} ) {
my $asset = WebGUI::Asset::Template->new($assetId); my $asset = WebGUI::Asset::Template->new($assetId);
if (!$asset->canView($self->session->user->profileField("userId"))) { if (!$asset->canView($self->session->user->userId)) {
delete $templateList->{$assetId}; delete $templateList->{$assetId};
} }
} }

2
lib/WebGUI/Macro/At_username.pm
View file

@ -27,7 +27,7 @@ Macro for displaying the current User's username.
#------------------------------------------------------------------- #-------------------------------------------------------------------
sub process { sub process {
my $session = shift; my $session = shift;
return $session->user->profileField("username"); return $session->user->username;
} }

2
lib/WebGUI/Macro/L_loginBox.pm
View file

@ -66,7 +66,7 @@ sub process {
my $templateId = $param[2] || "PBtmpl0000000000000044"; my $templateId = $param[2] || "PBtmpl0000000000000044";
my %var; my %var;
my $i18n = WebGUI::International->new($session,'Macro_L_loginBox'); my $i18n = WebGUI::International->new($session,'Macro_L_loginBox');
$var{'user.isVisitor'} = ($session->user->profileField("userId") eq "1"); $var{'user.isVisitor'} = ($session->user->userId eq "1");
$var{'customText'} = $param[1]; $var{'customText'} = $param[1];
$var{'customText'} =~ s/%(.*?)%/_createURL($session,$1)/ge; $var{'customText'} =~ s/%(.*?)%/_createURL($session,$1)/ge;
$var{'hello.label'} = $i18n->get(48); $var{'hello.label'} = $i18n->get(48);

2
lib/WebGUI/Macro/LoginToggle.pm
View file

@ -50,7 +50,7 @@ sub process {
my $login = $param[0] || $i18n->get(716); my $login = $param[0] || $i18n->get(716);
my $logout = $param[1] || $i18n->get(717); my $logout = $param[1] || $i18n->get(717);
my %var; my %var;
if ($session->user->profileField("userId") eq '1') { if ($session->user->userId eq '1') {
return $session->url->page("op=auth;method=init") if ($param[0] eq "linkonly"); return $session->url->page("op=auth;method=init") if ($param[0] eq "linkonly");
$var{'toggle.url'} = $session->url->page('op=auth;method=init'); $var{'toggle.url'} = $session->url->page('op=auth;method=init');
$var{'toggle.text'} = $login; $var{'toggle.text'} = $login;

2
lib/WebGUI/Macro/RandomThread.pm
View file

@ -108,7 +108,7 @@ sub process {
} }
} }
# If we reach this point, we had no success in finding an asset the user can view: # If we reach this point, we had no success in finding an asset the user can view:
$session->errorHandler->warn("Could not find a random thread that was viewable by the user ".$session->user->profileField("username")." after $numberOfTries tries. Check parameters of macro on page ".$session->asset->get('url')); $session->errorHandler->warn("Could not find a random thread that was viewable by the user ".$session->user->username." after $numberOfTries tries. Check parameters of macro on page ".$session->asset->get('url'));
return ''; return '';
} }

2
lib/WebGUI/Operation/Auth.pm
View file

@ -33,7 +33,7 @@ sub getInstance {
my $session = shift; my $session = shift;
#Get Auth Settings #Get Auth Settings
my $authMethod = $session->user->authMethod || $session->setting->get("authMethod"); my $authMethod = $session->user->authMethod || $session->setting->get("authMethod");
$authMethod = $session->setting->get("authMethod") if($session->user->profileField("userId") eq '1'); $authMethod = $session->setting->get("authMethod") if($session->user->userId eq '1');
$authMethod = $_[0] if($_[0] && isIn($_[0], @{$session->config->get("authMethods")})); $authMethod = $_[0] if($_[0] && isIn($_[0], @{$session->config->get("authMethods")}));
my $userId = $_[1]; my $userId = $_[1];
#Create Auth Object #Create Auth Object

4
lib/WebGUI/Operation/Commerce.pm
View file

@ -123,7 +123,7 @@ sub www_checkoutConfirm {
$i18n = WebGUI::International->new($session, 'Commerce'); $i18n = WebGUI::International->new($session, 'Commerce');
# If the user isn't logged in yet, let him do so or have him create an account # If the user isn't logged in yet, let him do so or have him create an account
if ($session->user->profileField("userId") == 1) { if ($session->user->userId == 1) {
$session->scratch->set('redirectAfterLogin', $session->url->page('op=checkout')); $session->scratch->set('redirectAfterLogin', $session->url->page('op=checkout'));
return WebGUI::Operation::execute('auth'); return WebGUI::Operation::execute('auth');
} }
@ -204,7 +204,7 @@ sub www_checkoutSubmit {
$i18n = WebGUI::International->new($session, 'Commerce'); $i18n = WebGUI::International->new($session, 'Commerce');
# check if user has already logged in # check if user has already logged in
if ($session->user->profileField("userId") == 1) { if ($session->user->userId == 1) {
$session->scratch->set('redirectAfterLogin', $session->url->page('op=checkout')); $session->scratch->set('redirectAfterLogin', $session->url->page('op=checkout'));
return WebGUI::Operation::execute('displayLogin'); return WebGUI::Operation::execute('displayLogin');
} }

14
lib/WebGUI/Operation/Group.pm
View file

@ -27,7 +27,7 @@ use WebGUI::Utility;
sub _hasSecondaryPrivilege { sub _hasSecondaryPrivilege {
my $session = shift; my $session = shift;
return 0 unless ($session->user->isInGroup(11)); return 0 unless ($session->user->isInGroup(11));
return $group->userIsAdmin($session->user->profileField("userId"),$_[0]); return $group->userIsAdmin($session->user->userId,$_[0]);
} }
@ -175,10 +175,10 @@ sub www_addUsersToGroupSave {
#------------------------------------------------------------------- #-------------------------------------------------------------------
sub www_autoAddToGroup { sub www_autoAddToGroup {
my $session = shift; my $session = shift;
return WebGUI::AdminConsole->new($session,"groups")->render($session->privilege->insufficient()) unless ($session->user->profileField("userId") ne 1); return WebGUI::AdminConsole->new($session,"groups")->render($session->privilege->insufficient()) unless ($session->user->userId ne 1);
my $group = WebGUI::Group->new($session->form->process("groupId")); my $group = WebGUI::Group->new($session->form->process("groupId"));
if ($group->autoAdd) { if ($group->autoAdd) {
$group->addUsers([$session->user->profileField("userId")],[$session->form->process("groupId")]); $group->addUsers([$session->user->userId],[$session->form->process("groupId")]);
} }
return ""; return "";
} }
@ -186,10 +186,10 @@ sub www_autoAddToGroup {
#------------------------------------------------------------------- #-------------------------------------------------------------------
sub www_autoDeleteFromGroup { sub www_autoDeleteFromGroup {
my $session = shift; my $session = shift;
return WebGUI::AdminConsole->new($session,"groups")->render($session->privilege->insufficient()) unless ($session->user->profileField("userId") ne 1); return WebGUI::AdminConsole->new($session,"groups")->render($session->privilege->insufficient()) unless ($session->user->userId ne 1);
my $group = WebGUI::Group->new($session->form->process("groupId")); my $group = WebGUI::Group->new($session->form->process("groupId"));
if ($group->autoDelete) { if ($group->autoDelete) {
$group->deleteUsers([$session->user->profileField("userId")],[$session->form->process("groupId")]); $group->deleteUsers([$session->user->userId],[$session->form->process("groupId")]);
} }
return ""; return "";
} }
@ -241,7 +241,7 @@ perform this operation, and the
sub www_deleteGrouping { sub www_deleteGrouping {
my $session = shift; my $session = shift;
return $session->privilege->adminOnly() unless ($session->user->isInGroup(3) || _hasSecondaryPrivilege($session->form->process("gid"))); return $session->privilege->adminOnly() unless ($session->user->isInGroup(3) || _hasSecondaryPrivilege($session->form->process("gid")));
if (($session->user->profileField("userId") eq $session->form->process("uid") || $session->form->process("uid") eq '3') && $session->form->process("gid") eq '3') { if (($session->user->userId eq $session->form->process("uid") || $session->form->process("uid") eq '3') && $session->form->process("gid") eq '3') {
return $session->privilege->vitalComponent(); return $session->privilege->vitalComponent();
} }
my @users = $session->form->selectList('uid'); my @users = $session->form->selectList('uid');
@ -565,7 +565,7 @@ sub www_listGroups {
return _submenu($output,'',"groups manage"); return _submenu($output,'',"groups manage");
} elsif ($session->user->isInGroup(11)) { } elsif ($session->user->isInGroup(11)) {
my ($output, $p, $sth, @data, @row, $i, $userCount); my ($output, $p, $sth, @data, @row, $i, $userCount);
my @editableGroups = $session->db->buildArray("select groupId from groupings where userId=".$session->db->quote($session->user->profileField("userId"))." and groupAdmin=1"); my @editableGroups = $session->db->buildArray("select groupId from groupings where userId=".$session->db->quote($session->user->userId)." and groupAdmin=1");
push (@editableGroups,0); push (@editableGroups,0);
$sth = $session->db->read("select groupId,groupName,description from groups $sth = $session->db->read("select groupId,groupName,description from groups
where groupId in (".$session->db->quoteAndJoin(\@editableGroups).") order by groupName"); where groupId in (".$session->db->quoteAndJoin(\@editableGroups).") order by groupName");

8
lib/WebGUI/Operation/MessageLog.pm
View file

@ -55,11 +55,11 @@ Templated display all messages for the current user.
sub www_viewMessageLog { sub www_viewMessageLog {
my $session = shift; my $session = shift;
my (@msg, $vars); my (@msg, $vars);
return $session->privilege->insufficient() unless ($session->user->isInGroup(2,$session->user->profileField("userId"))); return $session->privilege->insufficient() unless ($session->user->isInGroup(2,$session->user->userId));
my $i18n = WebGUI::International->new($session); my $i18n = WebGUI::International->new($session);
$vars->{displayTitle} = '<h1>'.$i18n->get(159).'</h1>'; $vars->{displayTitle} = '<h1>'.$i18n->get(159).'</h1>';
my $p = WebGUI::Paginator->new($session,$session->url->page('op=viewMessageLog')); my $p = WebGUI::Paginator->new($session,$session->url->page('op=viewMessageLog'));
my $query = "select messageLogId,subject,url,dateOfEntry,status from messageLog where userId=".$session->db->quote($session->user->profileField("userId"))." order by dateOfEntry desc"; my $query = "select messageLogId,subject,url,dateOfEntry,status from messageLog where userId=".$session->db->quote($session->user->userId)." order by dateOfEntry desc";
$p->setDataByQuery($query); $p->setDataByQuery($query);
$vars->{'message.subject.label'} = $i18n->get(351); $vars->{'message.subject.label'} = $i18n->get(351);
@ -101,11 +101,11 @@ Templated display of a single message for the user.
sub www_viewMessageLogMessage { sub www_viewMessageLogMessage {
my $session = shift; my $session = shift;
my ($data, $vars); my ($data, $vars);
return $session->privilege->insufficient() unless ($session->user->isInGroup(2,$session->user->profileField("userId"))); return $session->privilege->insufficient() unless ($session->user->isInGroup(2,$session->user->userId));
my $i18n = WebGUI::International->new($session); my $i18n = WebGUI::International->new($session);
$vars->{displayTitle} = '<h1>'.$i18n->get(159).'</h1>'; $vars->{displayTitle} = '<h1>'.$i18n->get(159).'</h1>';
$data = $session->db->quickHashRef("select * from messageLog where messageLogId=".$session->db->quote($session->form->process("mlog"))." and userId=".$session->db->quote($session->user->profileField("userId"))); $data = $session->db->quickHashRef("select * from messageLog where messageLogId=".$session->db->quote($session->form->process("mlog"))." and userId=".$session->db->quote($session->user->userId));
$vars->{'message.subject'} = $data->{subject}; $vars->{'message.subject'} = $data->{subject};
$vars->{'message.dateOfEntry'} =$session->datetime->epochToHuman($data->{dateOfEntry}); $vars->{'message.dateOfEntry'} =$session->datetime->epochToHuman($data->{dateOfEntry});

14
lib/WebGUI/Operation/Profile.pm
View file

@ -53,7 +53,7 @@ sub getRequiredProfileFields {
sub isDuplicateEmail { sub isDuplicateEmail {
my $session = shift; my $session = shift;
my $email = shift; my $email = shift;
my ($otherEmail) = $session->db->quickArray("select count(*) from userProfileData where fieldName='email' and fieldData = ".$session->db->quote($email)." and userId <> ".$session->db->quote($session->user->profileField("userId"))); my ($otherEmail) = $session->db->quickArray("select count(*) from userProfileData where fieldName='email' and fieldData = ".$session->db->quote($email)." and userId <> ".$session->db->quote($session->user->userId));
return ($otherEmail > 0); return ($otherEmail > 0);
} }
@ -94,7 +94,7 @@ sub validateProfileData {
#------------------------------------------------------------------- #-------------------------------------------------------------------
sub www_editProfile { sub www_editProfile {
my $session = shift; my $session = shift;
return WebGUI::Operation::Auth::www_auth("init") if($session->user->profileField("userId") eq '1'); return WebGUI::Operation::Auth::www_auth("init") if($session->user->userId eq '1');
my $i18n = WebGUI::International->new($session); my $i18n = WebGUI::International->new($session);
my $vars = {}; my $vars = {};
$vars->{displayTitle} .= '<h1>'.$i18n->get(338).'</h1>'; $vars->{displayTitle} .= '<h1>'.$i18n->get(338).'</h1>';
@ -103,7 +103,7 @@ sub www_editProfile {
$vars->{'profile.form.footer'} = WebGUI::Form::formFooter($session,); $vars->{'profile.form.footer'} = WebGUI::Form::formFooter($session,);
$vars->{'profile.form.hidden'} = WebGUI::Form::hidden($session,{"name"=>"op","value"=>"editProfileSave"}); $vars->{'profile.form.hidden'} = WebGUI::Form::hidden($session,{"name"=>"op","value"=>"editProfileSave"});
$vars->{'profile.form.hidden'} .= WebGUI::Form::hidden($session,{"name"=>"uid","value"=>$session->user->profileField("userId")}); $vars->{'profile.form.hidden'} .= WebGUI::Form::hidden($session,{"name"=>"uid","value"=>$session->user->userId});
my @array = (); my @array = ();
foreach my $category (@{WebGUI::ProfileCategory->getCategories}) { foreach my $category (@{WebGUI::ProfileCategory->getCategories}) {
next unless $category->isEditable; next unless $category->isEditable;
@ -132,14 +132,14 @@ sub www_editProfile {
sub www_editProfileSave { sub www_editProfileSave {
my $session = shift; my $session = shift;
my ($profile, $fieldName, $error, $u, $warning); my ($profile, $fieldName, $error, $u, $warning);
return WebGUI::Operation::Auth::www_auth("init") if ($session->user->profileField("userId") eq '1'); return WebGUI::Operation::Auth::www_auth("init") if ($session->user->userId eq '1');
($profile, $error, $warning) = validateProfileData(); ($profile, $error, $warning) = validateProfileData();
$error .= $warning; $error .= $warning;
return www_editProfile('<ul>'.$error.'</ul>') if($error ne ""); return www_editProfile('<ul>'.$error.'</ul>') if($error ne "");
$u = WebGUI::User->new($session->user->profileField("userId")); $u = WebGUI::User->new($session->user->userId);
foreach $fieldName (keys %{$profile}) { foreach $fieldName (keys %{$profile}) {
$u->profileField($fieldName,$profile->{$fieldName}); $u->profileField($fieldName,$profile->{$fieldName});
} }
@ -157,7 +157,7 @@ sub www_viewProfile {
return $session->privilege->notMember() if($u->username eq ""); return $session->privilege->notMember() if($u->username eq "");
return $session->style->userStyle($vars->{displayTitle}.$i18n->get(862)) if($u->profileField("publicProfile") < 1 && ($session->user->profileField("userId") ne $session->form->process("uid") || $session->user->isInGroup(3))); return $session->style->userStyle($vars->{displayTitle}.$i18n->get(862)) if($u->profileField("publicProfile") < 1 && ($session->user->userId ne $session->form->process("uid") || $session->user->isInGroup(3)));
return $session->privilege->insufficient() if(!$session->user->isInGroup(2)); return $session->privilege->insufficient() if(!$session->user->isInGroup(2));
my @array = (); my @array = ();
@ -174,7 +174,7 @@ sub www_viewProfile {
} }
} }
$vars->{'profile.elements'} = \@array; $vars->{'profile.elements'} = \@array;
if ($session->user->profileField("userId") eq $session->form->process("uid")) { if ($session->user->userId eq $session->form->process("uid")) {
$vars->{'profile.accountOptions'} = WebGUI::Operation::Shared::accountOptions(); $vars->{'profile.accountOptions'} = WebGUI::Operation::Shared::accountOptions();
} }
return $session->style->userStyle(WebGUI::Asset::Template->new("PBtmpl0000000000000052")->process($vars)); return $session->style->userStyle(WebGUI::Asset::Template->new("PBtmpl0000000000000052")->process($vars));

2
lib/WebGUI/Operation/Shared.pm
View file

@ -42,7 +42,7 @@ use Safe;
} }
unless ($session->form->process("op") eq "viewProfile"){ unless ($session->form->process("op") eq "viewProfile"){
my %hash; my %hash;
$hash{'options.display'} = '<a href="'.$session->url->page('op=viewProfile;uid='.$session->user->profileField("userId")).'">'.$i18n->get(343).'</a>'; $hash{'options.display'} = '<a href="'.$session->url->page('op=viewProfile;uid='.$session->user->userId).'">'.$i18n->get(343).'</a>';
push(@array,\%hash); push(@array,\%hash);
} }
unless ($session->form->process("op") eq "viewMessageLog"){ unless ($session->form->process("op") eq "viewMessageLog"){

2
lib/WebGUI/Operation/TransactionLog.pm
View file

@ -34,7 +34,7 @@ sub www_viewPurchaseHistory {
$var{errorMessage} = shift; $var{errorMessage} = shift;
@history = @{WebGUI::Commerce::Transaction->transactionsByUser($session->user->profileField("userId"))}; @history = @{WebGUI::Commerce::Transaction->transactionsByUser($session->user->userId)};
foreach (@history) { foreach (@history) {
%properties = %{$_->get}; %properties = %{$_->get};
$properties{initDate} = $session->datetime->epochToHuman($properties{initDate}); $properties{initDate} = $session->datetime->epochToHuman($properties{initDate});

6
lib/WebGUI/Operation/User.pm
View file

@ -313,7 +313,7 @@ sub www_editUser {
Deactivated =>$i18n->get(818), Deactivated =>$i18n->get(818),
Selfdestructed =>$i18n->get(819) Selfdestructed =>$i18n->get(819)
); );
if ($u->userId eq $session->user->profileField("userId")) { if ($u->userId eq $session->user->userId) {
$tabform->getTab("account")->hidden( $tabform->getTab("account")->hidden(
-name => "status", -name => "status",
-value => $u->status -value => $u->status
@ -365,7 +365,7 @@ sub www_editUser {
foreach my $group (@exclude) { foreach my $group (@exclude) {
unless ( unless (
$group eq "1" || $group eq "2" || $group eq "7" # can't remove user from magic groups $group eq "1" || $group eq "2" || $group eq "7" # can't remove user from magic groups
|| ($session->user->profileField("userId") eq $u->userId && $group eq 3) # cannot remove self from admin || ($session->user->userId eq $u->userId && $group eq 3) # cannot remove self from admin
|| ($u->userId eq "3" && $group eq "3") # admin user cannot be remove from admin || ($u->userId eq "3" && $group eq "3") # admin user cannot be remove from admin
) { ) {
push(@include,$group); push(@include,$group);
@ -461,7 +461,7 @@ sub www_editUserKarmaSave {
return $session->privilege->adminOnly() unless ($session->user->isInGroup(3)); return $session->privilege->adminOnly() unless ($session->user->isInGroup(3));
my ($u); my ($u);
$u = WebGUI::User->new($session->form->process("uid")); $u = WebGUI::User->new($session->form->process("uid"));
$u->karma($session->form->process("amount"),$session->user->profileField("username")." (".$session->user->profileField("userId").")",$session->form->process("description")); $u->karma($session->form->process("amount"),$session->user->username." (".$session->user->userId.")",$session->form->process("description"));
return www_editUser(); return www_editUser();
} }

2
lib/WebGUI/PassiveProfiling.pm
View file

@ -59,7 +59,7 @@ sub add {
my $assetId = shift; my $assetId = shift;
my $sql = "insert into passiveProfileLog (passiveProfileLogId, userId, sessionId, assetId, dateOfEntry) my $sql = "insert into passiveProfileLog (passiveProfileLogId, userId, sessionId, assetId, dateOfEntry)
values (".$session->db->quote($session->id->generate()).",". values (".$session->db->quote($session->id->generate()).",".
$session->db->quote($session->user->profileField("userId")).",". $session->db->quote($session->user->userId).",".
$session->db->quote($session->var->get("sessionId")).",". $session->db->quote($session->var->get("sessionId")).",".
$session->db->quote($assetId).",". $session->db->quote($assetId).",".
$session->db->quote($session->datetime->time()).")"; $session->db->quote($session->datetime->time()).")";

2
lib/WebGUI/Session/Privilege.pm
View file

@ -129,7 +129,7 @@ Returns a message stating that the user does not have the privileges necessary t
sub noAccess { sub noAccess {
my $self = shift; my $self = shift;
$self->session->http->setStatus("401", "No Access"); $self->session->http->setStatus("401", "No Access");
if ($self->session->user->profileField("userId") eq '1') { if ($self->session->user->userId eq '1') {
return WebGUI::Operation::Auth::www_auth("init"); return WebGUI::Operation::Auth::www_auth("init");
} else { } else {
my $i18n = WebGUI::International->new($self->session); my $i18n = WebGUI::International->new($self->session);

2
lib/WebGUI/Subscription.pm
View file

@ -54,7 +54,7 @@ specified by the session variable.
sub apply { sub apply {
my ($self, $userId, $groupId); my ($self, $userId, $groupId);
$self = shift; $self = shift;
$userId = shift || $self->session->user->profileField("userId"); $userId = shift || $self->session->user->userId;
$groupId = $self->{_properties}{subscriptionGroup}; $groupId = $self->{_properties}{subscriptionGroup};
my $group = WebGUI::Group->new($self->session,$groupId); my $group = WebGUI::Group->new($self->session,$groupId);
# Make user part of the right group # Make user part of the right group