xssFilterHard($_GET, "url"); switch ($RBAC->userCanAccess('PM_SUPERVISOR')) { case - 2: G::SendTemporalMessage('ID_USER_HAVENT_RIGHTS_SYSTEM', 'error', 'labels'); G::header('location: ../login/login'); die(); break; case - 1: G::SendTemporalMessage('ID_USER_HAVENT_RIGHTS_PAGE', 'error', 'labels'); G::header('location: ../login/login'); die(); break; } //If the user does not have the permission and the user can be access from url $processUser = new ProcessUser(); $userAccess = $processUser->validateUserAccess($_GET['PRO_UID'], $_SESSION['USER_LOGGED']); if (!$userAccess) { G::SendTemporalMessage('ID_USER_HAVENT_RIGHTS_PAGE', 'error', 'labels'); G::header('location: ../login/login'); die(); } $_SESSION = $filter->xssFilterHard($_SESSION, "url"); if ((int) $_SESSION['INDEX'] < 1) { $_SERVER['HTTP_REFERER'] = $filter->xssFilterHard($_SERVER['HTTP_REFERER']); G::SendTemporalMessage('ID_USER_HAVENT_RIGHTS_PAGE', 'error', 'labels'); G::header('location: ' . $_SERVER['HTTP_REFERER']); die(); } /* Menues */ $G_MAIN_MENU = 'processmaker'; $G_SUB_MENU = 'cases'; $G_ID_MENU_SELECTED = 'CASES'; $G_ID_SUB_MENU_SELECTED = 'CASES_TO_REVISE'; /* Prepare page before to show */ $oTemplatePower = new TemplatePower(PATH_TPL . 'cases/cases_Step.html'); $oTemplatePower->prepare(); $G_PUBLISH = new Publisher(); $oCase = new Cases(); $Fields = $oCase->loadCase($_SESSION['APPLICATION']); $oHeadPublisher = headPublisher::getSingleton(); $oHeadPublisher->addScriptCode(" if (typeof parent != 'undefined') { if (parent.showCaseNavigatorPanel) { parent.showCaseNavigatorPanel('{$Fields['APP_STATUS']}'); } }"); // DEPRECATED this script call is marked for removal since almost all the interface is extJS based $oHeadPublisher->addScriptCode(' var Cse = {}; Cse.panels = {}; var leimnud = new maborak(); leimnud.make(); leimnud.Package.Load("rpc,drag,drop,panel,app,validator,fx,dom,abbr",{Instance:leimnud,Type:"module"}); leimnud.Package.Load("cases",{Type:"file",Absolute:true,Path:"/jscore/cases/core/cases.js"}); leimnud.Package.Load("cases_Step",{Type:"file",Absolute:true,Path:"/jscore/cases/core/cases_Step.js"}); leimnud.Package.Load("processmap",{Type:"file",Absolute:true,Path:"/jscore/processmap/core/processmap.js"}); leimnud.exec(leimnud.fix.memoryLeak); leimnud.event.add(window,"load",function(){ ' . (isset($_SESSION['showCasesWindow']) ? 'try{' . $_SESSION['showCasesWindow'] . '}catch(e){}' : '') . ' }); '); // DEPRECATED this script call is marked for removal $G_PUBLISH->AddContent('template', '', '', '', $oTemplatePower); if (! isset($_GET['type'])) { $_GET['type'] = 'DYNAFORM'; } if (! isset($_GET['position'])) { $_GET['position'] = $_SESSION['STEP_POSITION']; } else { if ($_GET['type'] == 'DYNAFORM') { $criteria = new Criteria(); $criteria->addSelectColumn(StepSupervisorPeer::STEP_POSITION); $criteria->add(StepSupervisorPeer::PRO_UID, $_SESSION['PROCESS'], Criteria::EQUAL); $criteria->add(StepSupervisorPeer::STEP_UID_OBJ, $_GET['DYN_UID'], Criteria::EQUAL); $rsCriteria = StepSupervisorPeer::doSelectRS($criteria); $rsCriteria->setFetchmode(ResultSet::FETCHMODE_ASSOC); $rsCriteria->next(); $aRow = $rsCriteria->getRow(); $_GET['position'] = $aRow['STEP_POSITION']; } else { $_GET['position'] = 1; } } $_SESSION['STEP_POSITION'] = (int) $_GET['position']; //Obtain previous and next step - Start if (isset($_GET['type'])) { $sType = $_GET['type']; } else { $sType = ''; } $Fields['APP_DATA']['__DYNAFORM_OPTIONS']['PREVIOUS_STEP_LABEL'] = ''; $Fields['APP_DATA']['__DYNAFORM_OPTIONS']['NEXT_STEP_LABEL'] = ''; /** * Added By erik * date: 16-05-08 * Description: this was added for the additional database connections */ if (! isset($_GET['ex'])) { $_GET['ex'] = $_GET['position']; } $oDbConnections = new DbConnections($_SESSION['PROCESS']); $oDbConnections->loadAdditionalConnections(); $G_PUBLISH = new Publisher(); if ($_GET['DYN_UID'] != '') { $_SESSION['CURRENT_DYN_UID'] = $_GET['DYN_UID']; $FieldsPmDynaform = $Fields; $FieldsPmDynaform["PRO_UID"] = $_SESSION['PROCESS']; $FieldsPmDynaform["CURRENT_DYNAFORM"] = $_GET['DYN_UID']; $a = new PmDynaform($FieldsPmDynaform); if ($a->isResponsive()) { $a->printEditSupervisor(['DEL_INDEX' => $_GET['DEL_INDEX']]); } else { $G_PUBLISH->AddContent('dynaform', 'xmlform', $_SESSION['PROCESS'] . '/' . $_GET['DYN_UID'], '', $Fields['APP_DATA'], 'cases_SaveDataSupervisor?UID=' . $_GET['DYN_UID'] . '&ex=' . $_GET['ex']); } } G::RenderPage('publish', 'blank'); ?>