Skip to content

Commit 47a4fa7

Browse files
johnnyqjohnnyq
committed
Updated task post to use new logAction function, tidy and added more details to logging
1 parent 2ec4be8 commit 47a4fa7

File tree

1 file changed

+16
-15
lines changed

1 file changed

+16
-15
lines changed

post/user/task.php

Lines changed: 16 additions & 15 deletions
Original file line numberDiff line numberDiff line change
@@ -6,7 +6,7 @@
66

77
if (isset($_POST['add_task'])) {
88

9-
validateTechRole();
9+
enforceUserPermission('module_support', 2);
1010

1111
$ticket_id = intval($_POST['ticket_id']);
1212
$task_name = sanitizeInput($_POST['name']);
@@ -21,7 +21,7 @@
2121
$task_id = mysqli_insert_id($mysqli);
2222

2323
// Logging
24-
mysqli_query($mysqli, "INSERT INTO logs SET log_type = 'Task', log_action = 'Create', log_description = '$session_name created task $task_name', log_ip = '$session_ip', log_user_agent = '$session_user_agent', log_client_id = $client_id, log_user_id = $session_user_id, log_entity_id = $task_id");
24+
logAction("Task", "Create", "$session_name created task $task_name", $client_id, $task_id);
2525

2626
$_SESSION['alert_message'] = "You created Task <strong>$task_name</strong>";
2727

@@ -30,7 +30,7 @@
3030

3131
if (isset($_POST['edit_task'])) {
3232

33-
validateTechRole();
33+
enforceUserPermission('module_support', 2);
3434

3535
$task_id = intval($_POST['task_id']);
3636
$task_name = sanitizeInput($_POST['name']);
@@ -50,17 +50,17 @@
5050
}
5151

5252
// Logging
53-
mysqli_query($mysqli, "INSERT INTO logs SET log_type = 'Task', log_action = 'Edit', log_description = '$session_name edited task $task_name', log_ip = '$session_ip', log_user_agent = '$session_user_agent', log_client_id = $client_id, log_user_id = $session_user_id, log_entity_id = $task_id");
53+
logAction("Task", "Edit", "$session_name edited task $task_name", $client_id, $task_id);
5454

55-
$_SESSION['alert_message'] = "You edited Task <strong>$task_name</strong>";
55+
$_SESSION['alert_message'] = "Task <strong>$task_name</strong> edited";
5656

5757
header("Location: " . $_SERVER["HTTP_REFERER"]);
5858
}
5959

6060

6161
if (isset($_GET['delete_task'])) {
6262

63-
validateTechRole();
63+
enforceUserPermission('module_support', 3);
6464

6565
// CSRF Check
6666
validateCSRFToken($_GET['csrf_token']);
@@ -76,17 +76,17 @@
7676
mysqli_query($mysqli, "DELETE FROM tasks WHERE task_id = $task_id");
7777

7878
// Logging
79-
mysqli_query($mysqli, "INSERT INTO logs SET log_type = 'Task', log_action = 'Delete', log_description = '$session_name deleted task $task_name', log_ip = '$session_ip', log_user_agent = '$session_user_agent', log_client_id = $client_id, log_user_id = $session_user_id, log_entity_id = $task_id");
79+
logAction("Task", "Delete", "$session_name deleted task $task_name", $client_id, $task_id);
8080

8181
$_SESSION['alert_type'] = "error";
82-
$_SESSION['alert_message'] = "You Deleted Task <strong>$task_name</strong>";
82+
$_SESSION['alert_message'] = "Task <strong>$task_name</strong> deleted";
8383

8484
header("Location: " . $_SERVER["HTTP_REFERER"]);
8585
}
8686

8787
if (isset($_GET['complete_task'])) {
8888

89-
validateTechRole();
89+
enforceUserPermission('module_support', 2);
9090

9191
$task_id = intval($_GET['complete_task']);
9292

@@ -109,16 +109,16 @@
109109
$ticket_reply_id = mysqli_insert_id($mysqli);
110110

111111
// Logging
112-
mysqli_query($mysqli, "INSERT INTO logs SET log_type = 'Task', log_action = 'Edit', log_description = '$session_name completed task $task_name', log_ip = '$session_ip', log_user_agent = '$session_user_agent', log_client_id = $client_id, log_user_id = $session_user_id, log_entity_id = $task_id");
112+
logAction("Task", "Edit", "$session_name completed task $task_name", $client_id, $task_id);
113113

114-
$_SESSION['alert_message'] = "You completed Task <strong>$task_name</strong> Great Job!<i class='far fa-4x fa-smile-wink ml-2'></i>";
114+
$_SESSION['alert_message'] = "Task <strong>$task_name</strong> Completed";
115115

116116
header("Location: " . $_SERVER["HTTP_REFERER"]);
117117
}
118118

119119
if (isset($_GET['undo_complete_task'])) {
120120

121-
validateTechRole();
121+
enforceUserPermission('module_support', 2);
122122

123123
$task_id = intval($_GET['undo_complete_task']);
124124

@@ -137,9 +137,10 @@
137137
$ticket_reply_id = mysqli_insert_id($mysqli);
138138

139139
// Logging
140-
mysqli_query($mysqli, "INSERT INTO logs SET log_type = 'Task', log_action = 'Edit', log_description = '$session_name un-completed task $task_name', log_ip = '$session_ip', log_user_agent = '$session_user_agent', log_client_id = $client_id, log_user_id = $session_user_id, log_entity_id = $task_id");
140+
logAction("Task", "Edit", "$session_name marked task $task_name as incomplete", $client_id, $task_id);
141141

142-
$_SESSION['alert_message'] = "You marked Task <strong>$task_name</strong> as incomplete";
142+
$_SESSION['alert_message'] = "Task <strong>$task_name</strong> marked as incomplete";
143143

144144
header("Location: " . $_SERVER["HTTP_REFERER"]);
145-
}
145+
146+
}

0 commit comments

Comments
 (0)