[feladat @ 114]
Patch for ticket 19. Because of the use of the quote function, empty strings where converted to NULL as MDB2_PORTABILITY_EMPTY_TO_NULL is set by default.
This problem also applied to the active state of an user.
<?php
/* PowerAdmin, a friendly web-based admin tool for PowerDNS.
* See <https://rejo.zenger.nl/poweradmin> for more details.
*
* Copyright 2007, 2008 Rejo Zenger <rejo@zenger.nl>
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program. If not, see <http://www.gnu.org/licenses/>.
*/
require_once("inc/toolkit.inc.php");
if ($_GET["id"]) {
// check if we have access to the given id
$zoneId = recid_to_domid($_GET['id']);
if ((!level(5)) && (!xs($zoneId))) {
error(ERR_RECORD_ACCESS_DENIED);
}
if ((!level(5)) && ($_SESSION[$zoneId.'_ispartial'] == 1)) {
$db->setLimit(1);
$checkPartial = $db->queryOne("SELECT id FROM record_owners WHERE record_id=".$db->quote($_GET["id"])." AND user_id=".$db->quote($_SESSION["userid"]));
if (empty($checkPartial)) {
error(ERR_RECORD_ACCESS_DENIED);
}
}
if ($_GET["confirm"] == '0') {
clean_page("edit.php?id=".$_GET["domain"]);
} elseif ($_GET["confirm"] == '1') {
delete_record($_GET["id"]);
clean_page("edit.php?id=".$_GET["domain"]);
}
include_once("inc/header.inc.php");
?>
<h2><? echo _('Delete record'); ?> "<?
$data = get_record_from_id($_GET["id"]);
print $data["name"]." IN ".$data["type"]." ".$data["content"];
?>"</h2><?
if (($data["type"] == "NS" && $data["name"] == get_domain_name_from_id($_GET["domain"])) || $data["type"] == "SOA") {
print "<font class=\"warning\">" . _('You are trying to delete a record that is needed for this zone to work.') . "</font><br>";
}
?><br><font class="warning"><? echo _('Are you sure?'); ?></font><br><br>
<input type="button" class="button" OnClick="location.href='<? echo $_SERVER["REQUEST_URI"] ?>&confirm=1'" value="<? echo _('Yes'); ?>">
<input type="button" class="button" OnClick="location.href='<? echo $_SERVER["REQUEST_URI"] ?>&confirm=0'" value="<? echo _('No'); ?>">
<?
} else {
include_once("inc/header.inc.php");
echo _('Nothing to do!');
}
include_once("inc/footer.inc.php");