projects
/
freeside.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
communigate provisioning phase 2: add svc_domain.trailer -> communigate TrailerText...
[freeside.git]
/
httemplate
/
edit
/
cust_main_note.cgi
diff --git
a/httemplate/edit/cust_main_note.cgi
b/httemplate/edit/cust_main_note.cgi
index
303895b
..
e2501cb
100755
(executable)
--- a/
httemplate/edit/cust_main_note.cgi
+++ b/
httemplate/edit/cust_main_note.cgi
@@
-1,19
+1,16
@@
<% include('/elements/header-popup.html', "$action Customer Note") %>
<% include('/elements/header-popup.html', "$action Customer Note") %>
-% if ( $cgi->param('error') ) {
- <FONT SIZE="+1" COLOR="#ff0000">Error: <% $cgi->param('error') %></FONT>
- <BR><BR>
-% }
+<% include('/elements/error.html') %>
<FORM ACTION="<% popurl(1) %>process/cust_main_note.cgi" METHOD=POST>
<INPUT TYPE="hidden" NAME="custnum" VALUE="<% $custnum %>">
<INPUT TYPE="hidden" NAME="notenum" VALUE="<% $notenum %>">
<FORM ACTION="<% popurl(1) %>process/cust_main_note.cgi" METHOD=POST>
<INPUT TYPE="hidden" NAME="custnum" VALUE="<% $custnum %>">
<INPUT TYPE="hidden" NAME="notenum" VALUE="<% $notenum %>">
-
-
<BR><BR
>
-<TEXTAREA NAME="comment" ROWS="12" COLS="60">
-<% $comment %>
-</TEXTAREA>
+<% include('/elements/htmlarea.html', 'field' => 'comment',
+
'curr_value' => $comment) %
>
+
% #
<TEXTAREA NAME="comment" ROWS="12" COLS="60">
+
% #
<% $comment %>
+
% #
</TEXTAREA>
<BR><BR>
<INPUT TYPE="submit" VALUE="<% $notenum ? "Apply Changes" : "Add Note" %>">
<BR><BR>
<INPUT TYPE="submit" VALUE="<% $notenum ? "Apply Changes" : "Add Note" %>">
@@
-23,13
+20,12
@@
</HTML>
<%init>
</HTML>
<%init>
-my($custnum, $comment, $notenum, $action);
-$comment = '';
+my $comment;
+my $notenum = '';
if ( $cgi->param('error') ) {
$comment = $cgi->param('comment');
if ( $cgi->param('error') ) {
$comment = $cgi->param('comment');
-}elsif ($cgi->param('notenum')) {
- $cgi->param('notenum') =~ /^(\d+)$/;
+} elsif ( $cgi->param('notenum') =~ /^(\d+)$/ ) {
$notenum = $1;
die "illegal query ". $cgi->keywords unless $notenum;
my $note = qsearchs('cust_main_note', { 'notenum' => $notenum });
$notenum = $1;
die "illegal query ". $cgi->keywords unless $notenum;
my $note = qsearchs('cust_main_note', { 'notenum' => $notenum });
@@
-37,15
+33,15
@@
if ( $cgi->param('error') ) {
$comment = $note->comments;
}
$comment = $note->comments;
}
-$cgi->param('notenum') =~ /^(\d+)$/;
-$notenum = $1;
+$comment =~ s/\r//g; # remove weird line breaks to protect FCKeditor
-$cgi->param('custnum') =~ /^(\d+)$/;
-
$custnum
= $1;
+$cgi->param('custnum') =~ /^(\d+)$/
or die "illeagl custnum"
;
+
my $custnum
= $1;
-
die "illegal query ". $cgi->keywords unless $custnum
;
+
my $action = $notenum ? 'Edit' : 'Add'
;
-$action = $notenum ? 'Edit' : 'Add';
+die "access denied"
+ unless $FS::CurrentUser::CurrentUser->access_right("$action customer note");
</%init>
</%init>