diff --git a/admin/clientquestionnaire.php b/admin/clientquestionnaire.php index 3bf45b3c..5edaba09 100644 --- a/admin/clientquestionnaire.php +++ b/admin/clientquestionnaire.php @@ -140,18 +140,18 @@ if (isset($_POST['submit'])) } /* delete client from quexs and lime tables*/ //requires data-toggle-confirmation to finalize -if (isset($_POST['delete']) && isset($_POST['uid'])) +if (isset($_GET['delete']) && isset($_GET['uid']) && isset($_GET['uname'])) { - $client_id = intval($_POST['delete']); - $uid = intval($_POST['uid']); - $uname = $_POST['uname']; - + $client_id = intval($_GET['delete']); + $uid = intval($_GET['uid']); + $uname = $_GET['uname']; + global $db; - - $db->StartTrans(); - + if ($uid !=1){ //double protect superadmin from being deleted - + + $db->StartTrans(); + $sql = "DELETE FROM " . LIME_PREFIX . "templates_rights WHERE `uid` = '$uid' AND `uid` != 1"; $db->Execute($sql); @@ -164,20 +164,19 @@ if (isset($_POST['delete']) && isset($_POST['uid'])) $sql = "DELETE FROM " . LIME_PREFIX . "users WHERE `uid` = '$uid' AND `uid` != 1"; $db->Execute($sql); + $sql = "DELETE FROM `client_questionnaire` WHERE `client_id` = '$client_id' "; + $db->Execute($sql); + + $sql = "DELETE FROM `client` WHERE `client_id` = '$client_id'"; + $db->Execute($sql); + + $db->CompleteTrans(); } - - $sql = "DELETE FROM `client_questionnaire` WHERE `client_id` = '$client_id' "; - $db->Execute($sql); - - $sql = "DELETE FROM `client` WHERE `client_id` = '$client_id'"; - $db->Execute($sql); - - $db->CompleteTrans(); if ($db->CompleteTrans()) $msg = "

". T_("Client with username $uname deleted") . "

"; - else $msg = "

". T_("ERROR deleting client with username $uname") . "

"; + else $msg = "

". T_("ERROR deleting client with username $uname") . "

"; - unset($_POST['delete'], $_POST['uid'], $_POST['uname'], $client_id, $username, $uid); + unset($_GET['delete'], $_GET['uid'], $_GET['uname'], $client_id, $username, $uid); } diff --git a/admin/clients.php b/admin/clients.php index 3b481419..8c478e61 100644 --- a/admin/clients.php +++ b/admin/clients.php @@ -124,6 +124,9 @@ if (isset($_POST['client']) && !empty($_POST['client'])) } } else $a = T_("Username") . " " . $client . ". " . T_("is already in use"); + + $client =""; $firstname="";$lastname="";$email=""; $time_zone_name=""; + unset($_POST['client'],$_POST['password'],$_POST['lastname'],$_POST['firstname'],$_POST['email'],$_POST['Time_zone_name']); } $header = T_("Add a client"); diff --git a/client/index.php b/client/index.php index aa4bc30a..63046aaf 100644 --- a/client/index.php +++ b/client/index.php @@ -78,10 +78,9 @@ if ($client_id) print "

" . T_("There are no questionnaires assigned to you") . "

"; else { - print "
"; - foreach($qs as $q) { + print "
"; print "

{$q['description']}

"; $questionnaire_id = $q['questionnaire_id']; @@ -116,22 +115,25 @@ if ($client_id) if (!empty($rs)) { translate_array($rs,array("des")); - xhtml_table($rs,array("des","count"),array(T_("Outcome"),T_("Count")),"tclass",array("des" => "Complete")); + xhtml_table($rs,array("des","count"),array(T_("Outcome"),T_("Count")),"tclass",array("des" => "Complete"),array("count")); } else print "

" . T_("No outcomes recorded for this questionnaire") . "

"; - print "
" . T_("View summary results") . "
"; + print "
" . T_("View summary results") . "
"; } - if (isset($_GET['qsid'])) $qsid = intval($_GET['qsid']); - $page = LIME_URL . "admin/admin.php?action=browse&sid=$qsid"; -?> - + if (isset($_GET['qsid'])) { + $qsid = intval($_GET['qsid']); + $page = LIME_URL . "admin/admin.php?action=browse&sid=$qsid"; } + else $page =''; -
+ if ($page){ +?> +