inputClean('bugid', TYPE_UINT); // ################################################################### if (empty($bugid) OR $_REQUEST['do'] == 'quicksearch') { if (!empty($bugid)) { if ($db->queryFirst("SELECT bugid FROM " . TABLE_PREFIX . "bug WHERE bugid = $bugid")) { header("Location: showreport.php?bugid=$bugid"); exit; } else { $error = L_INVALID_ID; } } $tpl = new BSTemplate('quicksearch'); $tpl->vars = array('error' => $error); $tpl->evaluate()->flush(); exit; } // ################################################################### // ------------------------------------------------------------------- // get the report $bug = $db->queryFirst(" SELECT bug.*, user.email, user.displayname, user.showemail FROM " . TABLE_PREFIX . "bug AS bug LEFT JOIN " . TABLE_PREFIX . "user AS user ON (bug.userid = user.userid) WHERE bug.bugid = $bugid" ); if (!is_array($bug)) { $message->error(L_INVALID_ID); } if (!check_bug_permissions($bug)) { $message->errorPermission(); } $show['edit'] = ((can_perform('caneditown', $bug['product']) AND bugdar::$userinfo['userid'] == $bug['userid'] AND $bug['userid'] != 0) OR (can_perform('caneditother', $bug['product']) AND bugdar::$userinfo['userid'] != $bug['userid'])); $show['delete'] = can_perform('candeletedata', $bug['product']); // ################################################################### // edit display if ($show['edit']) { $select['severity'] = construct_datastore_select('severity', 'severity', 'severityid', $bug['severity']); $show['changestatus'] = (can_perform('canchangestatus', $bug['product']) ? true : false); if (can_perform('canchangestatus', $bug['product'])) { $select['priority'] = construct_datastore_select('priority', 'priority', 'priorityid', $bug['priority']); $select['status'] = construct_datastore_select('status', 'status', 'statusid', $bug['status']); $select['resolution'] = construct_datastore_select('resolution', 'resolution', 'resolutionid', $bug['resolution']); } else { $bug['status'] = bugdar::$datastore['status']["$bug[status]"]['status']; $bug['resolution'] = bugdar::$datastore['resolution']["$bug[resolution]"]['resolution']; $bug['severity'] = bugdar::$datastore['severity']["$bug[severity]"]['severity']; $bug['priority'] = bugdar::$datastore['priority']["$bug[priority]"]['priority']; } $show['assign'] = (can_perform('canassign', $bug['product'])); if (can_perform('canassign', $bug['product']) && is_array(bugdar::$datastore['assignto'])) { foreach (bugdar::$datastore['assignto'] as $dev) { $tpl = new BSTemplate('selectoption'); $tpl->vars = array( 'value' => $dev['userid'], 'label' => construct_user_display($dev, false), 'selected' => ($dev['userid'] == $bug['assignedto']) ); $select['dev'] .= $tpl->evaluate()->getTemplate(); } } $productSelect = construct_product_select('canviewbugs', "$bug[product],$bug[component],$bug[version]"); if ($bug['duplicateof']) { $duplicate = $db->queryFirst("SELECT * FROM " . TABLE_PREFIX . "bug WHERE bugid = $bug[duplicateof]"); } if ($bug['dependency']) { $depends = array(); $dependencies = $db->query("SELECT * FROM " . TABLE_PREFIX . "bug WHERE bugid IN ($bug[dependency])"); foreach ($dependencies as $dependency) { $depends[] = "$dependency[bugid]"; } $dependencies = implode(' ', $depends); } $select['automations'] = ''; $show['automations'] = false; if (is_array(bugdar::$datastore['automation'])) { foreach (bugdar::$datastore['automation'] as $action) { $tpl = new BSTemplate('selectoption'); $tpl->vars = array( 'label' => $action['name'], 'value' => $action['actionid'], 'selected' => false ); $select['automation'] .= $tpl->evaluate()->getTemplate(); $show['automations'] = true; } if ($show['automations']) { $tpl = new BSTemplate('selectoption'); $tpl->vars = array( 'label' => '', 'value' => 0, 'selected' => true ); $select['automation'] = $tpl->evaluate()->getTemplate() . $select['automation']; } } } // ################################################################### // non-edit display else { // ------------------------------------------------------------------- // prep display $bug['status'] = bugdar::$datastore['status']["$bug[status]"]['status']; $bug['resolution'] = bugdar::$datastore['resolution']["$bug[resolution]"]['resolution']; $bug['severity'] = bugdar::$datastore['severity']["$bug[severity]"]['severity']; $bug['priority'] = bugdar::$datastore['priority']["$bug[priority]"]['priority']; $assigninfo = bugdar::$datastore['assignto']["$bug[assignedto]"]; $bug['assigninfo'] = ((is_array($assigninfo)) ? construct_user_display($assigninfo) : ''); $duplicateof = $db->queryFirst("SELECT bugid, summary FROM " . TABLE_PREFIX . "bug WHERE bugid = $bug[duplicateof]"); $dupelist = array(); $duplicates = $db->query("SELECT bugid, summary FROM " . TABLE_PREFIX . "bug WHERE duplicateof = $bug[bugid]"); foreach ($duplicates as $duplicate) { $dupelist[] = "$duplicate[summary]"; } $dupelist = implode(', ', $dupelist); if ($bug['dependency']) { $depends = array(); $dependencies = $db->query("SELECT bugid, summary FROM " . TABLE_PREFIX . "bug WHERE bugid IN ($bug[dependency])"); foreach ($dependencies as $dependency) { $depends[] = "$dependency[bugid]"; } $dependencies = implode(' ', $depends); } } // ################################################################### // global display items $show['subscribe'] = can_perform('cansubscribe', $bug['product']); $favorite = (bool)$db->queryFirst("SELECT * FROM " . TABLE_PREFIX . "favorite WHERE bugid = $bug[bugid] AND userid = " . bugdar::$userinfo['userid']); $favoritetext = ($favorite ? T('Remove from Favorites') : T('Add to Favorites')); $bug['userinfo'] = construct_user_display($bug); $bug['datetime'] = $datef->format(bugdar::$options['dateformat'], $bug['dateline']); $bug['productid'] = $bug['product']; $bug['product'] = bugdar::$datastore['product']["$bug[product]"]['title']; $bug['componentid'] = $bug['component']; $bug['component'] = ($bug['component'] ? bugdar::$datastore['product']["$bug[component]"]['title'] : ''); $bug['versionid'] = $bug['version']; $bug['version'] = bugdar::$datastore['version']["$bug[version]"]['version']; // ################################################################### // custom field output $fields = construct_custom_fields($bug); $i = 0; foreach ($fields AS $field) { if ($i % 2 == 0) { $customfields['left'] .= $field; } else { $customfields['right'] .= $field; } $i++; } // ################################################################### // other elements // ------------------------------------------------------------------- // hilight $words = explode(' ', $input->in['hilight']); foreach ($words AS $word) { if (trim($word)) { $word = preg_quote($input->unsanitize($word)); $hilight[] = $temp = trim(preg_replace('#[^0-9a-zA-Z_ ]#', '', $word)); } } // ------------------------------------------------------------------- // attachments $show['getattachments'] = (can_perform('cangetattach', $bug['productid']) || can_perform('caneditattach', $bug['productid'])); $show['putattachments'] = (can_perform('canputattach', $bug['productid']) || can_perform('caneditattach', $bug['productid'])); $show['attachments'] = ($show['getattachments'] || $show['putattachments']); if ($show['getattachments'] || $show['putattachments']) { $attachments_fetch = $db->query(" SELECT attachment.attachmentid, attachment.filename, attachment.description, attachment.dateline, attachment.userid, attachment.obsolete, user.email, user.showemail, user.displayname FROM " . TABLE_PREFIX . "attachment AS attachment LEFT JOIN " . TABLE_PREFIX . "user AS user ON (attachment.userid = user.userid) WHERE attachment.bugid = $bug[bugid] ORDER BY attachment.dateline" ); $attaches = false; foreach ($attachments_fetch as $attachment) { $attaches = true; $show['editattach'] = (can_perform('caneditattach', $bug['productid']) || ($attachment['userid'] == bugdar::$userinfo['userid'] && can_perform('canputattach', $bug['productid']))); $attachment['date'] = $datef->format(bugdar::$options['dateformat'], $attachment['dateline']); $attachment['user'] = construct_user_display($attachment, false); $tpl = new BSTemplate('showreport_attachment'); $tpl->vars = array( 'attachment' => $attachment ); $attachments .= $tpl->evaluate()->getTemplate(); } $show['attachments'] = ($show['putattachments'] && $attaches); } // ------------------------------------------------------------------- // votes $vote = $db->queryFirst("SELECT *, FIND_IN_SET(" . bugdar::$userinfo['userid'] . ", userids) AS uservote FROM " . TABLE_PREFIX . "vote WHERE bugid = $bug[bugid]"); $vote['total'] = $vote['votefor'] + $vote['voteagainst']; if ($vote['total'] != 0) { $vote['forpercent'] = round($vote['votefor'] / $vote['total'], 3) * 100; $vote['againstpercent'] = round($vote['voteagainst'] / $vote['total'], 3) * 100; } else { $vote['forpercent'] = 0; $vote['againstpercent'] = 0; } $show['vote'] = ((can_perform('canvote', $bug['productid']) AND !$vote['uservote']) ? true : false); // ------------------------------------------------------------------- // get comments $comments_fetch = $db->query(" SELECT comment.*, user.email, user.showemail, user.displayname FROM " . TABLE_PREFIX . "comment AS comment LEFT JOIN " . TABLE_PREFIX . "user AS user ON (comment.userid = user.userid) WHERE comment.bugid = $bug[bugid]" . (!can_perform('canviewhidden', $bug['productid']) ? " AND !hidden" : '') . " ORDER BY comment.dateline ASC" ); $description = null; foreach ($comments_fetch as $comment) { $comment['posttime'] = $datef->format(bugdar::$options['dateformat'], $comment['dateline']); $comment['postby'] = construct_user_display($comment); $show['editcomment'] = ((can_perform('caneditownreply', $bug['productid']) AND bugdar::$userinfo['userid'] == $comment['userid']) OR (can_perform('caneditotherreply', $bug['productid']) AND bugdar::$userinfo['userid'] != $comment['userid'])); BSApp::debug('can edit own replies: ' . (int)(can_perform('caneditownreply', $bug['productid']) AND bugdar::$userinfo['userid'] == $comment['userid'])); BSApp::debug('can edit other replies:' . (int)(can_perform('caneditotherreply', $bug['productid']) AND bugdar::$userinfo['userid'] != $comment['userid'])); BSApp::debug('$show[editcomment]: ' . $show['editcomment']); if (is_array($hilight)) { foreach ($hilight AS $id => $find) { $find = "#($find)#i"; $replace = "\\1"; $comment['comment_parsed'] = preg_replace($find, $replace, $comment['comment_parsed']); } } $tpl = new BSTemplate('showreport_comment'); $tpl->vars = array('comment' => $comment); $temp = $tpl->evaluate()->getTemplate(); if ($description == null) { $description = $temp; } else { $comments .= $temp; } } $show['newreply'] = (can_perform('canpostcomments', $bug['productid']) ? true : false); $bug['summary_title'] = $bug['summary']; if (is_array($hilight) AND !$show['edit']) { foreach ($hilight AS $id => $find) { $find = "#($find)#i"; $replace = "\\1"; $bug['summary'] = preg_replace($find, $replace, $bug['summary']); } } $tpl = new BSTemplate('showreport'); $tpl->vars = array( 'bug' => $bug, 'comments' => $comments, 'select' => $select, 'vote' => $vote, 'favoritetext' => $favoritetext, 'customfields' => $customfields, 'attachments' => $attachments, 'productSelect' => $productSelect ); $tpl->evaluate()->flush(); ?>