''); $errors = array(); $groupid = ''; function group_by_name($name) { $link = connect(); $group = select_one_row( "select * from chatgroup where vclocalname = '".mysql_real_escape_string($name)."'", $link ); mysql_close($link); return $group; } function create_group($name,$descr,$commonname,$commondescr) { $link = connect(); $query = sprintf( "insert into chatgroup (vclocalname,vclocaldescription,vccommonname,vccommondescription) values ('%s','%s','%s','%s')", mysql_real_escape_string($name), mysql_real_escape_string($descr), mysql_real_escape_string($commonname), mysql_real_escape_string($commondescr)); perform_query($query,$link); $id = mysql_insert_id($link); $newdep = select_one_row("select * from chatgroup where groupid = $id", $link ); mysql_close($link); return $newdep; } function update_group($groupid,$name,$descr,$commonname,$commondescr) { $link = connect(); $query = sprintf( "update chatgroup set vclocalname = '%s', vclocaldescription = '%s', vccommonname = '%s', vccommondescription = '%s' where groupid = %s", mysql_real_escape_string($name), mysql_real_escape_string($descr), mysql_real_escape_string($commonname), mysql_real_escape_string($commondescr), $groupid ); perform_query($query,$link); mysql_close($link); } if( isset($_POST['name'])) { $groupid = verifyparam( "gid", "/^(\d{1,9})?$/", ""); $name = getparam('name'); $description = getparam('description'); $commonname = getparam('commonname'); $commondescription = getparam('commondescription'); if( !$name ) $errors[] = no_field("form.field.groupname"); $existing_group = group_by_name($name); if( (!$groupid && $existing_group) || ( $groupid && $existing_group && $groupid != $existing_group['groupid']) ) $errors[] = getlocal("page.group.duplicate_name"); if( count($errors) == 0 ) { if (!$groupid) { $newdep = create_group($name,$description,$commonname,$commondescription); header("Location: $webimroot/operator/groupmembers.php?gid=".$newdep['groupid']); exit; } else { update_group($groupid,$name,$description,$commonname,$commondescription); header("Location: $webimroot/operator/group.php?gid=$groupid&stored"); exit; } } else { $page['formname'] = topage($name); $page['formdescription'] = topage($description); $page['formcommonname'] = topage($commonname); $page['formcommondescription'] = topage($commondescription); $page['grid'] = topage($groupid); } } else if( isset($_GET['gid']) ) { $groupid = verifyparam( 'gid', "/^\d{1,9}$/"); $group = group_by_id($groupid); if( !$group ) { $errors[] = getlocal("page.group.no_such"); $page['grid'] = topage($groupid); } else { $page['formname'] = topage($group['vclocalname']); $page['formdescription'] = topage($group['vclocaldescription']); $page['formcommonname'] = topage($group['vccommonname']); $page['formcommondescription'] = topage($group['vccommondescription']); $page['grid'] = topage($group['groupid']); } } $page['stored'] = isset($_GET['stored']); prepare_menu($operator); setup_group_settings_tabs($groupid, 0); start_html_output(); require('../view/group.php'); ?>