/usr/share/horde/nag/tasklists/delete.php is in php-horde-nag 4.2.13-1.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 | <?php
/**
* Copyright 2002-2016 Horde LLC (http://www.horde.org/)
*
* See the enclosed file COPYING for license information (GPL). If you
* did not receive this file, see http://www.horde.org/licenses/gpl.
*/
require_once __DIR__ . '/../lib/Application.php';
Horde_Registry::appInit('nag');
// Exit if this isn't an authenticated user.
if (!$GLOBALS['registry']->getAuth()) {
Horde::url('list.php', true)->redirect();
}
$vars = Horde_Variables::getDefaultVariables();
$tasklist_id = $vars->get('t');
try {
$tasklist = $nag_shares->getShare($tasklist_id);
} catch (Horde_Share_Exception $e) {
$notification->push($e);
Horde::url('list.php', true)->redirect();
}
if ($tasklist->get('owner') != $GLOBALS['registry']->getAuth() &&
(!is_null($tasklist->get('owner')) || !$GLOBALS['registry']->isAdmin())) {
$notification->push(_("You are not allowed to delete this task list."), 'horde.error');
Horde::url('list.php', true)->redirect();
}
$form = new Nag_Form_DeleteTaskList($vars, $tasklist);
// Execute if the form is valid (must pass with POST variables only).
if ($form->validate(new Horde_Variables($_POST))) {
try {
$form->execute();
$notification->push(sprintf(_("The task list \"%s\" has been deleted."), $tasklist->get('name')), 'horde.success');
} catch (Exception $e) {
$notification->push($e, 'horde.error');
}
Horde::url('list.php', true)->redirect();
}
$page_output->header(array(
'title' => $form->getTitle()
));
Nag::status();
echo $form->renderActive($form->getRenderer(), $vars, Horde::url('tasklists/delete.php'), 'post');
$page_output->footer();
|