}
if($access == 'owner'){
$calendar_options = OC_Calendar_Calendar::allCalendars(OC_User::getUser());
+}else{
+ $calendar_options = array(OC_Calendar_App::getCalendar($data['calendarid'], false));
}
$category_options = OC_Calendar_App::getCategoryOptions();
$repeat_options = OC_Calendar_App::getRepeatOptions();
$errarr['title'] = 'true';
$errnum++;
}
- $calendar = OC_Calendar_App::getCalendar($request['calendar'], true, true);
- if(!$calendar){
- $errarr['cal'] = 'true';
- $errnum++;
- }
if(isset($request['categories']) && !is_array($request['categories'])){
$errarr['categories'] = $l10n->t('Not an array');
*/
public static function check_access($share, $id, $type){
$group_where = self::group_sql(OC_Group::getUserGroups($share));
- $stmt = OC_DB::prepare('SELECT * FROM *PREFIX*calendar_share_' . $type . ' WHERE ((share = ? AND sharetype = "user") ' . $group_where . ')');
- $result = $stmt->execute(array($share));
+ $stmt = OC_DB::prepare('SELECT * FROM *PREFIX*calendar_share_' . $type . ' WHERE (' . $type . 'id = ? AND (share = ? AND sharetype = "user") ' . $group_where . ')');
+ $result = $stmt->execute(array($id,$share));
$rows = $result->numRows();
if($rows > 0){
return true;
- }
- if($type == self::EVENT){
+ }elseif($type == self::EVENT){
$event = OC_Calendar_App::getEventObject($id, false, false);
return self::check_access($share, $event['calendarid'], self::CALENDAR);
+ }else{
+ return false;
}
- return false;
}
/*
* @brief: returns the calendardata of an event or a calendar