| 1 | <?php |
| 2 | /* |
| 3 | +--------------------------------------------------------------------+ |
| 4 | | CiviCRM version 4.7 | |
| 5 | +--------------------------------------------------------------------+ |
| 6 | | Copyright CiviCRM LLC (c) 2004-2015 | |
| 7 | +--------------------------------------------------------------------+ |
| 8 | | This file is a part of CiviCRM. | |
| 9 | | | |
| 10 | | CiviCRM is free software; you can copy, modify, and distribute it | |
| 11 | | under the terms of the GNU Affero General Public License | |
| 12 | | Version 3, 19 November 2007 and the CiviCRM Licensing Exception. | |
| 13 | | | |
| 14 | | CiviCRM is distributed in the hope that it will be useful, but | |
| 15 | | WITHOUT ANY WARRANTY; without even the implied warranty of | |
| 16 | | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. | |
| 17 | | See the GNU Affero General Public License for more details. | |
| 18 | | | |
| 19 | | You should have received a copy of the GNU Affero General Public | |
| 20 | | License and the CiviCRM Licensing Exception along | |
| 21 | | with this program; if not, contact CiviCRM LLC | |
| 22 | | at info[AT]civicrm[DOT]org. If you have questions about the | |
| 23 | | GNU Affero General Public License or the licensing of CiviCRM, | |
| 24 | | see the CiviCRM license FAQ at http://civicrm.org/licensing | |
| 25 | +--------------------------------------------------------------------+ |
| 26 | */ |
| 27 | |
| 28 | /** |
| 29 | * |
| 30 | * @package CRM |
| 31 | * @copyright CiviCRM LLC (c) 2004-2015 |
| 32 | * $Id$ |
| 33 | * |
| 34 | */ |
| 35 | |
| 36 | /** |
| 37 | * This class generates form components |
| 38 | * for previewing Civicrm Profile Group |
| 39 | * |
| 40 | */ |
| 41 | class CRM_UF_Form_Inline_Preview extends CRM_UF_Form_AbstractPreview { |
| 42 | |
| 43 | /** |
| 44 | * Pre processing work done here. |
| 45 | * |
| 46 | * gets session variables for group or field id |
| 47 | * |
| 48 | * @param |
| 49 | * |
| 50 | * @return void |
| 51 | */ |
| 52 | public function preProcess() { |
| 53 | if ($_SERVER['REQUEST_METHOD'] != 'POST') { |
| 54 | // CRM_Core_Controller validates qfKey for POST requests, but not necessarily |
| 55 | // for GET requests. Allowing GET would therefore be CSRF vulnerability. |
| 56 | CRM_Core_Error::fatal(ts('Preview only supports HTTP POST')); |
| 57 | } |
| 58 | // Inline forms don't get menu-level permission checks |
| 59 | $checkPermission = array( |
| 60 | array( |
| 61 | 'administer CiviCRM', |
| 62 | 'manage event profiles', |
| 63 | ), |
| 64 | ); |
| 65 | if (!CRM_Core_Permission::check($checkPermission)) { |
| 66 | CRM_Core_Error::fatal(ts('Permission Denied')); |
| 67 | } |
| 68 | $content = json_decode($_REQUEST['ufData'], TRUE); |
| 69 | foreach (array('ufGroup', 'ufFieldCollection') as $key) { |
| 70 | if (!is_array($content[$key])) { |
| 71 | CRM_Core_Error::fatal("Missing JSON parameter, $key"); |
| 72 | } |
| 73 | } |
| 74 | //echo '<pre>'.htmlentities(var_export($content, TRUE)) .'</pre>'; |
| 75 | //CRM_Utils_System::civiExit(); |
| 76 | $fields = CRM_Core_BAO_UFGroup::formatUFFields($content['ufGroup'], $content['ufFieldCollection']); |
| 77 | //$fields = CRM_Core_BAO_UFGroup::getFields(1); |
| 78 | $this->setProfile($fields); |
| 79 | //echo '<pre>'.htmlentities(var_export($fields, TRUE)) .'</pre>';CRM_Utils_System::civiExit(); |
| 80 | } |
| 81 | |
| 82 | } |