3 * params must contain at least id=xx & {one of the fields from getfields}=value
5 * @param array $apiRequest
7 * @throws API_Exception
10 function civicrm_api3_generic_setValue($apiRequest) {
11 $entity = $apiRequest['entity'];
12 $params = $apiRequest['params'];
13 // we can't use _spec, doesn't work with generic
14 civicrm_api3_verify_mandatory($params, NULL, array('id', 'field', 'value'));
16 if (!is_numeric($id)) {
17 return civicrm_api3_create_error(ts('Please enter a number'), array('error_code' => 'NaN', 'field' => "id"));
20 $field = CRM_Utils_String
::munge($params['field']);
21 $value = $params['value'];
23 $fields = civicrm_api($entity, 'getFields', array('version' => 3, 'action' => 'create', "sequential"));
24 // getfields error, shouldn't happen.
25 if ($fields['is_error'])
27 $fields = $fields['values'];
29 $isCustom = strpos($field, 'custom_') === 0;
30 // Trim off the id portion of a multivalued custom field name
31 $fieldKey = $isCustom && substr_count($field, '_') > 1 ?
rtrim(rtrim($field, '1234567890'), '_') : $field;
32 if (!array_key_exists($fieldKey, $fields)) {
33 return civicrm_api3_create_error("Param 'field' ($field) is invalid. must be an existing field", array("error_code" => "invalid_field", "fields" => array_keys($fields)));
36 $def = $fields[$fieldKey];
37 $title = CRM_Utils_Array
::value('title', $def, ts('Field'));
38 // Disallow empty values except for the number zero.
39 // TODO: create a utility for this since it's needed in many places
40 if (!empty($def['required']) ||
!empty($def['is_required'])) {
41 if ((empty($value) ||
$value === 'null') && $value !== '0' && $value !== 0) {
42 return civicrm_api3_create_error(ts('%1 is a required field.', array(1 => $title)), array("error_code" => "required", "field" => $field));
46 switch ($def['type']) {
47 case CRM_Utils_Type
::T_FLOAT
:
48 if (!is_numeric($value) && !empty($value) && $value !== 'null') {
49 return civicrm_api3_create_error(ts('%1 must be a number.', array(1 => $title)), array('error_code' => 'NaN'));
53 case CRM_Utils_Type
::T_INT
:
54 if (!CRM_Utils_Rule
::integer($value) && !empty($value) && $value !== 'null') {
55 return civicrm_api3_create_error(ts('%1 must be a number.', array(1 => $title)), array('error_code' => 'NaN'));
59 case CRM_Utils_Type
::T_STRING
:
60 case CRM_Utils_Type
::T_TEXT
:
61 if (!CRM_Utils_Rule
::xssString($value)) {
62 return civicrm_api3_create_error(ts('Illegal characters in input (potential scripting attack)'), array('error_code' => 'XSS'));
64 if (array_key_exists('maxlength', $def)) {
65 $value = substr($value, 0, $def['maxlength']);
69 case CRM_Utils_Type
::T_DATE
:
70 $value = CRM_Utils_Type
::escape($value,"Date",false);
72 return civicrm_api3_create_error("Param '$field' is not a date. format YYYYMMDD or YYYYMMDDHHMMSS");
75 case CRM_Utils_Type
::T_BOOLEAN
:
76 // Allow empty value for non-required fields
77 if ($value === '' ||
$value === 'null') {
81 $value = (boolean
) $value;
86 return civicrm_api3_create_error("Param '$field' is of a type not managed yet (" . $def['type'] . "). Join the API team and help us implement it", array('error_code' => 'NOT_IMPLEMENTED'));
89 $dao_name = _civicrm_api3_get_DAO($entity);
90 $params = array('id' => $id, $field => $value);
92 if ((!empty($def['pseudoconstant']) ||
!empty($def['option_group_id'])) && $value !== '' && $value !== 'null') {
93 _civicrm_api3_api_match_pseudoconstant($params, $entity, $field, $def);
96 CRM_Utils_Hook
::pre('edit', $entity, $id, $params);
100 CRM_Utils_Array
::crmReplaceKey($params, 'id', 'entityID');
101 // Treat 'null' as empty value. This is awful but the rest of the code supports it.
102 if ($params[$field] === 'null') {
103 $params[$field] = '';
105 CRM_Core_BAO_CustomValueTable
::setValues($params);
106 CRM_Utils_Hook
::post('edit', $entity, $id, CRM_Core_DAO
::$_nullObject);
107 return civicrm_api3_create_success($params);
110 elseif (CRM_Core_DAO
::setFieldValue($dao_name, $id, $field, $params[$field])) {
111 $entityDAO = new $dao_name();
112 $entityDAO->copyValues($params);
113 CRM_Utils_Hook
::post('edit', $entity, $entityDAO->id
, $entityDAO);
114 return civicrm_api3_create_success($params);
117 return civicrm_api3_create_error("error assigning $field=$value for $entity (id=$id)");