echo $util->getFooter();
}
- function handleRequest($request, $ids) {
+ function handleRequest($util, $request, $ids) {
global $CFG;
$query = array();
$query[] = "UPDATE msgrcpt SET rs = 'R' WHERE mail_id = '$mail_id'";
} else if ($request == 'delete') {
$query[] = "UPDATE msgrcpt SET rs = 'D' WHERE mail_id = '$mail_id'";
+ } else if ($request == 'block') {
} else {
error("Unknown operation [$request]");
exit;
$request = isset($_GET['op']) ? $_GET['op'] : '';
if ($loggedIn && isset($_GET['id'])) {
$ids = explode(',', $_GET['id']);
- $query = handleRequest($request, $ids);
- $success = $DB->update($query);
- if (! $success) {
- error("Message not released, contact administrator [$query]");
- exit;
+ if ($request == 'block') {
+ // call rest server
+ } else {
+ $query = handleRequest($util, $request, $ids);
+ $success = $DB->update($query);
+ if (! $success) {
+ error("Message not released, contact administrator [$query]");
+ exit;
+ }
}
header('Location: index.php');
} else if ($loggedIn && $request == 'purge') {
$query = array();
$error = array();
foreach ($marked as $mail_id) {
- $mail = $DB->getMail($mail_id);
- if (is_object($mail) && true == $util->authorized($mail->recipient)) {
+ $recipient = $DB->getRecipient($mail_id);
+ if ($recipient && true == $util->authorized($recipient)) {
$query[] = "delete from msgs where mail_id = '$mail_id'";
$query[] = "delete from msgrcpt where mail_id = '$mail_id'";
$query[] = "delete from quarantine where mail_id = '$mail_id'";