summaryrefslogtreecommitdiff
path: root/includes
diff options
context:
space:
mode:
authorjwacalex <aboehm@dompfaffenweg.de>2016-11-30 16:15:02 +0100
committerjwacalex <aboehm@dompfaffenweg.de>2016-11-30 16:17:52 +0100
commit1324260e0f43622c7c6f7170bdda702bb587df6e (patch)
tree8b80ffc0170d80a07ca5391b832865ed0d895abb /includes
parentf4f6dfefcbbd6b69e5baf0c82b91bfdce7472167 (diff)
forgot to remove if-statement -.-
Diffstat (limited to 'includes')
-rw-r--r--includes/controller/shift_entries_controller.php9
1 files changed, 1 insertions, 8 deletions
diff --git a/includes/controller/shift_entries_controller.php b/includes/controller/shift_entries_controller.php
index fae29875..adb40c58 100644
--- a/includes/controller/shift_entries_controller.php
+++ b/includes/controller/shift_entries_controller.php
@@ -59,12 +59,7 @@ function shift_entry_add_controller() {
if (isset($_REQUEST['submit'])) {
$selected_type_id = $type_id;
if (in_array('user_shifts_admin', $privileges)) {
- if (isset($_REQUEST['user_id']) && preg_match("/^[0-9]*$/", $_REQUEST['user_id'])) {
- $user_id = $_REQUEST['user_id'];
- } else {
- $user_id = $user['UID'];
- }
-
+
if (sql_num_query("SELECT * FROM `User` WHERE `UID`='" . sql_escape($user_id) . "' LIMIT 1") == 0) {
redirect(page_link_to('user_shifts'));
}
@@ -72,8 +67,6 @@ function shift_entry_add_controller() {
if (isset($_REQUEST['angeltype_id']) && test_request_int('angeltype_id') && sql_num_query("SELECT * FROM `AngelTypes` WHERE `id`='" . sql_escape($_REQUEST['angeltype_id']) . "' LIMIT 1") > 0) {
$selected_type_id = $_REQUEST['angeltype_id'];
}
- } else {
- $user_id = $user['UID'];
}
if (sql_num_query("SELECT * FROM `ShiftEntry` WHERE `SID`='" . sql_escape($shift['SID']) . "' AND `UID` = '" . sql_escape($user_id) . "'")) {