//---------------------------------------------------------------------------------------------
if (isset($_GET['selected_id']))
{
- $selected_id = $_GET['selected_id'];
+ $selected_id = (int)$_GET['selected_id'];
}
elseif (isset($_POST['selected_id']))
{
- $selected_id = $_POST['selected_id'];
+ $selected_id = (int)$_POST['selected_id'];
}
else
$selected_id = -1;
if (!db_import($path_to_root.'/sql/'.get_post('coa'), $conn, $selected_id)) {
display_error(_('Cannot create new company due to bugs in sql file.'));
$error = true;
- } else
- if (isset($_POST['admpassword']) && $_POST['admpassword'] != "")
- update_admin_password($conn, md5($_POST['admpassword']));
+ }
+ else
+ {
+ if (!isset($_POST['admpassword']) || $_POST['admpassword'] == "")
+ $_POST['admpassword'] = "password";
+ update_admin_password($conn, md5($_POST['admpassword']));
+ }
}
set_global_connection();
if ($error) {
{
global $def_coy, $db_connections, $comp_subdirs, $path_to_root;
- $id = $_GET['id'];
+ $id = (int)$_GET['id'];
// First make sure all company directories from the one under removal are writable.
// Without this after operation we end up with changed per-company owners!
$coyno = $_SESSION["wa_current_user"]->company;
echo "
- <script language='javascript'>
+ <script type='text/javascript'>
function deleteCompany(id, name) {
if (!confirm('" . _("Are you sure you want to delete company no. ") . "'+id+' '+name+'?'))
return
end_table();
display_note(_("The marked company is the current company which cannot be deleted."), 0, 0, "class='currentfg'");
+ display_note(_("If no Admin Password is entered, the new Admin Password will be '<b>password</b>' by default "), 1, 0, "class='currentfg'");
}
//---------------------------------------------------------------------------------------------
$_POST['dbname'] = $conn['dbname'];
}
- text_row_ex(_("Company"), 'name', 30);
+ text_row_ex(_("Company"), 'name', 50);
if ($selected_id == -1)
{