Added text fields sanitization on upgrdae to 2.2.

[fa-stable.git] / sales / allocations / customer_allocate.php

diff --git a/sales/allocations/customer_allocate.php b/sales/allocations/customer_allocate.php
index 6132c4f58eebb452d7182170c3bd7c07e9aa3091..6b0357e0db267db9454cce0c4695a974cb072f01 100644 (file)
--- a/sales/allocations/customer_allocate.php
+++ b/sales/allocations/customer_allocate.php
@@ -9,8 +9,8 @@
     MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  
     See the License here <http://www.gnu.org/licenses/gpl-3.0.html>.
 ***********************************************************************/
-$path_to_root="../..";
-$page_security = 3;
+$page_security = 'SA_SALESALLOC';
+$path_to_root = "../..";
 
 include($path_to_root . "/includes/ui/allocation_cart.inc");
 include_once($path_to_root . "/includes/session.inc");
@@ -46,7 +46,7 @@ if (isset($_POST['Process']))
 {
        if (check_allocations())
        {
-               handle_allocate();
+               $_SESSION['alloc']->write();
                clear_allocations();
                $_POST['Cancel'] = 1;
        }
@@ -62,8 +62,10 @@ if (isset($_POST['Cancel']))
 
 function edit_allocations_for_transaction($type, $trans_no)
 {
+       global $systypes_array;
 
-    display_heading(sprintf(_("Allocation of %s # %d"), systypes::name($_SESSION['alloc']->type),$_SESSION['alloc']->trans_no));
+    display_heading(sprintf(_("Allocation of %s # %d"), $systypes_array[$_SESSION['alloc']->type],
+       $_SESSION['alloc']->trans_no));
 
     display_heading($_SESSION['alloc']->person_name);
 
@@ -97,7 +99,7 @@ function edit_allocations_for_transaction($type, $trans_no)
 if (isset($_GET['trans_no']) && isset($_GET['trans_type']))
 {
        clear_allocations();
-       get_allocations_for_transaction($_GET['trans_type'], $_GET['trans_no']);
+       $_SESSION['alloc'] = new allocation($_GET['trans_type'], $_GET['trans_no']);
 }
 if(get_post('UpdateDisplay'))
 {