File: /home/emblazeone/www/mantis/bug_report.php
<?php
# MantisBT - A PHP based bugtracking system
# MantisBT is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 2 of the License, or
# (at your option) any later version.
#
# MantisBT is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with MantisBT. If not, see <http://www.gnu.org/licenses/>.
/**
* This page stores the reported bug
*
* @package MantisBT
* @copyright Copyright 2000 - 2002 Kenzaburo Ito - kenito@300baud.org
* @copyright Copyright 2002 MantisBT Team - mantisbt-dev@lists.sourceforge.net
* @link http://www.mantisbt.org
*
* @uses core.php
* @uses access_api.php
* @uses authentication_api.php
* @uses bug_api.php
* @uses config_api.php
* @uses constant_inc.php
* @uses custom_field_api.php
* @uses date_api.php
* @uses email_api.php
* @uses error_api.php
* @uses event_api.php
* @uses file_api.php
* @uses form_api.php
* @uses gpc_api.php
* @uses helper_api.php
* @uses history_api.php
* @uses html_api.php
* @uses lang_api.php
* @uses last_visited_api.php
* @uses print_api.php
* @uses profile_api.php
* @uses relationship_api.php
* @uses string_api.php
* @uses user_api.php
* @uses utility_api.php
*/
require_once( 'core.php' );
require_api( 'access_api.php' );
require_api( 'authentication_api.php' );
require_api( 'bug_api.php' );
require_api( 'config_api.php' );
require_api( 'constant_inc.php' );
require_api( 'custom_field_api.php' );
require_api( 'date_api.php' );
require_api( 'email_api.php' );
require_api( 'error_api.php' );
require_api( 'event_api.php' );
require_api( 'file_api.php' );
require_api( 'form_api.php' );
require_api( 'gpc_api.php' );
require_api( 'helper_api.php' );
require_api( 'history_api.php' );
require_api( 'html_api.php' );
require_api( 'lang_api.php' );
require_api( 'last_visited_api.php' );
require_api( 'print_api.php' );
require_api( 'profile_api.php' );
require_api( 'relationship_api.php' );
require_api( 'string_api.php' );
require_api( 'user_api.php' );
require_api( 'utility_api.php' );
form_security_validate( 'bug_report' );
$t_project_id = null;
$f_master_bug_id = gpc_get_int( 'm_id', 0 );
if( $f_master_bug_id > 0 ) {
bug_ensure_exists( $f_master_bug_id );
if( bug_is_readonly( $f_master_bug_id ) ) {
error_parameters( $f_master_bug_id );
trigger_error( ERROR_BUG_READ_ONLY_ACTION_DENIED, ERROR );
}
$t_master_bug = bug_get( $f_master_bug_id, true );
$t_project_id = $t_master_bug->project_id;
} else {
$f_project_id = gpc_get_int( 'project_id' );
$t_project_id = $f_project_id;
}
project_ensure_exists( $t_project_id );
if( $t_project_id != helper_get_current_project() ) {
$g_project_override = $t_project_id;
}
access_ensure_project_level( config_get( 'report_bug_threshold' ) );
if( isset( $_GET['posted'] ) && empty( $_FILE ) && empty( $_POST ) ) {
trigger_error( ERROR_FILE_TOO_BIG, ERROR );
}
$t_bug_data = new BugData;
$t_bug_data->project_id = $t_project_id;
$t_bug_data->reporter_id = auth_get_current_user_id();
$t_bug_data->build = gpc_get_string( 'build', '' );
$t_bug_data->platform = gpc_get_string( 'platform', '' );
$t_bug_data->os = gpc_get_string( 'os', '' );
$t_bug_data->os_build = gpc_get_string( 'os_build', '' );
$t_bug_data->version = gpc_get_string( 'product_version', '' );
$t_bug_data->profile_id = gpc_get_int( 'profile_id', 0 );
$t_bug_data->handler_id = gpc_get_int( 'handler_id', 0 );
$t_bug_data->view_state = gpc_get_int( 'view_state', config_get( 'default_bug_view_status' ) );
$t_bug_data->category_id = gpc_get_int( 'category_id', 0 );
$t_bug_data->reproducibility = gpc_get_int( 'reproducibility', config_get( 'default_bug_reproducibility' ) );
$t_bug_data->severity = gpc_get_int( 'severity', config_get( 'default_bug_severity' ) );
$t_bug_data->priority = gpc_get_int( 'priority', config_get( 'default_bug_priority' ) );
$t_bug_data->projection = gpc_get_int( 'projection', config_get( 'default_bug_projection' ) );
$t_bug_data->eta = gpc_get_int( 'eta', config_get( 'default_bug_eta' ) );
$t_bug_data->resolution = gpc_get_string( 'resolution', config_get( 'default_bug_resolution' ) );
$t_bug_data->status = gpc_get_string( 'status', config_get( 'bug_submit_status' ) );
$t_bug_data->summary = gpc_get_string( 'summary' );
$t_bug_data->description = gpc_get_string( 'description' );
$t_bug_data->steps_to_reproduce = gpc_get_string( 'steps_to_reproduce', config_get( 'default_bug_steps_to_reproduce' ) );
$t_bug_data->additional_information = gpc_get_string( 'additional_info', config_get( 'default_bug_additional_info' ) );
$t_bug_data->due_date = gpc_get_string( 'due_date', '' );
if( is_blank( $t_bug_data->due_date ) ) {
$t_bug_data->due_date = date_get_null();
}
$f_rel_type = gpc_get_int( 'rel_type', BUG_REL_NONE );
$f_files = gpc_get_file( 'ufile', null );
$f_report_stay = gpc_get_bool( 'report_stay', false );
$f_copy_notes_from_parent = gpc_get_bool( 'copy_notes_from_parent', false );
$f_copy_attachments_from_parent = gpc_get_bool( 'copy_attachments_from_parent', false );
if( access_has_project_level( config_get( 'roadmap_update_threshold' ), $t_bug_data->project_id ) ) {
$t_bug_data->target_version = gpc_get_string( 'target_version', '' );
}
# Prevent unauthorized users setting handler when reporting issue
if( $t_bug_data->handler_id > 0 ) {
access_ensure_project_level( config_get( 'update_bug_assign_threshold' ) );
}
# if a profile was selected then let's use that information
if( 0 != $t_bug_data->profile_id ) {
if( profile_is_global( $t_bug_data->profile_id ) ) {
$t_row = user_get_profile_row( ALL_USERS, $t_bug_data->profile_id );
} else {
$t_row = user_get_profile_row( $t_bug_data->reporter_id, $t_bug_data->profile_id );
}
if( is_blank( $t_bug_data->platform ) ) {
$t_bug_data->platform = $t_row['platform'];
}
if( is_blank( $t_bug_data->os ) ) {
$t_bug_data->os = $t_row['os'];
}
if( is_blank( $t_bug_data->os_build ) ) {
$t_bug_data->os_build = $t_row['os_build'];
}
}
helper_call_custom_function( 'issue_create_validate', array( $t_bug_data ) );
# Validate the custom fields before adding the bug.
$t_related_custom_field_ids = custom_field_get_linked_ids( $t_bug_data->project_id );
foreach( $t_related_custom_field_ids as $t_id ) {
$t_def = custom_field_get_definition( $t_id );
# Produce an error if the field is required but wasn't posted
if( !gpc_isset_custom_field( $t_id, $t_def['type'] )
&& $t_def['require_report']
) {
error_parameters( lang_get_defaulted( custom_field_get_field( $t_id, 'name' ) ) );
trigger_error( ERROR_EMPTY_FIELD, ERROR );
}
if( !custom_field_validate( $t_id, gpc_get_custom_field( 'custom_field_' . $t_id, $t_def['type'], null ) ) ) {
error_parameters( lang_get_defaulted( custom_field_get_field( $t_id, 'name' ) ) );
trigger_error( ERROR_CUSTOM_FIELD_INVALID_VALUE, ERROR );
}
}
# Allow plugins to pre-process bug data
$t_bug_data = event_signal( 'EVENT_REPORT_BUG_DATA', $t_bug_data );
# Ensure that resolved bugs have a handler
if( $t_bug_data->handler_id == NO_USER && $t_bug_data->status >= config_get( 'bug_resolved_status_threshold' ) ) {
$t_bug_data->handler_id = auth_get_current_user_id();
}
# Create the bug
$t_bug_id = $t_bug_data->create();
# Mark the added issue as visited so that it appears on the last visited list.
last_visited_issue( $t_bug_id );
# Handle the file upload
if( $f_files !== null ) {
if( !file_allow_bug_upload( $t_bug_id ) ) {
access_denied();
}
file_process_posted_files_for_bug( $t_bug_id, $f_files );
}
# Handle custom field submission
foreach( $t_related_custom_field_ids as $t_id ) {
# Do not set custom field value if user has no write access
if( !custom_field_has_write_access( $t_id, $t_bug_id ) ) {
continue;
}
$t_def = custom_field_get_definition( $t_id );
if( !custom_field_set_value( $t_id, $t_bug_id, gpc_get_custom_field( 'custom_field_' . $t_id, $t_def['type'], $t_def['default_value'] ), false ) ) {
error_parameters( lang_get_defaulted( custom_field_get_field( $t_id, 'name' ) ) );
trigger_error( ERROR_CUSTOM_FIELD_INVALID_VALUE, ERROR );
}
}
if( $f_master_bug_id > 0 ) {
# it's a child generation... let's create the relationship and add some lines in the history
# update master bug last updated
bug_update_date( $f_master_bug_id );
# Add log line to record the cloning action
history_log_event_special( $t_bug_id, BUG_CREATED_FROM, '', $f_master_bug_id );
history_log_event_special( $f_master_bug_id, BUG_CLONED_TO, '', $t_bug_id );
if( $f_rel_type > BUG_REL_ANY ) {
# Add the relationship
relationship_add( $t_bug_id, $f_master_bug_id, $f_rel_type );
# Add log line to the history (both issues)
history_log_event_special( $f_master_bug_id, BUG_ADD_RELATIONSHIP, relationship_get_complementary_type( $f_rel_type ), $t_bug_id );
history_log_event_special( $t_bug_id, BUG_ADD_RELATIONSHIP, $f_rel_type, $f_master_bug_id );
# Send the email notification
email_relationship_added( $f_master_bug_id, $t_bug_id, relationship_get_complementary_type( $f_rel_type ) );
# update relationship target bug last updated
bug_update_date( $t_bug_id );
}
# copy notes from parent
if( $f_copy_notes_from_parent ) {
$t_parent_bugnotes = bugnote_get_all_bugnotes( $f_master_bug_id );
foreach ( $t_parent_bugnotes as $t_parent_bugnote ) {
$t_private = $t_parent_bugnote->view_state == VS_PRIVATE;
bugnote_add(
$t_bug_id,
$t_parent_bugnote->note,
$t_parent_bugnote->time_tracking,
$t_private,
$t_parent_bugnote->note_type,
$t_parent_bugnote->note_attr,
$t_parent_bugnote->reporter_id,
false,
0,
0,
false );
}
}
# copy attachments from parent
if( $f_copy_attachments_from_parent ) {
file_copy_attachments( $f_master_bug_id, $t_bug_id );
}
}
helper_call_custom_function( 'issue_create_notify', array( $t_bug_id ) );
# Allow plugins to post-process bug data with the new bug ID
event_signal( 'EVENT_REPORT_BUG', array( $t_bug_data, $t_bug_id ) );
email_bug_added( $t_bug_id );
# log status and resolution changes if they differ from the default
if( $t_bug_data->status != config_get( 'bug_submit_status' ) ) {
history_log_event( $t_bug_id, 'status', config_get( 'bug_submit_status' ) );
}
if( $t_bug_data->resolution != config_get( 'default_bug_resolution' ) ) {
history_log_event( $t_bug_id, 'resolution', config_get( 'default_bug_resolution' ) );
}
form_security_purge( 'bug_report' );
html_page_top1();
if( !$f_report_stay ) {
html_meta_redirect( 'view_all_bug_page.php' );
}
html_page_top2();
echo '<div class="success-msg">';
echo lang_get( 'operation_successful' ) . '<br />';
print_bracket_link( string_get_bug_view_url( $t_bug_id ), sprintf( lang_get( 'view_submitted_bug_link' ), $t_bug_id ) );
print_bracket_link( 'view_all_bug_page.php', lang_get( 'view_bugs_link' ) );
if( $f_report_stay ) {
?>
<p>
<form method="post" action="<?php echo string_get_bug_report_url() ?>">
<?php # CSRF protection not required here - form does not result in modifications ?>
<input type="hidden" name="category_id" value="<?php echo string_attribute( $t_bug_data->category_id ) ?>" />
<input type="hidden" name="severity" value="<?php echo string_attribute( $t_bug_data->severity ) ?>" />
<input type="hidden" name="reproducibility" value="<?php echo string_attribute( $t_bug_data->reproducibility ) ?>" />
<input type="hidden" name="profile_id" value="<?php echo string_attribute( $t_bug_data->profile_id ) ?>" />
<input type="hidden" name="platform" value="<?php echo string_attribute( $t_bug_data->platform ) ?>" />
<input type="hidden" name="os" value="<?php echo string_attribute( $t_bug_data->os ) ?>" />
<input type="hidden" name="os_build" value="<?php echo string_attribute( $t_bug_data->os_build ) ?>" />
<input type="hidden" name="product_version" value="<?php echo string_attribute( $t_bug_data->version ) ?>" />
<input type="hidden" name="target_version" value="<?php echo string_attribute( $t_bug_data->target_version ) ?>" />
<input type="hidden" name="build" value="<?php echo string_attribute( $t_bug_data->build ) ?>" />
<input type="hidden" name="report_stay" value="1" />
<input type="hidden" name="view_state" value="<?php echo string_attribute( $t_bug_data->view_state ) ?>" />
<input type="hidden" name="due_date" value="<?php echo string_attribute( $t_bug_data->due_date ) ?>" />
<input type="submit" class="button" value="<?php echo lang_get( 'report_more_bugs' ) ?>" />
</form>
</p>
<?php
}
?>
</div>
<?php
html_page_bottom();