Skip to content

Commit

Permalink
Added additional data validation in the wysiwyg editor when inputting…
Browse files Browse the repository at this point in the history 
… data in the source.
  • Loading branch information
@mariuszkrzaczkowski
mariuszkrzaczkowski committed Dec 13, 2021
1 parent c1ad711 commit a062d3d
Show file tree
Hide file tree
Showing 3 changed files with 67 additions and 7 deletions.
2 changes: 1 addition & 1 deletion config/version.php
View file
@@ -1,7 +1,7 @@
<?php

return [
'appVersion' => '6.3.3',
'appVersion' => '6.3.4',
'patchVersion' => '2021.12.13',
'lib_roundcube' => '0.2.3',
];
26 changes: 25 additions & 1 deletion modules/Vtiger/actions/Fields.php
View file
Expand Up @@ -53,8 +53,9 @@ public function __construct()
$this->exposeMethod('getOwners');
$this->exposeMethod('getReference');
$this->exposeMethod('getUserRole');
$this->exposeMethod('verifyPhoneNumber');
$this->exposeMethod('findAddress');
$this->exposeMethod('validate');
$this->exposeMethod('verifyPhoneNumber');
$this->exposeMethod('verifyIsHolidayDate');
$this->exposeMethod('changeFavoriteOwner');
}
Expand Down Expand Up @@ -267,4 +268,27 @@ public function changeFavoriteOwner(App\Request $request)
$response->setResult(['result' => $result, 'message' => $message]);
$response->emit();
}

/**
* Validate the field value.
*
* @param \App\Request $request
*
* @throws \App\Exceptions\NoPermitted
*/
public function validate(App\Request $request)
{
$fieldModel = Vtiger_Module_Model::getInstance($request->getModule())->getFieldByName($request->getByType('fieldName', 2));
if (!$fieldModel || !$fieldModel->isActiveField() || !$fieldModel->isViewEnabled()) {
throw new \App\Exceptions\NoPermitted('ERR_NO_PERMISSIONS_TO_FIELD', 406);
}
$recordModel = \Vtiger_Record_Model::getCleanInstance($fieldModel->getModuleName());
$fieldModel->getUITypeModel()->setValueFromRequest($request, $recordModel, 'fieldValue');
$response = new Vtiger_Response();
$response->setResult([
'raw' => $recordModel->get($fieldModel->getName()),
'display' => $recordModel->getDisplayValue($fieldModel->getName()),
]);
$response->emit();
}
}
46 changes: 41 additions & 5 deletions public_html/layouts/resources/Fields.js
View file
Expand Up @@ -532,8 +532,7 @@ window.App.Fields = {
*/
loadEditor(element, customConfig) {
this.setElement(element);
const instance = this.getEditorInstanceFromName(),
self = this;
const instance = this.getEditorInstanceFromName();
let config = {
language: CONFIG.langKey,
allowedContent: true,
Expand All @@ -546,12 +545,17 @@ window.App.Fields = {
emojiEnabled: false,
mentionsEnabled: false,
on: {
instanceReady: function (evt) {
instanceReady: (evt) => {
evt.editor.on('blur', function () {
evt.editor.updateElement();
});
if (self.isModal && self.progressInstance) {
self.progressInstance.progressIndicator({ mode: 'hide' });
if (this.isModal && this.progressInstance) {
this.progressInstance.progressIndicator({ mode: 'hide' });
}
},
beforeCommandExec: (e) => {
if (e.editor.mode === 'source') {
return this.validate(element, e);
}
}
},
Expand Down Expand Up @@ -741,6 +745,38 @@ window.App.Fields = {
getMentionUsersData(opts, callback) {
App.Fields.Text.getMentionData(opts, callback, 'owners');
}

/**
* Function to validate the field value
* @param {jQuery} element
* @param {object} e
*/
validate(element, e) {
let status = true;
AppConnector.request({
async: false,
data: {
module: element.closest('form').find('[name="module"]').val(),
action: 'Fields',
mode: 'validate',
fieldName: element.attr('name'),
fieldValue: element.val()
}
})
.done(function (data) {
element.val(data.result.raw);
})
.fail(function (error) {
app.showNotify({
type: 'error',
title: app.vtranslate('JS_ERROR'),
text: error
});
status = false;
});

return status;
}
},
/**
* Completions class for contenteditable html element for records, users and emojis. Params can be passed in data-completions- of contenteditable element or as argument. Default params:
Expand Down

0 comments on commit a062d3d

Please sign in to comment.