From: vincent@cubedesigners.com <vincent@cubedesigners.com@f5622870-0f3c-0410-866d-9cb505b7a8ef>
Date: Thu, 5 May 2011 08:32:02 +0000 (+0000)
Subject: (no commit message)
X-Git-Url: http://git.cubedesigners.com/?a=commitdiff_plain;h=27ffb2af6123b0df903bbc8a71d064c371efd272;p=cubeextranet.git

---

diff --git a/inc/ws/Controlleur/class.ws.url.php b/inc/ws/Controlleur/class.ws.url.php
index f038d1b92..7ddb39a2b 100644
--- a/inc/ws/Controlleur/class.ws.url.php
+++ b/inc/ws/Controlleur/class.ws.url.php
@@ -19,7 +19,7 @@ class wsUrl {
 			$filtres[] = new commonFiltre(__('Administrateur'), 'admin_book', $settings['filtres']);
 		}
 		$res = commonPage::barre($filtres , 'filtreBooks', 'books', $shortcuts);
-		$res .= commonPage::tMain(null, true);
+		$res .= commonPage::tMain(null,wsDroits::admin());
 		$res .= commonPage::bh();
 		$res .= '<div id="listeBooks">';
 		$res .= self::listeBooks();
@@ -88,19 +88,19 @@ class wsUrl {
 			$odd = cubeMath::isOdd($i)?' class="odd"':'';
 			$res .= '<tr' . $odd . '>';
 			$res .= '<td>' . $book->book_id . '</td>';
-			$res .= '<td>' . $book->nom . '</td>';
+			$res .= '<td>' . html::escapeHTML($book->nom) . '</td>';
 			$res .= '<td>' . mb_strtoupper($book->lang) . '</td>';
 			$res .= '<td>' . $book->parametres->pages . '</td>';
 
 			if ($droits->revendeur) {
-				$p = str_replace(" (", '<br /><em>', $book->proprietaire);
+				$p = str_replace(" (", '<br /><em>', html::escapeHTML($book->proprietaire));
 				$p = str_replace(')', '</em>', $p);
 				$res .= '<td><a href="#" class="popup" rel="formChangeBookProprietaire/' . $book->book_id . '" title="' . __('Mofifier le proprietaire') . '">' . $p . '</a></td>';
 			} else {
-				$res .= '<td>' . $book->proprietaire_utilisateur . '</td>';
+				$res .= '<td>' . html::escapeHTML($book->proprietaire_utilisateur) . '</td>';
 			}
 			if ($droits->admin) {
-				$res .= '<td>' . $book->facturable . '</td>';
+				$res .= '<td>' . html::escapeHTML($book->facturable) . '</td>';
 			}
 			if ($droits->revendeur) {
 				if ($droits->admin || $book->status <= 1) {
diff --git a/index.php b/index.php
index 6e6ef4540..d03bb060c 100644
--- a/index.php
+++ b/index.php
@@ -8,7 +8,7 @@ $js[] = JS_PATH . '/' . MODE . '.js';
 $jsvar['IMG'] = IMG;
 $jsvar['SITE_PATH'] = SITE_PATH;
 $css[] = CSS_PATH . '/style.css';
-$standard = 'XHTML 1.0 Strict';
+$standard = 'XHTML 1.0 Transitional';
 
 echo $core->url->getDocument();
 $buffer = ob_get_contents();
diff --git a/js/common.js b/js/common.js
index 31c37b800..be69e81e1 100644
--- a/js/common.js
+++ b/js/common.js
@@ -1,6 +1,7 @@
 TO_LOAD_INDEX++;
 TO_LOAD[TO_LOAD_INDEX]='load_common_extranet();';
 FIRST_LOAD=true;
+
 function load_common_extranet(){
 	if($(".dashboard").length>=1 && $("#dash").length>=1){
 		$("#dash").sortable('destroy');
diff --git a/js/ws.js b/js/ws.js
index 521913e07..e473944ef 100644
--- a/js/ws.js
+++ b/js/ws.js
@@ -1,6 +1,7 @@
 TO_LOAD_INDEX++;
 TO_LOAD[TO_LOAD_INDEX]='load_ws();';
 FIRST_LOAD=true;
+
 function load_ws(){
 	if($("#book_nom").length){
 		$("#book_nom").autocomplete(SITE_PATH+'autocomplete/book',{
diff --git a/style/ws/style.css b/style/ws/style.css
index f1f06af15..288ce07f0 100644
--- a/style/ws/style.css
+++ b/style/ws/style.css
@@ -441,7 +441,7 @@ display:none;
 
 .gris{background-color:#ecedf0;}
 
-#listeBooks{width:100%;height:100%;}
+#listeBooks{width:100%;height:auto;}
 
 /* Stats */
 .graphStats table{