"", "uid" => "", "in" => "", "out" => "", "notes" => "", "username" => "" ]; $editing = false; $ownpunch = false; if (isset($VARS['pid']) && $database->has('punches', ['punchid' => $VARS['pid']])) { $editing = true; $data = $database->get('punches', [ "punchid", "uid", "in", "out", "notes", "shiftid" ], [ 'punchid' => $VARS['pid'] ]); if ($data["uid"] == $_SESSION['uid']) { $ownpunch = true; } } if ($ownpunch) { if (!account_has_permission($_SESSION['username'], "QWIKCLOCK_EDITSELF")) { header("Location: app.php?page=punches&msg=no_editself_permission"); die(); } } else { if (account_has_permission($_SESSION['username'], "QWIKCLOCK_ADMIN")) { // All good } else if (account_has_permission($_SESSION['username'], "QWIKCLOCK_MANAGE")) { if ($editing && !isManagerOf($_SESSION['uid'], $data['uid'])) { header("Location: app.php?page=punches&msg=you_arent_my_supervisor"); die(); } } else { header("Location: app.php?page=punches&msg=no_permission"); die(); } } if ($data['uid'] != "") { $data['username'] = getUserByID($data['uid'])['username']; } ?>

" />