global $db, $related_order_id, $status_order_id, $status_edit_dostup, $orderCityId, $store_orders_status_description, $storesArray, $store_id, $whereInProductsId, $store_orders_statuses, $statuses_stores_show,$whereGuid,$act,$orderId,$group_id;
-echo'<form method=post action="/shipment/'.$act.'/?id='.$orderId.'">
-<table><td>Статус:</td><td><span class="tag">'. ($store_orders_statuses[$status_order_id] ?? '') .' </span> </td>';
+echo'<form method=post action="/shipment/'.$act.'/?id='.$orderId.'">';
+echo '<input type="hidden" name="_csrf" value="' . Yii::$app->request->getCsrfToken() . '" />';
+echo '<table><td>Статус:</td><td><span class="tag">'. ($store_orders_statuses[$status_order_id] ?? '') .' </span> </td>';
if(!empty($status_edit_dostup[$status_order_id][$group_id])) {
echo'<td>можно изменять на</td><td> <select class="form-control" name=status_new>';
foreach($status_edit_dostup[$status_order_id][$group_id] as $v) {
- echo '<option value="'.$v.'">'.$store_orders_statuses[$v].'</option> ';
+ echo '<option value="'.$v.'"' . (($_POST["status_new"] ?? 0) == $v ? 'selected' : '') . '>'.$store_orders_statuses[$v].'</option> ';
}
echo'</select></td><td>
projects / erp24_rep / yii-erp24 / .git / commitdiff