<?php
defined('_JEXEC') or die;

function regularlabs_php_88fc9a6e4fb1dd4856f0bd4a1bf60623($rl_variables, $article, $module){
$app = $mainframe = RegularLabs\Library\Php::getApplication();
$document = $doc = RegularLabs\Library\Php::getDocument();
$database = $db = Joomla\CMS\Factory::getDbo();
$user = $app->getIdentity() ?: Joomla\CMS\Factory::getUser();
$Itemid = $app->getInput()->getInt('Itemid');
if (is_array($rl_variables)) {foreach ($rl_variables as $rl_key => $rl_value) {${$rl_key} = $rl_value;}}
$app = JFactory::getApplication();
$input = $app->input;
$submissionId = $input->getInt('submissionId');
$token = $input->getCmd('token');

$db = JFactory::getDbo();
$query = $db->getQuery(true)
    ->select('FieldValue')
    ->from('#__rsform_submission_values')
    ->where('SubmissionId = ' . (int)$submissionId)
    ->where('FieldName = ' . $db->quote('token'));
$db->setQuery($query);
$tokenInDb = $db->loadResult();

if ($token !== $tokenInDb) {
    echo "Accès non autorisé.";
    $app->close();
}

// Injection du submissionId directement dans le formulaire RSForm via JavaScript :
echo '
document.addEventListener("DOMContentLoaded", function() {
    var input = document.querySelector("input[name=\'form[submission_id_source]\']");
    if (input) {
        input.value = "' . $submissionId . '";
    }
});
';  ;;
return get_defined_vars();
;}