/**
* Shows the block editor
*
* This will show a block edit form. If this is a Geeklog default block it will
* send it off to editdefaultblock.
*
* @param string $bid ID of block to edit
* @return string HTML for block editor
*
*/
function editblock($bid = '')
{
global $_CONF, $_GROUPS, $_TABLES, $_USER, $LANG01, $LANG21, $LANG_ACCESS, $LANG_ADMIN, $MESSAGE;
$retval = '';
if (!empty($bid)) {
$sql['mysql'] = "SELECT * FROM {$_TABLES['blocks']} WHERE bid ='{$bid}'";
$sql['mssql'] = "SELECT bid, is_enabled, name, type, title, tid, blockorder, cast(content as text) as content, rdfurl, ";
$sql['mssql'] .= "rdfupdated, rdflimit, onleft, phpblockfn, help, owner_id,group_id, ";
$sql['mssql'] .= "perm_owner, perm_group, perm_members, perm_anon, allow_autotags FROM {$_TABLES['blocks']} WHERE bid ='{$bid}'";
$result = DB_query($sql);
$A = DB_fetchArray($result);
$access = SEC_hasAccess($A['owner_id'], $A['group_id'], $A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']);
if ($access == 2 || $access == 0 || hasBlockTopicAccess($A['tid']) < 3) {
$retval .= COM_startBlock($LANG_ACCESS['accessdenied'], '', COM_getBlockTemplate('_msg_block', 'header')) . $LANG21[45] . COM_endBlock(COM_getBlockTemplate('_msg_block', 'footer'));
COM_accessLog("User {$_USER['username']} tried to illegally create or edit block {$bid}.");
return $retval;
}
if ($A['type'] == 'gldefault') {
$retval .= editdefaultblock($A, $access);
return $retval;
}
} else {
$A['bid'] = 0;
$A['is_enabled'] = 1;
$A['name'] = '';
$A['type'] = 'normal';
$A['title'] = '';
$A['tid'] = 'All';
$A['blockorder'] = 0;
$A['content'] = '';
$A['allow_autotags'] = 0;
$A['rdfurl'] = '';
$A['rdfupdated'] = '';
$A['rdflimit'] = 0;
$A['onleft'] = 0;
$A['phpblockfn'] = '';
$A['help'] = '';
$A['owner_id'] = $_USER['uid'];
if (isset($_GROUPS['Block Admin'])) {
$A['group_id'] = $_GROUPS['Block Admin'];
} else {
$A['group_id'] = SEC_getFeatureGroup('block.edit');
}
SEC_setDefaultPermissions($A, $_CONF['default_permissions_block']);
$access = 3;
}
$token = SEC_createToken();
$block_templates = new Template($_CONF['path_layout'] . 'admin/block');
$block_templates->set_file('editor', 'blockeditor.thtml');
$block_templates->set_var('site_url', $_CONF['site_url']);
$block_templates->set_var('xhtml', XHTML);
$block_templates->set_var('site_admin_url', $_CONF['site_admin_url']);
$block_templates->set_var('layout_url', $_CONF['layout_url']);
$block_start = COM_startBlock($LANG21[3], '', COM_getBlockTemplate('_admin_block', 'header'));
$block_start .= LB . SEC_getTokenExpiryNotice($token);
$block_templates->set_var('start_block_editor', $block_start);
if (!empty($bid) && SEC_hasrights('block.delete')) {
$delbutton = '<input type="submit" value="' . $LANG_ADMIN['delete'] . '" name="mode"%s' . XHTML . '>';
$jsconfirm = ' onclick="return confirm(\'' . $MESSAGE[76] . '\');"';
$block_templates->set_var('delete_option', sprintf($delbutton, $jsconfirm));
$block_templates->set_var('delete_option_no_confirmation', sprintf($delbutton, ''));
}
$block_templates->set_var('block_bid', $A['bid']);
// standard Admin strings
$block_templates->set_var('lang_blocktitle', $LANG_ADMIN['title']);
$block_templates->set_var('lang_enabled', $LANG_ADMIN['enabled']);
$block_templates->set_var('lang_blockhelpurl', $LANG_ADMIN['help_url']);
$block_templates->set_var('lang_topic', $LANG_ADMIN['topic']);
$block_templates->set_var('lang_save', $LANG_ADMIN['save']);
$block_templates->set_var('lang_cancel', $LANG_ADMIN['cancel']);
$block_templates->set_var('lang_blocktype', $LANG_ADMIN['type']);
$block_templates->set_var('lang_allowed_html', $LANG01[123]);
$block_templates->set_var('block_title', stripslashes($A['title']));
$block_templates->set_var('lang_enabled', $LANG21[53]);
if ($A['is_enabled'] == 1) {
$block_templates->set_var('is_enabled', 'checked="checked"');
} else {
$block_templates->set_var('is_enabled', '');
}
$block_templates->set_var('block_help', $A['help']);
$block_templates->set_var('lang_includehttp', $LANG21[51]);
$block_templates->set_var('lang_explanation', $LANG21[52]);
$block_templates->set_var('block_name', $A['name']);
$block_templates->set_var('lang_blockname', $LANG21[48]);
$block_templates->set_var('lang_nospaces', $LANG21[49]);
$block_templates->set_var('lang_all', $LANG21[7]);
$block_templates->set_var('lang_homeonly', $LANG21[43]);
if ($A['tid'] == 'all') {
$block_templates->set_var('all_selected', 'selected="selected"');
} else {
if ($A['tid'] == 'homeonly') {
$block_templates->set_var('homeonly_selected', 'selected="selected"');
}
}
$block_templates->set_var('topic_options', COM_topicList('tid,topic', $A['tid'], 1, true));
$block_templates->set_var('lang_side', $LANG21[39]);
$block_templates->set_var('lang_left', $LANG21[40]);
$block_templates->set_var('lang_right', $LANG21[41]);
if ($A['onleft'] == 1) {
$block_templates->set_var('left_selected', 'selected="selected"');
} else {
if ($A['onleft'] == 0) {
$block_templates->set_var('right_selected', 'selected="selected"');
}
}
$block_templates->set_var('lang_blockorder', $LANG21[9]);
$block_templates->set_var('block_order', $A['blockorder']);
$block_templates->set_var('lang_normalblock', $LANG21[12]);
$block_templates->set_var('lang_phpblock', $LANG21[27]);
$block_templates->set_var('lang_portalblock', $LANG21[11]);
if ($A['type'] == 'normal') {
$block_templates->set_var('normal_selected', 'selected="selected"');
} else {
if ($A['type'] == 'phpblock') {
$block_templates->set_var('php_selected', 'selected="selected"');
} else {
if ($A['type'] == 'portal') {
$block_templates->set_var('portal_selected', 'selected="selected"');
}
}
}
$block_templates->set_var('lang_accessrights', $LANG_ACCESS['accessrights']);
$block_templates->set_var('lang_owner', $LANG_ACCESS['owner']);
$ownername = COM_getDisplayName($A['owner_id']);
$block_templates->set_var('owner_username', DB_getItem($_TABLES['users'], 'username', "uid = '{$A['owner_id']}'"));
$block_templates->set_var('owner_name', $ownername);
$block_templates->set_var('owner', $ownername);
$block_templates->set_var('owner_id', $A['owner_id']);
$block_templates->set_var('lang_group', $LANG_ACCESS['group']);
$block_templates->set_var('group_dropdown', SEC_getGroupDropdown($A['group_id'], $access));
$block_templates->set_var('lang_permissions', $LANG_ACCESS['permissions']);
$block_templates->set_var('lang_perm_key', $LANG_ACCESS['permissionskey']);
$block_templates->set_var('permissions_editor', SEC_getPermissionsHTML($A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']));
$block_templates->set_var('lang_permissions_msg', $LANG_ACCESS['permmsg']);
$block_templates->set_var('lang_phpblockoptions', $LANG21[28]);
$block_templates->set_var('lang_blockfunction', $LANG21[29]);
$block_templates->set_var('block_phpblockfn', $A['phpblockfn']);
$block_templates->set_var('lang_phpblockwarning', $LANG21[30]);
$block_templates->set_var('lang_portalblockoptions', $LANG21[13]);
$block_templates->set_var('lang_rdfurl', $LANG21[14]);
$block_templates->set_var('max_url_length', 255);
$block_templates->set_var('block_rdfurl', $A['rdfurl']);
$block_templates->set_var('lang_rdflimit', $LANG21[62]);
$block_templates->set_var('block_rdflimit', $A['rdflimit']);
$block_templates->set_var('lang_lastrdfupdate', $LANG21[15]);
if ($A['rdfupdated'] == '0000-00-00 00:00:00') {
$block_templates->set_var('block_rdfupdated', '');
} else {
$block_templates->set_var('block_rdfupdated', $A['rdfupdated']);
}
$block_templates->set_var('lang_normalblockoptions', $LANG21[16]);
$block_templates->set_var('lang_blockcontent', $LANG21[17]);
$block_templates->set_var('lang_autotags', $LANG21[66]);
$block_templates->set_var('lang_use_autotags', $LANG21[67]);
$block_templates->set_var('block_content', htmlspecialchars(stripslashes($A['content'])));
if ($A['allow_autotags'] == 1) {
$block_templates->set_var('allow_autotags', 'checked="checked"');
} else {
$block_templates->set_var('allow_autotags', '');
}
$block_templates->set_var('gltoken_name', CSRF_TOKEN);
$block_templates->set_var('gltoken', $token);
$block_templates->set_var('end_block', COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer')));
$block_templates->parse('output', 'editor');
$retval .= $block_templates->finish($block_templates->get_var('output'));
return $retval;
}
/**
* Show the category editor
*/
function showEditor($cid, $mode = 'edit')
{
global $_CONF, $_TABLES, $_USER, $LANG_ACCESS, $_DLM_CONF, $LANG_DLM, $mytree;
$retval = '';
if (!empty($this->_editor_mode)) {
$mode = $this->_editor_mode;
} else {
$this->_editor_mode = $mode;
}
if ($mode == 'edit' || $mode == 'clone') {
if ($this->_retry == true) {
$this->_loadFromArgs($_POST);
} else {
$this->_loadFromDatabase($cid);
}
}
if ($mode == 'clone') {
$this->_cid = $this->_createID($this->_cid . '_');
$this->_old_cid = $this->_cid;
}
if ($mode == 'create') {
if ($this->_retry == true) {
$this->_loadFromArgs($_POST);
} else {
$this->_initVars();
}
}
$this->_checkHasAccess();
$blocktitle = $mode == 'edit' ? $LANG_DLM['modcat'] : $LANG_DLM['addcat'];
$retval .= $this->_showMessage();
$retval .= COM_startBlock($blocktitle, '', COM_getBlockTemplate('_admin_block', 'header'));
$T = new Template($_DLM_CONF['path_layout']);
$T->set_file(array('t_modcategory' => 'admin_modcategory.thtml', 't_admin_access' => 'admin_access.thtml', 't_admin_submit_delete' => 'admin_submit_delete.thtml'));
DLM_setDefaultTemplateVars($T);
$lang = array('title', 'imgurlmain', 'parent', 'save', 'delete', 'cancel', 'confirm_delete', 'topic', 'catid', 'is_enabled', 'corder', 'upload');
foreach ($lang as $v) {
$T->set_var('lang_' . $v, $LANG_DLM[$v]);
}
$T->set_var('preview', $this->_makeForm_category_image());
$T->set_var('imgurl', $this->_imgurl);
$T->set_var('imgurlold', $this->_imgurl);
$T->set_var('cid', $this->_cid);
$T->set_var('old_cid', $this->_old_cid);
$T->set_var('corder', $this->_corder);
$T->set_var('title', $this->_title);
$T->set_var('op', $mode == 'edit' ? 'saveCategory' : 'addCategory');
$T->set_var('delete_disabled', $mode == 'edit' ? '' : UC_DISABLED);
$T->set_var('val_is_enabled', $this->_is_enabled == 1 ? UC_CHECKED : '');
$T->set_var('selparents', $mytree->makeSelBox('title', 'corder', $this->_pid, 1, 'pid', '', $this->_cid));
// user access info
$lang = array('accessrights', 'owner', 'group', 'permissions', 'permissionskey', 'permmsg');
foreach ($lang as $v) {
$T->set_var('lang_' . $v, $LANG_ACCESS[$v]);
}
$this->_owner_id = (int) $this->_owner_id;
$T->set_var('owner_username', DB_getItem($_TABLES['users'], 'username', "uid = {$this->_owner_id}"));
$ownername = COM_getDisplayName($this->_owner_id);
$T->set_var('owner_name', $ownername);
$T->set_var('owner', $ownername);
$T->set_var('ownerid', $this->_owner_id);
$T->set_var('group_dropdown', SEC_getGroupDropdown($this->_group_id, 3));
$T->set_var('permissions_editor', SEC_getPermissionsHTML($this->_perm_owner, $this->_perm_group, $this->_perm_members, $this->_perm_anon));
$hidden_values = $this->_makeForm_hidden('editor_mode', $this->_editor_mode);
$T->set_var('hidden_values', $hidden_values);
$T->parse('admin_access', 't_admin_access');
if ($mode == 'edit') {
$T->parse('admin_submit_delete', 't_admin_submit_delete');
}
$T->set_var('gltoken_name', CSRF_TOKEN);
$T->set_var('gltoken', SEC_createToken());
$T->parse('output', 't_modcategory');
$retval .= $T->finish($T->get_var('output'));
$retval .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer'));
$retval = DLM_createHTMLDocument($retval, array('pagetitle' => $blocktitle));
return $retval;
}
function links_edit_category($cid, $pid)
{
global $_CONF, $_TABLES, $_USER, $MESSAGE, $LANG_LINKS_ADMIN, $LANG_ADMIN, $LANG_ACCESS, $_LI_CONF;
$retval = '';
$cid = addslashes($cid);
if (!empty($pid)) {
// have parent id, so making a new subcategory
// get parent access rights
$result = DB_query("SELECT group_id,perm_owner,perm_group,perm_members,perm_anon FROM {$_TABLES['linkcategories']} WHERE cid='" . addslashes($pid) . "'");
$A = DB_fetchArray($result);
$A['owner_id'] = $_USER['uid'];
$A['pid'] = $pid;
} elseif (!empty($cid)) {
// have category id, so editing a category
$sql = "SELECT * FROM {$_TABLES['linkcategories']} WHERE cid='{$cid}'" . COM_getPermSQL('AND');
$result = DB_query($sql);
$A = DB_fetchArray($result);
} else {
// nothing, so making a new top-level category
// get default access rights
$A['group_id'] = DB_getItem($_TABLES['groups'], 'grp_id', "grp_name='Links Admin'");
SEC_setDefaultPermissions($A, $_LI_CONF['category_permissions']);
$A['owner_id'] = $_USER['uid'];
$A['pid'] = $_LI_CONF['root'];
}
$access = SEC_hasAccess($A['owner_id'], $A['group_id'], $A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']);
if ($access < 3) {
return COM_showMessage(6, 'links');
}
$token = SEC_createToken();
$retval .= COM_startBlock($LANG_LINKS_ADMIN[56], '', COM_getBlockTemplate('_admin_block', 'header'));
$retval .= SEC_getTokenExpiryNotice($token);
$T = new Template($_CONF['path'] . 'plugins/links/templates/admin');
$T->set_file(array('page' => 'categoryeditor.thtml'));
$T->set_var('xhtml', XHTML);
$T->set_var('site_url', $_CONF['site_url']);
$T->set_var('site_admin_url', $_CONF['site_admin_url']);
$T->set_var('layout_url', $_CONF['layout_url']);
$T->set_var('lang_pagetitle', $LANG_LINKS_ADMIN[28]);
$T->set_var('lang_link_list', $LANG_LINKS_ADMIN[53]);
$T->set_var('lang_new_link', $LANG_LINKS_ADMIN[51]);
$T->set_var('lang_validate_links', $LANG_LINKS_ADMIN[26]);
$T->set_var('lang_list_categories', $LANG_LINKS_ADMIN[50]);
$T->set_var('lang_new_category', $LANG_LINKS_ADMIN[52]);
$T->set_var('lang_admin_home', $LANG_ADMIN['admin_home']);
$T->set_var('instructions', $LANG_LINKS_ADMIN[29]);
$T->set_var('lang_category', $LANG_LINKS_ADMIN[30]);
$T->set_var('lang_cid', $LANG_LINKS_ADMIN[32]);
$T->set_var('lang_description', $LANG_LINKS_ADMIN[31]);
$T->set_var('lang_topic', $LANG_LINKS_ADMIN[33]);
$T->set_var('lang_parent', $LANG_LINKS_ADMIN[34]);
$T->set_var('lang_save', $LANG_ADMIN['save']);
if (!empty($cid)) {
$delbutton = '<input type="submit" value="' . $LANG_ADMIN['delete'] . '" name="mode"%s' . XHTML . '>';
$jsconfirm = ' onclick="return confirm(\'' . $MESSAGE[76] . '\');"';
$T->set_var('delete_option', sprintf($delbutton, $jsconfirm));
$T->set_var('delete_option_no_confirmation', sprintf($delbutton, ''));
} else {
$T->set_var('delete_option', '');
}
$T->set_var('lang_cancel', $LANG_ADMIN['cancel']);
if (!empty($cid)) {
$T->set_var('cid_value', $A['cid']);
$T->set_var('old_cid_value', $A['cid']);
$T->set_var('category_options', links_select_box(3, $A['pid']));
$T->set_var('category_value', $A['category']);
$T->set_var('description_value', $A['description']);
} else {
$A['cid'] = COM_makeSid();
$T->set_var('cid_value', $A['cid']);
$T->set_var('old_cid_value', '');
$T->set_var('category_options', links_select_box(3, $A['pid']));
$T->set_var('category_value', '');
$T->set_var('description_value', '');
}
if (!isset($A['tid'])) {
$A['tid'] = 'all';
}
$topics = COM_topicList('tid,topic', $A['tid'], 1, true);
$T->set_var('topic_list', $topics);
$alltopics = '<option value="all"';
if ($A['tid'] == 'all') {
$alltopics .= ' selected="selected"';
}
$alltopics .= '>' . $LANG_LINKS_ADMIN[35] . '</option>' . LB;
$T->set_var('topic_selection', '<select name="tid">' . $alltopics . $topics . '</select>');
if (empty($cid)) {
$num_links = $LANG_ADMIN['na'];
} else {
$nresult = DB_query("SELECT COUNT(*) AS count FROM {$_TABLES['links']} WHERE cid='{$cid}'" . COM_getPermSQL('AND'));
$N = DB_fetchArray($nresult);
$num_links = COM_numberFormat($N['count']);
}
$T->set_var('lang_num_links', $LANG_LINKS_ADMIN[61]);
$T->set_var('num_links', $num_links);
// user access info
$T->set_var('lang_accessrights', $LANG_ACCESS['accessrights']);
$T->set_var('lang_owner', $LANG_ACCESS['owner']);
$T->set_var('owner_name', COM_getDisplayName($A['owner_id']));
$T->set_var('cat_ownerid', $A['owner_id']);
$T->set_var('lang_group', $LANG_ACCESS['group']);
$T->set_var('group_dropdown', SEC_getGroupDropdown($A['group_id'], $access));
$T->set_var('lang_permissions', $LANG_ACCESS['permissions']);
$T->set_var('lang_permissionskey', $LANG_ACCESS['permissionskey']);
$T->set_var('lang_perm_key', $LANG_ACCESS['permissionskey']);
$T->set_var('permissions_editor', SEC_getPermissionsHTML($A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']));
$T->set_var('lang_permissions_msg', $LANG_ACCESS['permmsg']);
$T->set_var('lang_lockmsg', $LANG_ACCESS['permmsg']);
$T->set_var('gltoken_name', CSRF_TOKEN);
$T->set_var('gltoken', $token);
$T->parse('output', 'page');
$retval .= $T->finish($T->get_var('output'));
$retval .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer'));
return $retval;
}
/**
* Displays the static page editor form
*
* @param array $A Data to display
* @return string HTML for the static page editor
*
*/
function staticpageeditor_form($A)
{
global $_CONF, $_TABLES, $_USER, $_GROUPS, $_SP_CONF, $mode, $sp_id, $LANG21, $LANG_STATIC, $LANG_ACCESS, $LANG_ADMIN, $LANG01, $LANG24, $LANG_postmodes, $MESSAGE, $_IMAGE_TYPE, $_SCRIPTS;
if (!empty($sp_id) && $mode == 'edit') {
$access = SEC_hasAccess($A['owner_id'], $A['group_id'], $A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']);
} else {
if ($mode != 'clone') {
$A['sp_inblock'] = $_SP_CONF['in_block'];
}
$A['owner_id'] = $_USER['uid'];
if (isset($_GROUPS['Static Page Admin'])) {
$A['group_id'] = $_GROUPS['Static Page Admin'];
} else {
$A['group_id'] = SEC_getFeatureGroup('staticpages.edit');
}
SEC_setDefaultPermissions($A, $_SP_CONF['default_permissions']);
$access = 3;
if ($_CONF['advanced_editor'] && $_USER['advanced_editor']) {
$A['advanced_editor_mode'] = 1;
}
}
$retval = '';
$sp_template = COM_newTemplate(CTL_plugin_templatePath('staticpages', 'admin'));
if ($_CONF['advanced_editor'] && $_USER['advanced_editor']) {
$sp_template->set_file('form', 'editor_advanced.thtml');
// Shouldn't really have to check if anonymous user but who knows...
if (COM_isAnonUser()) {
$link_message = "";
} else {
$link_message = $LANG01[138];
}
$sp_template->set_var('noscript', COM_getNoScript(false, '', $link_message));
// Setup Advanced Editor
COM_setupAdvancedEditor('/staticpages/adveditor.js', 'staticpages.edit');
$sp_template->set_var('lang_expandhelp', $LANG24[67]);
$sp_template->set_var('lang_reducehelp', $LANG24[68]);
$sp_template->set_var('lang_toolbar', $LANG24[70]);
$sp_template->set_var('toolbar1', $LANG24[71]);
$sp_template->set_var('toolbar2', $LANG24[72]);
$sp_template->set_var('toolbar3', $LANG24[73]);
$sp_template->set_var('toolbar4', $LANG24[74]);
$sp_template->set_var('toolbar5', $LANG24[75]);
$sp_template->set_var('lang_nojavascript', $LANG24[77]);
$sp_template->set_var('lang_postmode', $LANG24[4]);
if (isset($A['postmode']) && $A['postmode'] == 'adveditor') {
$sp_template->set_var('show_adveditor', '');
$sp_template->set_var('show_htmleditor', 'none');
} else {
$sp_template->set_var('show_adveditor', 'none');
$sp_template->set_var('show_htmleditor', '');
}
$post_options = '<option value="html" selected="selected">' . $LANG_postmodes['html'] . '</option>';
if (isset($A['postmode']) && $A['postmode'] == 'adveditor') {
$post_options .= '<option value="adveditor" selected="selected">' . $LANG24[86] . '</option>';
} else {
$post_options .= '<option value="adveditor">' . $LANG24[86] . '</option>';
}
$sp_template->set_var('post_options', $post_options);
$sp_template->set_var('change_editormode', 'onchange="change_editmode(this);"');
} else {
$sp_template->set_file('form', 'editor.thtml');
}
// Add JavaScript
if ($_CONF['titletoid']) {
$_SCRIPTS->setJavaScriptFile('title_2_id', '/javascript/title_2_id.js');
$sp_template->set_var('titletoid', true);
}
$sp_template->set_var('lang_mode', $LANG24[3]);
$sp_template->set_var('comment_options', COM_optionList($_TABLES['commentcodes'], 'code,name', $A['commentcode']));
$sp_template->set_var('lang_accessrights', $LANG_ACCESS['accessrights']);
$sp_template->set_var('lang_owner', $LANG_ACCESS['owner']);
$owner_name = COM_getDisplayName($A['owner_id']);
$owner_username = DB_getItem($_TABLES['users'], 'username', "uid = {$A['owner_id']}");
$sp_template->set_var('owner_id', $A['owner_id']);
$sp_template->set_var('owner', $owner_name);
$sp_template->set_var('owner_name', $owner_name);
$sp_template->set_var('owner_username', $owner_username);
if ($A['owner_id'] > 1) {
$profile_link = $_CONF['site_url'] . '/users.php?mode=profile&uid=' . $A['owner_id'];
$sp_template->set_var('start_owner_anchortag', '<a href="' . $profile_link . '">');
$sp_template->set_var('end_owner_anchortag', '</a>');
$sp_template->set_var('owner_link', COM_createLink($owner_name, $profile_link));
$photo = '';
if ($_CONF['allow_user_photo']) {
$photo = DB_getItem($_TABLES['users'], 'photo', "uid = {$A['owner_id']}");
if (!empty($photo)) {
$camera_icon = '<img src="' . $_CONF['layout_url'] . '/images/smallcamera.' . $_IMAGE_TYPE . '" alt=""' . XHTML . '>';
$sp_template->set_var('camera_icon', COM_createLink($camera_icon, $profile_link));
}
}
if (empty($photo)) {
$sp_template->set_var('camera_icon', '');
}
} else {
$sp_template->set_var('start_owner_anchortag', '');
$sp_template->set_var('end_owner_anchortag', '');
$sp_template->set_var('owner_link', $owner_name);
}
$sp_template->set_var('lang_group', $LANG_ACCESS['group']);
$sp_template->set_var('group_dropdown', SEC_getGroupDropdown($A['group_id'], $access));
$sp_template->set_var('permissions_editor', SEC_getPermissionsHTML($A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']));
$sp_template->set_var('lang_permissions', $LANG_ACCESS['permissions']);
$sp_template->set_var('lang_perm_key', $LANG_ACCESS['permissionskey']);
$sp_template->set_var('permissions_msg', $LANG_ACCESS['permmsg']);
$sp_template->set_var('lang_permissions_msg', $LANG_ACCESS['permmsg']);
$token = SEC_createToken();
$start_block = COM_startBlock($LANG_STATIC['staticpageeditor'], '', COM_getBlockTemplate('_admin_block', 'header'));
$start_block .= SEC_getTokenExpiryNotice($token);
$sp_template->set_var('start_block_editor', $start_block);
$sp_template->set_var('lang_save', $LANG_ADMIN['save']);
$sp_template->set_var('lang_cancel', $LANG_ADMIN['cancel']);
$sp_template->set_var('lang_preview', $LANG_ADMIN['preview']);
if (SEC_hasRights('staticpages.delete') && $mode != 'clone' && !empty($A['sp_old_id'])) {
$delbutton = '<input type="submit" value="' . $LANG_ADMIN['delete'] . '" name="mode"%s' . XHTML . '>';
$jsconfirm = ' onclick="return confirm(\'' . $MESSAGE[76] . '\');"';
$sp_template->set_var('delete_option', sprintf($delbutton, $jsconfirm));
$sp_template->set_var('delete_option_no_confirmation', sprintf($delbutton, ''));
} else {
$sp_template->set_var('delete_option', '');
}
$sp_template->set_var('lang_writtenby', $LANG_STATIC['writtenby']);
$sp_template->set_var('username', DB_getItem($_TABLES['users'], 'username', "uid = {$A['owner_id']}"));
$authorname = COM_getDisplayName($A['owner_id']);
$sp_template->set_var('name', $authorname);
$sp_template->set_var('author', $authorname);
$sp_template->set_var('lang_url', $LANG_STATIC['url']);
$sp_template->set_var('lang_id', $LANG_STATIC['id']);
$sp_template->set_var('sp_uid', $A['owner_id']);
$sp_template->set_var('sp_id', $A['sp_id']);
$sp_template->set_var('sp_old_id', $A['sp_old_id']);
$sp_template->set_var('example_url', COM_buildURL($_CONF['site_url'] . '/staticpages/index.php?page=' . $A['sp_id']));
$sp_template->set_var('lang_centerblock', $LANG_STATIC['centerblock']);
$sp_template->set_var('lang_centerblock_help', $LANG_ADMIN['help_url']);
$sp_template->set_var('lang_centerblock_include', $LANG21[51]);
$sp_template->set_var('lang_centerblock_desc', $LANG21[52]);
$sp_template->set_var('centerblock_help', $A['sp_help']);
$sp_template->set_var('lang_centerblock_msg', $LANG_STATIC['centerblock_msg']);
if (isset($A['sp_centerblock']) && $A['sp_centerblock'] == 1) {
$sp_template->set_var('centerblock_checked', 'checked="checked"');
} else {
$sp_template->set_var('centerblock_checked', '');
}
$sp_template->set_var('lang_position', $LANG_STATIC['position']);
$position = '<select name="sp_where">';
$position .= '<option value="1"';
if ($A['sp_where'] == 1) {
$position .= ' selected="selected"';
}
$position .= '>' . $LANG_STATIC['position_top'] . '</option>';
$position .= '<option value="2"';
if ($A['sp_where'] == 2) {
$position .= ' selected="selected"';
}
$position .= '>' . $LANG_STATIC['position_feat'] . '</option>';
$position .= '<option value="3"';
if ($A['sp_where'] == 3) {
$position .= ' selected="selected"';
}
$position .= '>' . $LANG_STATIC['position_bottom'] . '</option>';
$position .= '<option value="0"';
if ($A['sp_where'] == 0) {
$position .= ' selected="selected"';
}
$position .= '>' . $LANG_STATIC['position_entire'] . '</option>';
$position .= '</select>';
$sp_template->set_var('pos_selection', $position);
if ($_SP_CONF['allow_php'] == 1 && SEC_hasRights('staticpages.PHP')) {
if (!isset($A['sp_php'])) {
$A['sp_php'] = 0;
}
$selection = '<select name="sp_php">' . LB;
$selection .= '<option value="0"';
if ($A['sp_php'] <= 0 || $A['sp_php'] > 2) {
$selection .= ' selected="selected"';
}
$selection .= '>' . $LANG_STATIC['select_php_none'] . '</option>' . LB;
$selection .= '<option value="1"';
if ($A['sp_php'] == 1) {
$selection .= ' selected="selected"';
}
$selection .= '>' . $LANG_STATIC['select_php_return'] . '</option>' . LB;
$selection .= '<option value="2"';
if ($A['sp_php'] == 2) {
$selection .= ' selected="selected"';
}
$selection .= '>' . $LANG_STATIC['select_php_free'] . '</option>' . LB;
$selection .= '</select>';
$sp_template->set_var('php_selector', $selection);
$sp_template->set_var('php_warn', $LANG_STATIC['php_warn']);
} else {
$sp_template->set_var('php_selector', '');
$sp_template->set_var('php_warn', $LANG_STATIC['php_not_activated']);
}
$sp_template->set_var('php_msg', $LANG_STATIC['php_msg']);
// old variables (for the 1.3-type checkbox)
$sp_template->set_var('php_checked', '');
$sp_template->set_var('php_type', 'hidden');
if (isset($A['sp_nf']) && $A['sp_nf'] == 1) {
$sp_template->set_var('exit_checked', 'checked="checked"');
} else {
$sp_template->set_var('exit_checked', '');
}
$sp_template->set_var('exit_msg', $LANG_STATIC['exit_msg']);
$sp_template->set_var('exit_info', $LANG_STATIC['exit_info']);
if ($A['sp_inblock'] == 1) {
$sp_template->set_var('inblock_checked', 'checked="checked"');
} else {
$sp_template->set_var('inblock_checked', '');
}
$sp_template->set_var('inblock_msg', $LANG_STATIC['inblock_msg']);
$sp_template->set_var('inblock_info', $LANG_STATIC['inblock_info']);
if ($A['draft_flag'] == 1) {
$sp_template->set_var('draft_flag_checked', 'checked="checked"');
} else {
$sp_template->set_var('draft_flag_checked', '');
}
$sp_template->set_var('lang_draft', $LANG_STATIC['draft']);
$sp_template->set_var('lang_cache_time', $LANG_STATIC['cache_time']);
$sp_template->set_var('lang_cache_time_desc', $LANG_STATIC['cache_time_desc']);
$sp_template->set_var('cache_time', $A['cache_time']);
$curtime = COM_getUserDateTimeFormat($A['unixdate']);
$sp_template->set_var('lang_lastupdated', $LANG_STATIC['date']);
$sp_template->set_var('sp_formateddate', $curtime[0]);
$sp_template->set_var('sp_date', $curtime[1]);
$sp_template->set_var('lang_title', $LANG_STATIC['title']);
$sp_template->set_var('lang_page_title', $LANG_STATIC['page_title']);
$title = '';
$page_title = '';
if (isset($A['sp_title'])) {
$title = htmlspecialchars(stripslashes($A['sp_title']));
}
if (isset($A['sp_page_title'])) {
$page_title = htmlspecialchars(stripslashes($A['sp_page_title']));
}
$sp_template->set_var('sp_title', $title);
$sp_template->set_var('sp_page_title', $page_title);
$sp_template->set_var('lang_topic', $LANG_STATIC['topic']);
if ($mode != 'clone') {
// want to use default topic selection if new staticpage so pass in blank id
$topic_sp_id = $A['sp_id'];
if (empty($sp_id) && $mode == 'edit') {
// means new
$topic_sp_id = '';
}
$sp_template->set_var('topic_selection', TOPIC_getTopicSelectionControl('staticpages', $topic_sp_id, true, false, true));
} else {
$sp_template->set_var('topic_selection', TOPIC_getTopicSelectionControl('staticpages', $A['clone_sp_id'], true, false, true));
}
$sp_template->set_var('lang_metadescription', $LANG_ADMIN['meta_description']);
$sp_template->set_var('lang_metakeywords', $LANG_ADMIN['meta_keywords']);
if (!empty($A['meta_description'])) {
$sp_template->set_var('meta_description', $A['meta_description']);
}
if (!empty($A['meta_keywords'])) {
$sp_template->set_var('meta_keywords', $A['meta_keywords']);
}
if ($_CONF['meta_tags'] > 0 && $_SP_CONF['meta_tags'] > 0) {
$sp_template->set_var('hide_meta', '');
} else {
$sp_template->set_var('hide_meta', ' style="display:none;"');
}
if ($A['template_flag'] == 1) {
$sp_template->set_var('template_flag_checked', 'checked="checked"');
} else {
$sp_template->set_var('template_flag_checked', '');
}
$sp_template->set_var('lang_template', $LANG_STATIC['template']);
$sp_template->set_var('lang_template_flag_msg', $LANG_STATIC['template_msg']);
$template_list = templatelist($A['template_id']);
$template_none = '<option value=""';
if ($A['template_id'] == "") {
$template_none .= ' selected="selected"';
}
$template_none .= '>' . $LANG_STATIC['none'] . '</option>';
$sp_template->set_var('use_template_selection', '<select name="template_id">' . $template_none . $template_list . '</select>');
$sp_template->set_var('lang_use_template', $LANG_STATIC['use_template']);
$sp_template->set_var('lang_use_template_msg', $LANG_STATIC['use_template_msg']);
$sp_template->set_var('lang_addtomenu', $LANG_STATIC['addtomenu']);
if (isset($A['sp_onmenu']) && $A['sp_onmenu'] == 1) {
$sp_template->set_var('onmenu_checked', 'checked="checked"');
} else {
$sp_template->set_var('onmenu_checked', '');
}
$sp_template->set_var('lang_label', $LANG_STATIC['label']);
if (isset($A['sp_label'])) {
$sp_template->set_var('sp_label', $A['sp_label']);
} else {
$sp_template->set_var('sp_label', '');
}
$sp_template->set_var('lang_pageformat', $LANG_STATIC['pageformat']);
$sp_template->set_var('lang_blankpage', $LANG_STATIC['blankpage']);
$sp_template->set_var('lang_noblocks', $LANG_STATIC['noblocks']);
$sp_template->set_var('lang_leftblocks', $LANG_STATIC['leftblocks']);
$sp_template->set_var('lang_leftrightblocks', $LANG_STATIC['leftrightblocks']);
if (!isset($A['sp_format'])) {
$A['sp_format'] = '';
}
if ($A['sp_format'] == 'noblocks') {
$sp_template->set_var('noblock_selected', 'selected="selected"');
} else {
$sp_template->set_var('noblock_selected', '');
}
if ($A['sp_format'] == 'leftblocks') {
$sp_template->set_var('leftblocks_selected', 'selected="selected"');
} else {
$sp_template->set_var('leftblocks_selected', '');
}
if ($A['sp_format'] == 'blankpage') {
$sp_template->set_var('blankpage_selected', 'selected="selected"');
} else {
$sp_template->set_var('blankpage_selected', '');
}
if ($A['sp_format'] == 'allblocks' or empty($A['sp_format'])) {
$sp_template->set_var('allblocks_selected', 'selected="selected"');
} else {
$sp_template->set_var('allblocks_selected', '');
}
$sp_template->set_var('lang_content', $LANG_STATIC['content']);
$content = '';
if (isset($A['sp_content'])) {
$content = htmlspecialchars(stripslashes($A['sp_content']));
$content = str_replace(array('{', '}'), array('{', '}'), $content);
}
$sp_template->set_var('sp_content', $content);
$allowed = COM_allowedHTML('staticpages.edit', false, $_SP_CONF['filter_html']) . COM_allowedAutotags();
$sp_template->set_var('lang_allowedhtml', $allowed);
$sp_template->set_var('lang_allowed_html', $allowed);
$sp_template->set_var('lang_hits', $LANG_STATIC['hits']);
if (empty($A['sp_hits'])) {
$sp_template->set_var('sp_hits', '0');
$sp_template->set_var('sp_hits_formatted', '0');
} else {
$sp_template->set_var('sp_hits', $A['sp_hits']);
$sp_template->set_var('sp_hits_formatted', COM_numberFormat($A['sp_hits']));
}
$sp_template->set_var('lang_comments', $LANG_STATIC['comments']);
if ($A['commentcode'] == -1) {
$sp_template->set_var('sp_comments', $LANG_ADMIN['na']);
} else {
$num_comments = DB_count($_TABLES['comments'], array('sid', 'type'), array(DB_escapeString($A['sp_id']), 'staticpages'));
$sp_template->set_var('sp_comments', COM_numberFormat($num_comments));
}
$sp_template->set_var('end_block', COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer')));
$sp_template->set_var('gltoken_name', CSRF_TOKEN);
$sp_template->set_var('gltoken', $token);
$sp_template->parse('output', 'form');
$retval .= $sp_template->finish($sp_template->get_var('output'));
return $retval;
}
/**
* Show topic administration form
*
* @param string tid ID of topic to edit
* @return string HTML for the topic editor
*
*/
function edittopic($tid = '')
{
global $_CONF, $_GROUPS, $_TABLES, $_USER, $LANG27, $LANG_ACCESS, $LANG_ADMIN, $MESSAGE;
$retval = '';
if (empty($tid)) {
// new topic - set defaults
$A = array();
$A['tid'] = '';
$A['topic'] = '';
$A['sortnum'] = 0;
$A['limitnews'] = '';
// leave empty!
$A['is_default'] = 0;
$A['archive_flag'] = 0;
} else {
$result = DB_query("SELECT * FROM {$_TABLES['topics']} WHERE tid ='{$tid}'");
$A = DB_fetchArray($result);
$access = SEC_hasAccess($A['owner_id'], $A['group_id'], $A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']);
if ($access == 0 or $access == 2) {
$retval .= COM_startBlock($LANG27[12], '', COM_getBlockTemplate('_msg_block', 'header'));
$retval .= $LANG27[13];
$retval .= COM_endBlock(COM_getBlockTemplate('_msg_block', 'footer'));
COM_accessLog("User {$_USER['username']} tried to illegally create or edit topic {$tid}.");
return $retval;
}
}
$token = SEC_createToken();
$retval .= COM_startBlock($LANG27[1], '', COM_getBlockTemplate('_admin_block', 'header'));
$retval .= SEC_getTokenExpiryNotice($token);
if (!is_array($A) || empty($A['owner_id'])) {
$A['owner_id'] = $_USER['uid'];
// this is the one instance where we default the group
// most topics should belong to the Topic Admin group
if (isset($_GROUPS['Topic Admin'])) {
$A['group_id'] = $_GROUPS['Topic Admin'];
} else {
$A['group_id'] = SEC_getFeatureGroup('topic.edit');
}
SEC_setDefaultPermissions($A, $_CONF['default_permissions_topic']);
$access = 3;
}
$topic_templates = new Template($_CONF['path_layout'] . 'admin/topic');
$topic_templates->set_file('editor', 'topiceditor.thtml');
$topic_templates->set_var('xhtml', XHTML);
$topic_templates->set_var('site_url', $_CONF['site_url']);
$topic_templates->set_var('site_admin_url', $_CONF['site_admin_url']);
$topic_templates->set_var('layout_url', $_CONF['layout_url']);
if (!empty($tid) && SEC_hasRights('topic.edit')) {
$delbutton = '<input type="submit" value="' . $LANG_ADMIN['delete'] . '" name="mode"%s' . XHTML . '>';
$jsconfirm = ' onclick="return confirm(\'' . $MESSAGE[76] . '\');"';
$topic_templates->set_var('delete_option', sprintf($delbutton, $jsconfirm));
$topic_templates->set_var('delete_option_no_confirmation', sprintf($delbutton, ''));
$topic_templates->set_var('warning_msg', $LANG27[6]);
}
$topic_templates->set_var('lang_topicid', $LANG27[2]);
$topic_templates->set_var('topic_id', $A['tid']);
$topic_templates->set_var('lang_donotusespaces', $LANG27[5]);
$topic_templates->set_var('lang_accessrights', $LANG_ACCESS['accessrights']);
$topic_templates->set_var('lang_owner', $LANG_ACCESS['owner']);
$ownername = COM_getDisplayName($A['owner_id']);
$topic_templates->set_var('owner_username', DB_getItem($_TABLES['users'], 'username', "uid = {$A['owner_id']}"));
$topic_templates->set_var('owner_name', $ownername);
$topic_templates->set_var('owner', $ownername);
$topic_templates->set_var('owner_id', $A['owner_id']);
$topic_templates->set_var('lang_group', $LANG_ACCESS['group']);
$topic_templates->set_var('lang_save', $LANG_ADMIN['save']);
$topic_templates->set_var('lang_cancel', $LANG_ADMIN['cancel']);
$topic_templates->set_var('group_dropdown', SEC_getGroupDropdown($A['group_id'], $access));
$topic_templates->set_var('lang_permissions', $LANG_ACCESS['permissions']);
$topic_templates->set_var('lang_permissions_key', $LANG_ACCESS['permissionskey']);
$topic_templates->set_var('lang_perm_key', $LANG_ACCESS['permissionskey']);
$topic_templates->set_var('permissions_msg', $LANG_ACCESS['permmsg']);
$topic_templates->set_var('lang_permissions_msg', $LANG_ACCESS['permmsg']);
$topic_templates->set_var('permissions_editor', SEC_getPermissionsHTML($A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']));
// show sort order only if they specified sortnum as the sort method
if ($_CONF['sortmethod'] != 'alpha') {
$topic_templates->set_var('lang_sortorder', $LANG27[10]);
if ($A['sortnum'] == 0) {
$A['sortnum'] = '';
}
$topic_templates->set_var('sort_order', '<input type="text" size="3" maxlength="3" name="sortnum" value="' . $A['sortnum'] . '"' . XHTML . '>');
} else {
$topic_templates->set_var('lang_sortorder', $LANG27[14]);
$topic_templates->set_var('sort_order', $LANG27[15]);
}
$topic_templates->set_var('lang_storiesperpage', $LANG27[11]);
if ($A['limitnews'] == 0) {
$topic_templates->set_var('story_limit', '');
} else {
$topic_templates->set_var('story_limit', $A['limitnews']);
}
$topic_templates->set_var('default_limit', $_CONF['limitnews']);
$topic_templates->set_var('lang_defaultis', $LANG27[16]);
$topic_templates->set_var('lang_topicname', $LANG27[3]);
$topic_templates->set_var('topic_name', stripslashes($A['topic']));
if (empty($A['tid'])) {
$A['imageurl'] = '/images/topics/';
}
$topic_templates->set_var('lang_topicimage', $LANG27[4]);
$topic_templates->set_var('lang_uploadimage', $LANG27[27]);
$topic_templates->set_var('icon_dimensions', $_CONF['max_topicicon_width'] . ' x ' . $_CONF['max_topicicon_height']);
$topic_templates->set_var('lang_maxsize', $LANG27[28]);
$topic_templates->set_var('max_url_length', 255);
$topic_templates->set_var('image_url', $A['imageurl']);
$topic_templates->set_var('lang_metadescription', $LANG_ADMIN['meta_description']);
$topic_templates->set_var('lang_metakeywords', $LANG_ADMIN['meta_keywords']);
if (!empty($A['meta_description'])) {
$topic_templates->set_var('meta_description', $A['meta_description']);
}
if (!empty($A['meta_keywords'])) {
$topic_templates->set_var('meta_keywords', $A['meta_keywords']);
}
$topic_templates->set_var('lang_defaulttopic', $LANG27[22]);
$topic_templates->set_var('lang_defaulttext', $LANG27[23]);
if ($A['is_default'] == 1) {
$topic_templates->set_var('default_checked', 'checked="checked"');
} else {
$topic_templates->set_var('default_checked', '');
}
$topic_templates->set_var('lang_archivetopic', $LANG27[25]);
$topic_templates->set_var('lang_archivetext', $LANG27[26]);
$topic_templates->set_var('archive_disabled', '');
if ($A['archive_flag'] == 1) {
$topic_templates->set_var('archive_checked', 'checked="checked"');
} else {
$topic_templates->set_var('archive_checked', '');
// Only 1 topic can be the archive topic - so check if there already is one
if (DB_count($_TABLES['topics'], 'archive_flag', '1') > 0) {
$topic_templates->set_var('archive_disabled', 'disabled');
}
}
if (empty($tid)) {
$num_stories = $LANG_ADMIN['na'];
} else {
$nresult = DB_query("SELECT COUNT(*) AS count FROM {$_TABLES['stories']} WHERE tid = '" . addslashes($tid) . "'" . COM_getPermSql('AND'));
$N = DB_fetchArray($nresult);
$num_stories = COM_numberFormat($N['count']);
}
$topic_templates->set_var('lang_num_stories', $LANG27[30]);
$topic_templates->set_var('num_stories', $num_stories);
$topic_templates->set_var('gltoken_name', CSRF_TOKEN);
$topic_templates->set_var('gltoken', $token);
$topic_templates->parse('output', 'editor');
$retval .= $topic_templates->finish($topic_templates->get_var('output'));
$retval .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer'));
return $retval;
}
/**
* Shows the links editor
*
* @param string $mode Used to see if we are moderating a link or simply editing one
* @param string $lid ID of link to edit
* @global array core config vars
* @global array core group data
* @global array core table data
* @global array core user data
* @global array links plugin config vars
* @global array links plugin lang vars
* @global array core lang access vars
* @return string HTML for the link editor form
*
*/
function editlink($mode, $lid = '')
{
global $_CONF, $_GROUPS, $_TABLES, $_USER, $_LI_CONF, $LANG_LINKS_ADMIN, $LANG_ACCESS, $LANG_ADMIN, $MESSAGE;
$retval = '';
$link_templates = COM_newTemplate(CTL_plugin_templatePath('links', 'admin'));
$link_templates->set_file('editor', 'linkeditor.thtml');
$link_templates->set_var('lang_pagetitle', $LANG_LINKS_ADMIN[28]);
$link_templates->set_var('lang_link_list', $LANG_LINKS_ADMIN[53]);
$link_templates->set_var('lang_new_link', $LANG_LINKS_ADMIN[51]);
$link_templates->set_var('lang_validate_links', $LANG_LINKS_ADMIN[26]);
$link_templates->set_var('lang_list_categories', $LANG_LINKS_ADMIN[50]);
$link_templates->set_var('lang_new_category', $LANG_LINKS_ADMIN[52]);
$link_templates->set_var('lang_admin_home', $LANG_ADMIN['admin_home']);
$link_templates->set_var('instructions', $LANG_LINKS_ADMIN[29]);
if ($mode != 'editsubmission' and !empty($lid)) {
$result = DB_query("SELECT * FROM {$_TABLES['links']} WHERE lid ='{$lid}'");
if (DB_numRows($result) !== 1) {
$msg = COM_showMessageText($LANG_LINKS_ADMIN[25], $LANG_LINKS_ADMIN[24]);
return $msg;
}
$A = DB_fetchArray($result);
$access = SEC_hasAccess($A['owner_id'], $A['group_id'], $A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']);
if ($access == 0 or $access == 2) {
$retval .= COM_showMessageText($LANG_LINKS_ADMIN[17], $LANG_LINKS_ADMIN[16]);
COM_accessLog("User {$_USER['username']} tried to illegally submit or edit link {$lid}.");
return $retval;
}
} else {
if ($mode == 'editsubmission') {
$result = DB_query("SELECT * FROM {$_TABLES['linksubmission']} WHERE lid = '{$lid}'");
$A = DB_fetchArray($result);
} else {
$A['lid'] = COM_makesid();
$A['cid'] = '';
$A['url'] = '';
$A['description'] = '';
$A['title'] = '';
$A['owner_id'] = $_USER['uid'];
}
$A['hits'] = 0;
if (isset($_GROUPS['Links Admin'])) {
$A['group_id'] = $_GROUPS['Links Admin'];
} else {
$A['group_id'] = SEC_getFeatureGroup('links.edit');
}
SEC_setDefaultPermissions($A, $_LI_CONF['default_permissions']);
$access = 3;
}
$token = SEC_createToken();
$retval .= COM_startBlock($LANG_LINKS_ADMIN[1], '', COM_getBlockTemplate('_admin_block', 'header'));
$retval .= SEC_getTokenExpiryNotice($token);
$link_templates->set_var('link_id', $A['lid']);
if (!empty($lid) && SEC_hasRights('links.edit')) {
$delbutton = '<input type="submit" value="' . $LANG_ADMIN['delete'] . '" name="mode"%s' . XHTML . '>';
$jsconfirm = ' onclick="return confirm(\'' . $MESSAGE[76] . '\');"';
$link_templates->set_var('delete_option', sprintf($delbutton, $jsconfirm));
$link_templates->set_var('delete_option_no_confirmation', sprintf($delbutton, ''));
if ($mode == 'editsubmission') {
$link_templates->set_var('submission_option', '<input type="hidden" name="type" value="submission"' . XHTML . '>');
}
}
$link_templates->set_var('lang_linktitle', $LANG_LINKS_ADMIN[3]);
$link_templates->set_var('link_title', htmlspecialchars(stripslashes($A['title'])));
$link_templates->set_var('lang_linkid', $LANG_LINKS_ADMIN[2]);
$link_templates->set_var('lang_linkurl', $LANG_LINKS_ADMIN[4]);
$link_templates->set_var('max_url_length', 255);
$link_templates->set_var('link_url', $A['url']);
$link_templates->set_var('lang_includehttp', $LANG_LINKS_ADMIN[6]);
$link_templates->set_var('lang_category', $LANG_LINKS_ADMIN[5]);
$othercategory = links_select_box(3, $A['cid']);
$link_templates->set_var('category_options', $othercategory);
$link_templates->set_var('lang_ifotherspecify', $LANG_LINKS_ADMIN[20]);
$link_templates->set_var('category', $othercategory);
$link_templates->set_var('lang_linkhits', $LANG_LINKS_ADMIN[8]);
$link_templates->set_var('link_hits', $A['hits']);
$link_templates->set_var('lang_linkdescription', $LANG_LINKS_ADMIN[9]);
$link_templates->set_var('link_description', stripslashes($A['description']));
$allowed = COM_allowedHTML('links.edit') . COM_allowedAutotags();
$link_templates->set_var('lang_allowed_html', $allowed);
$link_templates->set_var('lang_save', $LANG_ADMIN['save']);
$link_templates->set_var('lang_cancel', $LANG_ADMIN['cancel']);
// user access info
$link_templates->set_var('lang_accessrights', $LANG_ACCESS['accessrights']);
$link_templates->set_var('lang_owner', $LANG_ACCESS['owner']);
$ownername = COM_getDisplayName($A['owner_id']);
$link_templates->set_var('owner_username', DB_getItem($_TABLES['users'], 'username', "uid = {$A['owner_id']}"));
$link_templates->set_var('owner_name', $ownername);
$link_templates->set_var('owner', $ownername);
$link_templates->set_var('link_ownerid', $A['owner_id']);
$link_templates->set_var('lang_group', $LANG_ACCESS['group']);
$link_templates->set_var('group_dropdown', SEC_getGroupDropdown($A['group_id'], $access));
$link_templates->set_var('lang_permissions', $LANG_ACCESS['permissions']);
$link_templates->set_var('lang_permissionskey', $LANG_ACCESS['permissionskey']);
$link_templates->set_var('lang_perm_key', $LANG_ACCESS['permissionskey']);
$link_templates->set_var('permissions_editor', SEC_getPermissionsHTML($A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']));
$link_templates->set_var('lang_permissions_msg', $LANG_ACCESS['permmsg']);
$link_templates->set_var('lang_lockmsg', $LANG_ACCESS['permmsg']);
$link_templates->set_var('gltoken_name', CSRF_TOKEN);
$link_templates->set_var('gltoken', $token);
$link_templates->parse('output', 'editor');
$retval .= $link_templates->finish($link_templates->get_var('output'));
$retval .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer'));
return $retval;
}
/**
* Shows the block editor
*
* This will show a block edit form. If this is a Geeklog default block it will
* send it off to editdefaultblock.
*
* @param string $bid ID of block to edit
* @return string HTML for block editor
*
*/
function editblock($bid = '')
{
global $_CONF, $_GROUPS, $_TABLES, $_USER, $LANG01, $LANG21, $LANG_ACCESS, $LANG_ADMIN, $MESSAGE, $_SCRIPTS;
$retval = '';
if (!empty($bid)) {
$sql['mysql'] = "SELECT * FROM {$_TABLES['blocks']} WHERE bid ='{$bid}'";
$sql['mssql'] = "SELECT bid, is_enabled, name, type, title, blockorder, cast(content as text) as content, rdfurl, ";
$sql['mssql'] .= "rdfupdated, rdflimit, onleft, phpblockfn, help, owner_id,group_id, ";
$sql['mssql'] .= "perm_owner, perm_group, perm_members, perm_anon, allow_autotags, cache_time FROM {$_TABLES['blocks']} WHERE bid ='{$bid}'";
$sql['pgsql'] = "SELECT * FROM {$_TABLES['blocks']} WHERE bid ='{$bid}'";
$result = DB_query($sql);
$A = DB_fetchArray($result);
$access = SEC_hasAccess($A['owner_id'], $A['group_id'], $A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']);
if ($access == 2 || $access == 0 || TOPIC_hasMultiTopicAccess('block', $bid) < 3) {
$retval .= COM_showMessageText($LANG21[45], $LANG_ACCESS['accessdenied']);
COM_accessLog("User {$_USER['username']} tried to illegally create or edit block {$bid}.");
return $retval;
}
if ($A['type'] == 'gldefault') {
$retval .= editdefaultblock($A, $access);
return $retval;
}
} else {
$A['bid'] = 0;
$A['is_enabled'] = 1;
$A['name'] = '';
$A['type'] = 'normal';
$A['title'] = '';
$A['tid'] = '';
$A['blockorder'] = 0;
$A['cache_time'] = $_CONF['default_cache_time_block'];
$A['content'] = '';
$A['allow_autotags'] = 0;
$A['rdfurl'] = '';
$A['rdfupdated'] = '';
$A['rdflimit'] = 0;
$A['onleft'] = 0;
$A['phpblockfn'] = '';
$A['help'] = '';
$A['owner_id'] = $_USER['uid'];
if (isset($_GROUPS['Block Admin'])) {
$A['group_id'] = $_GROUPS['Block Admin'];
} else {
$A['group_id'] = SEC_getFeatureGroup('block.edit');
}
SEC_setDefaultPermissions($A, $_CONF['default_permissions_block']);
$access = 3;
if ($_POST['mode'] == $LANG_ADMIN['save'] && !empty($LANG_ADMIN['save'])) {
overridePostdata($A);
}
}
$token = SEC_createToken();
$block_templates = COM_newTemplate($_CONF['path_layout'] . 'admin/block');
$block_templates->set_file('editor', 'blockeditor.thtml');
$block_start = COM_startBlock($LANG21[3], '', COM_getBlockTemplate('_admin_block', 'header'));
$block_start .= LB . SEC_getTokenExpiryNotice($token);
$block_templates->set_var('start_block_editor', $block_start);
if (!empty($bid) && SEC_hasrights('block.delete')) {
$delbutton = '<input type="submit" value="' . $LANG_ADMIN['delete'] . '" name="mode"%s' . XHTML . '>';
$jsconfirm = ' onclick="return confirm(\'' . $MESSAGE[76] . '\');"';
$block_templates->set_var('delete_option', sprintf($delbutton, $jsconfirm));
$block_templates->set_var('delete_option_no_confirmation', sprintf($delbutton, ''));
$block_templates->set_var('allow_delete', true);
$block_templates->set_var('lang_delete', $LANG_ADMIN['delete']);
$block_templates->set_var('confirm_message', $MESSAGE[76]);
}
$block_templates->set_var('block_bid', $A['bid']);
// standard Admin strings
$block_templates->set_var('lang_blocktitle', $LANG_ADMIN['title']);
$block_templates->set_var('lang_enabled', $LANG_ADMIN['enabled']);
$block_templates->set_var('lang_blockhelpurl', $LANG_ADMIN['help_url']);
$block_templates->set_var('lang_topic', $LANG_ADMIN['topic']);
$block_templates->set_var('lang_save', $LANG_ADMIN['save']);
$block_templates->set_var('lang_cancel', $LANG_ADMIN['cancel']);
$block_templates->set_var('lang_blocktype', $LANG_ADMIN['type']);
$block_templates->set_var('lang_allowed_html', $LANG01[123]);
$block_templates->set_var('block_title', stripslashes($A['title']));
$block_templates->set_var('lang_enabled', $LANG21[53]);
if ($A['is_enabled'] == 1) {
$block_templates->set_var('is_enabled', 'checked="checked"');
} else {
$block_templates->set_var('is_enabled', '');
}
$block_templates->set_var('block_help', $A['help']);
$block_templates->set_var('lang_includehttp', $LANG21[51]);
$block_templates->set_var('lang_explanation', $LANG21[52]);
$block_templates->set_var('block_name', $A['name']);
$block_templates->set_var('lang_blockname', $LANG21[48]);
$block_templates->set_var('lang_nospaces', $LANG21[49]);
$block_templates->set_var('topic_selection', TOPIC_getTopicSelectionControl('block', $A['bid'], true, true));
$block_templates->set_var('lang_side', $LANG21[39]);
$block_templates->set_var('lang_left', $LANG21[40]);
$block_templates->set_var('lang_right', $LANG21[41]);
if ($A['onleft'] == 1) {
$block_templates->set_var('left_selected', 'selected="selected"');
} elseif ($A['onleft'] == 0) {
$block_templates->set_var('right_selected', 'selected="selected"');
}
$block_templates->set_var('lang_blockorder', $LANG21[9]);
$block_templates->set_var('block_order', $A['blockorder']);
$block_templates->set_var('lang_normalblock', $LANG21[12]);
$block_templates->set_var('lang_phpblock', $LANG21[27]);
$block_templates->set_var('lang_portalblock', $LANG21[11]);
if ($A['type'] == 'normal') {
$block_templates->set_var('normal_selected', 'selected="selected"');
} elseif ($A['type'] == 'phpblock') {
$block_templates->set_var('php_selected', 'selected="selected"');
} elseif ($A['type'] == 'portal') {
$block_templates->set_var('portal_selected', 'selected="selected"');
}
$block_templates->set_var('lang_cachetime', $LANG21['cache_time']);
$block_templates->set_var('lang_cachetime_desc', $LANG21['cache_time_desc']);
$block_templates->set_var('cache_time', $A['cache_time']);
$block_templates->set_var('lang_accessrights', $LANG_ACCESS['accessrights']);
$block_templates->set_var('lang_owner', $LANG_ACCESS['owner']);
$ownername = COM_getDisplayName($A['owner_id']);
$block_templates->set_var('owner_username', DB_getItem($_TABLES['users'], 'username', "uid = '{$A['owner_id']}'"));
$block_templates->set_var('owner_name', $ownername);
$block_templates->set_var('owner', $ownername);
$block_templates->set_var('owner_id', $A['owner_id']);
$block_templates->set_var('lang_group', $LANG_ACCESS['group']);
$block_templates->set_var('group_dropdown', SEC_getGroupDropdown($A['group_id'], $access));
$block_templates->set_var('lang_permissions', $LANG_ACCESS['permissions']);
$block_templates->set_var('lang_perm_key', $LANG_ACCESS['permissionskey']);
$block_templates->set_var('permissions_editor', SEC_getPermissionsHTML($A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']));
$block_templates->set_var('lang_permissions_msg', $LANG_ACCESS['permmsg']);
$block_templates->set_var('lang_phpblockoptions', $LANG21[28]);
$block_templates->set_var('lang_blockfunction', $LANG21[29]);
$block_templates->set_var('block_phpblockfn', $A['phpblockfn']);
$block_templates->set_var('lang_phpblockwarning', $LANG21[30]);
$block_templates->set_var('lang_portalblockoptions', $LANG21[13]);
$block_templates->set_var('lang_rdfurl', $LANG21[14]);
$block_templates->set_var('max_url_length', 255);
$block_templates->set_var('block_rdfurl', $A['rdfurl']);
$block_templates->set_var('lang_rdflimit', $LANG21[62]);
$block_templates->set_var('block_rdflimit', $A['rdflimit']);
$block_templates->set_var('lang_lastrdfupdate', $LANG21[15]);
if ($A['rdfupdated'] == '0000-00-00 00:00:00') {
$block_templates->set_var('block_rdfupdated', '');
} else {
$block_templates->set_var('block_rdfupdated', $A['rdfupdated']);
}
$block_templates->set_var('lang_normalblockoptions', $LANG21[16]);
$block_templates->set_var('lang_blockcontent', $LANG21[17]);
$block_templates->set_var('lang_autotags', $LANG21[66]);
$block_templates->set_var('lang_use_autotags', $LANG21[67]);
$content = htmlspecialchars(stripslashes($A['content']));
$content = str_replace(array('{', '}'), array('{', '}'), $content);
$block_templates->set_var('block_content', $content);
if ($A['allow_autotags'] == 1) {
$block_templates->set_var('allow_autotags', 'checked="checked"');
} else {
$block_templates->set_var('allow_autotags', '');
}
$block_templates->set_var('gltoken_name', CSRF_TOKEN);
$block_templates->set_var('gltoken', $token);
$block_templates->set_var('end_block', COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer')));
$block_templates->parse('output', 'editor');
$retval .= $block_templates->finish($block_templates->get_var('output'));
// Shows/Hides relevant block options dynamically
$_SCRIPTS->setJavaScript("\njQuery(function () {\n var \$ = jQuery;\n \$('#admin-blockeditor-type').on('change', function () {\n var fs, i, fieldsets = ['normal', 'phpblock', 'portal'];\n\n for (i = 0; i < 3; i++) {\n if (this.value === fieldsets[i]) {\n \$('#fs-' + fieldsets[i] + '-options').show();\n } else {\n \$('#fs-' + fieldsets[i] + '-options').hide();\n }\n }\n })\n .trigger('change');\n});", true, true);
return $retval;
}
/**
* Global album attribute editor
*
* @return string HTML
*
**/
function MG_globalAlbumPermEditor($adminMenu = 0)
{
global $_CONF, $_MG_CONF, $LANG_MG00, $LANG_MG01, $LANG_ACCESS;
$retval = '';
if (!SEC_hasRights('mediagallery.admin')) {
return COM_showMessageText($LANG_MG00['access_denied_msg']);
}
$A['moderate'] = 0;
$A['member_uploads'] = 0;
$A['email_mod'] = 0;
// If edit, pull up the existing album information...
$usergroups = SEC_getUserGroups();
for ($i = 0; $i < count($usergroups); $i++) {
if ('mediagallery Admin' == key($usergroups)) {
$A['group_id'] = $usergroups[key($usergroups)];
$A['mod_group_id'] = $A['group_id'];
}
next($usergroups);
}
$A['perm_owner'] = 3;
$A['perm_group'] = 3;
$A['perm_members'] = 2;
$A['perm_anon'] = 2;
$usergroups = SEC_getUserGroups();
$groupdd = '';
$moddd = '';
$groupdd .= '<select name="group_id">';
$moddd .= '<select name="mod_id">';
for ($i = 0; $i < count($usergroups); $i++) {
if ($usergroups[key($usergroups)] != 2 && $usergroups[key($usergroups)] != 13) {
$groupdd .= '<option value="' . $usergroups[key($usergroups)] . '"';
$moddd .= '<option value="' . $usergroups[key($usergroups)] . '"';
if ($A['group_id'] == $usergroups[key($usergroups)]) {
$groupdd .= ' selected="selected"';
$groupname = key($usergroups);
}
if ($A['mod_group_id'] == $usergroups[key($usergroups)]) {
$moddd .= ' selected="selected"';
}
$groupdd .= '>' . key($usergroups) . '</option>';
$moddd .= '>' . key($usergroups) . '</option>';
}
next($usergroups);
}
$groupdd .= '</select>';
$moddd .= '</select>';
$T = COM_newTemplate(MG_getTemplatePath(0));
$T->set_file('admin', 'global_album_perm.thtml');
$T->set_var(array('action' => 'globalperm', 'permissions_editor' => SEC_getPermissionsHTML($A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']), 'permissions_msg' => $LANG_ACCESS['permmsg'], 'group_select' => $groupdd, 'mod_group_select' => $moddd, 'admin_menu' => $adminMenu, 'lang_save' => $LANG_MG01['save'], 's_form_action' => $_MG_CONF['site_url'] . '/admin.php', 'lang_cancel' => $LANG_MG01['cancel'], 'lang_global_perm_help' => $LANG_MG01['global_perm_help'], 'lang_value' => $LANG_MG01['value'], 'lang_attribute' => $LANG_MG01['attribute'], 'lang_update' => $LANG_MG01['update'], 'lang_group' => $LANG_ACCESS['group'], 'lang_permissions' => $LANG_ACCESS['permissions'], 'lang_perm_key' => $LANG_ACCESS['permissionskey'], 'lang_member_upload' => $LANG_MG01['member_upload'], 'lang_moderate_album' => $LANG_MG01['mod_album'], 'lang_mod_group' => $LANG_MG01['moderation_group'], 'lang_email_mods_on_submission' => $LANG_MG01['email_mods_on_submission']));
$retval .= COM_startBlock($LANG_MG01['global_perm_editor'], '', COM_getBlockTemplate('_admin_block', 'header'));
$retval .= $T->finish($T->parse('output', 'admin'));
$retval .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer'));
return $retval;
}
/**
* Shows event editor
*
* @param string $action action we are performing: 'edit', 'clone' or 'moderate'
* @param array $A array holding the event's details
* @param string $msg an optional error message to display
* @return string HTML for event editor or error message
*
*/
function CALENDAR_edit($action, $A, $msg = '')
{
global $_CONF, $_USER, $_GROUPS, $_TABLES, $_USER, $_CA_CONF, $LANG_CAL_1, $LANG_CAL_ADMIN, $LANG10, $LANG12, $LANG_ACCESS, $LANG_ADMIN, $MESSAGE;
USES_lib_admin();
$retval = '';
$menu_arr = array(array('url' => $_CONF['site_admin_url'] . '/plugins/calendar/index.php', 'text' => $LANG_CAL_ADMIN[40]), array('url' => $_CONF['site_admin_url'] . '/moderation.php', 'text' => $LANG_ADMIN['submissions']), array('url' => $_CONF['site_admin_url'] . '/plugins/calendar/index.php?batchadmin=x', 'text' => $LANG_CAL_ADMIN[38]), array('url' => $_CONF['site_admin_url'], 'text' => $LANG_ADMIN['admin_home']));
switch ($action) {
case 'edit':
case 'clone':
$blocktitle = $LANG_CAL_ADMIN[1];
// Event Editor
$saveoption = $LANG_ADMIN['save'];
// Save
break;
case 'moderate':
$blocktitle = $LANG_CAL_ADMIN[37];
// Moderate Event
$saveoption = $LANG_ADMIN['moderate'];
// Save & Approve
break;
}
if (!empty($msg)) {
$retval .= COM_showMessageText($msg, $LANG_CAL_ADMIN[2], true);
}
$event_templates = new Template($_CONF['path'] . 'plugins/calendar/templates/admin');
$event_templates->set_file('editor', 'eventeditor.thtml');
$event_templates->set_var('lang_allowed_html', COM_allowedHTML(SEC_getUserPermissions(), false, 'calendar', 'description'));
$event_templates->set_var('lang_postmode', $LANG_CAL_ADMIN[3]);
if (!isset($A['perm_owner'])) {
$A['perm_owner'][0] = "0";
}
if (!isset($A['perm_group'])) {
$A['perm_group'][0] = "0";
}
if (!isset($A['perm_members'])) {
$A['perm_members'][0] = "0";
}
if (!isset($A['perm_anon'])) {
$A['perm_anon'][0] = "0";
}
if ($action != 'moderate' and !empty($A['eid'])) {
// Get what level of access user has to this object
$access = SEC_hasAccess($A['owner_id'], $A['group_id'], $A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']);
if ($access == 0 or $access == 2) {
// Uh, oh! User doesn't have access to this object
$retval .= COM_showMessageText($LANG_CAL_ADMIN[17], $LANG_ACCESS['accessdenied'], true);
COM_accessLog("User {$_USER['username']} tried to illegally submit or edit event {$eid}.");
return $retval;
}
} else {
if (!isset($A['owner_id']) || $A['owner_id'] == '') {
$A['owner_id'] = $_USER['uid'];
}
if (isset($_GROUPS['Calendar Admin'])) {
$A['group_id'] = $_GROUPS['Calendar Admin'];
} else {
$A['group_id'] = SEC_getFeatureGroup('calendar.edit');
}
SEC_setDefaultPermissions($A, $_CA_CONF['default_permissions']);
$access = 3;
}
if ($action == 'moderate') {
$event_templates->set_var('post_options', COM_optionList($_TABLES['postmodes'], 'code,name', 'plaintext'));
} else {
if (!isset($A['postmode'])) {
$A['postmode'] = $_CONF['postmode'];
}
$event_templates->set_var('post_options', COM_optionList($_TABLES['postmodes'], 'code,name', $A['postmode']));
}
$retval .= COM_startBlock($blocktitle, '', COM_getBlockTemplate('_admin_block', 'header'));
$retval .= ADMIN_createMenu($menu_arr, $LANG_CAL_ADMIN[41], plugin_geticon_calendar());
if (!empty($A['eid'])) {
$delbutton = '<input type="submit" value="' . $LANG_ADMIN['delete'] . '" name="delete"%s/>';
$jsconfirm = ' onclick="return confirm(\'' . $MESSAGE[76] . '\');"';
$event_templates->set_var('lang_delete_confirm', $MESSAGE[76]);
$event_templates->set_var('delete_option', sprintf($delbutton, $jsconfirm));
$event_templates->set_var('delete_option_no_confirmation', sprintf($delbutton, ''));
if ($action == 'moderate') {
$event_templates->set_var('submission_option', '<input type="hidden" name="type" value="submission"/>');
}
} else {
// new event
$A['eid'] = COM_makesid();
$A['status'] = 1;
$A['title'] = '';
$A['description'] = '';
$A['url'] = '';
$A['hits'] = 0;
// in case a start date/time has been passed from the calendar,
// pick it up for the end date/time
if (empty($A['dateend'])) {
$A['dateend'] = $A['datestart'];
}
if (empty($A['timeend'])) {
$A['timeend'] = $A['timestart'];
}
$A['event_type'] = '';
$A['location'] = '';
$A['address1'] = '';
$A['address2'] = '';
$A['city'] = '';
$A['state'] = '';
$A['zipcode'] = '';
$A['allday'] = 0;
}
$event_templates->set_var('event_id', $A['eid']);
$event_templates->set_var('lang_eventtitle', $LANG_ADMIN['title']);
$A['title'] = str_replace('{', '{', $A['title']);
$A['title'] = str_replace('}', '}', $A['title']);
$A['title'] = str_replace('"', '"', $A['title']);
$event_templates->set_var('event_title', $A['title']);
$event_templates->set_var('lang_eventtype', $LANG_CAL_1[37]);
$event_templates->set_var('lang_editeventtypes', $LANG12[50]);
$event_templates->set_var('type_options', CALENDAR_eventTypeList($A['event_type']));
$event_templates->set_var('status_checked', $A['status'] == 1 ? ' checked="checked"' : '');
$event_templates->set_var('lang_eventurl', $LANG_CAL_ADMIN[4]);
$event_templates->set_var('max_url_length', 255);
$event_templates->set_var('event_url', $A['url']);
$event_templates->set_var('lang_includehttp', $LANG_CAL_ADMIN[9]);
$event_templates->set_var('lang_eventstartdate', $LANG_CAL_ADMIN[5]);
//$event_templates->set_var('event_startdate', $A['datestart']);
$event_templates->set_var('lang_starttime', $LANG_CAL_1[30]);
// Combine date/time for easier manipulation
$A['datestart'] = trim($A['datestart'] . ' ' . $A['timestart']);
if (empty($A['datestart'])) {
$start_stamp = time();
} else {
$start_stamp = strtotime($A['datestart']);
}
$A['dateend'] = trim($A['dateend'] . ' ' . $A['timeend']);
if (empty($A['dateend'])) {
$end_stamp = time();
} else {
$end_stamp = strtotime($A['dateend']);
}
$start_month = date('m', $start_stamp);
$start_day = date('d', $start_stamp);
$start_year = date('Y', $start_stamp);
$end_month = date('m', $end_stamp);
$end_day = date('d', $end_stamp);
$end_year = date('Y', $end_stamp);
$start_hour = date('H', $start_stamp);
$start_minute = intval(date('i', $start_stamp) / 15) * 15;
if ($start_hour >= 12) {
$startampm = 'pm';
} else {
$startampm = 'am';
}
$start_hour_24 = $start_hour % 24;
if ($start_hour > 12) {
$start_hour = $start_hour - 12;
} else {
if ($start_hour == 0) {
$start_hour = 12;
}
}
$end_hour = date('H', $end_stamp);
$end_minute = intval(date('i', $end_stamp) / 15) * 15;
if ($end_hour >= 12) {
$endampm = 'pm';
} else {
$endampm = 'am';
}
$end_hour_24 = $end_hour % 24;
if ($end_hour > 12) {
$end_hour = $end_hour - 12;
} else {
if ($end_hour == 0) {
$end_hour = 12;
}
}
$month_options = COM_getMonthFormOptions($start_month);
$event_templates->set_var('startmonth_options', $month_options);
$month_options = COM_getMonthFormOptions($end_month);
$event_templates->set_var('endmonth_options', $month_options);
$day_options = COM_getDayFormOptions($start_day);
$event_templates->set_var('startday_options', $day_options);
$day_options = COM_getDayFormOptions($end_day);
$event_templates->set_var('endday_options', $day_options);
$year_options = COM_getYearFormOptions($start_year);
$event_templates->set_var('startyear_options', $year_options);
$year_options = COM_getYearFormOptions($end_year);
$event_templates->set_var('endyear_options', $year_options);
if (isset($_CA_CONF['hour_mode']) && $_CA_CONF['hour_mode'] == 24) {
$hour_options = COM_getHourFormOptions($start_hour_24, 24);
$event_templates->set_var('starthour_options', $hour_options);
$hour_options = COM_getHourFormOptions($end_hour_24, 24);
$event_templates->set_var('endhour_options', $hour_options);
$event_templates->set_var('hour_mode', 24);
} else {
$hour_options = COM_getHourFormOptions($start_hour);
$event_templates->set_var('starthour_options', $hour_options);
$hour_options = COM_getHourFormOptions($end_hour);
$event_templates->set_var('endhour_options', $hour_options);
$event_templates->set_var('hour_mode', 12);
}
$event_templates->set_var('startampm_selection', CALENDAR_getAmPmFormSelection('start_ampm', $startampm, 'update_ampm()'));
$event_templates->set_var('endampm_selection', CALENDAR_getAmPmFormSelection('end_ampm', $endampm));
$event_templates->set_var('startminute_options', COM_getMinuteFormOptions($start_minute, 15));
$event_templates->set_var('endminute_options', COM_getMinuteFormOptions($end_minute, 15));
$event_templates->set_var('lang_enddate', $LANG12[13]);
$event_templates->set_var('lang_eventenddate', $LANG_CAL_ADMIN[6]);
$event_templates->set_var('event_enddate', $A['dateend']);
$event_templates->set_var('lang_enddate', $LANG12[13]);
$event_templates->set_var('lang_endtime', $LANG_CAL_1[29]);
$event_templates->set_var('lang_alldayevent', $LANG_CAL_1[31]);
if ($A['allday'] == 1) {
$event_templates->set_var('allday_checked', 'checked="checked"');
}
$event_templates->set_var('lang_location', $LANG12[51]);
$event_templates->set_var('event_location', $A['location']);
$event_templates->set_var('lang_addressline1', $LANG12[44]);
$event_templates->set_var('event_address1', $A['address1']);
$event_templates->set_var('lang_addressline2', $LANG12[45]);
$event_templates->set_var('event_address2', $A['address2']);
$event_templates->set_var('lang_city', $LANG12[46]);
$event_templates->set_var('event_city', $A['city']);
$event_templates->set_var('lang_state', $LANG12[47]);
$event_templates->set_var('state_options', '');
$event_templates->set_var('event_state', $A['state']);
$event_templates->set_var('lang_zipcode', $LANG12[48]);
$event_templates->set_var('event_zipcode', $A['zipcode']);
$event_templates->set_var('lang_eventlocation', $LANG_CAL_ADMIN[7]);
$event_templates->set_var('event_location', $A['location']);
$event_templates->set_var('lang_eventdescription', $LANG_CAL_ADMIN[8]);
$event_templates->set_var('event_description', $A['description']);
$event_templates->set_var('lang_hits', $LANG10[30]);
$event_templates->set_var('hits', COM_numberFormat($A['hits']));
$event_templates->set_var('lang_save', $saveoption);
$event_templates->set_var('lang_cancel', $LANG_ADMIN['cancel']);
// user access info
$event_templates->set_var('lang_accessrights', $LANG_ACCESS['accessrights']);
$event_templates->set_var('lang_owner', $LANG_ACCESS['owner']);
$ownername = COM_getDisplayName($A['owner_id']);
$event_templates->set_var('owner_username', DB_getItem($_TABLES['users'], 'username', "uid = {$A['owner_id']}"));
$event_templates->set_var('owner_name', $ownername);
$event_templates->set_var('owner', $ownername);
$event_templates->set_var('owner_id', $A['owner_id']);
$event_templates->set_var('lang_group', $LANG_ACCESS['group']);
$event_templates->set_var('group_dropdown', SEC_getGroupDropdown($A['group_id'], $access));
$event_templates->set_var('lang_permissions', $LANG_ACCESS['permissions']);
$event_templates->set_var('lang_permissionskey', $LANG_ACCESS['permissionskey']);
$event_templates->set_var('permissions_editor', SEC_getPermissionsHTML($A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']));
$event_templates->set_var('gltoken_name', CSRF_TOKEN);
$event_templates->set_var('gltoken', SEC_createToken());
$event_templates->parse('output', 'editor');
$retval .= $event_templates->finish($event_templates->get_var('output'));
$retval .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer'));
return $retval;
}
$content .= CLASSIFIEDS_adminMenu($actionval);
$content .= CLASSIFIEDS_adminAdTypes();
$admin_mode = ': ' . $LANG_ADVT['mnu_types'];
break;
case 'ad':
default:
$actionval = 'ad';
$content .= CLASSIFIEDS_adminMenu($actionval);
$content .= CLASSIFIEDS_adminAds();
$admin_mode = ': ' . $LANG_ADVT['manage_ads'];
break;
case 'other':
$content .= CLASSIFIEDS_adminMenu($actionval);
$T1 = new Template(CLASSIFIEDS_PI_PATH . '/templates/admin/');
$T1->set_file('content', 'adminother.thtml');
$T1->set_var(array('cat_list' => SEC_getGroupDropdown($_CONF_ADVT['defgrpcat'], 3), 'cat_perms' => SEC_getPermissionsHTML($_CONF_ADVT['default_perm_cat'][0], $_CONF_ADVT['default_perm_cat'][1], $_CONF_ADVT['default_perm_cat'][2], $_CONF_ADVT['default_perm_cat'][3]), 'ad_list' => SEC_getGroupDropdown($_CONF_ADVT['defgrpad'], 3), 'ad_perms' => SEC_getPermissionsHTML($_CONF_ADVT['default_permissions'][0], $_CONF_ADVT['default_permissions'][1], $_CONF_ADVT['default_permissions'][2], $_CONF_ADVT['default_permissions'][3])));
$T1->parse('output1', 'content');
$content .= $T1->finish($T1->get_var('output1'));
break;
}
break;
default:
USES_classifieds_admin();
$content .= CLASSIFIEDS_adminMenu('ad');
$content .= CLASSIFIEDS_adminAds();
break;
}
// Generate the common header for all admin pages
echo CLASSIFIEDS_siteHeader();
$T = new Template(CLASSIFIEDS_PI_PATH . '/templates/admin/');
$T->set_file('admin', 'index.thtml');
/**
* Show topic administration form
*
* @param string tid ID of topic to edit
* @param array $T An array of topic fields (optional)
* @return string HTML for the topic editor
*
*/
function TOPIC_edit($tid = '', $T = array(), $msg = '')
{
global $_CONF, $_GROUPS, $_TABLES, $_USER, $LANG27, $LANG_ACCESS, $LANG_ADMIN, $MESSAGE, $_IMAGE_TYPE;
USES_lib_admin();
$retval = '';
$topicEdit = 0;
$assoc_stories_published = 0;
$assoc_stories_draft = 0;
$assoc_images = 0;
$assoc_comments = 0;
$assoc_trackbacks = 0;
if (!empty($tid)) {
$topicEdit = 1;
// existing topic - pull fields from DB
$result = DB_query("SELECT * FROM {$_TABLES['topics']} WHERE tid ='" . DB_escapeString($tid) . "'");
$A = DB_fetchArray($result);
$access = SEC_inGroup('Topic Admin') ? 3 : SEC_hasAccess($A['owner_id'], $A['group_id'], $A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']);
if ($access == 0 or $access == 2) {
$retval .= COM_showMessageText($LANG27[13], $LANG27[12], true);
COM_accessLog("User {$_USER['username']} tried to illegally create or edit topic {$tid}.");
return $retval;
}
// ok let's see what is associated with this topic
$result2 = DB_query("SELECT bid FROM {$_TABLES['blocks']} WHERE tid = '{$tid}'");
$assoc_blocks = DB_numRows($result2);
$result2 = DB_query("SELECT fid FROM {$_TABLES['syndication']} WHERE topic = '{$tid}'");
$assoc_feeds = DB_numRows($result2);
$result2 = DB_query("SELECT sid FROM {$_TABLES['storysubmission']} WHERE tid = '{$tid}'");
$assoc_stories_submitted = DB_numRows($result2);
$result2 = DB_query("SELECT sid, draft_flag FROM {$_TABLES['stories']} WHERE tid = '{$tid}'");
$total_assoc_stories = DB_numRows($result2);
if ($total_assoc_stories > 0) {
for ($i = 0; $i < $total_assoc_stories; $i++) {
$S = DB_fetchArray($result2);
if ($S['draft_flag'] == 0) {
$assoc_stories_published += 1;
} else {
$assoc_stories_draft += 1;
}
$result3 = DB_query("SELECT ai_filename FROM {$_TABLES['article_images']} WHERE ai_sid = '{$S['sid']}'");
$assoc_images += DB_numRows($result3);
$result3 = DB_query("SELECT cid FROM {$_TABLES['comments']} WHERE sid = '{$S['sid']}' AND type = 'article'");
$assoc_comments += DB_numRows($result3);
$result3 = DB_query("SELECT cid FROM {$_TABLES['trackback']} WHERE sid = '{$S['sid']}' AND type = 'article'");
$assoc_trackbacks += DB_numRows($result3);
}
}
} else {
// new topic - retain field values if any in case of failed validation
$A = array();
$A['tid'] = isset($T['tid']) ? $T['tid'] : '';
$A['topic'] = isset($T['topic']) ? $T['topic'] : '';
$A['sortnum'] = isset($T['sortnum']) ? $T['sortnum'] : 0;
$A['limitnews'] = isset($T['limitnews']) ? $T['limitnews'] : '';
// leave empty!
$A['is_default'] = isset($T['is_default']) && $T['is_default'] == 'on' ? 1 : 0;
$A['archive_flag'] = isset($T['archive_flag']) && $T['archive_flag'] == 'on' ? 1 : 0;
$A['sort_by'] = isset($T['sort_by']) ? $T['sort_by'] : 0;
$A['sort_dir'] = isset($T['sort_dir']) && $T['sort_dir'] == 'ASC' ? 'ASC' : 'DESC';
$A['owner_id'] = isset($T['owner_id']) ? $T['owner_id'] : '';
$A['group_id'] = isset($T['group_id']) ? $T['group_id'] : '';
$A['imageurl'] = isset($T['imageurl']) ? $T['imageurl'] : '';
$assoc_stories_submitted = 0;
$assoc_blocks = 0;
$assoc_feeds = 0;
if ($A['sortnum'] != '') {
$tidSortNumber = DB_getItem($_TABLES['topics'], 'sortnum', 'tid="' . DB_escapeString($A['sortnum']) . '"');
$newSortNum = $tidSortNumber;
} else {
$newSortNum = 0;
}
$A['sortnum'] = $newSortNum;
// an empty owner_id signifies this is a new block, set to current user
// this will also set the default values for group_id as well as the
// default values for topic permissions
if (empty($A['owner_id'])) {
$A['owner_id'] = $_USER['uid'];
// this is the one instance where we default the group
// most topics should belong to the Topic Admin group
if (isset($_GROUPS['Topic Admin'])) {
$A['group_id'] = $_GROUPS['Topic Admin'];
} else {
$A['group_id'] = SEC_getFeatureGroup('topic.edit');
}
SEC_setDefaultPermissions($A, $_CONF['default_permissions_topic']);
} else {
if (isset($T['perm_owner'])) {
$A['perm_owner'] = SEC_getPermissionValue($T['perm_owner']);
$A['perm_group'] = SEC_getPermissionValue($T['perm_group']);
$A['perm_members'] = SEC_getPermissionValue($T['perm_members']);
$A['perm_anon'] = SEC_getPermissionValue($T['perm_anon']);
} else {
SEC_setDefaultPermissions($A, $_CONF['default_permissions_topic']);
}
}
$access = 3;
}
// display the topic editor
$topic_templates = new Template($_CONF['path_layout'] . 'admin/topic');
$topic_templates->set_file('editor', 'topiceditor.thtml');
// generate input for topic id
if (!empty($topicEdit) && SEC_hasRights('topic.edit')) {
$tid_input = $tid . '<input type="hidden" size="20" maxlength="128" name="tid" value="' . $tid . '"' . XHTML . '>';
$delbutton = '<input type="submit" value="' . $LANG_ADMIN['delete'] . '" name="delete"%s' . XHTML . '>';
$jsconfirm = ' onclick="return doubleconfirm(\'' . $LANG27[40] . '\',\'' . $LANG27[6] . '\');"';
$topic_templates->set_var('delete_option', sprintf($delbutton, $jsconfirm));
$topic_templates->set_var('delete_option_no_confirmation', sprintf($delbutton, ''));
$topic_templates->clear_var('lang_donotusespaces');
} else {
$tid_input = '<input class="required alphanumeric" type="text" size="20" maxlength="128" name="tid" id="tid" value="' . $tid . '"' . XHTML . '>';
$topic_templates->set_var('lang_donotusespaces', $LANG27[5]);
}
$topic_templates->set_var('tid_input', $tid_input);
$topic_templates->set_var('lang_topicid', $LANG27[2]);
$topic_templates->set_var('topic_id', $A['tid']);
$topic_templates->set_var('lang_accessrights', $LANG_ACCESS['accessrights']);
$topic_templates->set_var('lang_owner', $LANG_ACCESS['owner']);
$ownername = COM_getDisplayName($A['owner_id']);
$topic_templates->set_var('owner_username', DB_getItem($_TABLES['users'], 'username', "uid = {$A['owner_id']}"));
$topic_templates->set_var('owner_name', $ownername);
$topic_templates->set_var('owner', $ownername);
$topic_templates->set_var('owner_id', $A['owner_id']);
$topic_templates->set_var('owner_dropdown', COM_buildOwnerList('owner_id', $A['owner_id']));
$topic_templates->set_var('lang_group', $LANG_ACCESS['group']);
$topic_templates->set_var('lang_save', $LANG_ADMIN['save']);
$topic_templates->set_var('lang_cancel', $LANG_ADMIN['cancel']);
$topic_templates->set_var('group_dropdown', SEC_getGroupDropdown($A['group_id'], $access));
$topic_templates->set_var('lang_permissions', $LANG_ACCESS['permissions']);
$topic_templates->set_var('lang_permissions_key', $LANG_ACCESS['permissionskey']);
$topic_templates->set_var('permissions_editor', SEC_getPermissionsHTML($A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']));
$sort_select = '<select id="sortnum" name="sortnum">' . LB;
$sort_select .= '<option value="0">' . 'First Position' . '</option>' . LB;
$result = DB_query("SELECT tid,topic,sortnum FROM {$_TABLES['topics']} ORDER BY sortnum ASC");
if ($topicEdit == 1) {
$testvar = 10;
} else {
$testvar = 0;
}
$order = 10;
while ($row = DB_fetchArray($result)) {
if ($row['tid'] != $tid) {
$test_sortnum = $order + $testvar;
$sort_select .= '<option value="' . $row['tid'] . '"' . ($A['sortnum'] == $test_sortnum ? ' selected="selected"' : '') . '>' . $row['topic'] . ' (' . $row['tid'] . ')' . '</option>' . LB;
}
$order += 10;
}
$sort_select .= '</select>' . LB;
// show sort order only if they specified sortnum as the sort method
if ($_CONF['sortmethod'] != 'alpha') {
$topic_templates->set_var('lang_sortorder', $LANG27[41]);
if ($A['sortnum'] == 0) {
$A['sortnum'] = '';
}
$topic_templates->set_var('sort_order', $sort_select);
} else {
$topic_templates->set_var('lang_sortorder', $LANG27[14]);
$topic_templates->set_var('sort_order', $LANG27[15]);
}
$topic_templates->set_var('lang_storiesperpage', $LANG27[11]);
if ($A['limitnews'] == 0) {
$topic_templates->set_var('story_limit', '');
} else {
$topic_templates->set_var('story_limit', $A['limitnews']);
}
$topic_templates->set_var('default_limit', $_CONF['limitnews']);
$topic_templates->set_var('lang_defaultis', $LANG27[16]);
$topic_templates->set_var('lang_topicname', $LANG27[3]);
$topic_templates->set_var('topic_name', htmlentities($A['topic']));
if (empty($A['tid'])) {
$A['imageurl'] = '/images/topics/';
}
$topic_templates->set_var('lang_topicimage', $LANG27[4]);
$topic_templates->set_var('lang_uploadimage', $LANG27[27]);
$topic_templates->set_var('icon_dimensions', $_CONF['max_topicicon_width'] . ' x ' . $_CONF['max_topicicon_height']);
$topic_templates->set_var('lang_maxsize', $LANG27[28]);
$topic_templates->set_var('max_url_length', 255);
$topic_templates->set_var('image_url', $A['imageurl']);
if (@getimagesize($_CONF['path_html'] . $A['imageurl']) !== false) {
$topic_templates->set_var('topicimage', $_CONF['site_url'] . $A['imageurl']);
}
$topic_templates->set_var('lang_defaulttopic', $LANG27[22]);
$topic_templates->set_var('lang_defaulttext', $LANG27[23]);
if ($A['is_default'] == 1) {
$topic_templates->set_var('default_checked', 'checked="checked"');
} else {
$topic_templates->set_var('default_checked', '');
}
$topic_templates->set_var('lang_sort_story_by', $LANG27[35]);
$topic_templates->set_var('lang_sort_story_dir', $LANG27[36]);
$sortSelect = '<select name="sort_by" id="sort_by">' . LB;
$sortSelect .= '<option value="0"' . ($A['sort_by'] == 0 ? ' selected="selected"' : '') . '>' . $LANG27[30] . '</option>' . LB;
$sortSelect .= '<option value="1"' . ($A['sort_by'] == 1 ? ' selected="selected"' : '') . '>' . $LANG27[31] . '</option>' . LB;
$sortSelect .= '<option value="2"' . ($A['sort_by'] == 2 ? ' selected="selected"' : '') . '>' . $LANG27[32] . '</option>' . LB;
$sortSelect .= '</select>' . LB;
$topic_templates->set_var('story_sort_select', $sortSelect);
$sort_dir = '<select name="sort_dir" id="sort_dir">' . LB;
$sort_dir .= '<option value="ASC"' . ($A['sort_dir'] == 'ASC' ? ' selected="selected"' : '') . '>' . $LANG27[33] . '</option>' . LB;
$sort_dir .= '<option value="DESC"' . ($A['sort_dir'] == 'DESC' ? ' selected="selected"' : '') . '>' . $LANG27[34] . '</option>' . LB;
$sort_dir .= '</select>';
$topic_templates->set_var('story_sort_dir', $sort_dir);
$topic_templates->set_var('lang_archivetopic', $LANG27[25]);
$topic_templates->set_var('lang_archivetext', $LANG27[26]);
$topic_templates->set_var('archive_disabled', '');
if ($A['archive_flag'] == 1) {
$topic_templates->set_var('archive_checked', 'checked="checked"');
} else {
$topic_templates->set_var('archive_checked', '');
// Only 1 topic can be the archive topic - so check if there already is one
if (DB_count($_TABLES['topics'], 'archive_flag', '1') > 0) {
$topic_templates->set_var('archive_disabled', 'disabled');
}
}
$assoc_stories = ($assoc_stories_published > 0 or $assoc_stories_draft > 0 or $assoc_stories_submitted > 0 or $assoc_images > 0 or $assoc_comments > 0 or $assoc_trackbacks > 0);
if ($assoc_blocks > 0 or $assoc_feeds > 0 or $assoc_stories) {
$topic_templates->set_var('lang_assoc_objects', $LANG27[43]);
if ($assoc_stories_published > 0) {
$topic_templates->set_var('lang_assoc_stories_published', $LANG27[44]);
$topic_templates->set_var('assoc_stories_published', $assoc_stories_published);
$topic_templates->set_var('published_story_admin_link', COM_createLink($LANG27[52], $_CONF['site_admin_url'] . '/story.php'));
}
if ($assoc_stories_draft > 0) {
$topic_templates->set_var('lang_assoc_stories_draft', $LANG27[45]);
$topic_templates->set_var('assoc_stories_draft', $assoc_stories_draft);
$topic_templates->set_var('draft_story_admin_link', COM_createLink($LANG27[52], $_CONF['site_admin_url'] . '/story.php'));
}
if ($assoc_stories_submitted > 0) {
$topic_templates->set_var('lang_assoc_stories_submitted', $LANG27[46]);
$topic_templates->set_var('assoc_stories_submitted', $assoc_stories_submitted);
$topic_templates->set_var('moderation_link', COM_createLink($LANG27[53], $_CONF['site_admin_url'] . '/moderation.php'));
}
if ($assoc_images > 0) {
$topic_templates->set_var('lang_assoc_images', $LANG27[47]);
$topic_templates->set_var('assoc_images', $assoc_images);
}
if ($assoc_comments > 0) {
$topic_templates->set_var('lang_assoc_comments', $LANG27[48]);
$topic_templates->set_var('assoc_comments', $assoc_comments);
}
if ($assoc_trackbacks > 0) {
$topic_templates->set_var('lang_assoc_trackbacks', $LANG27[49]);
$topic_templates->set_var('assoc_trackbacks', $assoc_trackbacks);
}
if ($assoc_blocks > 0) {
$topic_templates->set_var('lang_assoc_blocks', $LANG27[50]);
$topic_templates->set_var('assoc_blocks', $assoc_blocks);
$topic_templates->set_var('block_admin_link', COM_createLink($LANG27[54], $_CONF['site_admin_url'] . '/block.php'));
}
if ($assoc_feeds > 0) {
$topic_templates->set_var('lang_assoc_feeds', $LANG27[51]);
$topic_templates->set_var('assoc_feeds', $assoc_feeds);
$topic_templates->set_var('syndication_admin_link', COM_createLink($LANG27[55], $_CONF['site_admin_url'] . '/syndication.php'));
}
}
$topic_templates->set_var('gltoken_name', CSRF_TOKEN);
$topic_templates->set_var('gltoken', SEC_createToken());
$topic_templates->parse('output', 'editor');
if ($msg != '') {
$retval .= COM_showMessageText($msg);
}
$retval .= COM_startBlock($LANG27[1], '', COM_getBlockTemplate('_admin_block', 'header'));
$menu_arr = array(array('url' => $_CONF['site_admin_url'] . '/topic.php', 'text' => $LANG_ADMIN['topic_list']), array('url' => $_CONF['site_admin_url'], 'text' => $LANG_ADMIN['admin_home']));
$retval .= ADMIN_createMenu($menu_arr, $LANG27[57], $_CONF['layout_url'] . '/images/icons/topic.' . $_IMAGE_TYPE);
$retval .= $topic_templates->finish($topic_templates->get_var('output'));
$retval .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer'));
return $retval;
}
function CMED_editMenuitem($mid, $mode = 'edit', $A = array())
{
global $_CONF, $_GROUPS, $_TABLES, $_USER, $_PLUGINS, $_CMED_CONF, $LANG_CMED_EDITOR, $LANG_ACCESS, $LANG_ADMIN, $MESSAGE;
$retval = '';
if ($mode == 'edit' || $mode == 'clone') {
if (empty($A)) {
$result = DB_query("SELECT * FROM {$_TABLES['menuitems']} WHERE mid ='{$mid}'");
$A = DB_fetchArray($result);
}
$access = SEC_hasAccess($A['owner_id'], $A['group_id'], $A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']);
if ($access < 3 || CMED_hasMenuitemTopicAccess($A['tid']) < 3) {
$retval .= COM_startBlock($LANG_ACCESS['accessdenied'], '', COM_getBlockTemplate('_msg_block', 'header')) . $LANG_CMED_EDITOR['message_access1'] . COM_endBlock(COM_getBlockTemplate('_msg_block', 'footer'));
COM_accessLog("User {$_USER['username']} tried to illegally create or edit menuitem {$mid}.");
return $retval;
}
$selpmid = CMED_makeSelBox($A['pmid']);
}
if ($mode == 'clone') {
preg_match('/(.*)_clone_(.+)/', $A['mid'], $match);
$label = empty($match[1]) ? $A['mid'] : $match[1];
$A['mid'] = CMED_createMenuitemID($label . '_clone_');
$A['type'] = 'custom';
$access = 3;
}
if ($mode == 'create') {
$A['mid'] = CMED_createMenuitemID();
$A['pmid'] = '';
$A['is_enabled'] = 1;
$A['type'] = 'custom';
$A['mode'] = 'fixation';
$A['label'] = '';
$A['label_var'] = '';
$A['php_function'] = '';
$A['tid'] = 'all';
$A['url'] = '';
$A['icon_url'] = '';
$A['menuorder'] = 0;
$A['pattern'] = '';
$A['is_preg'] = 0;
$A['class_name'] = '';
$selpmid = CMED_makeSelBox();
$A['owner_id'] = $_USER['uid'];
if (isset($_GROUPS['CustomMenu Admin'])) {
$A['group_id'] = $_GROUPS['CustomMenu Admin'];
} else {
$A['group_id'] = SEC_getFeatureGroup('custommenu.admin');
}
SEC_setDefaultPermissions($A, $_CMED_CONF['default_permissions']);
$access = 3;
}
$T = COM_newTemplate($_CMED_CONF['path_layout']);
$T->set_file('editor', 'menueditor.thtml');
$T->set_var('icon_url', plugin_geticon_custommenu());
$retval .= COM_startBlock($LANG_CMED_EDITOR['custommenueditor'], '', COM_getBlockTemplate('_admin_block', 'header'));
$v = $mode == 'create' || $mode == 'clone' || $A['type'] == 'gldefault' || $A['type'] == 'plugin' && in_array($A['mid'], $_PLUGINS) ? UC_DISABLED : '';
$T->set_var('delete_disabled', $v);
foreach ($LANG_CMED_EDITOR as $key => $val) {
$T->set_var('lang_' . $key, $val);
}
$v = ($mode == 'create' or $mode == 'clone') ? 'save' : 'update';
$T->set_var('lang_save', $LANG_CMED_EDITOR[$v]);
$T->set_var('val_title_fixation', stripslashes($A['label']));
$T->set_var('val_title_variable', stripslashes($A['label_var']));
$T->set_var('val_php_function', stripslashes($A['php_function']));
$T->set_var('val_is_enabled', $A['is_enabled'] == 1 ? UC_CHECKED : '');
$T->set_var('val_menuitemurl', $A['url']);
$T->set_var('val_icon_url', $A['icon_url']);
$T->set_var('val_mid', $A['mid']);
$T->set_var('val_pmid', $A['pmid']);
$T->set_var('selpmid', $selpmid);
$T->set_var('val_old_mid', $A['mid']);
$T->set_var('val_menuorder', $A['menuorder']);
$T->set_var('val_type', $A['type']);
$T->set_var('val_pattern', stripslashes($A['pattern']));
$T->set_var('val_is_preg', $A['is_preg'] == 1 ? UC_CHECKED : '');
$T->set_var('val_class_name', stripslashes($A['class_name']));
$v = $A['type'] == 'gldefault' || $A['type'] == 'plugin' ? UC_READONLY : '';
$T->set_var('mid_readonly', $v);
$T->set_var($A['tid'] . '_selected', UC_SELECTED);
$T->set_var('topic_options', COM_topicList('tid,topic', $A['tid'], 1, true));
$T->set_var('lang_type', $LANG_CMED_EDITOR['type_' . $A['type']]);
$T->set_var($A['type'] . '_selected', UC_SELECTED);
$T->set_var('val_mode_' . $A['mode'], UC_SELECTED);
// user access info
$T->set_var('lang_accessrights', $LANG_ACCESS['accessrights']);
$T->set_var('lang_owner', $LANG_ACCESS['owner']);
$ownername = COM_getDisplayName($A['owner_id']);
$T->set_var('owner_username', DB_getItem($_TABLES['users'], 'username', "uid = {$A['owner_id']}"));
$T->set_var('owner_name', $ownername);
$T->set_var('owner', $ownername);
$T->set_var('owner_id', $A['owner_id']);
$T->set_var('lang_group', $LANG_ACCESS['group']);
$T->set_var('group_dropdown', SEC_getGroupDropdown($A['group_id'], $access));
$T->set_var('lang_permissions', $LANG_ACCESS['permissions']);
$T->set_var('lang_permissionskey', $LANG_ACCESS['permissionskey']);
$T->set_var('permissions_editor', SEC_getPermissionsHTML($A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']));
$T->set_var('lang_lockmsg', $LANG_ACCESS['permmsg']);
if (!defined(CSRF_TOKEN)) {
define('CSRF_TOKEN', 'token');
}
$T->set_var('gltoken_name', CSRF_TOKEN);
$T->set_var('gltoken', SEC_createToken());
$T->parse('output', 'editor');
$retval .= $T->finish($T->get_var('output'));
$retval .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer'));
return $retval;
}
/**
* Shows story editor
*
* Displays the story entry form
*
* @param string $sid ID of story to edit
* @param string $action 'preview', 'edit', 'moderate', 'draft'
* @param string $errormsg a message to display on top of the page
* @param string $currenttopic topic selection for drop-down menu
* @return string HTML for story editor
*
*/
function STORY_edit($sid = '', $action = '', $errormsg = '', $currenttopic = '')
{
global $_CONF, $_GROUPS, $_TABLES, $_USER, $LANG24, $LANG33, $LANG_ACCESS, $LANG_ADMIN, $MESSAGE, $_IMAGE_TYPE;
USES_lib_admin();
$display = '';
switch ($action) {
case 'clone':
case 'edit':
case 'preview':
case 'error':
$title = $LANG24[5];
$saveoption = $LANG_ADMIN['save'];
$submission = false;
break;
case 'moderate':
$title = $LANG24[90];
$saveoption = $LANG_ADMIN['moderate'];
$submission = true;
break;
case 'draft':
$title = $LANG24[91];
$saveoption = $LANG_ADMIN['save'];
$submission = true;
$action = 'edit';
break;
default:
$title = $LANG24[5];
$saveoption = $LANG_ADMIN['save'];
$submission = false;
$action = 'edit';
break;
}
// Load HTML templates
$story_templates = new Template($_CONF['path_layout'] . 'admin/story');
$story_templates->set_file(array('editor' => 'storyeditor.thtml'));
if (!isset($_CONF['hour_mode'])) {
$_CONF['hour_mode'] = 12;
}
if (!empty($errormsg)) {
$display .= COM_showMessageText($errormsg, $LANG24[25], true);
}
if (!empty($currenttopic)) {
$allowed = DB_getItem($_TABLES['topics'], 'tid', "tid = '" . DB_escapeString($currenttopic) . "'" . COM_getTopicSql('AND'));
if ($allowed != $currenttopic) {
$currenttopic = '';
}
}
$story = new Story();
if ($action == 'preview' || $action == 'error') {
while (list($key, $value) = each($_POST)) {
if (!is_array($value)) {
$_POST[$key] = $value;
} else {
while (list($subkey, $subvalue) = each($value)) {
$value[$subkey] = $subvalue;
}
}
}
$result = $story->loadFromArgsArray($_POST);
} else {
$result = $story->loadFromDatabase($sid, $action);
}
if ($result == STORY_PERMISSION_DENIED || $result == STORY_NO_ACCESS_PARAMS) {
$display .= COM_showMessageText($LANG24[42], $LANG_ACCESS['accessdenied'], true);
COM_accessLog("User {$_USER['username']} tried to access story {$sid}. - STORY_PERMISSION_DENIED or STORY_NO_ACCESS_PARAMS - " . $result);
return $display;
} elseif ($result == STORY_EDIT_DENIED || $result == STORY_EXISTING_NO_EDIT_PERMISSION) {
$display .= COM_showMessageText($LANG24[41], $LANG_ACCESS['accessdenied'], true);
$display .= STORY_renderArticle($story, 'p');
COM_accessLog("User {$_USER['username']} tried to illegally edit story {$sid}. - STORY_EDIT_DENIED or STORY_EXISTING_NO_EDIT_PERMISSION");
return $display;
} elseif ($result == STORY_INVALID_SID) {
if ($action == 'moderate') {
// that submission doesn't seem to be there any more (may have been
// handled by another Admin) - take us back to the moderation page
echo COM_refresh($_CONF['site_admin_url'] . '/moderation.php');
} else {
echo COM_refresh($_CONF['site_admin_url'] . '/story.php');
}
} elseif ($result == STORY_DUPLICATE_SID) {
$story_templates->set_var('error_message', $LANG24[24]);
} elseif ($result == STORY_EMPTY_REQUIRED_FIELDS) {
$story_templates->set_var('error_message', $LANG24[31]);
}
if (empty($currenttopic) && $story->EditElements('tid') == '') {
$story->setTid(DB_getItem($_TABLES['topics'], 'tid', 'is_default = 1' . COM_getPermSQL('AND')));
} else {
if ($story->EditElements('tid') == '') {
$story->setTid($currenttopic);
}
}
if (SEC_hasRights('story.edit')) {
$allowedTopicList = COM_topicList('tid,topic', $story->EditElements('tid'), 1, true, 0);
$allowedAltTopicList = '<option value="">' . $LANG33[44] . '</option>' . COM_topicList('tid,topic', $story->EditElements('alternate_tid'), 1, true, 0);
} else {
$allowedTopicList = COM_topicList('tid,topic', $story->EditElements('tid'), 1, true, 3);
$allowedAltTopicList = '<option value="">' . $LANG33[44] . '</option>' . COM_topicList('tid,topic', $story->EditElements('alternate_tid'), 1, true, 3);
}
if ($allowedTopicList == '') {
$display .= COM_showMessageText($LANG24[42], $LANG_ACCESS['accessdenied'], true);
COM_accessLog("User {$_USER['username']} tried to illegally access story {$sid}. No allowed topics.");
return $display;
}
$menu_arr = array(array('url' => $_CONF['site_admin_url'] . '/story.php', 'text' => $LANG_ADMIN['story_list']), array('url' => $_CONF['site_admin_url'] . '/moderation.php', 'text' => $LANG_ADMIN['submissions']));
if (SEC_inGroup('Root')) {
$menu_arr[] = array('url' => $_CONF['site_admin_url'] . '/story.php?global=x', 'text' => 'Global Settings');
}
$menu_arr[] = array('url' => $_CONF['site_admin_url'], 'text' => $LANG_ADMIN['admin_home']);
require_once $_CONF['path_system'] . 'classes/navbar.class.php';
$story_templates->set_var('hour_mode', $_CONF['hour_mode']);
if ($story->hasContent()) {
$previewContent = STORY_renderArticle($story, 'p');
if ($previewContent != '') {
$story_templates->set_var('preview_content', $previewContent);
}
}
$navbar = new navbar();
if (!empty($previewContent)) {
$navbar->add_menuitem($LANG24[79], 'showhideEditorDiv("preview",0);return false;', true);
$navbar->add_menuitem($LANG24[80], 'showhideEditorDiv("editor",1);return false;', true);
$navbar->add_menuitem($LANG24[81], 'showhideEditorDiv("publish",2);return false;', true);
$navbar->add_menuitem($LANG24[82], 'showhideEditorDiv("images",3);return false;', true);
$navbar->add_menuitem($LANG24[83], 'showhideEditorDiv("archive",4);return false;', true);
$navbar->add_menuitem($LANG24[84], 'showhideEditorDiv("perms",5);return false;', true);
$navbar->add_menuitem($LANG24[85], 'showhideEditorDiv("all",6);return false;', true);
} else {
$navbar->add_menuitem($LANG24[80], 'showhideEditorDiv("editor",0);return false;', true);
$navbar->add_menuitem($LANG24[81], 'showhideEditorDiv("publish",1);return false;', true);
$navbar->add_menuitem($LANG24[82], 'showhideEditorDiv("images",2);return false;', true);
$navbar->add_menuitem($LANG24[83], 'showhideEditorDiv("archive",3);return false;', true);
$navbar->add_menuitem($LANG24[84], 'showhideEditorDiv("perms",4);return false;', true);
$navbar->add_menuitem($LANG24[85], 'showhideEditorDiv("all",5);return false;', true);
}
if ($action == 'preview') {
$story_templates->set_var('show_preview', '');
$story_templates->set_var('show_htmleditor', 'none');
$story_templates->set_var('show_texteditor', 'none');
$story_templates->set_var('show_submitoptions', 'none');
$navbar->set_selected($LANG24[79]);
} else {
$navbar->set_selected($LANG24[80]);
$story_templates->set_var('show_preview', 'none');
}
$story_templates->set_var('navbar', $navbar->generate());
$story_templates->set_var('start_block', COM_startBlock($title, '', COM_getBlockTemplate('_admin_block', 'header')));
// start generating the story editor block
$story_templates->set_var('block_start', COM_startBlock($title, '', COM_getBlockTemplate('_admin_block', 'header')));
$oldsid = $story->EditElements('originalSid');
if (!empty($oldsid)) {
$delbutton = '<input type="submit" value="' . $LANG_ADMIN['delete'] . '" name="deletestory"%s/>';
$jsconfirm = ' onclick="return confirm(\'' . $MESSAGE[76] . '\');"';
$story_templates->set_var('delete_option', sprintf($delbutton, $jsconfirm));
$story_templates->set_var('delete_option_no_confirmation', sprintf($delbutton, ''));
$story_templates->set_var('lang_delete_confirm', $MESSAGE[76]);
}
if ($submission || $story->type == 'submission') {
$story_templates->set_var('submission_option', '<input type="hidden" name="type" value="submission"/>');
}
$story_templates->set_var('admin_menu', ADMIN_createMenu($menu_arr, $LANG24[92], $_CONF['layout_url'] . '/images/icons/story.' . $_IMAGE_TYPE));
$story_templates->set_var('lang_author', $LANG24[7]);
$storyauthor = COM_getDisplayName($story->EditElements('uid'));
$storyauthor_select = COM_optionList($_TABLES['users'], 'uid,username', $story->EditElements('uid'));
$story_templates->set_var('story_author', $storyauthor);
$story_templates->set_var('story_author_select', $storyauthor_select);
$story_templates->set_var('author', $storyauthor);
$story_templates->set_var('story_uid', $story->EditElements('uid'));
// user access info
$story_templates->set_var('lang_accessrights', $LANG_ACCESS['accessrights']);
$story_templates->set_var('lang_owner', $LANG_ACCESS['owner']);
$ownername = COM_getDisplayName($story->EditElements('owner_id'));
$story_templates->set_var('owner_username', DB_getItem($_TABLES['users'], 'username', 'uid = ' . (int) $story->EditElements('owner_id')));
$story_templates->set_var('owner_name', $ownername);
$story_templates->set_var('owner', $ownername);
$story_templates->set_var('owner_id', $story->EditElements('owner_id'));
if (SEC_hasRights('story.edit')) {
$story_templates->set_var('owner_dropdown', COM_buildOwnerList('owner_id', $story->EditElements('owner_id')));
} else {
$ownerInfo = '<input type="hidden" name="owner_id" value="' . $story->editElements('owner_id') . '" />' . $ownername;
$story_templates->set_var('owner_dropdown', $ownerInfo);
}
$story_templates->set_var('lang_group', $LANG_ACCESS['group']);
if (SEC_inGroup($story->EditElements('group_id'))) {
$story_templates->set_var('group_dropdown', SEC_getGroupDropdown($story->EditElements('group_id'), 3));
} else {
$gdrpdown = '<input type="hidden" name="group_id" value="' . $story->EditElements('group_id') . '"/>';
$grpddown .= DB_getItem($_TABLES['groups'], 'grp_name', 'grp_id=' . (int) $story->EditElements('group_id'));
$story_templates->set_var('group_dropdown', $grpddown);
}
$story_templates->set_var('lang_permissions', $LANG_ACCESS['permissions']);
$story_templates->set_var('lang_perm_key', $LANG_ACCESS['permissionskey']);
$story_templates->set_var('permissions_editor', SEC_getPermissionsHTML($story->EditElements('perm_owner'), $story->EditElements('perm_group'), $story->EditElements('perm_members'), $story->EditElements('perm_anon')));
$story_templates->set_var('permissions_msg', $LANG_ACCESS['permmsg']);
$curtime = COM_getUserDateTimeFormat($story->EditElements('date'));
$story_templates->set_var('lang_date', $LANG24[15]);
$story_templates->set_var('publish_second', $story->EditElements('publish_second'));
$publish_ampm = '';
$publish_hour = $story->EditElements('publish_hour');
if ($publish_hour >= 12) {
if ($publish_hour > 12) {
$publish_hour = $publish_hour - 12;
}
$ampm = 'pm';
} else {
$ampm = 'am';
}
$ampm_select = COM_getAmPmFormSelection('publish_ampm', $ampm);
$story_templates->set_var('publishampm_selection', $ampm_select);
$month_options = COM_getMonthFormOptions($story->EditElements('publish_month'));
$story_templates->set_var('publish_month_options', $month_options);
$day_options = COM_getDayFormOptions($story->EditElements('publish_day'));
$story_templates->set_var('publish_day_options', $day_options);
$year_options = COM_getYearFormOptions($story->EditElements('publish_year'));
$story_templates->set_var('publish_year_options', $year_options);
if ($_CONF['hour_mode'] == 24) {
$hour_options = COM_getHourFormOptions($story->EditElements('publish_hour'), 24);
} else {
$hour_options = COM_getHourFormOptions($publish_hour);
}
$story_templates->set_var('publish_hour_options', $hour_options);
$minute_options = COM_getMinuteFormOptions($story->EditElements('publish_minute'));
$story_templates->set_var('publish_minute_options', $minute_options);
$story_templates->set_var('publish_date_explanation', $LANG24[46]);
$story_templates->set_var('story_unixstamp', $story->EditElements('unixdate'));
$story_templates->set_var('expire_second', $story->EditElements('expire_second'));
$expire_ampm = '';
$expire_hour = $story->EditElements('expire_hour');
if ($expire_hour >= 12) {
if ($expire_hour > 12) {
$expire_hour = $expire_hour - 12;
}
$ampm = 'pm';
} else {
$ampm = 'am';
}
$ampm_select = COM_getAmPmFormSelection('expire_ampm', $ampm);
if (empty($ampm_select)) {
// have a hidden field to 24 hour mode to prevent JavaScript errors
$ampm_select = '<input type="hidden" name="expire_ampm" value=""/>';
}
$story_templates->set_var('expireampm_selection', $ampm_select);
$month_options = COM_getMonthFormOptions($story->EditElements('expire_month'));
$story_templates->set_var('expire_month_options', $month_options);
$day_options = COM_getDayFormOptions($story->EditElements('expire_day'));
$story_templates->set_var('expire_day_options', $day_options);
$year_options = COM_getYearFormOptions($story->EditElements('expire_year'));
$story_templates->set_var('expire_year_options', $year_options);
if ($_CONF['hour_mode'] == 24) {
$hour_options = COM_getHourFormOptions($story->EditElements('expire_hour'), 24);
} else {
$hour_options = COM_getHourFormOptions($expire_hour);
}
$story_templates->set_var('expire_hour_options', $hour_options);
$minute_options = COM_getMinuteFormOptions($story->EditElements('expire_minute'));
$story_templates->set_var('expire_minute_options', $minute_options);
$story_templates->set_var('expire_date_explanation', $LANG24[46]);
$story_templates->set_var('story_unixstamp', $story->EditElements('expirestamp'));
if ($story->EditElements('statuscode') == STORY_ARCHIVE_ON_EXPIRE) {
$story_templates->set_var('is_checked2', 'checked="checked"');
$story_templates->set_var('is_checked3', 'checked="checked"');
$story_templates->set_var('showarchivedisabled', 'false');
} elseif ($story->EditElements('statuscode') == STORY_DELETE_ON_EXPIRE) {
$story_templates->set_var('is_checked2', 'checked="checked"');
$story_templates->set_var('is_checked4', 'checked="checked"');
$story_templates->set_var('showarchivedisabled', 'false');
} else {
$story_templates->set_var('showarchivedisabled', 'true');
}
$story_templates->set_var('lang_archivetitle', $LANG24[58]);
$story_templates->set_var('lang_option', $LANG24[59]);
$story_templates->set_var('lang_enabled', $LANG_ADMIN['enabled']);
$story_templates->set_var('lang_story_stats', $LANG24[87]);
$story_templates->set_var('lang_optionarchive', $LANG24[61]);
$story_templates->set_var('lang_optiondelete', $LANG24[62]);
$story_templates->set_var('lang_title', $LANG_ADMIN['title']);
$story_templates->set_var('story_title', $story->EditElements('title'));
$story_templates->set_var('story_subtitle', $story->EditElements('subtitle'));
$story_templates->set_var('lang_topic', $LANG_ADMIN['topic']);
$story_templates->set_var('lang_alt_topic', $LANG_ADMIN['alt_topic']);
$story_templates->set_var('topic_options', $allowedTopicList);
$story_templates->set_var('alt_topic_options', $allowedAltTopicList);
$story_templates->set_var('lang_show_topic_icon', $LANG24[56]);
if ($story->EditElements('show_topic_icon') == 1) {
$story_templates->set_var('show_topic_icon_checked', 'checked="checked"');
} else {
$story_templates->set_var('show_topic_icon_checked', '');
}
$story_templates->set_var('story_image_url', $story->EditElements('story_image'));
$story_templates->set_var('lang_draft', $LANG24[34]);
if ($story->EditElements('draft_flag')) {
$story_templates->set_var('is_checked', 'checked="checked"');
$story_templates->set_var('unpublished_selected', 'selected="selected"');
} else {
$story_templates->set_var('published_selected', 'selected="selected"');
}
$story_templates->set_var('lang_mode', $LANG24[3]);
$story_templates->set_var('status_options', COM_optionList($_TABLES['statuscodes'], 'code,name', $story->EditElements('statuscode')));
$story_templates->set_var('comment_options', COM_optionList($_TABLES['commentcodes'], 'code,name', $story->EditElements('commentcode')));
$story_templates->set_var('trackback_options', COM_optionList($_TABLES['trackbackcodes'], 'code,name', $story->EditElements('trackbackcode')));
// comment expire
$story_templates->set_var('lang_cmt_disable', $LANG24[63]);
if ($story->EditElements('cmt_close')) {
$story_templates->set_var('is_checked5', 'checked="checked"');
//check box if enabled
$story_templates->set_var('showcmtclosedisabled', 'false');
} else {
$story_templates->set_var('showcmtclosedisabled', 'true');
}
$month_options = COM_getMonthFormOptions($story->EditElements('cmt_close_month'));
$story_templates->set_var('cmt_close_month_options', $month_options);
$day_options = COM_getDayFormOptions($story->EditElements('cmt_close_day'));
$story_templates->set_var('cmt_close_day_options', $day_options);
$year_options = COM_getYearFormOptions($story->EditElements('cmt_close_year'));
$story_templates->set_var('cmt_close_year_options', $year_options);
$cmt_close_ampm = '';
$cmt_close_hour = $story->EditElements('cmt_close_hour');
//correct hour
if ($cmt_close_hour >= 12) {
if ($cmt_close_hour > 12) {
$cmt_close_hour = $cmt_close_hour - 12;
}
$ampm = 'pm';
} else {
$ampm = 'am';
}
$ampm_select = COM_getAmPmFormSelection('cmt_close_ampm', $ampm);
if (empty($ampm_select)) {
// have a hidden field to 24 hour mode to prevent JavaScript errors
$ampm_select = '<input type="hidden" name="cmt_close_ampm" value="" />';
}
$story_templates->set_var('cmt_close_ampm_selection', $ampm_select);
if ($_CONF['hour_mode'] == 24) {
$hour_options = COM_getHourFormOptions($story->EditElements('cmt_close_hour'), 24);
} else {
$hour_options = COM_getHourFormOptions($cmt_close_hour);
}
$story_templates->set_var('cmt_close_hour_options', $hour_options);
$minute_options = COM_getMinuteFormOptions($story->EditElements('cmt_close_minute'));
$story_templates->set_var('cmt_close_minute_options', $minute_options);
$story_templates->set_var('cmt_close_second', $story->EditElements('cmt_close_second'));
if ($_CONF['onlyrootfeatures'] == 1 && SEC_inGroup('Root') or $_CONF['onlyrootfeatures'] !== 1) {
$featured_options = "<select name=\"featured\">" . LB . COM_optionList($_TABLES['featurecodes'], 'code,name', $story->EditElements('featured')) . "</select>" . LB;
$featured_options_data = COM_optionList($_TABLES['featurecodes'], 'code,name', $story->EditElements('featured'));
$story_templates->set_var('featured_options_data', $featured_options_data);
} else {
$featured_options = "<input type=\"hidden\" name=\"featured\" value=\"0\"/>";
$story_templates->unset_var('featured_options_data');
}
$story_templates->set_var('featured_options', $featured_options);
$story_templates->set_var('frontpage_options', COM_optionList($_TABLES['frontpagecodes'], 'code,name', $story->EditElements('frontpage')));
$story_templates->set_var('story_introtext', $story->EditElements('introtext'));
$story_templates->set_var('story_bodytext', $story->EditElements('bodytext'));
$story_templates->set_var('lang_introtext', $LANG24[16]);
$story_templates->set_var('lang_bodytext', $LANG24[17]);
$story_templates->set_var('lang_postmode', $LANG24[4]);
$story_templates->set_var('lang_publishoptions', $LANG24[76]);
$story_templates->set_var('lang_publishdate', $LANG24[69]);
$story_templates->set_var('lang_nojavascript', $LANG24[77]);
$story_templates->set_var('postmode', $story->EditElements('postmode'));
if ($story->EditElements('postmode') == 'plaintext' || $story->EditElements('postmode') == 'text') {
$allowedHTML = '';
} else {
$allowedHTML = COM_allowedHTML(SEC_getUserPermissions(), false, 'glfusion', 'story') . '<br/>';
}
$allowedHTML .= COM_allowedAutotags(SEC_getUserPermissions(), false, 'glfusion', 'story');
$story_templates->set_var('lang_allowed_html', $allowedHTML);
$fileinputs = '';
$saved_images = '';
if ($_CONF['maximagesperarticle'] > 0) {
$story_templates->set_var('lang_images', $LANG24[47]);
$icount = DB_count($_TABLES['article_images'], 'ai_sid', DB_escapeString($story->getSid()));
if ($icount > 0) {
$result_articles = DB_query("SELECT * FROM {$_TABLES['article_images']} WHERE ai_sid = '" . DB_escapeString($story->getSid()) . "'");
for ($z = 1; $z <= $icount; $z++) {
$I = DB_fetchArray($result_articles);
$saved_images .= $z . ') ' . COM_createLink($I['ai_filename'], $_CONF['site_url'] . '/images/articles/' . $I['ai_filename']) . ' ' . $LANG_ADMIN['delete'] . ': <input type="checkbox" name="delete[' . $I['ai_img_num'] . ']" /><br />';
}
}
$newallowed = $_CONF['maximagesperarticle'] - $icount;
for ($z = $icount + 1; $z <= $_CONF['maximagesperarticle']; $z++) {
$fileinputs .= $z . ') <input type="file" dir="ltr" name="file[]' . '" />';
if ($z < $_CONF['maximagesperarticle']) {
$fileinputs .= '<br />';
}
}
$fileinputs .= '<br />' . $LANG24[51];
if ($_CONF['allow_user_scaling'] == 1) {
$fileinputs .= $LANG24[27];
}
$fileinputs .= $LANG24[28] . '<br />';
}
$story_templates->set_var('saved_images', $saved_images);
$story_templates->set_var('image_form_elements', $fileinputs);
$story_templates->set_var('lang_hits', $LANG24[18]);
$story_templates->set_var('story_hits', $story->EditElements('hits'));
$story_templates->set_var('lang_comments', $LANG24[19]);
$story_templates->set_var('story_comments', $story->EditElements('comments'));
$story_templates->set_var('lang_trackbacks', $LANG24[29]);
$story_templates->set_var('story_trackbacks', $story->EditElements('trackbacks'));
$story_templates->set_var('lang_emails', $LANG24[39]);
$story_templates->set_var('story_emails', $story->EditElements('numemails'));
if ($_CONF['rating_enabled']) {
$rating = @number_format($story->EditElements('rating'), 2);
$votes = $story->EditElements('votes');
$story_templates->set_var('rating', $rating);
$story_templates->set_var('votes', $votes);
}
$story_templates->set_var('attribution_url', $story->EditElements('attribution_url'));
$story_templates->set_var('attribution_name', $story->EditElements('attribution_name'));
$story_templates->set_var('attribution_author', $story->EditElements('attribution_author'));
$story_templates->set_var('lang_attribution_url', $LANG24[105]);
$story_templates->set_var('lang_attribution_name', $LANG24[106]);
$story_templates->set_var('lang_attribution_author', $LANG24[107]);
$story_templates->set_var('lang_attribution', $LANG24[108]);
$sec_token_name = CSRF_TOKEN;
$sec_token = SEC_createToken();
$story_templates->set_var('story_id', $story->getSid());
$story_templates->set_var('old_story_id', $story->EditElements('originalSid'));
$story_templates->set_var('lang_sid', $LANG24[12]);
$story_templates->set_var('lang_save', $saveoption);
$story_templates->set_var('lang_preview', $LANG_ADMIN['preview']);
$story_templates->set_var('lang_cancel', $LANG_ADMIN['cancel']);
$story_templates->set_var('lang_delete', $LANG_ADMIN['delete']);
$story_templates->set_var('lang_timeout', $LANG_ADMIN['timeout_msg']);
$story_templates->set_var('gltoken_name', CSRF_TOKEN);
$story_templates->set_var('gltoken', $sec_token);
$story_templates->set_var('security_token', $sec_token);
$story_templates->set_var('security_token_name', $sec_token_name);
$story_templates->set_var('end_block', COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer')));
PLG_templateSetVars('storyeditor', $story_templates);
if ($story->EditElements('postmode') != 'html') {
$story_templates->unset_var('wysiwyg');
}
SEC_setCookie($_CONF['cookie_name'] . 'adveditor', SEC_createTokenGeneral('advancededitor'), time() + 1200, $_CONF['cookie_path'], $_CONF['cookiedomain'], $_CONF['cookiesecure'], false);
$story_templates->parse('output', 'editor');
$display .= $story_templates->finish($story_templates->get_var('output'));
return $display;
}
/**
* This function creates a product Form
*
* Creates a Form for a product using the supplied defaults (if specified).
*
* @param array $product array of values describing a proudct
* @return string HTML string of product form
*/
function PAYPAL_getProductForm($product = array(), $type = 'product')
{
global $_CONF, $_PAY_CONF, $LANG_PAYPAL_1, $LANG_PAYPAL_ADMIN, $LANG_PAYPAL_PRO, $_TABLES, $LANG24, $LANG_ADMIN, $LANG_ACCESS, $_USER, $_GROUPS, $_SCRIPTS;
//PHP 5.4 set all $product[key]
PAYPAL_setAllKeys($product, array('type', 'name', 'id', 'category', 'cat_id', 'short_description', 'description', 'item_id', 'price', 'price_ref', 'discount_a', 'discount_p', 'logged', 'hidden', 'active', 'show_in_blocks', 'customisable', 'product_type', 'file', 'weight', 'shipping_type', 'expiration', 'duration', 'duration_type', 'duration_recurrent', 'duration_type_recurrent', 'add_to_group', 'add_to_group_recurrent', 'perm_owner', 'owner_id', 'group_id', 'perm_group', 'perm_members', 'perm_anon'));
//Validate product type
if ($_REQUEST['type'] == '' && $product['type'] == '') {
$type = 'product';
}
foreach ($_PAY_CONF['types'] as $item => $value) {
$types[$item] = $item;
}
if (!in_array($type, $types)) {
return $LANG_PAYPAL_1['wrong_type'];
}
//Display form
$product['name'] == '' ? $display = COM_startBlock($LANG_PAYPAL_1['create_new_product']) : ($display = COM_startBlock($LANG_PAYPAL_1['edit_label'] . ' ' . $product['name']));
$template = new Template($_CONF['path'] . 'plugins/paypal/templates');
$template->set_file(array('product' => 'product_form.thtml'));
$template->set_var('site_url', $_CONF['site_url']);
$template->set_var('xhtml', XHTML);
if ($_CONF['advanced_editor'] == 1) {
$_SCRIPTS->setJavaScriptLibrary('jquery');
$_SCRIPTS->setJavaScriptFile('ckeditor', '/editors/ckeditor/ckeditor.js');
$ckeditor = ' var geeklogEditorName = "ckeditor";
var geeklogAllowedHtml = [];
jQuery(function() {
CKEDITOR.replace( \'description\', {
customConfig: \'' . $_CONF['site_url'] . '/editors/ckeditor/config.js\',
toolbar: \'toolbar0\',
height:500
});
});';
$_SCRIPTS->setJavaScript($ckeditor, true);
} else {
$template->set_var('adveditor', '');
}
$product['product_type'] == '' ? $prod_type_ini = 2 : ($prod_type_ini = $product['product_type']);
$js = 'jQuery(function () {
var tabContainers = jQuery(\'div.tabs > div\');
jQuery(\'div.tabs ul.tabNavigation a\').click(function () {
tabContainers.hide().filter(this.hash).show();
jQuery(\'div.tabs ul.tabNavigation a\').removeClass(\'selected\');
jQuery(this).addClass(\'selected\');
return false;
}).filter(\':first\').click();
});' . LB;
$js .= "jQuery(document).ready(function() {\n\t\tjQuery('#load').hide();\n\t\t});\n\n\t\tjQuery(function() {\n\t\t\tjQuery(\".delete\").click(function() {\n\t\t\t\tjQuery('#load').show();\n\t\t\t\tvar id = jQuery(this).attr(\"id\");\n\t\t\t\tvar pid = jQuery(this).attr(\"pid\");\n\t\t\t\tvar aid = jQuery(this).attr(\"aid\");\n\t\t\t\tvar action = jQuery(this).attr(\"class\");\n\t\t\t\tvar string = 'id='+ id + '&action=' + action + '&pid=' + pid;\n\t\t\t\t\t\n\t\t\t\tjQuery.ajax({\n\t\t\t\t\ttype: \"POST\",\n\t\t\t\t\turl: \"ajax.php\",\n\t\t\t\t\tdata: string,\n\t\t\t\t\tcache: false,\n\t\t\t\t\tasync:false,\n\t\t\t\t\tsuccess: function(result){\n\t\t\t\t\t\tjQuery(\"#attributes_actions\").replaceWith(result);\n\t\t\t\t\t} \n\t\t\t\t});\n\t\t\t\tjQuery('#load').hide();\n\t\t\t\treturn false;\n\t\t\t});\n\t\t\tjQuery(\".add\").click(function() {\n\t\t\t\tjQuery('#load').show();\n\t\t\t\tvar id = jQuery(this).attr(\"id\");\n\t\t\t\tvar pid = jQuery(this).attr(\"pid\");\n\t\t\t\tvar aid = jQuery(this).attr(\"aid\");\n\t\t\t\tvar action = jQuery(this).attr(\"class\");\n\t\t\t\tvar string = 'id='+ id + '&action=' + action + '&pid=' + pid;\n\t\t\t\t\t\n\t\t\t\tjQuery.ajax({\n\t\t\t\t\ttype: \"POST\",\n\t\t\t\t\turl: \"ajax.php\",\n\t\t\t\t\tdata: string,\n\t\t\t\t\tcache: false,\n\t\t\t\t\tasync:false,\n\t\t\t\t\tsuccess: function(result){\n\t\t\t\t\t\tjQuery(\"#attributes_actions\").replaceWith(result);\n\t\t\t\t\t} \n\t\t\t\t});\n\t\t\t\tjQuery('#load').hide();\n\t\t\t\treturn false;\n\t\t\t});\n\t\t});\n\t" . LB;
//Hide #attributes if product not customisable
if ($product['customisable'] == '0' || $product['customisable'] == '') {
$js .= LB . "jQuery(document).ready(function() {\n\t\t jQuery('#attributes_actions').hide();\n\t\t});" . LB;
}
if ($prod_type_ini == 2) {
$js .= LB . "jQuery(document).ready(function() {\n\t\t jQuery('#type_download').hide();\n\t\t});" . LB;
}
$js .= "\n\tfunction PP_changeCustomisable(value)\n\t{\n\t switch(value) {\n\t case '0':\n\t\tdocument.getElementById('attributes_actions').style.display = 'none';\n\t\tbreak;\n\t case '1':\n\t\tdocument.getElementById('attributes_actions').style.display = '';\n\t\tbreak;\n\t }\n\t}\n\n\t" . LB;
$js .= "\n\tfunction PP_changeProdType(value)\n\t{\n\t switch(value) {\n\t case '0':\n\t\tdocument.getElementById('type_download').style.display = 'none';\n\t\tdocument.getElementById('type_physical').style.display = '';\n\t\tbreak;\n\t case '1':\n\t\tdocument.getElementById('type_download').style.display = '';\n\t\tdocument.getElementById('type_physical').style.display = 'none';\n\t\tbreak;\n\t case '2':\n\t\tdocument.getElementById('type_download').style.display = 'none';\n\t\tdocument.getElementById('type_physical').style.display = 'none';\n\t\tbreak;\n\t }\n\t}\n\n\t" . LB;
$_SCRIPTS->setJavaScriptLibrary('jquery');
$_SCRIPTS->setJavaScript($js, true);
//Product type
if ($product['type'] != '') {
$template->set_var('product_type', '<input type="hidden" name="type" value="' . $product['type'] . '" />');
} else {
$template->set_var('product_type', '<input type="hidden" name="type" value="' . $type . '" />');
}
//Product infos
$template->set_var('informations', $LANG_PAYPAL_1['product_informations']);
if ($_REQUEST['type'] == 'subscription' || $product['type'] == 'subscription') {
$template->set_var('informations', $LANG_PAYPAL_1['membership_informations']);
}
$template->set_var('name_label', $LANG_PAYPAL_1['name_label']);
$template->set_var('category_label', $LANG_PAYPAL_1['category_label']);
$template->set_var('currency', $_PAY_CONF['currency']);
if (is_numeric($product['id'])) {
$template->set_var('id', '<input type="hidden" name="id" value="' . $product['id'] . '" />');
} else {
$template->set_var('id', '');
}
$template->set_var('name', $product['name']);
//catogory
$template->set_var('category', $product['category']);
//categorie
$categories = '';
$categories .= '<option value="0">' . $LANG_PAYPAL_ADMIN['choose_category'] . '</option>';
$categories .= PAYPAL_adOptionList($_TABLES['paypal_categories'], 'cat_id,cat_name', $product['cat_id'], 'cat_name', 'enabled=1');
$template->set_var('categories', $categories);
//Descriptions
$template->set_var('short_description_label', $LANG_PAYPAL_1['short_description_label']);
$template->set_var('short_description', strip_tags($product['short_description']));
$template->set_var('description_label', $LANG_PAYPAL_1['description_label']);
$template->set_var('description', $product['description']);
//item_id
$template->set_var('item_id_label', $LANG_PAYPAL_1['item_id_label']);
$template->set_var('item_id', $product['item_id']);
//Price
$template->set_var('price_label', $LANG_PAYPAL_1['price_label']);
if (empty($product['price']) || !is_numeric($product['price'])) {
$template->set_var('price', 0);
} else {
$template->set_var('price', number_format($product['price'], $_CONF['decimal_count']));
}
$template->set_var('price_edit', $LANG_PAYPAL_1['price_edit']);
//Price_ref
$template->set_var('price_ref_label', $LANG_PAYPAL_1['price_ref_label']);
if (empty($product['price_ref'])) {
$template->set_var('price_ref', 0);
} else {
$template->set_var('price_ref', number_format($product['price_ref'], $_CONF['decimal_count']));
}
$template->set_var('price_ref_edit', $LANG_PAYPAL_1['price_ref_edit']);
//Discount
$template->set_var('discount_legend', $LANG_PAYPAL_1['discount_legend']);
$template->set_var('discount_label', $LANG_PAYPAL_1['discount_label']);
$template->set_var('discount_a_label', $LANG_PAYPAL_1['discount_a_label']);
$template->set_var('discount_p_label', $LANG_PAYPAL_1['discount_p_label']);
if (empty($product['discount_a'])) {
$template->set_var('discount_a', 0);
} else {
$template->set_var('discount_a', number_format($product['discount_a'], $_CONF['decimal_count']));
}
if (empty($product['discount_p'])) {
$template->set_var('discount_p', 0);
} else {
$template->set_var('discount_p', number_format($product['discount_p'], $_CONF['decimal_count']));
}
//access & display
$template->set_var('access_display', $LANG_PAYPAL_1['access_display']);
//logged
$template->set_var('logged_to_purchase', $LANG_PAYPAL_1['logged_to_purchase']);
if ($type == 'subscription' || $product['type'] == 'subscription') {
$template->set_var('logged_yes', ' selected');
$template->set_var('logged_no', ' disabled="disabled"');
} else {
if ($product['logged'] == 1) {
$template->set_var('logged_yes', ' selected');
$template->set_var('logged_no', '');
} else {
$template->set_var('logged_yes', '');
$template->set_var('logged_no', ' selected');
}
}
//hidden
$template->set_var('hidden', $LANG_PAYPAL_1['hidden_product']);
if ($product['hidden'] == 1) {
$template->set_var('hidden_yes', ' selected');
$template->set_var('hidden_no', '');
} else {
$template->set_var('hidden_yes', '');
$template->set_var('hidden_no', ' selected');
}
//active
$template->set_var('active', $LANG_PAYPAL_1['active_product']);
!isset($product['active']) ? $product['active'] = 1 : NULL;
if ($product['active'] == 1) {
$template->set_var('active_yes', ' selected');
$template->set_var('active_no', '');
} else {
$template->set_var('active_yes', '');
$template->set_var('active_no', ' selected');
}
//Show in blocks
$template->set_var('show_in_blocks', $LANG_PAYPAL_1['show_in_blocks']);
!isset($product['show_in_blocks']) ? $product['show_in_blocks'] = 1 : NULL;
if ($product['show_in_blocks'] == 1) {
$template->set_var('show_in_blocks_yes', ' selected');
$template->set_var('show_in_blocks_no', '');
} else {
$template->set_var('show_in_blocks_yes', '');
$template->set_var('show_in_blocks_no', ' selected');
}
//customisable
$template->set_var('customisation', $LANG_PAYPAL_ADMIN['customisation']);
$template->set_var('customisable', $LANG_PAYPAL_ADMIN['customisable']);
if (isset($product['customisable']) && $product['customisable'] == 1) {
$template->set_var('customisable_yes', ' selected');
$template->set_var('customisable_no', '');
} else {
$template->set_var('customisable_yes', '');
$template->set_var('customisable_no', ' selected');
}
if (function_exists('PAYPALPRO_displayAttributes') && $product['id'] != '') {
$template->set_var('attributes', PAYPALPRO_displayAttributes($product['id']));
$template->set_var('add_attributes', PAYPALPRO_displayAttributesToAdd($product['id']));
} else {
if (function_exists('PAYPALPRO_displayAttributes')) {
$template->set_var('attributes', '');
$template->set_var('add_attributes', $LANG_PAYPAL_PRO['add_attributes']);
} else {
$template->set_var('attributes', '<p>' . $LANG_PAYPAL_PRO['pro_feature'] . '</p>');
$template->set_var('add_attributes', '');
}
}
//images
$template->set_var('lang_images', $LANG_PAYPAL_1['product_images']);
$fileinputs = '';
$saved_images = '';
if ($_PAY_CONF['max_images_per_products'] > 0) {
if ($product['id'] != '') {
$icount = DB_count($_TABLES['paypal_images'], 'pi_pid', $product['id']);
if ($icount > 0) {
$result_products = DB_query("SELECT * FROM {$_TABLES['paypal_images']} WHERE pi_pid = '" . $product['id'] . "'");
for ($z = 1; $z <= $icount; $z++) {
$I = DB_fetchArray($result_products);
$saved_images .= '<div><p>' . $z . ') ' . '<a class="lightbox" href="' . $_PAY_CONF['images_url'] . $I['pi_filename'] . '"><img align="top" class="lightbox" src="' . $_PAY_CONF['site_url'] . '/timthumb.php?src=' . $_PAY_CONF['images_url'] . $I['pi_filename'] . '&w=75&h=75&zc=1&q=100" alt="' . $I['pi_filename'] . '" /></a>' . ' ' . $LANG_ADMIN['delete'] . ': <input type="checkbox" name="delete[' . $I['pi_img_num'] . ']"' . XHTML . '><br' . XHTML . '></p></div>';
}
}
}
$newallowed = $_PAY_CONF['max_images_per_products'] - $icount;
for ($z = $icount + 1; $z <= $_PAY_CONF['max_images_per_products']; $z++) {
$fileinputs .= $z . ') <input type="file" dir="ltr" name="file' . $z . '"' . XHTML . '> ';
if ($z < $_PAY_CONF['max_images_per_products']) {
$fileinputs .= '<br' . XHTML . '>';
}
}
}
$template->set_var('saved_images', $saved_images);
$template->set_var('image_form_elements', $fileinputs);
//delivery info
$type != 'product' ? $template->set_var('display_product', 'display:none;') : $template->set_var('display_product', '');
$template->set_var('delivery_info_label', $LANG_PAYPAL_ADMIN['delivery_info_label']);
$template->set_var('prod_type', $LANG_PAYPAL_ADMIN['prod_type']);
$template->set_var('prod_type_ini', $product['product_type']);
$template->set_var('customisable_ini', $product['customisable']);
$template->set_block('product', 'ProdTypeRadio', 'ProdType');
foreach ($LANG_PAYPAL_ADMIN['prod_types'] as $value => $text) {
$template->set_var(array('type_val' => $value, 'type_txt' => $text, 'type_sel' => $product['product_type'] == $value ? 'checked="checked"' : ''));
$template->parse('ProdType', 'ProdTypeRadio', true);
}
//files
$template->set_var('filename_label', $LANG_PAYPAL_1['filename_label']);
$files = '';
$files_folder = @opendir($_PAY_CONF['download_path']);
if (!$files_folder) {
$template->set_var('select_file', $LANG_PAYPAL_1['no_download_folder']);
$template->set_var('file_selection', '');
} else {
while ($file = readdir($files_folder)) {
if ($file == '.' || $file == '..') {
continue;
}
$sel = $file == $product['file'] ? ' selected="selected" ' : '';
$files .= "<option value=\"{$file}\" {$sel}>{$file}</option>\n";
}
closedir($files_folder);
$template->set_var('select_file', $LANG_PAYPAL_1['select_file']);
$template->set_var('file_selection', $files);
}
$template->set_var('upload_new', $LANG_PAYPAL_1['upload_new']);
$template->set_var('expiration_label', $LANG_PAYPAL_1['expiration_label']);
//weight
$template->set_var('weight_label', $LANG_PAYPAL_ADMIN['weight']);
if ($product['weight'] == '') {
$product['weight'] = '0.000';
}
$template->set_var('weight', $product['weight']);
$template->set_var('per_item', $LANG_PAYPAL_ADMIN['per_item']);
//shipping
$template->set_var('shipping_type', $LANG_PAYPAL_ADMIN['shipping_type']);
$template->set_var('shipping_type_ini', $product['shipping_type']);
$shipping_options = '';
if ($product['shipping_type'] == 0) {
$selected0 = ' selected="selected"';
$selected1 = '';
} else {
$selected1 = ' selected="selected"';
$selected0 = '';
}
$shipping_options .= '<option value="0"' . $selected0 . '>' . $LANG_PAYPAL_ADMIN['shipping_options'][0] . '</option>';
$shipping_options .= '<option value="1"' . $selected1 . '>' . $LANG_PAYPAL_ADMIN['shipping_options'][1] . '</option>';
$template->set_var('shipping_options', $shipping_options);
$template->set_var('yes', $LANG_PAYPAL_1['yes']);
$template->set_var('no', $LANG_PAYPAL_1['no']);
$template->set_var('save_button', $LANG_PAYPAL_1['save_button']);
$template->set_var('delete_button', $LANG_PAYPAL_1['delete_button']);
$template->set_var('ok_button', $LANG_PAYPAL_1['ok_button']);
$template->set_var('required_field', $LANG_PAYPAL_1['required_field']);
if ($product['product_type'] == 1) {
$template->set_var('download_yes', ' selected');
$template->set_var('download_no', '');
} else {
$template->set_var('download_yes', '');
$template->set_var('download_no', ' selected');
}
$template->set_var('file', $product['file']);
$template->set_var('expiration', $product['expiration']);
//Subscription
$type != 'subscription' ? $template->set_var('display_subscription', 'display:none;') : $template->set_var('display_subscription', '');
$template->set_var('subscription_product_label', $LANG_PAYPAL_1['subscription_label']);
$template->set_var('duration_label', $LANG_PAYPAL_1['duration_label']);
$template->set_var('duration', $product['duration']);
$product['duration_type'] == 'day' ? $template->set_var('sel_day', ' selected="selected"') : '';
$template->set_var('day', $LANG_PAYPAL_1['day']);
$product['duration_type'] == 'week' ? $template->set_var('sel_week', ' selected="selected"') : '';
$template->set_var('week', $LANG_PAYPAL_1['week']);
$product['duration_type'] == 'month' ? $template->set_var('sel_month', ' selected="selected"') : '';
$template->set_var('month', $LANG_PAYPAL_1['month']);
$product['duration_type'] == 'year' ? $template->set_var('sel_year', ' selected="selected"') : '';
$template->set_var('year', $LANG_PAYPAL_1['year']);
//Recurrent
if ($type != 'recurrent') {
$template->set_var('display_recurrent', 'display:none;');
$template->set_var('add_to_group_label', $LANG_PAYPAL_1['recurrent_add_to_group']);
} else {
$template->set_var('display_recurrent', '');
}
$template->set_var('recurrent_product_label', $LANG_PAYPAL_1['recurrent_product_label']);
$template->set_var('add_to_group_label', $LANG_PAYPAL_1['recurrent_add_to_group']);
$template->set_var('period_label', $LANG_PAYPAL_1['period_label']);
$template->set_var('billing_label', $LANG_PAYPAL_1['billing_label']);
$template->set_var('billingamt', $product['billingamt']);
$template->set_var('frequency_label', $LANG_PAYPAL_1['frequency_label']);
$template->set_var('frequency_help', $LANG_PAYPAL_1['frequency_help']);
$template->set_var('duration_recurrent', $product['duration']);
$product['duration_type'] == 'Day' ? $template->set_var('sel_recurrent_day', ' selected="selected"') : '';
$template->set_var('recurrent_day', $LANG_PAYPAL_1['recurrent_day']);
$product['duration_type'] == 'Week' ? $template->set_var('sel_recurrent_week', ' selected="selected"') : '';
$template->set_var('recurrent_week', $LANG_PAYPAL_1['recurrent_week']);
$product['duration_type'] == 'SemiMonth' ? $template->set_var('sel_recurrent_semimonth', ' selected="selected"') : '';
$template->set_var('recurrent_semimonth', $LANG_PAYPAL_1['recurrent_semimonth']);
$product['duration_type'] == 'Month' ? $template->set_var('sel_recurrent_month', ' selected="selected"') : '';
$template->set_var('recurrent_month', $LANG_PAYPAL_1['recurrent_month']);
$product['duration_type'] == 'Year' ? $template->set_var('sel_recurrent_year', ' selected="selected"') : '';
$template->set_var('recurrent_year', $LANG_PAYPAL_1['recurrent_year']);
//Group select list
$template->set_var('add_to_group_options', COM_optionList($_TABLES['groups'], 'grp_id,grp_name', $product['add_to_group'], 1));
// Permissions
if ($product['perm_owner'] == '') {
SEC_setDefaultPermissions($product, $_PAY_CONF['default_permissions']);
}
$template->set_var('lang_accessrights', $LANG_ACCESS['accessrights']);
$template->set_var('lang_owner', $LANG_ACCESS['owner']);
if ($product['owner_id'] == '') {
$product['owner_id'] = $_USER['uid'];
}
$ownername = COM_getDisplayName($product['owner_id']);
$template->set_var('owner_username', DB_getItem($_TABLES['users'], 'username', "uid = {$product['owner_id']}"));
$template->set_var('owner_name', $ownername);
$template->set_var('owner', $ownername);
$template->set_var('owner_id', $product['owner_id']);
if ($product['group_id'] == '') {
$product['group_id'] = $_GROUPS['Paypal Admin'];
}
$template->set_var('lang_group', $LANG_ACCESS['group']);
//Todo make group = paypal.admin
$access = 3;
$template->set_var('group_dropdown', SEC_getGroupDropdown($product['group_id'], $access));
$template->set_var('permissions_editor', SEC_getPermissionsHTML($product['perm_owner'], $product['perm_group'], $product['perm_members'], $product['perm_anon']));
$template->set_var('lang_permissions', $LANG_ACCESS['permissions']);
$template->set_var('lang_perm_key', $LANG_ACCESS['permissionskey']);
$template->set_var('permissions_msg', $LANG_ACCESS['permmsg']);
$template->set_var('lang_permissions_msg', $LANG_ACCESS['permmsg']);
$display .= $template->parse('output', 'product');
$display .= COM_endBlock();
return $display;
}
function fncEdit($id, $edt_flg, $msg = '', $errmsg = "", $mode = "edit")
{
$pi_name = "userbox";
global $_CONF;
global $_TABLES;
global $LANG_ADMIN;
global $MESSAGE;
global $LANG_ACCESS;
global $_USER;
global $LANG28;
global $_SCRIPTS;
global $_USERBOX_CONF;
global $LANG_USERBOX_ADMIN;
global $LANG_USERBOX;
$retval = '';
$delflg = false;
$addition_def = DATABOX_getadditiondef($pi_name);
//メッセージ表示
if (!empty($msg)) {
$retval .= COM_showMessage($msg, $pi_name);
$retval .= $errmsg;
// clean 'em up
$code = COM_applyFilter($_POST['code']);
//@@@@@
$title = COM_applyFilter($_POST['title']);
//@@@@@
$username = COM_applyFilter($_POST['username']);
//@@@@@
$fullname = COM_applyFilter($_POST['fullname']);
//@@@@@
$page_title = COM_applyFilter($_POST['page_title']);
$description = $_POST['description'];
//COM_applyFilter($_POST['description']);
$defaulttemplatesdirectory = COM_applyFilter($_POST['defaulttemplatesdirectory']);
//@@@@@@
$draft_flag = COM_applyFilter($_POST['draft_flag'], true);
$hits = COM_applyFilter($_POST['hits'], true);
$comments = COM_applyFilter($_POST['comments'], true);
$commentcode = COM_applyFilter($_POST['commentcode'], true);
$trackbackcode = COM_applyFilter($_POST['trackbackcode'], true);
$cache_time = COM_applyFilter($_POST['cache_time'], true);
//@@@@@
$comment_expire_flag = COM_applyFilter($_POST['comment_expire_flag'], true);
if ($comment_expire_flag === 0) {
$w = mktime(0, 0, 0, date('m'), date('d') + $_CONF['article_comment_close_days'], date('Y'));
$comment_expire_year = date('Y', $w);
$comment_expire_month = date('m', $w);
$comment_expire_day = date('d', $w);
$comment_expire_hour = 0;
$comment_expire_minute = 0;
} else {
$comment_expire_month = COM_applyFilter($_POST['comment_expire_month'], true);
$comment_expire_day = COM_applyFilter($_POST['comment_expire_day'], true);
$comment_expire_year = COM_applyFilter($_POST['comment_expire_year'], true);
$comment_expire_hour = COM_applyFilter($_POST['comment_expire_hour'], true);
$comment_expire_minute = COM_applyFilter($_POST['comment_expire_minute'], true);
}
$meta_description = COM_applyFilter($_POST['meta_description']);
$meta_keywords = COM_applyFilter($_POST['meta_keywords']);
$language_id = COM_applyFilter($_POST['language_id']);
$category = $_POST['category'];
$additionfields = $_POST['afield'];
$additionfields_fnm = $_POST['afield_fnm'];
//@@@@@
$additionfields_del = $_POST['afield_del'];
$additionfields_date = array();
$additionfields_alt = $_POST['afield_alt'];
$additionfields = DATABOX_cleanaddtiondatas($additionfields, $addition_def, $additionfields_fnm, $additionfields_del, $additionfields_date, $additionfields_alt, false);
$owner_id = COM_applyFilter($_POST['owner_id'], true);
$group_id = COM_applyFilter($_POST['group_id'], true);
//
$array['perm_owner'] = $_POST['perm_owner'];
$array['perm_group'] = $_POST['perm_group'];
$array['perm_members'] = $_POST['perm_members'];
$array['perm_anon'] = $_POST['perm_anon'];
if (is_array($array['perm_owner']) || is_array($array['perm_group']) || is_array($array['perm_members']) || is_array($array['perm_anon'])) {
list($perm_owner, $perm_group, $perm_members, $perm_anon) = SEC_getPermissionValues($array['perm_owner'], $array['perm_group'], $array['perm_members'], $array['perm_anon']);
} else {
$perm_owner = $array['perm_owner'];
$perm_group = $array['perm_group'];
$perm_members = $array['perm_members'];
$perm_anon = $array['perm_anon'];
}
//編集日
$modified_autoupdate = COM_applyFilter($_POST['modified_autoupdate'], true);
$modified_month = COM_applyFilter($_POST['modified_month'], true);
$modified_day = COM_applyFilter($_POST['modified_day'], true);
$modified_year = COM_applyFilter($_POST['modified_year'], true);
$modified_hour = COM_applyFilter($_POST['modified_hour'], true);
$modified_minute = COM_applyFilter($_POST['modified_minute'], true);
//公開日
$released_month = COM_applyFilter($_POST['released_month'], true);
$released_day = COM_applyFilter($_POST['released_day'], true);
$released_year = COM_applyFilter($_POST['released_year'], true);
$released_hour = COM_applyFilter($_POST['released_hour'], true);
$released_minute = COM_applyFilter($_POST['released_minute'], true);
//公開終了日
$expired_available = COM_applyFilter($_POST['expired_available'], true);
$expired_flag = COM_applyFilter($_POST['expired_flag'], true);
if ($expired_flag === 0) {
$w = mktime(0, 0, 0, date('m'), date('d') + $_CONF['article_comment_close_days'], date('Y'));
$expired_year = date('Y', $w);
$expired_month = date('m', $w);
$expired_day = date('d', $w);
$expired_hour = 0;
$expired_minute = 0;
} else {
$expired_month = COM_applyFilter($_POST['expired_month'], true);
$expired_day = COM_applyFilter($_POST['expired_day'], true);
$expired_year = COM_applyFilter($_POST['expired_year'], true);
$expired_hour = COM_applyFilter($_POST['expired_hour'], true);
$expired_minute = COM_applyFilter($_POST['expired_minute'], true);
}
//作成日付
$created = COM_applyFilter($_POST['created']);
$created_un = COM_applyFilter($_POST['created_un']);
$orderno = COM_applyFilter($_POST['orderno']);
$uuid = $_USER['uid'];
$udatetime = COM_applyFilter($_POST['udatetime']);
//"";
$fieldset_id = COM_applyFilter($_POST['fieldset'], true);
//"";
$fieldset_name = COM_applyFilter($_POST['fieldset_name']);
//"";
} else {
$sql = "SELECT ";
$sql .= " t.*";
$sql .= " ,t2.name AS fieldset_name" . LB;
$sql .= " ,t1.username";
$sql .= " ,t1.fullname";
$sql .= " ,UNIX_TIMESTAMP(t.modified) AS modified_un" . LB;
$sql .= " ,UNIX_TIMESTAMP(t.released) AS released_un" . LB;
$sql .= " ,UNIX_TIMESTAMP(t.comment_expire) AS comment_expire_un" . LB;
$sql .= " ,UNIX_TIMESTAMP(t.expired) AS expired_un" . LB;
$sql .= " ,UNIX_TIMESTAMP(t.udatetime) AS udatetime_un" . LB;
$sql .= " ,UNIX_TIMESTAMP(t.created) AS created_un" . LB;
$sql .= " FROM ";
$sql .= $_TABLES['USERBOX_base'] . " AS t";
$sql .= "," . $_TABLES['users'] . " AS t1";
$sql .= "," . $_TABLES['USERBOX_def_fieldset'] . " AS t2 " . LB;
$sql .= " WHERE ";
$sql .= " t.id = {$id}";
$sql .= " AND t.id = t1.uid";
$sql .= " AND t.fieldset_id = t2.fieldset_id" . LB;
$result = DB_query($sql);
$A = DB_fetchArray($result);
$fieldset_id = COM_stripslashes($A['fieldset_id']);
$fieldset_name = COM_stripslashes($A['fieldset_name']);
$code = COM_stripslashes($A['code']);
//@@@@@
$title = COM_stripslashes($A['title']);
//@@@@@
$username = COM_stripslashes($A['username']);
//@@@@@
$fullname = COM_stripslashes($A['fullname']);
//@@@@@
$page_title = COM_stripslashes($A['page_title']);
$description = COM_stripslashes($A['description']);
$defaulttemplatesdirectory = COM_stripslashes($A['defaulttemplatesdirectory']);
$hits = COM_stripslashes($A['hits']);
$comments = COM_stripslashes($A['comments']);
$comment_expire = COM_stripslashes($A['comment_expire']);
if ($comment_expire === "0000-00-00 00:00:00") {
$comment_expire_flag = 0;
$w = mktime(0, 0, 0, date('m'), date('d') + $_CONF['article_comment_close_days'], date('Y'));
$comment_expire_year = date('Y', $w);
$comment_expire_month = date('m', $w);
$comment_expire_day = date('d', $w);
$comment_expire_hour = 0;
$comment_expire_minute = 0;
} else {
$comment_expire_flag = 1;
$wary = COM_getUserDateTimeFormat(COM_stripslashes($A['comment_expire_un']));
$comment_expire = $wary[1];
$comment_expire_year = date('Y', $comment_expire);
$comment_expire_month = date('m', $comment_expire);
$comment_expire_day = date('d', $comment_expire);
$comment_expire_hour = date('H', $comment_expire);
$comment_expire_minute = date('i', $comment_expire);
}
$commentcode = COM_stripslashes($A['commentcode']);
$trackbackcode = COM_stripslashes($A['trackbackcode']);
$cache_time = COM_stripslashes($A['cache_time']);
$meta_description = COM_stripslashes($A['meta_description']);
$meta_keywords = COM_stripslashes($A['meta_keywords']);
$language_id = COM_stripslashes($A['language_id']);
$owner_id = COM_stripslashes($A['owner_id']);
$group_id = COM_stripslashes($A['group_id']);
$perm_owner = COM_stripslashes($A['perm_owner']);
$perm_group = COM_stripslashes($A['perm_group']);
$perm_members = COM_stripslashes($A['perm_members']);
$perm_anon = COM_stripslashes($A['perm_anon']);
$category = DATABOX_getdatas("category_id", $_TABLES['USERBOX_category'], "id = {$id}");
$additionfields = DATABOX_getadditiondatas($id, $pi_name);
$additionfields_fnm = array();
//@@@@@
$additionfields_del = array();
$additionfields_date = "";
$draft_flag = COM_stripslashes($A['draft_flag']);
//編集日
$wary = COM_getUserDateTimeFormat(COM_stripslashes($A['modified_un']));
$modified = $wary[1];
//$modified = strtotime(COM_stripslashes($A['modified']));
$modified_month = date('m', $modified);
$modified_day = date('d', $modified);
$modified_year = date('Y', $modified);
$modified_hour = date('H', $modified);
$modified_minute = date('i', $modified);
//公開日
$wary = COM_getUserDateTimeFormat(COM_stripslashes($A['released_un']));
$released = $wary[1];
//$released = strtotime(COM_stripslashes($A['released']));
$released_month = date('m', $released);
$released_day = date('d', $released);
$released_year = date('Y', $released);
$released_hour = date('H', $released);
$released_minute = date('i', $released);
//公開終了日
$expired = COM_stripslashes($A['expired']);
if ($expired === "0000-00-00 00:00:00") {
$expired_flag = 0;
$w = mktime(0, 0, 0, date('m'), date('d') + $_CONF['article_comment_close_days'], date('Y'));
$expired_year = date('Y', $w);
$expired_month = date('m', $w);
$expired_day = date('d', $w);
$expired_hour = 0;
$expired_minute = 0;
} else {
$expired_flag = 1;
$wary = COM_getUserDateTimeFormat(COM_stripslashes($A['expired_un']));
$expired = $wary[1];
$expired_year = date('Y', $expired);
$expired_month = date('m', $expired);
$expired_day = date('d', $expired);
$expired_hour = date('H', $expired);
$expired_minute = date('i', $expired);
}
//作成日付
$wary = COM_getUserDateTimeFormat(COM_stripslashes($A['created_un']));
$created = $wary[0];
$created_un = $wary[1];
$orderno = COM_stripslashes($A['orderno']);
$uuid = COM_stripslashes($A['uuid']);
$wary = COM_getUserDateTimeFormat(COM_stripslashes($A['udatetime_un']));
$udatetime = $wary[0];
if ($edt_flg == FALSE) {
$delflg = true;
}
}
//template フォルダ
$tmplfld = DATABOX_templatePath('admin', 'default', $pi_name);
$templates = new Template($tmplfld);
$templates->set_file(array('editor' => 'profile_editor.thtml', 'row' => 'row.thtml', 'col' => "profile_col_detail.thtml"));
// Add JavaScript geeklog >=2.1.0
// Loads jQuery UI datepicker and timepicker-addon
$_SCRIPTS->setJavaScriptLibrary('jquery.ui.slider');
// $_SCRIPTS->setJavaScriptLibrary('jquery.ui.button');
$_SCRIPTS->setJavaScriptLibrary('jquery.ui.datepicker');
$_SCRIPTS->setJavaScriptLibrary('jquery-ui-i18n');
$_SCRIPTS->setJavaScriptLibrary('jquery-ui-timepicker-addon');
$_SCRIPTS->setJavaScriptLibrary('jquery-ui-timepicker-addon-i18n');
// $_SCRIPTS->setJavaScriptLibrary('jquery-ui-slideraccess');
$_SCRIPTS->setJavaScriptFile('datetimepicker', '/javascript/datetimepicker.js');
$_SCRIPTS->setJavaScriptFile('datepicker', '/javascript/datepicker.js');
$langCode = COM_getLangIso639Code();
$toolTip = $MESSAGE[118];
$imgUrl = $_CONF['site_url'] . '/images/calendar.png';
$_SCRIPTS->setJavaScript("jQuery(function () {" . " geeklog.hour_mode = {$_CONF['hour_mode']};" . " geeklog.datetimepicker.set('comment_expire', '{$langCode}', '{$toolTip}', '{$imgUrl}');" . " geeklog.datetimepicker.set('modified', '{$langCode}', '{$toolTip}', '{$imgUrl}');" . " geeklog.datetimepicker.set('released', '{$langCode}', '{$toolTip}', '{$imgUrl}');" . " geeklog.datetimepicker.set('expired', '{$langCode}', '{$toolTip}', '{$imgUrl}');" . "});", TRUE, TRUE);
//--
if ($_CONF['meta_tags'] > 0 && $_USERBOX_CONF['meta_tags'] > 0) {
$templates->set_var('hide_meta', '');
} else {
$templates->set_var('hide_meta', ' style="display:none;"');
}
$templates->set_var('maxlength_description', $_USERBOX_CONF['maxlength_description']);
$templates->set_var('maxlength_meta_description', $_USERBOX_CONF['maxlength_meta_description']);
$templates->set_var('maxlength_meta_keywords', $_USERBOX_CONF['maxlength_meta_keywords']);
$templates->set_var('about_thispage', $LANG_USERBOX_ADMIN['about_admin_profile']);
$templates->set_var('lang_must', $LANG_USERBOX_ADMIN['must']);
$templates->set_var('site_url', $_CONF['site_url']);
$templates->set_var('site_admin_url', $_CONF['site_admin_url']);
$templates->set_var('lang_ref', $LANG_USERBOX_ADMIN['ref']);
$templates->set_var('lang_view', $LANG_USERBOX_ADMIN['view']);
$token = SEC_createToken();
$retval .= SEC_getTokenExpiryNotice($token);
$templates->set_var('gltoken_name', CSRF_TOKEN);
$templates->set_var('gltoken', $token);
$templates->set_var('xhtml', XHTML);
$templates->set_var('script', THIS_SCRIPT);
$templates->set_var('dateformat', $_USERBOX_CONF['dateformat']);
//ビューリンク@@@@@
$url = $_CONF['site_url'] . "/userbox/profile.php";
$url .= "?";
if ($_USERBOX_CONF['datacode']) {
$url .= "code=" . $A['username'];
$url .= "&m=code";
} else {
$url .= "id=" . $A['id'];
$url .= "&m=id";
}
$url = COM_buildUrl($url);
$view = COM_createLink($LANG_USERBOX['view'], $url);
$templates->set_var('view', $view);
//
$templates->set_var('lang_link_admin', $LANG_USERBOX_ADMIN['link_admin']);
$templates->set_var('lang_link_admin_top', $LANG_USERBOX_ADMIN['link_admin_top']);
$templates->set_var('lang_link_public', $LANG_USERBOX_ADMIN['link_public']);
$templates->set_var('lang_link_list', $LANG_USERBOX_ADMIN['link_list']);
$templates->set_var('lang_link_detail', $LANG_USERBOX_ADMIN['link_detail']);
//fieldset_id
$templates->set_var('lang_fieldset', $LANG_USERBOX_ADMIN['fieldset']);
$templates->set_var('fieldset_id', $fieldset_id);
$templates->set_var('fieldset_name', $fieldset_name);
//id
$templates->set_var('lang_id', $LANG_USERBOX_ADMIN['id']);
//@@@@@ $templates->set_var('help_id', $LANG_USERBOX_ADMIN['help']);
$templates->set_var('id', $id);
//下書
$templates->set_var('lang_draft', $LANG_USERBOX_ADMIN['draft']);
if ($draft_flag == 1) {
$templates->set_var('draft_flag', "checked=checked");
} else {
$templates->set_var('draft_flag', "");
}
//
$templates->set_var('lang_field', $LANG_USERBOX_ADMIN['field']);
$templates->set_var('lang_fields', $LANG_USERBOX_ADMIN['fields']);
$templates->set_var('lang_content', $LANG_USERBOX_ADMIN['content']);
$templates->set_var('lang_templatesetvar', $LANG_USERBOX_ADMIN['templatesetvar']);
//基本項目
$templates->set_var('lang_basicfields', $LANG_USERBOX_ADMIN['basicfields']);
//コード&タイトル&説明&テンプレートセット値@@@@@
$templates->set_var('lang_code', $LANG_USERBOX_ADMIN['code']);
if ($_USERBOX_CONF['datacode']) {
$templates->set_var('lang_must_code', $LANG_USERBOX_ADMIN['must']);
} else {
$templates->set_var('lang_must_code', "");
}
$templates->set_var('code', $code);
$templates->set_var('lang_title', $LANG_USERBOX_ADMIN['title']);
$templates->set_var('title', $title);
//$LANG28 = array(
// 2 => 'ユーザID',
// 3 => 'ユーザ名', username
// 4 => '氏名', fullname
$templates->set_var('lang_uid', $LANG28['2']);
$templates->set_var('lang_username', $LANG28['3']);
$templates->set_var('username', $username);
$templates->set_var('lang_fullname', $LANG28['4']);
$templates->set_var('fullname', $fullname);
//
$templates->set_var('lang_page_title', $LANG_USERBOX_ADMIN['page_title']);
$templates->set_var('page_title', $page_title);
$templates->set_var('lang_description', $LANG_USERBOX_ADMIN['description']);
$templates->set_var('description', $description);
$templates->set_var('lang_defaulttemplatesdirectory', $LANG_USERBOX_ADMIN['defaulttemplatesdirectory']);
$templates->set_var('defaulttemplatesdirectory', $defaulttemplatesdirectory);
$select_defaulttemplatesdirectory = fnctemplatesdirectory($defaulttemplatesdirectory);
$templates->set_var('select_defaulttemplatesdirectory', $select_defaulttemplatesdirectory);
//@@@@@
//meta_description
$templates->set_var('lang_meta_description', $LANG_USERBOX_ADMIN['meta_description']);
$templates->set_var('meta_description', $meta_description);
//meta_keywords
$templates->set_var('lang_meta_keywords', $LANG_USERBOX_ADMIN['meta_keywords']);
$templates->set_var('meta_keywords', $meta_keywords);
//language_id
if (is_array($_CONF['languages'])) {
$templates->set_var('hide_language_id', '');
$select_language_id = DATABOX_getoptionlist("language_id", $language_id, 0, $pi_name, "", 0);
} else {
$templates->set_var('hide_language_id', ' style="display:none;"');
$select_language_id = "";
}
$templates->set_var('lang_language_id', $LANG_USERBOX_ADMIN['language_id']);
$templates->set_var('language_id', $language_id);
$templates->set_var('select_language_id', $select_language_id);
//@@@@@
//hits
$templates->set_var('lang_hits', $LANG_USERBOX_ADMIN['hits']);
$templates->set_var('hits', $hits);
//comments
$templates->set_var('lang_comments', $LANG_USERBOX_ADMIN['comments']);
$templates->set_var('comments', $comments);
//commentcode
$templates->set_var('lang_commentcode', $LANG_USERBOX_ADMIN['commentcode']);
$templates->set_var('commentcode', $commentcode);
$optionlist_commentcode = COM_optionList($_TABLES['commentcodes'], 'code,name', $commentcode);
$templates->set_var('optionlist_commentcode', $optionlist_commentcode);
//trackbackcode
$templates->set_var('lang_trackbackcode', $LANG_USERBOX_ADMIN['trackbackcode']);
$templates->set_var('trackbackcode', $trackbackcode);
$optionlist_trackbackcode = COM_optionList($_TABLES['trackbackcodes'], 'code,name', $trackbackcode);
$templates->set_var('optionlist_trackbackcode', $optionlist_trackbackcode);
$templates->set_var('lang_cache_time', $LANG_USERBOX_ADMIN['cache_time']);
$templates->set_var('lang_cache_time_desc', $LANG_USERBOX_ADMIN['cache_time_desc']);
$templates->set_var('cache_time', $cache_time);
//comment_expire
$templates->set_var('lang_enabled', $LANG_USERBOX_ADMIN['enabled']);
if ($comment_expire_flag === 0) {
$templates->set_var('show_comment_expire', 'false');
$templates->set_var('is_checked_comment_expire', '');
} else {
$templates->set_var('show_comment_expire', 'true');
$templates->set_var('is_checked_comment_expire', 'checked="checked"');
}
$templates->set_var('lang_comment_expire', $LANG_USERBOX_ADMIN['comment_expire']);
$w = COM_convertDate2Timestamp($comment_expire_year . "-" . $comment_expire_month . "-" . $comment_expire_day, $comment_expire_hour . ":" . $comment_expire_minute . "::00");
$datetime_comment_expire = DATABOX_datetimeedit($w, "LANG_USERBOX_ADMIN", "comment_expire");
$templates->set_var('datetime_comment_expire', $datetime_comment_expire);
//編集日
$templates->set_var('lang_modified_autoupdate', $LANG_USERBOX_ADMIN['modified_autoupdate']);
$templates->set_var('lang_modified', $LANG_USERBOX_ADMIN['modified']);
$w = COM_convertDate2Timestamp($modified_year . "-" . $modified_month . "-" . $modified_day, $modified_hour . ":" . $modified_minute . "::00");
$datetime_modified = DATABOX_datetimeedit($w, "LANG_USERBOX_ADMIN", "modified");
$templates->set_var('datetime_modified', $datetime_modified);
//公開日
$templates->set_var('lang_released', $LANG_USERBOX_ADMIN['released']);
$w = COM_convertDate2Timestamp($released_year . "-" . $released_month . "-" . $released_day, $released_hour . ":" . $released_minute . "::00");
$datetime_released = DATABOX_datetimeedit($w, "LANG_USERBOX_ADMIN", "released");
$templates->set_var('datetime_released', $datetime_released);
//公開終了日
$templates->set_var('lang_expired', $LANG_USERBOX_ADMIN['expired']);
//if ($expired=="0000-00-00 00:00:00"){
if ($expired_flag == 0) {
$templates->set_var('show_expired', 'false');
$templates->set_var('is_checked_expired', '');
} else {
$templates->set_var('show_expired', 'true');
$templates->set_var('is_checked_expired', 'checked="expired"');
}
$templates->set_var('lang_expired', $LANG_USERBOX_ADMIN['expired']);
$w = COM_convertDate2Timestamp($expired_year . "-" . $expired_month . "-" . $expired_day, $expired_hour . ":" . $expired_minute . "::00");
$datetime_expired = DATABOX_datetimeedit($w, "LANG_USERBOX_ADMIN", "expired");
$templates->set_var('datetime_expired', $datetime_expired);
//順序
$templates->set_var('lang_orderno', $LANG_USERBOX_ADMIN['orderno']);
$templates->set_var('orderno', $orderno);
//koko
//カテゴリ
$templates->set_var('lang_category', $LANG_USERBOX_ADMIN['category']);
$checklist_category = DATABOX_getcategoriesinp($category, $fieldset_id, $pi_name);
$templates->set_var('checklist_category', $checklist_category);
//追加項目
$templates->set_var('lang_additionfields', $LANG_USERBOX_ADMIN['additionfields']);
$rt = DATABOX_getaddtionfieldsEdit($additionfields, $addition_def, $templates, 9999, $pi_name, $additionfields_fnm, $additionfields_del, $fieldset_id, $additionfields_date);
//保存日時
$templates->set_var('lang_udatetime', $LANG_USERBOX_ADMIN['udatetime']);
$templates->set_var('udatetime', $udatetime);
$templates->set_var('lang_uuid', $LANG_USERBOX_ADMIN['uuid']);
$templates->set_var('uuid', $uuid);
//作成日付
$templates->set_var('lang_created', $LANG_USERBOX_ADMIN['created']);
$templates->set_var('created', $created);
$templates->set_var('created_un', $created_un);
//アクセス権
$templates->set_var('lang_accessrights', $LANG_ACCESS['accessrights']);
$templates->set_var('lang_owner', $LANG_ACCESS['owner']);
$owner_name = COM_getDisplayName($owner_id);
$templates->set_var('owner_name', $owner_name);
$templates->set_var('owner_id', $owner_id);
$templates->set_var('lang_group', $LANG_ACCESS['group']);
$templates->set_var('group_dropdown', SEC_getGroupDropdown($group_id, 3));
$templates->set_var('lang_permissions', $LANG_ACCESS['permissions']);
$templates->set_var('lang_perm_key', $LANG_ACCESS['permissionskey']);
$templates->set_var('permissions_editor', SEC_getPermissionsHTML($perm_owner, $perm_group, $perm_members, $perm_anon));
$templates->set_var('permissions_msg', $LANG_ACCESS['permmsg']);
$templates->set_var('lang_permissions_msg', $LANG_ACCESS['permmsg']);
// SAVE、CANCEL ボタン
$templates->set_var('lang_save', $LANG_ADMIN['save']);
$templates->set_var('lang_cancel', $LANG_ADMIN['cancel']);
$templates->set_var('lang_preview', $LANG_ADMIN['preview']);
//delete_option
//$delflg=false;//@@@@@ 削除不可
if ($delflg) {
$delbutton = '<input type="submit" value="' . $LANG_ADMIN['delete'] . '" name="mode"%s>';
$jsconfirm = ' onclick="return confirm(\'' . $MESSAGE[76] . '\');"';
$templates->set_var('delete_option', sprintf($delbutton, $jsconfirm));
}
//
$templates->parse('output', 'editor');
$retval .= $templates->finish($templates->get_var('output'));
return $retval;
}
/**
* Displays the static page editor form
*
* @param array $A Data to display
* @return string HTML for the static page editor
*
*/
function staticpageeditor_form($A, $error = false)
{
global $_CONF, $_TABLES, $_USER, $_GROUPS, $_SP_CONF, $mode, $sp_id, $LANG21, $LANG_STATIC, $LANG_ACCESS, $LANG_ADMIN, $LANG24, $LANG_postmodes, $MESSAGE;
$template_path = staticpages_templatePath('admin');
if (!empty($sp_id) && $mode == 'edit') {
$access = SEC_hasAccess($A['owner_id'], $A['group_id'], $A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']);
} else {
if ($mode != 'clone') {
$A['sp_inblock'] = $_SP_CONF['in_block'];
}
$A['owner_id'] = $_USER['uid'];
if (isset($_GROUPS['Static Page Admin'])) {
$A['group_id'] = $_GROUPS['Static Page Admin'];
} else {
$A['group_id'] = SEC_getFeatureGroup('staticpages.edit');
}
SEC_setDefaultPermissions($A, $_SP_CONF['default_permissions']);
$access = 3;
if (isset($_CONF['advanced_editor']) && $_CONF['advanced_editor'] == 1 && file_exists($template_path . '/editor_advanced.thtml')) {
$A['advanced_editor_mode'] = 1;
}
}
$retval = '';
$sp_template = new Template($template_path);
if (isset($_CONF['advanced_editor']) && $_CONF['advanced_editor'] == 1 && file_exists($template_path . '/editor_advanced.thtml')) {
$sp_template->set_file('form', 'editor_advanced.thtml');
$sp_template->set_var('lang_expandhelp', $LANG24[67]);
$sp_template->set_var('lang_reducehelp', $LANG24[68]);
$sp_template->set_var('lang_toolbar', $LANG24[70]);
$sp_template->set_var('toolbar1', $LANG24[71]);
$sp_template->set_var('toolbar2', $LANG24[72]);
$sp_template->set_var('toolbar3', $LANG24[73]);
$sp_template->set_var('toolbar4', $LANG24[74]);
$sp_template->set_var('toolbar5', $LANG24[75]);
$sp_template->set_var('lang_nojavascript', $LANG24[77]);
$sp_template->set_var('lang_postmode', $LANG24[4]);
if (isset($A['postmode']) && $A['postmode'] == 'adveditor') {
$sp_template->set_var('show_adveditor', '');
$sp_template->set_var('show_htmleditor', 'none');
} else {
$sp_template->set_var('show_adveditor', 'none');
$sp_template->set_var('show_htmleditor', '');
}
$post_options = '<option value="html" selected="selected">' . $LANG_postmodes['html'] . '</option>';
if (isset($A['postmode']) && $A['postmode'] == 'adveditor') {
$post_options .= '<option value="adveditor" selected="selected">' . $LANG24[86] . '</option>';
} else {
$post_options .= '<option value="adveditor">' . $LANG24[86] . '</option>';
}
$sp_template->set_var('post_options', $post_options);
$sp_template->set_var('change_editormode', 'onchange="change_editmode(this);"');
} else {
$sp_template->set_file('form', 'editor.thtml');
}
$sp_template->set_var('layout_url', $_CONF['layout_url']);
$sp_template->set_var('lang_mode', $LANG24[3]);
$sp_template->set_var('comment_options', COM_optionList($_TABLES['commentcodes'], 'code,name', $A['commentcode']));
$sp_template->set_var('lang_accessrights', $LANG_ACCESS['accessrights']);
$sp_template->set_var('lang_owner', $LANG_ACCESS['owner']);
$ownername = COM_getDisplayName($A['owner_id']);
$sp_template->set_var('owner_username', DB_getItem($_TABLES['users'], 'username', "uid = {$A['owner_id']}"));
$sp_template->set_var('owner_name', $ownername);
$sp_template->set_var('owner', $ownername);
$sp_template->set_var('owner_id', $A['owner_id']);
$sp_template->set_var('lang_group', $LANG_ACCESS['group']);
$sp_template->set_var('group_dropdown', SEC_getGroupDropdown($A['group_id'], $access));
$sp_template->set_var('permissions_editor', SEC_getPermissionsHTML($A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']));
$sp_template->set_var('lang_permissions', $LANG_ACCESS['permissions']);
$sp_template->set_var('lang_perm_key', $LANG_ACCESS['permissionskey']);
$sp_template->set_var('permissions_msg', $LANG_ACCESS['permmsg']);
$sp_template->set_var('lang_permissions_msg', $LANG_ACCESS['permmsg']);
$sp_template->set_var('site_url', $_CONF['site_url']);
$sp_template->set_var('site_admin_url', $_CONF['site_admin_url']);
$token = SEC_createToken();
$start_block = COM_startBlock($LANG_STATIC['staticpageeditor'], '', COM_getBlockTemplate('_admin_block', 'header'));
$start_block .= SEC_getTokenExpiryNotice($token);
$sp_template->set_var('start_block_editor', $start_block);
$sp_template->set_var('lang_save', $LANG_ADMIN['save']);
$sp_template->set_var('lang_cancel', $LANG_ADMIN['cancel']);
$sp_template->set_var('lang_preview', $LANG_ADMIN['preview']);
if (SEC_hasRights('staticpages.delete') && $mode != 'clone' && !empty($A['sp_old_id'])) {
$delbutton = '<input type="submit" value="' . $LANG_ADMIN['delete'] . '" name="mode"%s' . XHTML . '>';
$jsconfirm = ' onclick="return confirm(\'' . $MESSAGE[76] . '\');"';
$sp_template->set_var('delete_option', sprintf($delbutton, $jsconfirm));
$sp_template->set_var('delete_option_no_confirmation', sprintf($delbutton, ''));
} else {
$sp_template->set_var('delete_option', '');
}
$sp_template->set_var('lang_writtenby', $LANG_STATIC['writtenby']);
$sp_template->set_var('username', DB_getItem($_TABLES['users'], 'username', "uid = {$A['sp_uid']}"));
$authorname = COM_getDisplayName($A['sp_uid']);
$sp_template->set_var('name', $authorname);
$sp_template->set_var('author', $authorname);
$sp_template->set_var('lang_url', $LANG_STATIC['url']);
$sp_template->set_var('lang_id', $LANG_STATIC['id']);
$sp_template->set_var('sp_uid', $A['sp_uid']);
$sp_template->set_var('sp_id', $A['sp_id']);
$sp_template->set_var('sp_old_id', $A['sp_old_id']);
$sp_template->set_var('example_url', COM_buildURL($_CONF['site_url'] . '/staticpages/index.php?page=' . $A['sp_id']));
$sp_template->set_var('lang_centerblock', $LANG_STATIC['centerblock']);
$sp_template->set_var('lang_centerblock_help', $LANG_ADMIN['help_url']);
$sp_template->set_var('lang_centerblock_include', $LANG21[51]);
$sp_template->set_var('lang_centerblock_desc', $LANG21[52]);
$sp_template->set_var('centerblock_help', $A['sp_help']);
$sp_template->set_var('lang_centerblock_msg', $LANG_STATIC['centerblock_msg']);
if (isset($A['sp_centerblock']) && $A['sp_centerblock'] == 1) {
$sp_template->set_var('centerblock_checked', 'checked="checked"');
} else {
$sp_template->set_var('centerblock_checked', '');
}
$sp_template->set_var('lang_topic', $LANG_STATIC['topic']);
$sp_template->set_var('lang_position', $LANG_STATIC['position']);
$current_topic = '';
if (isset($A['sp_tid'])) {
$current_topic = $A['sp_tid'];
}
if (empty($current_topic)) {
$current_topic = 'none';
}
$topics = COM_topicList('tid,topic', $current_topic, 1, true);
$alltopics = '<option value="all"';
if ($current_topic == 'all') {
$alltopics .= ' selected="selected"';
}
$alltopics .= '>' . $LANG_STATIC['all_topics'] . '</option>' . LB;
$notopic = '<option value="none"';
if ($current_topic == 'none') {
$notopic .= ' selected="selected"';
}
$notopic .= '>' . $LANG_STATIC['no_topic'] . '</option>' . LB;
$sp_template->set_var('topic_selection', '<select name="sp_tid">' . $alltopics . $notopic . $topics . '</select>');
$position = '<select name="sp_where">';
$position .= '<option value="1"';
if ($A['sp_where'] == 1) {
$position .= ' selected="selected"';
}
$position .= '>' . $LANG_STATIC['position_top'] . '</option>';
$position .= '<option value="2"';
if ($A['sp_where'] == 2) {
$position .= ' selected="selected"';
}
$position .= '>' . $LANG_STATIC['position_feat'] . '</option>';
$position .= '<option value="3"';
if ($A['sp_where'] == 3) {
$position .= ' selected="selected"';
}
$position .= '>' . $LANG_STATIC['position_bottom'] . '</option>';
$position .= '<option value="0"';
if ($A['sp_where'] == 0) {
$position .= ' selected="selected"';
}
$position .= '>' . $LANG_STATIC['position_entire'] . '</option>';
$position .= '</select>';
$sp_template->set_var('pos_selection', $position);
if ($_SP_CONF['allow_php'] == 1 && SEC_hasRights('staticpages.PHP')) {
if (!isset($A['sp_php'])) {
$A['sp_php'] = 0;
}
$selection = '<select name="sp_php">' . LB;
$selection .= '<option value="0"';
if ($A['sp_php'] <= 0 || $A['sp_php'] > 2) {
$selection .= ' selected="selected"';
}
$selection .= '>' . $LANG_STATIC['select_php_none'] . '</option>' . LB;
$selection .= '<option value="1"';
if ($A['sp_php'] == 1) {
$selection .= ' selected="selected"';
}
$selection .= '>' . $LANG_STATIC['select_php_return'] . '</option>' . LB;
$selection .= '<option value="2"';
if ($A['sp_php'] == 2) {
$selection .= ' selected="selected"';
}
$selection .= '>' . $LANG_STATIC['select_php_free'] . '</option>' . LB;
$selection .= '</select>';
$sp_template->set_var('php_selector', $selection);
$sp_template->set_var('php_warn', $LANG_STATIC['php_warn']);
} else {
$sp_template->set_var('php_selector', '');
$sp_template->set_var('php_warn', $LANG_STATIC['php_not_activated']);
}
$sp_template->set_var('php_msg', $LANG_STATIC['php_msg']);
// old variables (for the 1.3-type checkbox)
$sp_template->set_var('php_checked', '');
$sp_template->set_var('php_type', 'hidden');
if (isset($A['sp_nf']) && $A['sp_nf'] == 1) {
$sp_template->set_var('exit_checked', 'checked="checked"');
} else {
$sp_template->set_var('exit_checked', '');
}
$sp_template->set_var('exit_msg', $LANG_STATIC['exit_msg']);
$sp_template->set_var('exit_info', $LANG_STATIC['exit_info']);
if ($A['sp_inblock'] == 1) {
$sp_template->set_var('inblock_checked', 'checked="checked"');
} else {
$sp_template->set_var('inblock_checked', '');
}
$sp_template->set_var('inblock_msg', $LANG_STATIC['inblock_msg']);
$sp_template->set_var('inblock_info', $LANG_STATIC['inblock_info']);
$curtime = COM_getUserDateTimeFormat($A['unixdate']);
$sp_template->set_var('lang_lastupdated', $LANG_STATIC['date']);
$sp_template->set_var('sp_formateddate', $curtime[0]);
$sp_template->set_var('sp_date', $curtime[1]);
$sp_template->set_var('lang_title', $LANG_STATIC['title']);
$title = '';
if (isset($A['sp_title'])) {
$title = htmlspecialchars(stripslashes($A['sp_title']));
}
$sp_template->set_var('sp_title', $title);
$sp_template->set_var('lang_metadescription', $LANG_ADMIN['meta_description']);
$sp_template->set_var('lang_metakeywords', $LANG_ADMIN['meta_keywords']);
if (!empty($A['meta_description'])) {
$sp_template->set_var('meta_description', $A['meta_description']);
}
if (!empty($A['meta_keywords'])) {
$sp_template->set_var('meta_keywords', $A['meta_keywords']);
}
$sp_template->set_var('lang_addtomenu', $LANG_STATIC['addtomenu']);
if (isset($A['sp_onmenu']) && $A['sp_onmenu'] == 1) {
$sp_template->set_var('onmenu_checked', 'checked="checked"');
} else {
$sp_template->set_var('onmenu_checked', '');
}
$sp_template->set_var('lang_label', $LANG_STATIC['label']);
if (isset($A['sp_label'])) {
$sp_template->set_var('sp_label', $A['sp_label']);
} else {
$sp_template->set_var('sp_label', '');
}
$sp_template->set_var('lang_pageformat', $LANG_STATIC['pageformat']);
$sp_template->set_var('lang_blankpage', $LANG_STATIC['blankpage']);
$sp_template->set_var('lang_noblocks', $LANG_STATIC['noblocks']);
$sp_template->set_var('lang_leftblocks', $LANG_STATIC['leftblocks']);
$sp_template->set_var('lang_leftrightblocks', $LANG_STATIC['leftrightblocks']);
if (!isset($A['sp_format'])) {
$A['sp_format'] = '';
}
if ($A['sp_format'] == 'noblocks') {
$sp_template->set_var('noblock_selected', 'selected="selected"');
} else {
$sp_template->set_var('noblock_selected', '');
}
if ($A['sp_format'] == 'leftblocks') {
$sp_template->set_var('leftblocks_selected', 'selected="selected"');
} else {
$sp_template->set_var('leftblocks_selected', '');
}
if ($A['sp_format'] == 'blankpage') {
$sp_template->set_var('blankpage_selected', 'selected="selected"');
} else {
$sp_template->set_var('blankpage_selected', '');
}
if ($A['sp_format'] == 'allblocks' or empty($A['sp_format'])) {
$sp_template->set_var('allblocks_selected', 'selected="selected"');
} else {
$sp_template->set_var('allblocks_selected', '');
}
$sp_template->set_var('lang_content', $LANG_STATIC['content']);
$content = '';
if (isset($A['sp_content'])) {
$content = htmlspecialchars(stripslashes($A['sp_content']));
$content = str_replace(array('{', '}'), array('{', '}'), $content);
}
$sp_template->set_var('sp_content', $content);
if ($_SP_CONF['filter_html'] == 1) {
$allowed = COM_allowedHTML('staticpages.edit');
$sp_template->set_var('lang_allowedhtml', $allowed);
$sp_template->set_var('lang_allowed_html', $allowed);
} else {
$sp_template->set_var('lang_allowedhtml', $LANG_STATIC['all_html_allowed']);
$allowed = '<span class="warningsmall">' . $LANG_STATIC['all_html_allowed'] . ',</span>' . LB . '<div dir="ltr" class="warningsmall">';
$autotags = array_keys(PLG_collectTags());
$allowed .= '[' . implode(':], [', $autotags) . ':]';
$allowed .= '</div>';
$sp_template->set_var('lang_allowed_html', $allowed);
}
$sp_template->set_var('lang_hits', $LANG_STATIC['hits']);
if (empty($A['sp_hits'])) {
$sp_template->set_var('sp_hits', '0');
$sp_template->set_var('sp_hits_formatted', '0');
} else {
$sp_template->set_var('sp_hits', $A['sp_hits']);
$sp_template->set_var('sp_hits_formatted', COM_numberFormat($A['sp_hits']));
}
$sp_template->set_var('end_block', COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer')));
$sp_template->set_var('xhtml', XHTML);
$sp_template->set_var('gltoken_name', CSRF_TOKEN);
$sp_template->set_var('gltoken', $token);
$sp_template->parse('output', 'form');
$retval .= $sp_template->finish($sp_template->get_var('output'));
return $retval;
}
function MG_editMemberDefaults()
{
global $_CONF, $_MG_CONF, $_TABLES, $_USER, $LANG_MG00, $LANG_MG01, $LANG_MG03, $LANG_ACCESS, $LANG_DIRECTION;
global $album_jumpbox, $album_selectbox, $MG_albums, $LANG04;
MG_initAlbums();
$retval = '';
$T = new Template($_MG_CONF['template_path'] . '/admin');
$T->set_file(array('admin' => 'editmember.thtml', 'admin_formats' => 'editalbum_formats.thtml'));
include_once $_CONF['path_system'] . "classes/navbar.class.php";
$navbar = new navbar();
$navbar->add_menuitem($LANG_MG01['member_albums'], 'showhideMGAdminEditorDiv("members",0);return false;', true);
$navbar->add_menuitem($LANG_MG01['allowed_media_formats'], 'showhideMGAdminEditorDiv("media",1);return false;', true);
$navbar->add_menuitem($LANG_MG01['album_attributes'], 'showhideMGAdminEditorDiv("attributes",2);return false;', true);
$navbar->add_menuitem($LANG_MG01['anonymous_uploads_prompt'], 'showhideMGAdminEditorDiv("useruploads",3);return false;', true);
$navbar->add_menuitem($LANG_ACCESS['accessrights'], 'showhideMGAdminEditorDiv("access",4);return false;', true);
$navbar->set_selected($LANG_MG01['member_albums']);
$T->set_var('navbar', $navbar->generate());
$T->set_var('no_javascript_warning', $LANG04[150]);
$T->set_var(array('jpg_checked' => $_MG_CONF['member_valid_formats'] & MG_JPG ? ' checked="checked"' : '', 'png_checked' => $_MG_CONF['member_valid_formats'] & MG_PNG ? ' checked="checked"' : '', 'tif_checked' => $_MG_CONF['member_valid_formats'] & MG_TIF ? ' checked="checked"' : '', 'gif_checked' => $_MG_CONF['member_valid_formats'] & MG_GIF ? ' checked="checked"' : '', 'bmp_checked' => $_MG_CONF['member_valid_formats'] & MG_BMP ? ' checked="checked"' : '', 'tga_checked' => $_MG_CONF['member_valid_formats'] & MG_TGA ? ' checked="checked"' : '', 'psd_checked' => $_MG_CONF['member_valid_formats'] & MG_PSD ? ' checked="checked"' : '', 'mp3_checked' => $_MG_CONF['member_valid_formats'] & MG_MP3 ? ' checked="checked"' : '', 'ogg_checked' => $_MG_CONF['member_valid_formats'] & MG_OGG ? ' checked="checked"' : '', 'asf_checked' => $_MG_CONF['member_valid_formats'] & MG_ASF ? ' checked="checked"' : '', 'swf_checked' => $_MG_CONF['member_valid_formats'] & MG_SWF ? ' checked="checked"' : '', 'mov_checked' => $_MG_CONF['member_valid_formats'] & MG_MOV ? ' checked="checked"' : '', 'mp4_checked' => $_MG_CONF['member_valid_formats'] & MG_MP4 ? ' checked="checked"' : '', 'mpg_checked' => $_MG_CONF['member_valid_formats'] & MG_MPG ? ' checked="checked"' : '', 'zip_checked' => $_MG_CONF['member_valid_formats'] & MG_ZIP ? ' checked="checked"' : '', 'flv_checked' => $_MG_CONF['member_valid_formats'] & MG_FLV ? ' checked="checked"' : '', 'rflv_checked' => $_MG_CONF['member_valid_formats'] & MG_RFLV ? ' checked="checked"' : '', 'emb_checked' => $_MG_CONF['member_valid_formats'] & MG_EMB ? ' checked="checked"' : '', 'other_checked' => $_MG_CONF['member_valid_formats'] & MG_OTHER ? ' checked="checked"' : '', 'lang_jpg' => $LANG_MG01['jpg'], 'lang_png' => $LANG_MG01['png'], 'lang_tif' => $LANG_MG01['tif'], 'lang_gif' => $LANG_MG01['gif'], 'lang_bmp' => $LANG_MG01['bmp'], 'lang_tga' => $LANG_MG01['tga'], 'lang_psd' => $LANG_MG01['psd'], 'lang_mp3' => $LANG_MG01['mp3'], 'lang_ogg' => $LANG_MG01['ogg'], 'lang_asf' => $LANG_MG01['asf'], 'lang_swf' => $LANG_MG01['swf'], 'lang_mov' => $LANG_MG01['mov'], 'lang_mp4' => $LANG_MG01['mp4'], 'lang_mpg' => $LANG_MG01['mpg'], 'lang_zip' => $LANG_MG01['zip'], 'lang_flv' => $LANG_MG01['flv'], 'lang_rflv' => $LANG_MG01['rflv'], 'lang_emb' => $LANG_MG01['emb'], 'lang_other' => $LANG_MG01['other'], 'lang_allowed_formats' => $LANG_MG01['allowed_media_formats'], 'lang_image' => $LANG_MG01['image'], 'lang_audio' => $LANG_MG01['audio'], 'lang_video' => $LANG_MG01['video']));
$T->parse('valid_formats', 'admin_formats');
$member_albums = '<input type="checkbox" name="member_albums" value="1" ' . ($_MG_CONF['member_albums'] ? ' checked="checked"' : '') . '/>';
$auto_create = '<input type="checkbox" name="auto_create" value="1" ' . ($_MG_CONF['member_auto_create'] ? ' checked="checked"' : '') . '/>';
$allow_create = '<input type="checkbox" name="allow_create" value="1" ' . ($_MG_CONF['member_create_new'] ? ' checked="checked"' : '') . '/>';
$album_jumpbox = '';
$MG_albums[0]->buildJumpBox($_MG_CONF['member_album_root']);
$album_list_root = '<select name="member_root">';
$album_list_root .= '<option value="0">' . $LANG_MG01['root_album'] . '</option>';
$album_list_root .= $album_jumpbox;
$album_list_root .= '</select>';
$MG_albums[0]->buildAlbumBox($_MG_CONF['member_album_archive'], 3, -1, 'upload');
$member_archive = '<select name="member_archive">';
$member_archive .= '<option value="0">' . $LANG_MG01['do_not_archive'] . '</option>';
$member_archive .= $album_selectbox;
$member_archive .= '</select>';
$T->set_var('site_url', $_CONF['site_url']);
$T->set_var('site_admin_url', $_CONF['site_admin_url']);
$ri_select = '<input type="checkbox" name="enable_random" value="1" ' . ($_MG_CONF['member_enable_random'] ? ' checked="checked"' : '') . '/>';
$max_image_height_input = '<input type="text" size="4" name="max_image_height" value="' . $_MG_CONF['member_max_height'] . '"' . '/>';
$max_image_width_input = '<input type="text" size="4" name="max_image_width" value="' . $_MG_CONF['member_max_width'] . '"' . '/>';
$max_filesize_input = '<input type="text" size="10" name="max_filesize" value="' . $_MG_CONF['member_max_filesize'] . '"' . '/>';
$email_mod_select = '<input type="checkbox" name="email_mod" value="1" ' . ($_MG_CONF['member_email_mod'] ? ' checked="checked"' : '') . '/>';
// permission template
$usergroups = SEC_getUserGroups();
$groupdd = '';
$moddd = '';
$gresult = DB_query("SELECT grp_id FROM {$_TABLES['groups']} WHERE grp_name LIKE 'mediagallery Admin'");
$grow = DB_fetchArray($gresult);
$grp_id = $grow['grp_id'];
if (!isset($_MG_CONF['ad_group_id'])) {
$_MG_CONF['ad_group_id'] = $grp_id;
}
if (!isset($_MG_CONF['member_mod_group_id'])) {
$_MG_CONF['member_mod_group_id'] = $grp_id;
}
$groupdd .= '<select name="group_id">';
$moddd .= '<select name="mod_id">';
for ($i = 0; $i < count($usergroups); $i++) {
$groupdd .= '<option value="' . $usergroups[key($usergroups)] . '"';
$moddd .= '<option value="' . $usergroups[key($usergroups)] . '"';
if ($_MG_CONF['ad_group_id'] == $usergroups[key($usergroups)]) {
$groupdd .= ' selected="selected"';
$groupname = key($usergroups);
}
if ($_MG_CONF['member_mod_group_id'] == $usergroups[key($usergroups)]) {
$moddd .= ' selected="selected"';
}
$groupdd .= '>' . key($usergroups) . '</option>';
$moddd .= '>' . key($usergroups) . '</option>';
next($usergroups);
}
$groupdd .= '</select>';
$moddd .= '</select>';
$upload_select = '<input type="checkbox" name="uploads" value="1" ' . ($_MG_CONF['member_uploads'] ? ' checked="checked"' : '') . '/>';
$moderate_select = '<input type="checkbox" name="moderate" value="1" ' . ($_MG_CONF['member_moderate'] ? ' checked="checked"' : '') . '/>';
if (!isset($_MG_CONF['member_use_fullname'])) {
$_MG_CONF['member_use_fullname'] = 0;
}
$fullname_select = '<input type="checkbox" name="member_use_fullname" value="1" ' . ($_MG_CONF['member_use_fullname'] ? ' checked="checked"' : '') . '/>';
if (!isset($_MG_CONF['feature_member_album'])) {
$_MG_CONF['feature_member_album'] = 0;
}
$feature_select = '<input type="checkbox" name="feature_member_album" value="1" ' . ($_MG_CONF['feature_member_album'] ? ' checked="checked"' : '') . '/>';
if (!isset($_MG_CONF['allow_remote'])) {
$_MG_CONF['allow_remote'] = 0;
}
$allow_remote = '<input type="checkbox" name="allow_remote" value="1" ' . ($_MG_CONF['allow_remote'] ? ' checked="checked"' : '') . '/>';
$T->set_var(array('site_url' => $_MG_CONF['site_url'], 'member_albums' => $member_albums, 'album_list_root' => $album_list_root, 'member_archive' => $member_archive, 'auto_create' => $auto_create, 'allow_create' => $allow_create, 'ri_select' => $ri_select, 'height_input' => $max_image_height_input, 'width_input' => $max_image_width_input, 'email_mod_select' => $email_mod_select, 'uploads' => $upload_select, 'moderate' => $moderate_select, 'member_quota' => $_MG_CONF['member_quota'] / 1048576, 'max_filesize' => $_MG_CONF['member_max_filesize'] / 1024, 'member_use_fullname' => $fullname_select, 'feature_member_album' => $feature_select, 'allow_remote' => $allow_remote, 'lang_uploads' => $LANG_MG01['anonymous_uploads_prompt'], 'lang_accessrights' => $LANG_ACCESS['accessrights'], 'lang_owner' => $LANG_ACCESS['owner'], 'lang_group' => $LANG_ACCESS['group'], 'lang_permissions' => $LANG_ACCESS['permissions'], 'lang_perm_key' => $LANG_ACCESS['permissionskey'], 'permissions_editor' => SEC_getPermissionsHTML($_MG_CONF['member_perm_owner'], $_MG_CONF['member_perm_group'], $_MG_CONF['member_perm_members'], $_MG_CONF['member_perm_anon']), 'permissions_msg' => $LANG_ACCESS['permmsg'], 'group_dropdown' => $groupdd, 'mod_dropdown' => $moddd, 'lang_member_upload' => $LANG_MG01['member_upload'], 'lang_moderate_album' => $LANG_MG01['mod_album'], 'lang_mod_group' => $LANG_MG01['moderation_group'], 'lang_zero_unlimited' => $LANG_MG01['zero_unlimited'], 'lang_ri_enable' => $LANG_MG01['ri_enable'], 'lang_max_image_height' => $LANG_MG01['max_image_height'], 'lang_max_image_width' => $LANG_MG01['max_image_width'], 'lang_max_filesize' => $LANG_MG01['max_filesize'], 'lang_display_image_size' => $LANG_MG01['display_image_size'], 'lang_email_mods_on_submission' => $LANG_MG01['email_mods_on_submission'], 'lang_album_attributes' => $LANG_MG01['album_attributes'], 'lang_member_albums' => $LANG_MG01['member_albums'], 'lang_enable_member_albums' => $LANG_MG01['enable_member_albums'], 'lang_member_quota' => $LANG_MG01['default_member_quota'], 'lang_auto_create' => $LANG_MG01['auto_create'], 'lang_allow_create' => $LANG_MG01['allow_create'], 'lang_member_root' => $LANG_MG01['member_root'], 'lang_member_archive' => $LANG_MG01['member_archive'], 'lang_member_use_fullname' => $LANG_MG01['member_use_fullname'], 'lang_feature_member_album' => $LANG_MG01['feature_member_album'], 'lang_allow_remote' => $LANG_MG01['allow_remote'], 'lang_save' => $LANG_MG01['save'], 'lang_cancel' => $LANG_MG01['cancel'], 's_form_action' => $_MG_CONF['admin_url'] . 'member.php', 'rtl' => $LANG_DIRECTION == "rtl" ? "rtl" : ""));
$T->parse('output', 'admin');
$retval .= $T->finish($T->get_var('output'));
return $retval;
}
/**
* edits or creates an album
*
* @param int album_id album_id to edit
* @param string mode create or edit
* @param string actionURL where to redirection on finish
* @param int oldaid original album id
* @return string HTML
*
*/
function MG_editAlbum($album_id = 0, $mode = '', $actionURL = '', $oldaid = 0)
{
global $_USER, $_CONF, $_TABLES, $_MG_CONF, $LANG_MG00, $LANG_MG01, $LANG_MG03, $LANG_ACCESS, $REMOTE_ADDR;
global $MG_albums, $album_selectbox, $_DB_dbms;
$valid_albums = 0;
if ($actionURL == '') {
$actionURL = $_CONF['site_admin_url'] . '/plugins/mediagallery/index.php';
}
if ($_DB_dbms == "mssql") {
$sql = "SELECT *,CAST(album_desc AS TEXT) as album_desc FROM " . $_TABLES['mg_albums'] . " WHERE album_id=" . $album_id;
} else {
$sql = "SELECT * FROM " . $_TABLES['mg_albums'] . " WHERE album_id=" . intval($album_id);
}
$result = DB_query($sql);
$numRows = DB_numRows($result);
if ($numRows > 0) {
$A = DB_fetchArray($result);
}
$retval = '';
$T = new Template(MG_getTemplatePath($album_id));
$T->set_var('site_url', $_CONF['site_url']);
$T->set_var('site_admin_url', $_CONF['site_admin_url']);
if ($album_id != 0 && $mode == 'edit') {
// If edit, pull up the existing album information...
if ($MG_albums[$album_id]->access != 3) {
COM_errorLog("MediaGallery: Someone has tried to illegally edit a Media Gallery Album. User id: {$_USER['uid']}, Username: {$_USER['username']}, IP: {$REMOTE_ADDR}", 1);
return MG_genericError($LANG_MG00['access_denied_msg']);
}
} else {
if ($album_id == 0 && $mode == 'create') {
// create the album...
$A['album_id'] = -1;
$A['album_order'] = 0;
$album_id = -1;
$A['album_parent'] = 0;
$A['album_title'] = '';
$A['album_desc'] = '';
$A['hidden'] = 0;
$A['album_cover'] = -1;
$A['featured'] = 0;
$A['cbposition'] = 0;
$A['cbpage'] = 'all';
$A['owner_id'] = $_USER['uid'];
$A['member_uploads'] = $_MG_CONF['ad_member_uploads'];
$A['moderate'] = $_MG_CONF['ad_moderate'];
$A['tn_attached'] = 0;
$A['exif_display'] = $_MG_CONF['ad_exif_display'];
$A['enable_slideshow'] = $_MG_CONF['ad_enable_slideshow'];
$A['enable_random'] = $_MG_CONF['ad_enable_random'];
$A['enable_shutterfly'] = $_MG_CONF['ad_enable_shutterfly'];
$A['enable_views'] = $_MG_CONF['ad_enable_views'];
$A['enable_keywords'] = $_MG_CONF['ad_enable_keywords'];
$A['display_album_desc'] = $_MG_CONF['ad_display_album_desc'];
$A['enable_album_views'] = $_MG_CONF['ad_enable_album_views'];
$A['image_skin'] = $_MG_CONF['ad_image_skin'];
$A['album_skin'] = $_MG_CONF['ad_album_skin'];
$A['display_skin'] = $_MG_CONF['ad_display_skin'];
$A['enable_sort'] = $_MG_CONF['ad_enable_sort'];
$A['enable_rss'] = $_MG_CONF['ad_enable_rss'];
$A['enable_postcard'] = $_MG_CONF['ad_enable_postcard'];
$A['albums_first'] = $_MG_CONF['ad_albums_first'];
$A['enable_rating'] = $_MG_CONF['ad_enable_rating'];
$A['enable_comments'] = $_MG_CONF['ad_enable_comments'];
$A['tn_size'] = $_MG_CONF['ad_tn_size'];
$A['allow_download'] = $_MG_CONF['ad_allow_download'];
$A['max_image_height'] = $_MG_CONF['ad_max_image_height'];
$A['max_image_width'] = $_MG_CONF['ad_max_image_width'];
$A['max_filesize'] = $_MG_CONF['ad_max_filesize'];
$A['display_image_size'] = $_MG_CONF['ad_display_image_size'];
$A['display_rows'] = $_MG_CONF['ad_display_rows'];
$A['display_columns'] = $_MG_CONF['ad_display_columns'];
$A['valid_formats'] = $_MG_CONF['ad_valid_formats'];
$A['filename_title'] = $_MG_CONF['ad_filename_title'];
$A['wm_auto'] = $_MG_CONF['ad_wm_auto'];
$A['wm_id'] = $_MG_CONF['ad_wm_id'];
$A['opacity'] = $_MG_CONF['ad_wm_opacity'];
$A['wm_location'] = $_MG_CONF['ad_wm_location'];
$A['album_sort_order'] = $_MG_CONF['ad_album_sort_order'];
$A['email_mod'] = $_MG_CONF['ad_email_mod'];
$A['album_cover_filename'] = '';
$A['last_update'] = 0;
$A['media_count'] = 0;
$A['full_display'] = $_MG_CONF['ad_full_display'];
$A['playback_type'] = $_MG_CONF['ad_playback_type'];
$A['podcast'] = isset($_MG_CONF['ad_podcast']) ? $_MG_CONF['ad_podcast'] : 0;
$A['mp3ribbon'] = 0;
$A['rsschildren'] = 0;
$A['usealternate'] = isset($_MG_CONF['ad_use_alternate']) ? $_MG_CONF['ad_use_alternate'] : 0;
$A['skin'] = isset($_MG_CONF['ad_skin']) ? $_MG_CONF['ad_skin'] : 'default';
$gresult = DB_query("SELECT grp_id FROM {$_TABLES['groups']} WHERE grp_name LIKE 'mediagallery Admin'");
$grow = DB_fetchArray($gresult);
$grp_id = $grow['grp_id'];
$A['group_id'] = $grp_id;
$A['mod_group_id'] = $grp_id;
$A['perm_owner'] = $_MG_CONF['ad_perm_owner'];
$A['perm_group'] = $_MG_CONF['ad_perm_group'];
$A['perm_members'] = $_MG_CONF['ad_perm_members'];
$A['perm_anon'] = $_MG_CONF['ad_perm_anon'];
$A['tnheight'] = $_MG_CONF['ad_tn_height'];
$A['tnwidth'] = $_MG_CONF['ad_tn_width'];
}
}
$T->set_var('album_id', $A['album_id']);
$retval .= COM_startBlock($mode == 'create' ? $LANG_MG01['create_album'] : $LANG_MG01['edit_album'] . ' - ' . strip_tags($A['album_title']), '', COM_getBlockTemplate('_admin_block', 'header'));
// If edit, pull up the existing album information...
$T->set_file(array('admin' => 'editalbum.thtml', 'falbum' => 'featured_album.thtml', 'perms_admin' => 'edit_album_permissions.thtml', 'perms_member' => 'edit_album_perm_member.thtml', 'admin_attr' => 'editalbum_admin.thtml', 'admin_formats' => 'editalbum_formats.thtml'));
// construct the album jumpbox...
if ($mode == 'create') {
$select = $oldaid;
} else {
$select = $A['album_parent'];
}
$album_selectbox = '<select name="parentaid">';
$valid_albums += $MG_albums[0]->buildAlbumBox($select, 3, $A['album_id'], $mode);
$album_selectbox .= '</select>';
$album_select = $album_selectbox;
if ($valid_albums == 0) {
COM_errorLog("MediaGallery: Someone has tried to illegally create a Medig Gallery Album. User id: {$_USER['uid']}, Username: {$_USER['username']}, IP: {$REMOTE_ADDR}", 1);
return MG_genericError($LANG_MG00['access_denied_msg']);
}
// build exif select box...
$exif_select = '<select name="enable_exif">';
$exif_select .= '<option value="0"' . ($A['exif_display'] == 0 ? 'selected="selected"' : '') . '>' . $LANG_MG01['disable_exif'] . '</option>';
$exif_select .= '<option value="1"' . ($A['exif_display'] == 1 ? 'selected="selected"' : '') . '>' . $LANG_MG01['display_below_media'] . '</option>';
$exif_select .= '<option value="2"' . ($A['exif_display'] == 2 ? 'selected="selected"' : '') . '>' . $LANG_MG01['display_in_popup'] . '</option>';
$exif_select .= '<option value="3"' . ($A['exif_display'] == 3 ? 'selected="selected"' : '') . '>' . $LANG_MG01['both'] . '</option>';
$exif_select .= '</select>';
$full_select = '<select name="full_display"' . ($_MG_CONF['discard_original'] ? ' disabled=disabled ' : '') . '>';
$full_select .= '<option value="0"' . ($A['full_display'] == 0 ? 'selected="selected"' : '') . '>' . $LANG_MG01['always'] . '</option>';
$full_select .= '<option value="1"' . ($A['full_display'] == 1 ? 'selected="selected"' : '') . '>' . $LANG_MG01['members_only'] . '</option>';
$full_select .= '<option value="2"' . ($A['full_display'] == 2 ? 'selected="selected"' : '') . '>' . $LANG_MG01['disabled'] . '</option>';
$full_select .= '</select>';
$ranking_select = '<select name="enable_rating">';
$ranking_select .= '<option value="0"' . ($A['enable_rating'] == 0 ? 'selected="selected"' : '') . '>' . $LANG_MG01['disabled'] . '</option>';
$ranking_select .= '<option value="1"' . ($A['enable_rating'] == 1 ? 'selected="selected"' : '') . '>' . $LANG_MG01['members_only'] . '</option>';
$ranking_select .= '<option value="2"' . ($A['enable_rating'] == 2 ? 'selected="selected"' : '') . '>' . $LANG_MG01['always'] . '</option>';
$ranking_select .= '</select>';
$podcast_select = '<input type="checkbox" name="podcast" value="1" ' . ($A['podcast'] ? ' checked="checked"' : '') . '/>';
$mp3ribbon_select = '<input type="checkbox" name="mp3ribbon" value="1" ' . ($A['mp3ribbon'] ? ' checked="checked"' : '') . '/>';
$rsschildren_select = '<input type="checkbox" name="rsschildren" value="1" ' . ($A['rsschildren'] ? ' checked="checked"' : '') . '/>';
$comment_select = '<input type="checkbox" name="enable_comments" value="1" ' . ($A['enable_comments'] ? ' checked="checked"' : '') . '/>';
$ss_select = '<select name="enable_slideshow">';
$ss_select .= '<option value="0" ' . ($A['enable_slideshow'] == 0 ? ' selected="selected"' : '') . '>' . $LANG_MG01['disabled'] . '</option>';
$ss_select .= '<option value="1"' . ($A['enable_slideshow'] == 1 ? ' selected="selected"' : '') . '>' . $LANG_MG01['js_slideshow'] . '</option>';
$ss_select .= '<option value="2"' . ($A['enable_slideshow'] == 2 ? ' selected="selected"' : '') . '>' . $LANG_MG01['lightbox'] . '</option>';
$ss_select .= '<option value="3"' . ($A['enable_slideshow'] == 3 ? ' selected="selected"' : '') . '>' . $LANG_MG01['flash_slideshow_disp'] . '</option>';
$ss_select .= '<option value="4"' . ($A['enable_slideshow'] == 4 ? ' selected="selected"' : '') . '>' . $LANG_MG01['flash_slideshow_full'] . '</option>';
$ss_select .= '<option value="5"' . ($A['enable_slideshow'] == 5 ? ' selected="selected"' : '') . '>' . $LANG_MG01['mp3_jukebox'] . '</option>';
$ss_select .= '</select>';
$sf_select = '<input type="checkbox" name="enable_shutterfly" value="1" ' . ($A['enable_shutterfly'] ? ' checked="checked"' : '') . '/>';
$views_select = '<input type="checkbox" name="enable_views" value="1" ' . ($A['enable_views'] ? ' checked="checked"' : '') . '/>';
$keywords_select = '<input type="checkbox" name="enable_keywords" value="1" ' . ($A['enable_keywords'] ? ' checked="checked"' : '') . '/>';
$sort_select = '<input type="checkbox" name="enable_sort" value="1" ' . ($A['enable_sort'] ? ' checked="checked"' : '') . '/>';
$rss_select = '<input type="checkbox" name="enable_rss" value="1" ' . ($A['enable_rss'] ? ' checked="checked"' : '') . '/>';
$postcard_select = '<select name="enable_postcard">';
$postcard_select .= '<option value="0"' . ($A['enable_postcard'] == 0 ? 'selected="selected"' : '') . '>' . $LANG_MG01['disabled'] . '</option>';
$postcard_select .= '<option value="1"' . ($A['enable_postcard'] == 1 ? 'selected="selected"' : '') . '>' . $LANG_MG01['members_only'] . '</option>';
$postcard_select .= '<option value="2"' . ($A['enable_postcard'] == 2 ? 'selected="selected"' : '') . '>' . $LANG_MG01['all_users'] . '</option>';
$postcard_select .= '</select>';
$afirst_select = '<input type="checkbox" name="albums_first" value="1" ' . ($A['albums_first'] ? ' checked="checked"' : '') . '/>';
$usealternate_select = '<input type="checkbox" name="usealternate" value="1" ' . ($A['usealternate'] ? ' checked="checked"' : '') . '/>';
$album_views_select = '<input type="checkbox" name="enable_album_views" value="1" ' . ($A['enable_album_views'] ? ' checked="checked"' : '') . '/>';
$display_album_desc_select = '<input type="checkbox" name="display_album_desc" value="1" ' . ($A['display_album_desc'] ? ' checked="checked"' : '') . '/>';
$tn_size_select = '<select name="tn_size">';
$tn_size_select .= '<option value="0"' . ($A['tn_size'] == 0 ? 'selected="selected"' : '') . '>' . $LANG_MG01['small'] . '</option>';
$tn_size_select .= '<option value="1"' . ($A['tn_size'] == 1 ? 'selected="selected"' : '') . '>' . $LANG_MG01['medium'] . '</option>';
$tn_size_select .= '<option value="2"' . ($A['tn_size'] == 2 ? 'selected="selected"' : '') . '>' . $LANG_MG01['large'] . '</option>';
$tn_size_select .= '<option value="3"' . ($A['tn_size'] == 3 ? 'selected="selected"' : '') . '>' . $LANG_MG01['custom'] . '</option>';
$tn_size_select .= '<option value="4"' . ($A['tn_size'] == 4 ? 'selected="selected"' : '') . '>' . $LANG_MG01['square'] . '</option>';
$tn_size_select .= '</select>';
$display_image_size_select = '<select name="display_image_size">';
$display_image_size_select .= '<option value="0"' . ($A['display_image_size'] == 0 ? 'selected="selected"' : '') . '>' . $LANG_MG01['size_500x375'] . '</option>';
$display_image_size_select .= '<option value="1"' . ($A['display_image_size'] == 1 ? 'selected="selected"' : '') . '>' . $LANG_MG01['size_600x450'] . '</option>';
$display_image_size_select .= '<option value="2"' . ($A['display_image_size'] == 2 ? 'selected="selected"' : '') . '>' . $LANG_MG01['size_620x465'] . '</option>';
$display_image_size_select .= '<option value="3"' . ($A['display_image_size'] == 3 ? 'selected="selected"' : '') . '>' . $LANG_MG01['size_720x540'] . '</option>';
$display_image_size_select .= '<option value="4"' . ($A['display_image_size'] == 4 ? 'selected="selected"' : '') . '>' . $LANG_MG01['size_800x600'] . '</option>';
$display_image_size_select .= '<option value="5"' . ($A['display_image_size'] == 5 ? 'selected="selected"' : '') . '>' . $LANG_MG01['size_912x684'] . '</option>';
$display_image_size_select .= '<option value="6"' . ($A['display_image_size'] == 6 ? 'selected="selected"' : '') . '>' . $LANG_MG01['size_1024x768'] . '</option>';
$display_image_size_select .= '<option value="7"' . ($A['display_image_size'] == 7 ? 'selected="selected"' : '') . '>' . $LANG_MG01['size_1152x864'] . '</option>';
$display_image_size_select .= '<option value="8"' . ($A['display_image_size'] == 8 ? 'selected="selected"' : '') . '>' . $LANG_MG01['size_1280x1024'] . '</option>';
$display_image_size_select .= '<option value="9"' . ($A['display_image_size'] == 9 ? 'selected="selected"' : '') . '>' . $LANG_MG01['size_custom'] . $_MG_CONF['custom_image_width'] . 'x' . $_MG_CONF['custom_image_height'] . '</option>';
$display_image_size_select .= '</select>';
$rows_input = '<input type="text" size="3" name="display_rows" value="' . $A['display_rows'] . '"/>';
$columns_input = '<input type="text" size="3" name="display_columns" value="' . $A['display_columns'] . '"/>';
$max_image_height_input = '<input type="text" size="4" name="max_image_height" value="' . $A['max_image_height'] . '"/>';
$max_image_width_input = '<input type="text" size="4" name="max_image_width" value="' . $A['max_image_width'] . '"/>';
$tnheight_input = '<input type="text" size="3" name="tnheight" value="' . $A['tnheight'] . '"/>';
$tnwidth_input = '<input type="text" size="3" name="tnwidth" value="' . $A['tnwidth'] . '"/>';
if ($A['max_filesize'] != 0) {
$A['max_filesize'] = $A['max_filesize'] / 1024;
}
$max_filesize_input = '<input type="text" size="10" name="max_filesize" value="' . $A['max_filesize'] . '"/>';
$email_mod_select = '<input type="checkbox" name="email_mod" value="1" ' . ($A['email_mod'] ? ' checked="checked"' : '') . '/>';
$playback_type = '<select name="playback_type">';
$playback_type .= '<option value="0"' . ($A['playback_type'] == 0 ? 'selected="selected"' : '') . '>' . $LANG_MG01['play_in_popup'] . '</option>';
$playback_type .= '<option value="1"' . ($A['playback_type'] == 1 ? 'selected="selected"' : '') . '>' . $LANG_MG01['download_to_local'] . '</option>';
$playback_type .= '<option value="2"' . ($A['playback_type'] == 2 ? 'selected="selected"' : '') . '>' . $LANG_MG01['play_inline'] . '</option>';
$playback_type .= '<option value="3"' . ($A['playback_type'] == 3 ? 'selected="selected"' : '') . '>' . $LANG_MG01['use_mms'] . '</option>';
$playback_type .= '</select>';
$themes = MG_getThemes();
$album_theme_select = '<select name="album_theme">';
for ($i = 0; $i < count($themes); $i++) {
$album_theme_select .= '<option value="' . $themes[$i] . '"' . ($A['skin'] == $themes[$i] ? 'selected="selected"' : '') . '>' . $themes[$i] . '</option>';
}
$album_theme_select .= '</select>';
$attach_select = '<input type="checkbox" name="attach_tn" value="1" ' . ($A['tn_attached'] ? ' checked="checked"' : '') . '/>';
$result = DB_query("SELECT * FROM {$_TABLES['users']}");
$nRows = DB_numRows($result);
$owner_select = '<select name="owner_id">';
for ($i = 0; $i < $nRows; $i++) {
$row = DB_fetchArray($result);
if ($row['uid'] == 1) {
continue;
}
$owner_select .= '<option value="' . $row['uid'] . '"' . ($A['owner_id'] == $row['uid'] ? 'selected="selected"' : '') . '>' . COM_getDisplayName($row['uid'], $row['username'], $row['fullname'], $row['remoteusername'], $row['remoteservice']) . '</option>';
}
$owner_select .= '</select>';
$album_sort_select = '<select name="album_sort_order">';
$album_sort_select .= '<option value="0"' . ($A['album_sort_order'] == 0 ? 'selected="selected"' : '') . '>' . $LANG_MG03['no_sort'] . '</option>';
$album_sort_select .= '<option value="1"' . ($A['album_sort_order'] == 1 ? 'selected="selected"' : '') . '>' . $LANG_MG03['sort_capture_asc'] . '</option>';
$album_sort_select .= '<option value="2"' . ($A['album_sort_order'] == 2 ? 'selected="selected"' : '') . '>' . $LANG_MG03['sort_capture'] . '</option>';
$album_sort_select .= '<option value="3"' . ($A['album_sort_order'] == 3 ? 'selected="selected"' : '') . '>' . $LANG_MG03['sort_upload_asc'] . '</option>';
$album_sort_select .= '<option value="4"' . ($A['album_sort_order'] == 4 ? 'selected="selected"' : '') . '>' . $LANG_MG03['sort_upload'] . '</option>';
$album_sort_select .= '<option value="5"' . ($A['album_sort_order'] == 5 ? 'selected="selected"' : '') . '>' . $LANG_MG03['sort_alpha'] . '</option>';
$album_sort_select .= '<option value="6"' . ($A['album_sort_order'] == 6 ? 'selected="selected"' : '') . '>' . $LANG_MG03['sort_alpha_asc'] . '</option>';
$album_sort_select .= '</select>';
if (SEC_hasRights('mediagallery.admin')) {
//
// -- build the featured selects and info...
//
$featured_select = '<input type="checkbox" name="featured" value="1" ' . ($A['featured'] ? ' checked="checked"' : '') . '/>';
// build featurepage select...
$featurepage_select = '<select name="featurepage">';
$featurepage_select .= '<option value="all"' . ($A['cbpage'] == 'all' ? 'selected="selected"' : '') . '>' . $LANG_MG01['all'] . '</option>';
$featurepage_select .= '<option value="allnhp"' . ($A['cbpage'] == 'allnhp' ? 'selected="selected"' : '') . '>' . $LANG_MG01['all_nhp'] . '</option>';
$featurepage_select .= '<option value="none"' . ($A['cbpage'] == 'none' ? 'selected="selected"' : '') . '>' . $LANG_MG01['homepage_only'] . '</option>';
$featurepage_select .= COM_topicList('tid,topic', $A['cbpage']);
$featurepage_select .= '</select>';
// position
$feature_pos = '<select name="featureposition">';
$feature_pos .= '<option value="1"' . ($A['cbposition'] == 1 ? ' selected="selected"' : '') . '>' . $LANG_MG01['top'] . '</option>';
$feature_pos .= '<option value="2"' . ($A['cbposition'] == 2 ? ' selected="selected"' : '') . '>' . $LANG_MG01['after_featured_articles'] . '</option>';
$feature_pos .= '<option value="3"' . ($A['cbposition'] == 3 ? ' selected="selected"' : '') . '>' . $LANG_MG01['bottom'] . '</option>';
$feature_pos .= '</select> ';
$T->set_var(array('featured_select' => $featured_select, 'feature_page_select' => $featurepage_select, 'feature_position' => $feature_pos, 'lang_featured_album' => $LANG_MG01['featured_album'], 'lang_set_featured' => $LANG_MG01['set_featured'], 'lang_featured_help' => $LANG_MG01['featured_help'], 'lang_position' => $LANG_MG01['position'], 'lang_topic' => $LANG_MG01['topic']));
$T->parse('featureselect', 'falbum');
$ri_select = '<input type="checkbox" name="enable_random" value="1" ' . ($A['enable_random'] ? ' checked="checked"' : '') . '/>';
$T->set_var(array('height_input' => $max_image_height_input, 'width_input' => $max_image_width_input, 'max_size_input' => $max_filesize_input, 'ri_select' => $ri_select, 'lang_ri_enable' => $LANG_MG01['ri_enable'], 'lang_max_image_height' => $LANG_MG01['max_image_height'], 'lang_max_image_width' => $LANG_MG01['max_image_width'], 'lang_max_filesize' => $LANG_MG01['max_filesize']));
$T->parse('adminattr', 'admin_attr');
$T->set_var(array('jpg_checked' => $A['valid_formats'] & MG_JPG ? ' checked="checked"' : '', 'png_checked' => $A['valid_formats'] & MG_PNG ? ' checked="checked"' : '', 'tif_checked' => $A['valid_formats'] & MG_TIF ? ' checked="checked"' : '', 'gif_checked' => $A['valid_formats'] & MG_GIF ? ' checked="checked"' : '', 'bmp_checked' => $A['valid_formats'] & MG_BMP ? ' checked="checked"' : '', 'tga_checked' => $A['valid_formats'] & MG_TGA ? ' checked="checked"' : '', 'psd_checked' => $A['valid_formats'] & MG_PSD ? ' checked="checked"' : '', 'mp3_checked' => $A['valid_formats'] & MG_MP3 ? ' checked="checked"' : '', 'ogg_checked' => $A['valid_formats'] & MG_OGG ? ' checked="checked"' : '', 'asf_checked' => $A['valid_formats'] & MG_ASF ? ' checked="checked"' : '', 'swf_checked' => $A['valid_formats'] & MG_SWF ? ' checked="checked"' : '', 'mov_checked' => $A['valid_formats'] & MG_MOV ? ' checked="checked"' : '', 'mp4_checked' => $A['valid_formats'] & MG_MP4 ? ' checked="checked"' : '', 'mpg_checked' => $A['valid_formats'] & MG_MPG ? ' checked="checked"' : '', 'zip_checked' => $A['valid_formats'] & MG_ZIP ? ' checked="checked"' : '', 'flv_checked' => $A['valid_formats'] & MG_FLV ? ' checked="checked"' : '', 'rflv_checked' => $A['valid_formats'] & MG_RFLV ? ' checked="checked"' : '', 'emb_checked' => $A['valid_formats'] & MG_EMB ? ' checked="checked"' : '', 'other_checked' => $A['valid_formats'] & MG_OTHER ? ' checked="checked"' : '', 'lang_jpg' => $LANG_MG01['jpg'], 'lang_png' => $LANG_MG01['png'], 'lang_tif' => $LANG_MG01['tif'], 'lang_gif' => $LANG_MG01['gif'], 'lang_bmp' => $LANG_MG01['bmp'], 'lang_tga' => $LANG_MG01['tga'], 'lang_psd' => $LANG_MG01['psd'], 'lang_mp3' => $LANG_MG01['mp3'], 'lang_ogg' => $LANG_MG01['ogg'], 'lang_asf' => $LANG_MG01['asf'], 'lang_swf' => $LANG_MG01['swf'], 'lang_mov' => $LANG_MG01['mov'], 'lang_mp4' => $LANG_MG01['mp4'], 'lang_mpg' => $LANG_MG01['mpg'], 'lang_zip' => $LANG_MG01['zip'], 'lang_flv' => $LANG_MG01['flv'], 'lang_rflv' => $LANG_MG01['rflv'], 'lang_emb' => $LANG_MG01['emb'], 'lang_other' => $LANG_MG01['other'], 'lang_allowed_formats' => $LANG_MG01['allowed_media_formats'], 'lang_image' => $LANG_MG01['image'], 'lang_audio' => $LANG_MG01['audio'], 'lang_video' => $LANG_MG01['video']));
$T->parse('valid_formats', 'admin_formats');
}
$r = rand();
if ($A['tn_attached']) {
$media_size = false;
foreach ($_MG_CONF['validExtensions'] as $ext) {
if (file_exists($_MG_CONF['path_mediaobjects'] . 'covers/cover_' . $A['album_id'] . $ext)) {
$album_last_image = $_MG_CONF['mediaobjects_url'] . '/covers/cover_' . $A['album_id'] . $ext;
$media_size = @getimagesize($_MG_CONF['path_mediaobjects'] . 'covers/cover_' . $A['album_id'] . $ext);
if ($media_size != false) {
$T->set_var('thumbnail', '<img src="' . $_MG_CONF['mediaobjects_url'] . '/covers/cover_' . $A['album_id'] . $ext . '?r=' . $r . '" alt=""/>');
}
break;
}
}
// $T->set_var('thumbnail','<img src="' . $_MG_CONF['mediaobjects_url'] . '/covers/cover_' . $A['album_id'] . '.jpg?r=' . $r . '" alt="">');
}
$filename_title_select = '<input type="checkbox" name="filename_title" value="1" ' . ($A['filename_title'] ? ' checked="checked"' : '') . '/>';
// watermark stuff...
$wm_auto_select = '<input type="checkbox" name="wm_auto" value="1" ' . ($A['wm_auto'] ? ' checked="checked"' : '') . '/>';
$wm_opacity_select = '<select name="wm_opacity">';
$wm_opacity_select .= '<option value="10"' . ($A['opacity'] == 10 ? 'selected="selected"' : '') . '>10%</option>';
$wm_opacity_select .= '<option value="20"' . ($A['opacity'] == 20 ? 'selected="selected"' : '') . '>20%</option>';
$wm_opacity_select .= '<option value="30"' . ($A['opacity'] == 30 ? 'selected="selected"' : '') . '>30%</option>';
$wm_opacity_select .= '<option value="40"' . ($A['opacity'] == 40 ? 'selected="selected"' : '') . '>40%</option>';
$wm_opacity_select .= '<option value="50"' . ($A['opacity'] == 50 ? 'selected="selected"' : '') . '>50%</option>';
$wm_opacity_select .= '<option value="60"' . ($A['opacity'] == 60 ? 'selected="selected"' : '') . '>60%</option>';
$wm_opacity_select .= '<option value="70"' . ($A['opacity'] == 70 ? 'selected="selected"' : '') . '>70%</option>';
$wm_opacity_select .= '<option value="80"' . ($A['opacity'] == 80 ? 'selected="selected"' : '') . '>80%</option>';
$wm_opacity_select .= '<option value="90"' . ($A['opacity'] == 90 ? 'selected="selected"' : '') . '>90%</option>';
$wm_opacity_select .= '</select>';
$wm_location_select = '<select name="wm_location">';
$wm_location_select .= '<option value="1"' . ($A['wm_location'] == 1 ? 'selected="selected"' : '') . '>' . $LANG_MG01['top_left'] . '</option>';
$wm_location_select .= '<option value="2"' . ($A['wm_location'] == 2 ? 'selected="selected"' : '') . '>' . $LANG_MG01['top_center'] . '</option>';
$wm_location_select .= '<option value="3"' . ($A['wm_location'] == 3 ? 'selected="selected"' : '') . '>' . $LANG_MG01['top_right'] . '</option>';
$wm_location_select .= '<option value="4"' . ($A['wm_location'] == 4 ? 'selected="selected"' : '') . '>' . $LANG_MG01['middle_left'] . '</option>';
$wm_location_select .= '<option value="5"' . ($A['wm_location'] == 5 ? 'selected="selected"' : '') . '>' . $LANG_MG01['middle_center'] . '</option>';
$wm_location_select .= '<option value="6"' . ($A['wm_location'] == 6 ? 'selected="selected"' : '') . '>' . $LANG_MG01['middle_right'] . '</option>';
$wm_location_select .= '<option value="7"' . ($A['wm_location'] == 7 ? 'selected="selected"' : '') . '>' . $LANG_MG01['bottom_left'] . '</option>';
$wm_location_select .= '<option value="8"' . ($A['wm_location'] == 8 ? 'selected="selected"' : '') . '>' . $LANG_MG01['bottom_center'] . '</option>';
$wm_location_select .= '<option value="9"' . ($A['wm_location'] == 9 ? 'selected="selected"' : '') . '>' . $LANG_MG01['bottom_right'] . '</option>';
$wm_location_select .= '</select>';
// now select what watermarks we have permission to use...
$whereClause = " WHERE wm_id<>0 AND ";
if (SEC_hasRights('mediagallery.admin')) {
$whereClause .= "1=1";
} else {
$whereClause .= "(owner_id=" . $_USER['uid'] . " OR owner_id=0)";
}
$sql = "SELECT * FROM {$_TABLES['mg_watermarks']} " . $whereClause . " ORDER BY owner_id";
$result = DB_query($sql);
$nRows = DB_numRows($result);
$wm_select = '<select name="wm_id" onchange="change(this)">';
$wm_select .= '<option value="blank.png">' . $LANG_MG01['no_watermark'] . '</option>';
$wm_current = '<img src="' . $_MG_CONF['site_url'] . '/watermarks/blank.png" name="myImage" alt=""/>';
for ($i = 0; $i < $nRows; $i++) {
$row = DB_fetchArray($result);
$wm_select .= '<option value="' . $row['filename'] . '"' . ($A['wm_id'] == $row['wm_id'] ? 'selected="selected"' : '') . '>' . $row['filename'] . '</option>';
if ($A['wm_id'] == $row['wm_id']) {
$wm_current = '<img src="' . $_MG_CONF['site_url'] . '/watermarks/' . $row['filename'] . '" name="myImage" alt=""/>';
}
}
$wm_select .= '</select>';
$frames = new mgFrame();
$skins = array();
$skins = $frames->getFrames();
$skin_select = '<select name="skin">';
$askin_select = '<select name="askin">';
$dskin_select = '<select name="dskin">';
for ($i = 0; $i < count($skins); $i++) {
$skin_select .= '<option value="' . $skins[$i]['dir'] . '"' . ($A['image_skin'] == $skins[$i]['dir'] ? ' selected="selected" ' : '') . '>' . $skins[$i]['name'] . '</option>';
$askin_select .= '<option value="' . $skins[$i]['dir'] . '"' . ($A['album_skin'] == $skins[$i]['dir'] ? ' selected="selected" ' : '') . '>' . $skins[$i]['name'] . '</option>';
$dskin_select .= '<option value="' . $skins[$i]['dir'] . '"' . ($A['display_skin'] == $skins[$i]['dir'] ? ' selected="selected" ' : '') . '>' . $skins[$i]['name'] . '</option>';
}
$skin_select .= '</select>';
$askin_select .= '</select>';
$dskin_select .= '</select>';
// permission template
$usergroups = SEC_getUserGroups();
$groupdd = '';
$moddd = '';
$groupdd .= '<select name="group_id">';
$moddd .= '<select name="mod_id">';
for ($i = 0; $i < count($usergroups); $i++) {
if ($usergroups[key($usergroups)] != 2 && $usergroups[key($usergroups)] != 13) {
$groupdd .= '<option value="' . $usergroups[key($usergroups)] . '"';
$moddd .= '<option value="' . $usergroups[key($usergroups)] . '"';
if ($A['group_id'] == $usergroups[key($usergroups)]) {
$groupdd .= ' selected="selected"';
}
if ($A['mod_group_id'] == $usergroups[key($usergroups)]) {
$moddd .= ' selected="selected"';
}
$groupdd .= '>' . key($usergroups) . '</option>';
$moddd .= '>' . key($usergroups) . '</option>';
}
next($usergroups);
}
$groupdd .= '</select>';
$moddd .= '</select>';
$upload_select = '<input type="checkbox" name="uploads" value="1" ' . ($A['member_uploads'] ? ' checked="checked"' : '') . '/>';
$moderate_select = '<input type="checkbox" name="moderate" value="1" ' . ($A['moderate'] ? ' checked="checked"' : '') . '/>';
$child_update_select = '<input type="checkbox" name="force_child_update" value="1"/>';
$hidden_select = '<input type="checkbox" name="hidden" value="1" ' . ($A['hidden'] ? ' checked="checked"' : '') . '/>';
$allow_download_select = '<input type="checkbox" name="allow_download" value="1" ' . ($A['allow_download'] ? ' checked="checked"' : '') . '/>';
if (SEC_hasRights('mediagallery.admin')) {
$perm_editor = SEC_getPermissionsHTML($A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']);
} else {
$perm_editor = MG_getMemberPermissionsHTML($A['perm_members'], $A['perm_anon']);
}
$T->set_var(array('lang_uploads' => $LANG_MG01['anonymous_uploads_prompt'], 'lang_accessrights' => $LANG_ACCESS['accessrights'], 'lang_owner' => $LANG_ACCESS['owner'], 'owner_username' => DB_getItem($_TABLES['users'], 'username', "uid={$A['owner_id']}"), 'owner_id' => $A['owner_id'], 'lang_group' => $LANG_ACCESS['group'], 'lang_permissions' => $LANG_ACCESS['permissions'], 'lang_perm_key' => $LANG_ACCESS['permissionskey'], 'lang_hidden' => $LANG_MG01['hidden'], 'permissions_msg' => $LANG_ACCESS['permmsg'], 'permissions_editor' => $perm_editor, 'origaid' => '<input type="hidden" name="origaid" value="' . $oldaid . '"/>', 'group_dropdown' => $groupdd, 'mod_dropdown' => $moddd, 'lang_member_upload' => $LANG_MG01['member_upload'], 'lang_moderate_album' => $LANG_MG01['mod_album'], 'lang_mod_group' => $LANG_MG01['moderation_group'], 'uploads' => $upload_select, 'moderate' => $moderate_select, 'hidden' => $hidden_select, 'force_child_update' => $child_update_select, 'lang_force_child_update' => $LANG_MG01['force_child_update'], 'lang_allow_download' => $LANG_MG01['allow_download'], 'owner_select' => $owner_select, 'email_mod_select' => $email_mod_select, 'lang_email_mods_on_submission' => $LANG_MG01['email_mods_on_submission']));
if (SEC_hasRights('mediagallery.admin')) {
$T->parse('perm_editor', 'perms_admin');
} else {
$T->parse('perm_editor', 'perms_member');
}
$T->set_var(array('action' => 'album', 'path_mg' => $_MG_CONF['site_url'], 'attach_select' => $attach_select, 'comment_select' => $comment_select, 'exif_select' => $exif_select, 'ranking_select' => $ranking_select, 'podcast_select' => $podcast_select, 'mp3ribbon_select' => $mp3ribbon_select, 'rsschildren_select' => $rsschildren_select, 'full_select' => $full_select, 'ss_select' => $ss_select, 'sf_select' => $sf_select, 'views_select' => $views_select, 'keywords_select' => $keywords_select, 'album_views_select' => $album_views_select, 'display_album_desc_select' => $display_album_desc_select, 'sort_select' => $sort_select, 'rss_select' => $rss_select, 'postcard_select' => $postcard_select, 'afirst_select' => $afirst_select, 'tn_size_select' => $tn_size_select, 'display_image_size' => $display_image_size_select, 'rows_input' => $rows_input, 'columns_input' => $columns_input, 'playback_type' => $playback_type, 'album_title' => $A['album_title'], 'album_desc' => $A['album_desc'], 'album_id' => $A['album_id'], 'parent_select' => $album_select, 'album_cover' => $A['album_cover'], 'album_owner' => $A['owner_id'], 'album_order' => $A['album_order'], 'album_cover_filename' => $A['album_cover_filename'], 'last_update' => $A['last_update'], 'media_count' => $A['media_count'], 'wm_auto_select' => $wm_auto_select, 'wm_opacity_select' => $wm_opacity_select, 'wm_location_select' => $wm_location_select, 'wm_select' => $wm_select, 'wm_current' => $wm_current, 'album_theme_select' => $album_theme_select, 'album_sort_select' => $album_sort_select, 'allow_download_select' => $allow_download_select, 'filename_title_select' => $filename_title_select, 'skin_select' => $skin_select, 'askin_select' => $askin_select, 'dskin_select' => $dskin_select, 'tnheight_input' => $tnheight_input, 'tnwidth_input' => $tnwidth_input, 'usealternate_select' => $usealternate_select, 'lang_usealternate' => $LANG_MG01['use_alternate_url'], 'lang_tnheight' => $LANG_MG01['tn_height'], 'lang_tnwidth' => $LANG_MG01['tn_width'], 'lang_save' => $LANG_MG01['save'], 'lang_edit_title' => $mode == 'create' ? $LANG_MG01['create_album'] : $LANG_MG01['edit_album'], 's_form_action' => $actionURL, 'lang_image_skin' => $LANG_MG01['image_skin'], 'lang_album_skin' => $LANG_MG01['album_skin'], 'lang_display_skin' => $LANG_MG01['display_skin'], 'lang_album_edit_help' => $LANG_MG01['album_edit_help'], 'lang_title' => $LANG_MG01['title'], 'lang_podcast' => $LANG_MG01['podcast'], 'lang_mp3ribbon' => $LANG_MG01['mp3ribbon'], 'lang_rsschildren' => $LANG_MG01['rsschildren'], 'lang_parent_album' => $LANG_MG01['parent_album'], 'lang_description' => $LANG_MG01['description'], 'lang_cancel' => $LANG_MG01['cancel'], 'lang_delete' => $LANG_MG01['delete'], 'lang_comments' => $LANG_MG01['comments_prompt'], 'lang_enable_exif' => $LANG_MG01['enable_exif'], 'lang_enable_ratings' => $LANG_MG01['enable_ratings'], 'lang_ss_enable' => $LANG_MG01['ss_enable'], 'lang_sf_enable' => $LANG_MG01['sf_enable'], 'lang_tn_size' => $LANG_MG01['tn_size'], 'lang_rows' => $LANG_MG01['rows'], 'lang_columns' => $LANG_MG01['columns'], 'lang_av_play_album' => $LANG_MG01['av_play_album'], 'lang_av_play_options' => $LANG_MG01['av_play_options'], 'lang_attached_thumbnail' => $LANG_MG01['attached_thumbnail'], 'lang_thumbnail' => $LANG_MG01['thumbnail'], 'lang_album_attributes' => $LANG_MG01['album_attributes'], 'lang_album_cover' => $LANG_MG01['album_cover'], 'lang_enable_views' => $LANG_MG01['enable_views'], 'lang_enable_keywords' => $LANG_MG01['enable_keywords'], 'lang_enable_album_views' => $LANG_MG01['enable_album_views'], 'lang_enable_sort' => $LANG_MG01['enable_sort'], 'lang_enable_rss' => $LANG_MG01['enable_rss'], 'lang_enable_postcard' => $LANG_MG01['enable_postcard'], 'lang_albums_first' => $LANG_MG01['albums_first'], 'lang_full_display' => $LANG_MG01['full_display'], 'lang_display_image_size' => $LANG_MG01['display_image_size'], 'lang_album_sort' => $LANG_MG01['default_album_sort'], 'lang_watermark' => $LANG_MG01['watermark'], 'lang_wm_auto' => $LANG_MG01['watermark_auto'], 'lang_wm_opacity' => $LANG_MG01['watermark_opacity'], 'lang_wm_location' => $LANG_MG01['watermark_location'], 'lang_wm_id' => $LANG_MG01['watermark_image'], 'lang_unlimited' => $LANG_MG01['zero_unlimited'], 'lang_display_album_desc' => $LANG_MG01['display_album_desc'], 'lang_filename_title' => $LANG_MG01['filename_title'], 'lang_media_attributes' => $LANG_MG01['media_attributes'], 'lang_theme_select' => $LANG_MG01['album_theme']));
if ($_MG_CONF['htmlallowed'] == 1) {
$T->set_var('allowed_html', COM_allowedHTML(SEC_getUserPermissions(), false, 'mediagallery', 'album_title'));
}
$T->parse('output', 'admin');
$retval .= $T->finish($T->get_var('output'));
$retval .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer'));
return $retval;
}
/**
* This function creates a map Form
*
* Creates a Form for a map using the supplied defaults (if specified).
*
* @param array $map array of values describing a map
* @return string HTML string of map form
*/
function getUserMarkerForm($marker = array())
{
global $_CONF, $_TABLES, $_MAPS_CONF, $LANG_MAPS_1, $LANG_configselects, $LANG_ACCESS, $_USER, $_GROUPS, $_SCRIPTS;
$display = COM_startBlock('<h1>' . $LANG_MAPS_1['marker_edit'] . ' ' . $marker['name'] . '</h1>');
$map_options = MAPS_recurseMaps($marker['mid']);
if ($map_options == '') {
$display .= COM_startBlock($LANG_MAPS_1['error'], '', 'blockheader-message.thtml');
$display .= $LANG_MAPS_1['maps_empty'];
$display .= COM_endBlock('blockfooter-message.thtml');
} else {
$template = new Template($_CONF['path'] . 'plugins/maps/templates');
$template->set_file(array('map' => 'marker_user_form.thtml'));
$template->set_var('site_url', $_MAPS_CONF['site_url']);
$template->set_var('xhtml', XHTML);
$template->set_var('goog_api_key', $_MAPS_CONF['google_api_key']);
$template->set_var('go', $LANG_MAPS_1['go']);
$template->set_var('edit_marker_text', $LANG_MAPS_1['edit_marker_text']);
if (isset($marker['mkid'])) {
$template->set_var('default_address', $marker['address']);
} else {
$template->set_var('default_address', '1600 Amphitheatre Pky, Mountain View, CA');
}
$template->set_var('yes', $LANG_MAPS_1['yes']);
$template->set_var('no', $LANG_MAPS_1['no']);
$template->set_var('arrow', '<img src="' . $_MAPS_CONF['site_url'] . '/images/arrow.png" alt=""align="absmiddle"> ');
//informations
$template->set_var('informations', $LANG_MAPS_1['informations']);
$template->set_var('name_label', $LANG_MAPS_1['marker_name_label']);
$template->set_var('name', stripslashes($marker['name']));
$template->set_var('address_label', $LANG_MAPS_1['address_label']);
$template->set_var('address', stripslashes($marker['address']));
$template->set_var('empty_for_geo', $LANG_MAPS_1['empty_for_geo']);
$template->set_var('lat', $LANG_MAPS_1['lat']);
$template->set_var('lat_value', $marker['lat']);
$template->set_var('lng', $LANG_MAPS_1['lng']);
$template->set_var('lng_value', $marker['lng']);
$template->set_var('select_marker_map', $LANG_MAPS_1['select_marker_map']);
$template->set_var('mid_label', $LANG_MAPS_1['name_label']);
$template->set_var('mid', $marker['mid']);
$template->set_var('map_options', $map_options);
$template->set_var('created_label', $LANG_MAPS_1['marker_created']);
$template->set_var('modified_label', $LANG_MAPS_1['modified']);
$datecreated = COM_getUserDateTimeFormat($marker['created']);
$datemodified = COM_getUserDateTimeFormat($marker['modified']);
$template->set_var('created', $datecreated[0]);
$template->set_var('modified', $datemodified[0]);
$template->set_var('required_field', $LANG_MAPS_1['required_field']);
//marker
$template->set_var('marker_customisation', $LANG_MAPS_1['marker_customisation']);
$template->set_var('mk_default', $LANG_MAPS_1['mk_default']);
if ($marker['mk_default'] == 0) {
$template->set_var('mk_default_yes', '');
$template->set_var('mk_default_no', ' selected');
} else {
$template->set_var('mk_default_yes', ' selected');
$template->set_var('mk_default_no', '');
}
//icon
$sql = "SELECT * FROM {$_TABLES['maps_map_icons']} WHERE 1=1";
$result = DB_query($sql, 0);
$radio = '<p>' . $LANG_MAPS_1['choose_icon'] . '</p>';
$marker['mk_icon'] == 0 ? $checked = ' checked="checked"' : ($checked = '');
$radio .= '<input type="radio" name="mk_icon" value="0"' . $checked . '>' . $LANG_MAPS_1['no_icon'] . ' | ';
while ($icon = DB_fetchArray($result, false)) {
$marker['mk_icon'] == $icon['icon_id'] ? $checked = ' checked="checked"' : ($checked = '');
$radio .= '<input type="radio" name="mk_icon" value="' . $icon['icon_id'] . '"' . $checked . '> <img src="' . $_MAPS_CONF['images_icons_url'] . $icon['icon_image'] . '" alt="' . $icon['icon_image'] . '"> | ';
}
$radio .= '<hr' . XHTML . '>';
$template->set_var('icon', $radio);
$template->set_var('primary_color_label', $LANG_MAPS_1['primary_color_label']);
$template->set_var('primary_color', $marker['mk_pcolor']);
$template->set_var('stroke_color_label', $LANG_MAPS_1['stroke_color_label']);
$template->set_var('stroke_color', $marker['mk_scolor']);
$template->set_var('label_label', $LANG_MAPS_1['label']);
$template->set_var('label', $marker['mk_label']);
$template->set_var('label_color_label', $LANG_MAPS_1['label_color']);
if ($marker['mk_label_color'] == '') {
$marker['label_color'] = $_MAPS_CONF['label_color'];
}
if ($marker['mk_label_color'] == 1) {
$template->set_var('label_color_white', ' selected');
$template->set_var('label_color_black', '');
} else {
$template->set_var('label_color_white', '');
$template->set_var('label_color_black', ' selected');
}
$template->set_var('black', $LANG_MAPS_1['black']);
$template->set_var('white', $LANG_MAPS_1['white']);
//Genaral settings
$template->set_var('general_settings', $LANG_MAPS_1['general_settings']);
//payed
$template->set_var('payed', $LANG_MAPS_1['payed']);
if ($marker['payed'] == '') {
$marker['payed'] = $_MAPS_CONF['payed'];
}
if ($marker['payed'] == 1) {
$template->set_var('payed_yes', ' selected');
$template->set_var('payed_no', '');
} else {
$template->set_var('payed_yes', '');
$template->set_var('payed_no', ' selected');
}
//active
$template->set_var('active', $LANG_MAPS_1['marker_active']);
if ($marker['active'] == '') {
$marker['active'] = $_MAPS_CONF['map_active'];
}
if ($marker['active'] == 1) {
$template->set_var('active_yes', ' selected');
$template->set_var('active_no', '');
} else {
$template->set_var('active_yes', '');
$template->set_var('active_no', ' selected');
}
//hidden
$template->set_var('hidden', $LANG_MAPS_1['marker_hidden']);
if ($marker['hidden'] == '') {
$marker['hidden'] = $_MAPS_CONF['map_hidden'];
}
if ($marker['hidden'] == 1) {
$template->set_var('hidden_yes', ' selected');
$template->set_var('hidden_no', '');
} else {
$template->set_var('hidden_yes', '');
$template->set_var('hidden_no', ' selected');
}
//validity
$template->set_var('validity', $marker['validity']);
$template->set_var('marker_validity', $LANG_MAPS_1['marker_validity']);
if ($marker['validity'] == '') {
$marker['validity'] = $_MAPS_CONF['map_hidden'];
}
if ($marker['validity'] == 1) {
$template->set_var('validity_yes', ' selected');
$template->set_var('validity_no', '');
$template->set_var('disabled', '');
} else {
$template->set_var('validity_yes', '');
$template->set_var('validity_no', ' selected');
$template->set_var('disabled', ' disabled');
}
$template->set_var('from_label', $LANG_MAPS_1['from']);
if ($marker['validity_start'] != '') {
$datefrom = date("m/d/Y", strtotime($marker['validity_start']));
$template->set_var('from', $datefrom);
} else {
$datefrom = date("m/d/Y");
$template->set_var('from', $datefrom);
}
$template->set_var('to_label', $LANG_MAPS_1['to']);
if ($marker['validity_end'] != '') {
$dateto = date("m/d/Y", strtotime($marker['validity_end']));
$template->set_var('to', $dateto);
} else {
$dateto = date("m/d/Y");
$template->set_var('to', $dateto);
}
//note
$template->set_var('remark_label', $LANG_MAPS_1['remark']);
$template->set_var('remark', stripslashes($marker['remark']));
//Tab presentation
$template->set_var('presentation_tab', $LANG_MAPS_1['presentation_tab']);
$template->set_var('description_label', $LANG_MAPS_1['description_label']);
$template->set_var('description', stripslashes($marker['description']));
$template->set_var('street_label', $LANG_MAPS_1['street_label']);
if ($_MAPS_CONF['street'] == 1) {
$template->set_var('street', '<input type="text" name="street" value="' . stripslashes($marker['street']) . '" size="80" maxlength="255">');
} else {
$template->set_var('street', $LANG_MAPS_1['not_use_see_config']);
}
$template->set_var('code_label', $LANG_MAPS_1['code_label']);
if ($_MAPS_CONF['code'] == 1) {
$template->set_var('code', '<input type="text" name="code" value="' . $marker['code'] . '" size="10" maxlength="10">');
} else {
$template->set_var('code', $LANG_MAPS_1['not_use_see_config']);
}
$template->set_var('city_label', $LANG_MAPS_1['city_label']);
if ($_MAPS_CONF['city'] == 1) {
$template->set_var('city', '<input type="text" name="city" value="' . stripslashes($marker['city']) . '" size="80" maxlength="255">');
} else {
$template->set_var('city', $LANG_MAPS_1['not_use_see_config']);
}
$template->set_var('state_label', $LANG_MAPS_1['state_label']);
if ($_MAPS_CONF['state'] == 1) {
$template->set_var('state', '<input type="text" name="state" value="' . stripslashes($marker['state']) . '" size="80" maxlength="255">');
} else {
$template->set_var('state', $LANG_MAPS_1['not_use_see_config']);
}
$template->set_var('country_label', $LANG_MAPS_1['country_label']);
if ($_MAPS_CONF['country'] == 1) {
$template->set_var('country', '<input type="text" name="country" value="' . stripslashes($marker['country']) . '" size="80" maxlength="255">');
} else {
$template->set_var('country', $LANG_MAPS_1['not_use_see_config']);
}
$template->set_var('tel_label', $LANG_MAPS_1['tel_label']);
if ($_MAPS_CONF['tel'] == 1) {
$template->set_var('tel', '<input type="text" name="tel" value="' . $marker['tel'] . '" size="20" maxlength="20">');
} else {
$template->set_var('tel', $LANG_MAPS_1['not_use_see_config']);
}
$template->set_var('fax_label', $LANG_MAPS_1['fax_label']);
if ($_MAPS_CONF['fax'] == 1) {
$template->set_var('fax', '<input type="text" name="fax" value="' . $marker['fax'] . '" size="20" maxlength="20">');
} else {
$template->set_var('fax', $LANG_MAPS_1['not_use_see_config']);
}
$template->set_var('web_label', $LANG_MAPS_1['web_label']);
if ($_MAPS_CONF['web'] == 1) {
$template->set_var('web', '<input type="text" name="web" value="' . stripslashes($marker['web']) . '" size="80" maxlength="255">');
} else {
$template->set_var('web', $LANG_MAPS_1['not_use_see_config']);
}
//Tab ressources
$template->set_var('ressources_tab', $LANG_MAPS_1['ressources_tab']);
$template->set_var('max_char', $LANG_MAPS_1['max_char']);
$arr = array(1, 2, 3, 4, 5, 6, 7, 8, 9, 10);
$ressources = '';
foreach ($arr as &$value) {
if ($_MAPS_CONF['item_' . $value] == '') {
$template->set_var('item_' . $value . '_label', '');
$template->set_var('item_' . $value, '');
$ressources .= '';
} else {
$template->set_var('item_' . $value . '_label', $_MAPS_CONF['item_' . $value]);
$template->set_var('item_' . $value, $marker['item_' . $value]);
$ressources .= '<p>' . $_MAPS_CONF['item_' . $value] . ' <input type"text" name="item_' . $value . '" size="80" maxlength="255" value="' . $marker['item_' . $value] . '"></p>';
}
}
if ($ressources == '') {
$ressources = $LANG_MAPS_1['empty_ressources'];
}
$template->set_var('ressources', $ressources);
// Permissions
if ($marker['perm_owner'] == '') {
SEC_setDefaultPermissions($marker, $_MAPS_CONF['default_permissions']);
}
$template->set_var('lang_accessrights', $LANG_ACCESS['accessrights']);
$template->set_var('lang_owner', $LANG_ACCESS['owner']);
if ($marker['owner_id'] == '') {
$marker['owner_id'] = $_USER['uid'];
}
$ownername = COM_getDisplayName($marker['owner_id']);
$template->set_var('owner_username', DB_getItem($_TABLES['users'], 'username', "uid = {$marker['owner_id']}"));
$template->set_var('owner_name', $ownername);
$template->set_var('owner', $ownername);
$template->set_var('owner_id', $marker['owner_id']);
if ($marker['group_id'] == '') {
$marker['group_id'] = $_GROUPS['Maps Admin'];
}
$template->set_var('lang_group', $LANG_ACCESS['group']);
//Todo make group = maps.admin
$access = 3;
$template->set_var('group_dropdown', SEC_getGroupDropdown($marker['group_id'], $access));
$template->set_var('permissions_editor', SEC_getPermissionsHTML($marker['perm_owner'], $marker['perm_group'], $marker['perm_members'], $marker['perm_anon']));
$template->set_var('lang_permissions', $LANG_ACCESS['permissions']);
$template->set_var('lang_perm_key', $LANG_ACCESS['permissionskey']);
$template->set_var('permissions_msg', $LANG_ACCESS['permmsg']);
$template->set_var('lang_permissions_msg', $LANG_ACCESS['permmsg']);
//Form validation
$template->set_var('submission', $marker['submission']);
$template->set_var('save_button', $LANG_MAPS_1['save_button']);
$template->set_var('delete_button', $LANG_MAPS_1['delete_button']);
$template->set_var('ok_button', $LANG_MAPS_1['ok_button']);
$template->set_var('mkid', '<input type="hidden" name="mkid" value="' . $marker['mkid'] . '" />');
$display .= $template->parse('output', 'map');
}
$display .= COM_endBlock();
$_SCRIPTS->setJavaScriptLibrary('jquery');
$_SCRIPTS->setJavaScriptFile('maps_simplecolor', '/' . $_MAPS_CONF['maps_folder'] . '/js/simple-color.js');
$js = LB . '<script type="text/javascript" src= "https://maps.googleapis.com/maps/api/js?key=' . $_MAPS_CONF['google_api_key'] . '&sensor=false"> </script>
<script type="text/javascript">
jQuery(document).ready(
function()
{
jQuery("#primary_color").simpleColor({
cellWidth: 9,
cellHeight: 9,
border: \'1px solid #333333\',
displayColorCode: true
});
jQuery("#stroke_color").simpleColor({
cellWidth: 9,
cellHeight: 9,
border: \'1px solid #333333\',
displayColorCode: true
});
$( "#from" ).datepicker();
$( "#to" ).datepicker();
});
function changeValidity()
{
if (document.getElementById(\'validity\').value == 0){
$("#from").prop(\'disabled\', true);
$("#to").prop(\'disabled\', true);
}
else {
$("#from").prop(\'disabled\', false);
$("#to").prop(\'disabled\', false);
}
}
jQuery(function() {
jQuery(\'#from\').datepicker({
altFormat:\'m/d/Y\'
});
jQuery(\'#to\').datepicker({
altFormat:\'m/d/Y\',
});
});
var geocoder = new google.maps.Geocoder();
var map;
function initializeGMap() {
var mapOptions = {
center: new google.maps.LatLng(' . $marker['lat'] . ', ' . $marker['lng'] . '),
zoom: 10,
mapTypeId: google.maps.MapTypeId.ROADMAP
};
map = new google.maps.Map(document.getElementById("map_canvas"),
mapOptions);
var marker = new google.maps.Marker({
map: map,
position: new google.maps.LatLng(' . $marker['lat'] . ', ' . $marker['lng'] . '),
title: "' . $marker['name'] . '",
draggable:true,
animation: google.maps.Animation.DROP,
});
google.maps.event.addDomListener(marker, "dragend", function(evt) {
document.getElementById(\'lat\').value = evt.latLng.lat().toFixed(6);
document.getElementById(\'lng\').value = evt.latLng.lng().toFixed(6);
//showInfoWindowHtml(marker);
});
}
google.maps.event.addDomListener(window, \'load\', initializeGMap);
function showInfoWindowHtml (marker) {
var latlng= marker.getLatLng();
var lat=latlng.lat();
var lng=latlng.lng();
//marker.openInfoWindowHtml(\'<p>{lat} \' + lat.toString() + \'</p><p>{lng} \' + lng.toString());
document.getElementById(\'lat\').value = lat;
document.getElementById(\'lng\').value = lng;
}
function codeAddress() {
var address = document.getElementById(\'geoaddress\').value;
geocoder.geocode( { \'address\': address}, function(results, status) {
if (status == google.maps.GeocoderStatus.OK) {
map.setCenter(results[0].geometry.location);
var marker = new google.maps.Marker({
map: map,
position: results[0].geometry.location
});
document.getElementById(\'lat\').value = results[0].geometry.location.lat();
document.getElementById(\'lng\').value = results[0].geometry.location.lng();
} else {
alert(\'Geocode was not successful for the following reason: \' + status);
}
});
}
function limitText(limitField, limitCount, limitNum)
{
if (limitField.value.length > limitNum) {
limitField.value = limitField.value.substring(0, limitNum);
} else {
limitCount.value = limitNum - limitField.value.length;
}
}
function copyText()
{
var t1 = document.getElementById(\'geoaddress\').value;
document.getElementById(\'address\').value = t1;
}
</script>' . LB . LB;
$_SCRIPTS->setJavaScript($js, false);
$_SCRIPTS->setJavaScriptFile('ui_core', '/javascript/jquery_ui/jquery.ui.core.min.js');
$_SCRIPTS->setJavaScriptFile('datepicker', '/javascript/jquery_ui/jquery.ui.datepicker.min.js');
return $display;
}
/**
* Shows event editor
*
* @param string $mode Indicates if this is a submission or a regular entry
* @param array $A array holding the event's details
* @param string $msg an optional error message to display
* @return string HTML for event editor or error message
*
*/
function CALENDAR_editEvent($mode, $A, $msg = '')
{
global $_CONF, $_GROUPS, $_TABLES, $_USER, $_CA_CONF, $LANG_CAL_1, $LANG_CAL_ADMIN, $LANG10, $LANG12, $LANG_ACCESS, $LANG_ADMIN, $MESSAGE, $_SCRIPTS;
// Loads jQuery UI datepicker and timepicker-addon
$_SCRIPTS->setJavaScriptLibrary('jquery.ui.slider');
$_SCRIPTS->setJavaScriptLibrary('jquery.ui.datepicker');
$_SCRIPTS->setJavaScriptLibrary('jquery-ui-i18n');
$_SCRIPTS->setJavaScriptLibrary('jquery-ui-timepicker-addon');
$_SCRIPTS->setJavaScriptLibrary('jquery-ui-timepicker-addon-i18n');
$_SCRIPTS->setJavaScriptFile('datetimepicker', '/javascript/datetimepicker.js');
// Add JavaScript
$_SCRIPTS->setJavaScriptFile('postmode_control', '/javascript/postmode_control.js');
$langCode = COM_getLangIso639Code();
$toolTip = $MESSAGE[118];
$imgUrl = $_CONF['site_url'] . '/images/calendar.png';
$_SCRIPTS->setJavaScript("jQuery(function () {" . " geeklog.hour_mode = {$_CONF['hour_mode']};" . " geeklog.datetimepicker.options.stepMinute = 15;" . " geeklog.datetimepicker.set('start', '{$langCode}', '{$toolTip}', '{$imgUrl}');" . " geeklog.datetimepicker.set('end', '{$langCode}', '{$toolTip}', '{$imgUrl}');" . "});", TRUE, TRUE);
$retval = '';
if (!empty($msg)) {
$retval .= COM_showMessageText($msg, $LANG_CAL_ADMIN[2]);
}
$event_templates = COM_newTemplate(CTL_plugin_templatePath('calendar', 'admin'));
$event_templates->set_file('editor', 'eventeditor.thtml');
$allowed = '';
foreach (array('plaintext', 'html') as $pm) {
$allowed .= COM_allowedHTML('calendar.edit', false, 1, $pm);
}
$allowed .= COM_allowedAutotags();
$event_templates->set_var('lang_allowed_html', $allowed);
$event_templates->set_var('lang_postmode', $LANG_CAL_ADMIN[3]);
if ($mode != 'editsubmission' and !empty($A['eid'])) {
// Get what level of access user has to this object
$access = SEC_hasAccess($A['owner_id'], $A['group_id'], $A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']);
if ($access == 0 or $access == 2) {
// Uh, oh! User doesn't have access to this object
$retval .= COM_showMessageText($LANG_CAL_ADMIN[17], $LANG_ACCESS['accessdenied']);
COM_accessLog("User {$_USER['username']} tried to illegally submit or edit event {$eid}.");
return $retval;
}
} else {
if (empty($A['owner_id'])) {
$A['owner_id'] = $_USER['uid'];
}
if (isset($_GROUPS['Calendar Admin'])) {
$A['group_id'] = $_GROUPS['Calendar Admin'];
} else {
$A['group_id'] = SEC_getFeatureGroup('calendar.edit');
}
SEC_setDefaultPermissions($A, $_CA_CONF['default_permissions']);
$access = 3;
}
if ($mode == 'editsubmission') {
$event_templates->set_var('post_options', COM_optionList($_TABLES['postmodes'], 'code,name', 'plaintext'));
} else {
if (!isset($A['postmode'])) {
$A['postmode'] = $_CONF['postmode'];
}
$event_templates->set_var('post_options', COM_optionList($_TABLES['postmodes'], 'code,name', $A['postmode']));
}
$token = SEC_createToken();
$retval .= COM_startBlock($LANG_CAL_ADMIN[1], '', COM_getBlockTemplate('_admin_block', 'header'));
$retval .= SEC_getTokenExpiryNotice($token);
if (!empty($A['eid'])) {
$delbutton = '<input type="submit" value="' . $LANG_ADMIN['delete'] . '" name="mode"%s' . XHTML . '>';
$jsconfirm = ' onclick="return confirm(\'' . $MESSAGE[76] . '\');"';
$event_templates->set_var('delete_option', sprintf($delbutton, $jsconfirm));
$event_templates->set_var('delete_option_no_confirmation', sprintf($delbutton, ''));
$event_templates->set_var('allow_delete', true);
$event_templates->set_var('lang_delete', $LANG_ADMIN['delete']);
$event_templates->set_var('confirm_message', $MESSAGE[76]);
if ($mode == 'editsubmission') {
$event_templates->set_var('submission_option', '<input type="hidden" name="type" value="submission"' . XHTML . '>');
}
} else {
// new event
$A['eid'] = COM_makesid();
$A['title'] = '';
$A['description'] = '';
$A['url'] = '';
$A['hits'] = 0;
// in case a start date/time has been passed from the calendar,
// pick it up for the end date/time
if (empty($A['dateend'])) {
$A['dateend'] = $A['datestart'];
}
if (empty($A['timeend'])) {
$A['timeend'] = $A['timestart'];
}
$A['event_type'] = '';
$A['location'] = '';
$A['address1'] = '';
$A['address2'] = '';
$A['city'] = '';
$A['state'] = '';
$A['zipcode'] = '';
$A['allday'] = 0;
}
$event_templates->set_var('lang_eventid', $LANG_CAL_ADMIN[34]);
$event_templates->set_var('event_id', $A['eid']);
$event_templates->set_var('lang_eventtitle', $LANG_ADMIN['title']);
$A['title'] = str_replace('{', '{', $A['title']);
$A['title'] = str_replace('}', '}', $A['title']);
$A['title'] = str_replace('"', '"', $A['title']);
$event_templates->set_var('event_title', stripslashes($A['title']));
$event_templates->set_var('lang_eventtype', $LANG_CAL_1[37]);
$event_templates->set_var('lang_editeventtypes', $LANG12[50]);
$event_templates->set_var('type_options', CALENDAR_eventTypeList($A['event_type']));
$event_templates->set_var('lang_eventurl', $LANG_CAL_ADMIN[4]);
$event_templates->set_var('max_url_length', 255);
$event_templates->set_var('event_url', $A['url']);
$event_templates->set_var('lang_includehttp', $LANG_CAL_ADMIN[9]);
$event_templates->set_var('lang_eventstartdate', $LANG_CAL_ADMIN[5]);
//$event_templates->set_var('event_startdate', $A['datestart']);
$event_templates->set_var('lang_starttime', $LANG_CAL_1[30]);
// Combine date/time for easier manipulation
$A['datestart'] = trim($A['datestart'] . ' ' . $A['timestart']);
if (empty($A['datestart'])) {
$start_stamp = time();
} else {
$start_stamp = strtotime($A['datestart']);
}
$A['dateend'] = trim($A['dateend'] . ' ' . $A['timeend']);
if (empty($A['dateend'])) {
$end_stamp = time();
} else {
$end_stamp = strtotime($A['dateend']);
}
$start_month = date('m', $start_stamp);
$start_day = date('d', $start_stamp);
$start_year = date('Y', $start_stamp);
$end_month = date('m', $end_stamp);
$end_day = date('d', $end_stamp);
$end_year = date('Y', $end_stamp);
$start_hour = date('H', $start_stamp);
$start_minute = intval(date('i', $start_stamp) / 15) * 15;
if ($start_hour >= 12) {
$startampm = 'pm';
} else {
$startampm = 'am';
}
$start_hour_24 = $start_hour % 24;
if ($start_hour > 12) {
$start_hour = $start_hour - 12;
} else {
if ($start_hour == 0) {
$start_hour = 12;
}
}
$end_hour = date('H', $end_stamp);
$end_minute = intval(date('i', $end_stamp) / 15) * 15;
if ($end_hour >= 12) {
$endampm = 'pm';
} else {
$endampm = 'am';
}
$end_hour_24 = $end_hour % 24;
if ($end_hour > 12) {
$end_hour = $end_hour - 12;
} else {
if ($end_hour == 0) {
$end_hour = 12;
}
}
$month_options = COM_getMonthFormOptions($start_month);
$event_templates->set_var('startmonth_options', $month_options);
$month_options = COM_getMonthFormOptions($end_month);
$event_templates->set_var('endmonth_options', $month_options);
$day_options = COM_getDayFormOptions($start_day);
$event_templates->set_var('startday_options', $day_options);
$day_options = COM_getDayFormOptions($end_day);
$event_templates->set_var('endday_options', $day_options);
$year_options = COM_getYearFormOptions($start_year);
$event_templates->set_var('startyear_options', $year_options);
$year_options = COM_getYearFormOptions($end_year);
$event_templates->set_var('endyear_options', $year_options);
if (isset($_CA_CONF['hour_mode']) && $_CA_CONF['hour_mode'] == 24) {
$hour_options = COM_getHourFormOptions($start_hour_24, 24);
$event_templates->set_var('starthour_options', $hour_options);
$hour_options = COM_getHourFormOptions($end_hour_24, 24);
$event_templates->set_var('endhour_options', $hour_options);
$event_templates->set_var('hour_mode', 24);
} else {
$hour_options = COM_getHourFormOptions($start_hour);
$event_templates->set_var('starthour_options', $hour_options);
$hour_options = COM_getHourFormOptions($end_hour);
$event_templates->set_var('endhour_options', $hour_options);
$event_templates->set_var('hour_mode', 12);
}
$event_templates->set_var('startampm_selection', COM_getAmPmFormSelection('start_ampm', $startampm));
$event_templates->set_var('endampm_selection', COM_getAmPmFormSelection('end_ampm', $endampm));
$event_templates->set_var('startminute_options', COM_getMinuteFormOptions($start_minute, 15));
$event_templates->set_var('endminute_options', COM_getMinuteFormOptions($end_minute, 15));
$event_templates->set_var('lang_enddate', $LANG12[13]);
$event_templates->set_var('lang_eventenddate', $LANG_CAL_ADMIN[6]);
$event_templates->set_var('event_enddate', $A['dateend']);
$event_templates->set_var('lang_enddate', $LANG12[13]);
$event_templates->set_var('lang_endtime', $LANG_CAL_1[29]);
$event_templates->set_var('lang_alldayevent', $LANG_CAL_1[31]);
if ($A['allday'] == 1) {
$event_templates->set_var('allday_checked', 'checked="checked"');
}
$event_templates->set_var('lang_location', $LANG12[51]);
$event_templates->set_var('event_location', stripslashes($A['location']));
$event_templates->set_var('lang_addressline1', $LANG12[44]);
$event_templates->set_var('event_address1', stripslashes($A['address1']));
$event_templates->set_var('lang_addressline2', $LANG12[45]);
$event_templates->set_var('event_address2', stripslashes($A['address2']));
$event_templates->set_var('lang_city', $LANG12[46]);
$event_templates->set_var('event_city', stripslashes($A['city']));
$event_templates->set_var('lang_state', $LANG12[47]);
$event_templates->set_var('state_options', '');
$event_templates->set_var('event_state', stripslashes($A['state']));
$event_templates->set_var('lang_zipcode', $LANG12[48]);
$event_templates->set_var('event_zipcode', $A['zipcode']);
$event_templates->set_var('lang_eventlocation', $LANG_CAL_ADMIN[7]);
$event_templates->set_var('event_location', stripslashes($A['location']));
$event_templates->set_var('lang_eventdescription', $LANG_CAL_ADMIN[8]);
$event_templates->set_var('event_description', stripslashes($A['description']));
$event_templates->set_var('lang_hits', $LANG10[30]);
$event_templates->set_var('hits', COM_numberFormat($A['hits']));
$event_templates->set_var('lang_save', $LANG_ADMIN['save']);
$event_templates->set_var('lang_cancel', $LANG_ADMIN['cancel']);
// user access info
$event_templates->set_var('lang_accessrights', $LANG_ACCESS['accessrights']);
$event_templates->set_var('lang_owner', $LANG_ACCESS['owner']);
$ownername = COM_getDisplayName($A['owner_id']);
$event_templates->set_var('owner_username', DB_getItem($_TABLES['users'], 'username', "uid = {$A['owner_id']}"));
$event_templates->set_var('owner_name', $ownername);
$event_templates->set_var('owner', $ownername);
$event_templates->set_var('owner_id', $A['owner_id']);
$event_templates->set_var('lang_group', $LANG_ACCESS['group']);
$event_templates->set_var('group_dropdown', SEC_getGroupDropdown($A['group_id'], $access));
$event_templates->set_var('lang_permissions', $LANG_ACCESS['permissions']);
$event_templates->set_var('lang_permissionskey', $LANG_ACCESS['permissionskey']);
$event_templates->set_var('lang_perm_key', $LANG_ACCESS['permissionskey']);
$event_templates->set_var('permissions_editor', SEC_getPermissionsHTML($A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']));
$event_templates->set_var('lang_permissions_msg', $LANG_ACCESS['permmsg']);
$event_templates->set_var('gltoken_name', CSRF_TOKEN);
$event_templates->set_var('gltoken', $token);
$event_templates->parse('output', 'editor');
$retval .= $event_templates->finish($event_templates->get_var('output'));
$retval .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer'));
return $retval;
}
/**
* Creates the edit form
* @param integer $id Optional ID, current record used if zero
* @return string HTML for edit form
*/
public function Edit($eid = '', $rp_id = 0, $saveaction = '')
{
global $_CONF, $_EV_CONF, $_TABLES, $_USER, $LANG_EVLIST, $LANG_ADMIN, $_GROUPS, $LANG_ACCESS, $_SYSTEM;
// If an eid is specified and this is an object, then read the
// event data- UNLESS a repeat ID is given in which case we're
// editing a repeat and already have the info we need.
// This probably needs to change, since we should always read event
// data during construction.
if (!$this->isSubmitter) {
// At least submit privilege required
COM_404();
} elseif ($eid != '' && $rp_id == 0 && is_object($this)) {
// If an id is passed in, then read that record
if (!$this->Read($eid)) {
return 'Invalid object ID';
}
} elseif (isset($_POST['eid']) && !empty($_POST['eid'])) {
// Returning to an existing form, probably due to errors
$this->SetVars($_POST);
// Make sure the current user has access to this event.
if (!$this->hasAccess(3)) {
COM_404();
}
}
$T = new Template($_CONF['path'] . 'plugins/evlist/templates/');
if ($_SYSTEM['disable_jquery_slimbox']) {
$T->set_file('editor', 'editor.uikit.thtml');
} else {
$T->set_file('editor', 'editor.thtml');
}
// Basic tabs for editing both events and instances, show up on
// all edit forms
//$tabs = array('ev_info', 'ev_schedule', 'ev_location', 'ev_contact',);
$tabs = array('ev_info', 'ev_location', 'ev_contact');
$rp_id = (int) $rp_id;
if ($rp_id > 0) {
// Make sure the current user has access to this event.
if (!$this->hasAccess(3)) {
COM_404();
}
if ($saveaction == 'savefuturerepeat') {
$alert_msg = EVLIST_alertMessage($LANG_EVLIST['editing_future'], 'warning');
} else {
$alert_msg = EVLIST_alertMessage($LANG_EVLIST['editing_instance'], 'info');
}
//$T->clear_var('contact_section');
$T->clear_var('category_section');
$T->clear_var('permissions_editor');
// Set the static calendar name for the edit form. Can't
// change it for a single instance.
$cal_name = DB_getItem($_TABLES['evlist_calendars'], 'cal_name', "cal_id='" . (int) $this->cal_id . "'");
$T->set_var(array('contact_section' => 'true', 'is_repeat' => 'true', 'cal_name' => $cal_name));
// Override our dates & times with those from the repeat.
// $rp_id is passed when this is called from class evRepeat.
// Maybe that should pass in the repeat's data instead to avoid
// another DB lookup. An array of values could be used.
$Rep = DB_fetchArray(DB_query("SELECT * \n FROM {$_TABLES['evlist_repeat']}\n WHERE rp_id='{$rp_id}'"), false);
if ($Rep) {
$this->date_start1 = $Rep['rp_date_start'];
$this->date_end1 = $Rep['rp_date_end'];
$this->time_start1 = $Rep['rp_time_start1'];
$this->time_end1 = $Rep['rp_time_end1'];
$this->time_start2 = $Rep['rp_time_start2'];
$this->time_end2 = $Rep['rp_time_end2'];
}
} else {
// Editing the main event record
if ($this->id != '' && $this->recurring == 1) {
$alert_msg = EVLIST_alertMessage($LANG_EVLIST['editing_series'], 'error');
}
if ($this->isAdmin) {
$tabs[] = 'ev_perms';
// Add permissions tab, event edit only
$T->set_var('permissions_editor', 'true');
}
$T->set_var(array('contact_section' => 'true', 'category_section' => 'true', 'upcoming_chk' => $this->show_upcoming ? EVCHECKED : ''));
}
$action_url = EVLIST_URL . '/event.php';
$delaction = 'delevent';
if (isset($_GET['from']) && $_GET['from'] == 'admin') {
$cancel_url = EVLIST_ADMIN_URL . '/index.php';
} else {
$cancel_url = EVLIST_URL . '/index.php';
}
switch ($saveaction) {
case 'saverepeat':
case 'savefuturerepeat':
case 'saveevent':
break;
case 'moderate':
// Approving a submission
$saveaction = 'approve';
$delaction = 'disapprove';
$action_url = EVLIST_ADMIN_URL . '/index.php';
$cancel_url = $_CONF['site_admin_url'] . '/moderation.php';
break;
default:
$saveaction = 'saveevent';
break;
}
$retval = '';
//$recinterval = '';
$recweekday = '';
$ownerusername = DB_getItem($_TABLES['users'], 'username', "uid='{$this->owner_id}'");
$retval .= COM_startBlock($LANG_EVLIST['event_editor']);
$summary = $this->Detail->summary;
$full_description = $this->Detail->full_description;
$location = $this->Detail->location;
if (($this->isAdmin || $_EV_CONF['allow_html'] == '1' && $_USER['uid'] > 1) && $A['postmode'] == 'html') {
$postmode = '2';
//html
} else {
$postmode = '1';
//plaintext
$summary = htmlspecialchars(COM_undoClickableLinks(COM_undoSpecialChars($this->Detail->summary)));
$full_description = htmlspecialchars(COM_undoClickableLinks(COM_undoSpecialChars($this->Detail->full_description)));
$location = htmlspecialchars(COM_undoClickableLinks(COM_undoSpecialChars($this->Detail->location)));
}
$starthour2 = '';
$startminute2 = '';
$endhour2 = '';
$endminute2 = '';
if ($this->date_end1 == '' || $this->date_end1 == '0000-00-00') {
$this->date_end1 = $this->date_start1;
}
if ($this->date_start1 != '' && $this->date_start1 != '0000-00-00') {
list($startmonth1, $startday1, $startyear1, $starthour1, $startminute1) = $this->DateParts($this->date_start1, $this->time_start1);
} else {
list($startmonth1, $startday1, $startyear1, $starthour1, $startminute1) = $this->DateParts(date('Y-m-d', time()), date('H:i:s', time()));
}
// The end date can't be before the start date
if ($this->date_end1 >= $this->date_start1) {
list($endmonth1, $endday1, $endyear1, $endhour1, $endminute1) = $this->DateParts($this->date_end1, $this->time_end1);
$days_interval = Date_Calc::dateDiff($endday1, $endmonth1, $endyear1, $startday1, $startmonth1, $startyear1);
} else {
$days_interval = 0;
$endmonth1 = $startmonth1;
$endday1 = $startday1;
$endyear1 = $startyear1;
$endhour1 = $starthour1;
$endminute1 = $startminute1;
}
if ($this->recurring != '1') {
$T->set_var(array('recurring_show' => ' style="display:none;"', 'format_opt' => '0'));
//for ($i = 1; $i <= 6; $i++) {
// $T->set_var('format' . $i . 'show', ' style="display:none;"');
//}
} else {
$option = empty($this->rec_data['type']) ? '0' : (int) $this->rec_data['type'];
$T->set_var(array('recurring_show' => '', 'recurring_checked' => EVCHECKED, 'format_opt' => $option));
}
if (isset($this->rec_data['stop']) && !empty($this->rec_data['stop'])) {
$T->set_var(array('stopdate' => $this->rec_data['stop'], 'd_stopdate' => EVLIST_formattedDate($this->rec_data['stop'])));
}
if (!empty($this->rec_data['skip'])) {
$T->set_var("skipnext{$this->rec_data['skip']}_checked", EVCHECKED);
}
if (!empty($this->rec_data['freq'])) {
$freq = (int) $this->rec_data['freq'];
if ($freq < 1) {
$freq = 1;
}
} else {
$freq = 1;
}
$T->set_var(array('freq_text' => $LANG_EVLIST['rec_periods'][$this->rec_data['type']] . '(s)', 'rec_freq' => $freq));
foreach ($LANG_EVLIST['rec_intervals'] as $key => $str) {
$T->set_var('dom_int_txt_' . $key, $str);
if (is_array($this->rec_data['interval'])) {
if (in_array($key, $this->rec_data['interval'])) {
$T->set_var('dom_int_chk_' . $key, EVCHECKED);
}
}
}
// Set up the recurring options needed for the current event
switch ($option) {
case 0:
break;
case EV_RECUR_MONTHLY:
if (is_array($this->rec_data['listdays'])) {
foreach ($this->rec_data['listdays'] as $mday) {
$T->set_var('mdchk' . $mday, EVCHECKED);
}
}
break;
case EV_RECUR_WEEKLY:
$T->set_var('listdays_val', COM_stripslashes($rec_data[0]));
if (is_array($this->rec_data['listdays']) && !empty($this->rec_data['listdays'])) {
foreach ($this->rec_data['listdays'] as $day) {
$day = (int) $day;
if ($day > 0 && $day < 8) {
$T->set_var('daychk' . $day, EVCHECKED);
}
}
}
break;
case EV_RECUR_DOM:
$recweekday = $this->rec_data['weekday'];
break;
case EV_RECUR_DATES:
$T->set_var(array('stopshow' => 'style="display:none;"', 'custom_val' => implode(',', $this->rec_data['custom'])));
break;
}
$start1 = EVLIST_TimeSelect('start1', $this->time_start1);
$start2 = EVLIST_TimeSelect('start2', $this->time_start2);
$end1 = EVLIST_TimeSelect('end1', $this->time_end1);
$end2 = EVLIST_TimeSelect('end2', $this->time_end2);
$cal_select = COM_optionList($_TABLES['evlist_calendars'], 'cal_id,cal_name', $this->cal_id, 1, 'cal_status = 1 ' . COM_getPermSQL('AND', 0, 2));
USES_class_navbar();
$navbar = new navbar();
$cnt = 0;
foreach ($tabs as $id) {
$navbar->add_menuitem($LANG_EVLIST[$id], 'showhideEventDiv("' . $id . '",' . $cnt . ');return false;', true);
$cnt++;
}
$navbar->set_selected($LANG_EVLIST['ev_info']);
if ($this->AdminMode) {
$action_url .= '?admin=true';
}
$T->set_var(array('action_url' => $action_url, 'navbar' => $navbar->generate(), 'alert_msg' => $alert_msg, 'cancel_url' => $cancel_url, 'eid' => $this->id, 'rp_id' => $rp_id, 'title' => $this->Detail->title, 'summary' => $summary, 'description' => $full_description, 'location' => $location, 'status_checked' => $this->status == 1 ? EVCHECKED : '', 'url' => $this->Detail->url, 'street' => $this->Detail->street, 'city' => $this->Detail->city, 'province' => $this->Detail->province, 'country' => $this->Detail->country, 'postal' => $this->Detail->postal, 'contact' => $this->Detail->contact, 'email' => $this->Detail->email, 'phone' => $this->Detail->phone, 'startdate1' => $this->date_start1, 'enddate1' => $this->date_end1, 'd_startdate1' => EVLIST_formattedDate($this->date_start1), 'd_enddate1' => EVLIST_formattedDate($this->date_end1), 'start_hour_options1' => $start1['hour'], 'start_minute_options1' => $start1['minute'], 'startdate1_ampm' => $start1['ampm'], 'end_hour_options1' => $end1['hour'], 'end_minute_options1' => $end1['minute'], 'enddate1_ampm' => $end1['ampm'], 'start_hour_options2' => $start2['hour'], 'start_minute_options2' => $start2['minute'], 'startdate2_ampm' => $start2['ampm'], 'end_hour_options2' => $end2['hour'], 'end_minute_options2' => $end2['minute'], 'enddate2_ampm' => $end2['ampm'], 'recurring_format_options' => EVLIST_GetOptions($LANG_EVLIST['rec_formats'], $option), 'recurring_weekday_options' => EVLIST_GetOptions(Date_Calc::getWeekDays(), $recweekday, 1), 'dailystop_label' => sprintf($LANG_EVLIST['stop_label'], $LANG_EVLIST['day_by_date'], ''), 'monthlystop_label' => sprintf($LANG_EVLIST['stop_label'], $LANG_EVLIST['year_and_month'], $LANG_EVLIST['if_any']), 'yearlystop_label' => sprintf($LANG_EVLIST['stop_label'], $LANG_EVLIST['year'], $LANG_EVLIST['if_any']), 'listdays_label' => sprintf($LANG_EVLIST['custom_label'], $LANG_EVLIST['days_of_week'], ''), 'listdaystop_label' => sprintf($LANG_EVLIST['stop_label'], $LANG_EVLIST['date_l'], $LANG_EVLIST['if_any']), 'intervalstop_label' => sprintf($LANG_EVLIST['stop_label'], $LANG_EVLIST['year_and_month'], $LANG_EVLIST['if_any']), 'custom_label' => sprintf($LANG_EVLIST['custom_label'], $LANG_EVLIST['dates'], ''), 'datestart_note' => $LANG_EVLIST['datestart_note'], 'src' => isset($_GET['src']) && $_GET['src'] == 'a' ? '1' : '0', 'rem_status_checked' => $this->enable_reminders == 1 ? EVCHECKED : '', 'del_button' => $this->id == '' ? '' : 'true', 'saveaction' => $saveaction, 'delaction' => $delaction, 'owner_id' => $this->owner_id, 'enable_reminders' => $_EV_CONF['enable_reminders'], 'iso_lang' => EVLIST_getIsoLang(), 'hour_mode' => $_CONF['hour_mode'], 'days_interval' => $days_interval, 'display_format' => $_CONF['shortdate'], 'ts_start' => strtotime($this->date_start1), 'ts_end' => strtotime($this->date_end1), 'cal_select' => $cal_select, 'contactlink_chk' => $this->options['contactlink'] == 1 ? EVCHECKED : '', 'lat' => $this->Detail->lat, 'lng' => $this->Detail->lng, 'perm_msg' => $LANG_ACCESS['permmsg'], 'last' => $LANG_EVLIST['rec_intervals'][5], 'doc_url' => EVLIST_getDocURL('event.html'), 'mootools' => $_SYSTEM['disable_mootools'] ? '' : 'true'));
if ($_EV_CONF['enable_rsvp']) {
USES_evlist_class_tickettype();
$TickTypes = evTicketType::GetTicketTypes();
//$T->set_block('editor', 'Tickets', 'tTypes');
$tick_opts = '';
foreach ($TickTypes as $tick_id => $tick_obj) {
// Check enabled tickets. Ticket type 1 enabled by default
if (isset($this->options['tickets'][$tick_id]) || $tick_id == 1) {
$checked = 'checked="checked"';
$fee = (double) $this->options['tickets'][$tick_id]['fee'];
} else {
$checked = '';
$fee = 0;
}
$tick_opts .= '<tr><td><input name="tickets[' . $tick_id . ']" type="checkbox" ' . $checked . ' value="' . $tick_id . '" /></td>' . '<td>' . $tick_obj->description . '</td>' . '<td><input type="text" name="tick_fees[' . $tick_id . ']" value="' . $fee . '" size="8" /></td></tr>' . LB;
/*$T->set_var(array(
'tick_id' => $tic['id'],
'tick_desc' => $tic['description'],
'tick_fee' => $fee,
'tick_enabled' => $enabled ? 'checked="checked"' : '',
) ) ;
//$T->parse('tTypes', 'Tickets', true);*/
}
if ($_EV_CONF['rsvp_print'] > 0) {
$rsvp_print_chk = 'rsvp_print_chk' . $this->options['rsvp_print'];
$rsvp_print = 'true';
} else {
$rsvp_print = '';
$rsvp_print_chk = 'no_rsvp_print';
}
$T->set_var(array('enable_rsvp' => 'true', 'reg_chk' . $this->options['use_rsvp'] => EVCHECKED, 'rsvp_wait_chk' => $this->options['rsvp_waitlist'] == 1 ? EVCHECKED : '', 'max_rsvp' => $this->options['max_rsvp'], 'max_user_rsvp' => $this->options['max_user_rsvp'], 'rsvp_cutoff' => $this->options['rsvp_cutoff'], 'use_rsvp' => $this->options['use_rsvp'], 'rsvp_waitlist' => $this->options['rsvp_waitlist'], 'tick_opts' => $tick_opts, 'rsvp_print' => $rsvp_print, $rsvp_print_chk => 'checked="checked"'));
}
// if rsvp_enabled
// Split & All-Day settings
if ($this->allday == 1) {
// allday, can't be split, no times
$T->set_var(array('starttime1_show' => 'style="display:none;"', 'endtime1_show' => 'style="display:none;"', 'datetime2_show' => 'style="display:none;"', 'allday_checked' => EVCHECKED, 'split_checked' => '', 'split_show' => 'style="display:none;"'));
} elseif ($this->split == '1') {
$T->set_var(array('split_checked' => EVCHECKED, 'allday_checked' => '', 'allday_show' => 'style="display:none"'));
} else {
$T->set_var(array('datetime2_show' => 'style="display:none;"'));
}
// Category fields. If $_POST['categories'] is set, then this is a
// form re-entry due to an error saving. Populate checkboxes from the
// submitted form. Include the user-added category, if any.
// If not from a form re-entry, get the checked categories from the
// evlist_lookup table.
if ($_EV_CONF['enable_categories'] == '1') {
$cresult = DB_query("SELECT tc.id, tc.name\n FROM {$_TABLES['evlist_categories']} tc \n WHERE tc.status='1' ORDER BY tc.name");
while ($A = DB_fetchArray($cresult, false)) {
if (isset($_POST['categories']) && is_array($_POST['categories'])) {
// Coming from a form re-entry
$chk = in_array($A['id'], $_POST['categories']) ? EVCHECKED : '';
} else {
$chk = in_array($A['id'], $this->categories) ? EVCHECKED : '';
}
$catlist .= '<input type="checkbox" name="categories[]" ' . 'value="' . $A['id'] . '" ' . $chk . ' />' . ' ' . $A['name'] . ' ';
}
$T->set_var('catlist', $catlist);
if (isset($_POST['newcat'])) {
$T->set_var('newcat', $_POST['newcat']);
}
if ($_USER['uid'] > 1 && $rp_id == 0) {
$T->set_var('category_section', 'true');
$T->set_var('add_cat_input', 'true');
}
}
// Enable the post mode selector if we allow HTML and the user is
// logged in, or if this user is an authorized editor
if ($this->isAdmin || $_EV_CONF['allow_html'] == '1' && $_USER['uid'] > 1) {
$T->set_var(array('postmode_options' => EVLIST_GetOptions($LANG_EVLIST['postmodes'], $postmode), 'allowed_html' => COM_allowedHTML('evlist.submit')));
if ($postmode == 'plaintext') {
// plaintext, hide postmode selector
$T->set_var('postmode_show', ' style="display:none"');
}
$T->parse('event_postmode', 'edit_postmode');
}
if ($this->isAdmin) {
$T->set_var(array('owner_username' => COM_stripslashes($ownerusername), 'owner_dropdown' => COM_optionList($_TABLES['users'], 'uid,username', $this->owner_id, 1, "uid <> 1"), 'group_dropdown' => SEC_getGroupDropdown($this->group_id, 3)));
if ($rp_id == 0) {
// can only change permissions on main event
$T->set_var('permissions_editor', SEC_getPermissionsHTML($this->perm_owner, $this->perm_group, $this->perm_members, $this->perm_anon));
}
} else {
$T->set_var('group_id', $this->group_id);
}
// Latitude & Longitude part of location, if Location plugin is used
if ($_EV_CONF['use_locator']) {
$T->set_var(array('use_locator' => 'true', 'loc_selection' => GEO_optionList()));
}
$T->parse('output', 'editor');
$retval .= $T->finish($T->get_var('output'));
$retval .= COM_endBlock();
return $retval;
}
/**
* Provide a form to edit a new or existing ad.
* @param array $A Array of ad data for edit form
* @param string $mode Edit mode
* @param boolean $admin True for administrator edit, false for normal
* @return string HTML for ad edit form
*/
function adEdit($A, $mode = 'edit', $admin = false)
{
global $_TABLES, $LANG_ADVT, $_CONF, $_CONF_ADVT, $LANG_ADMIN, $_USER, $LANG_ACCESS, $_GROUPS, $LANG12, $LANG24, $MESSAGE, $LANG_postmodes;
USES_classifieds_class_adtype();
// Determine if this user is an admin. Deprecates the $admin parameter.
$admin = SEC_hasRights($_CONF_ADVT['pi_name'] . '.admin') ? 1 : 0;
// only valid users allowed
if (COM_isAnonUser() || $_CONF_ADVT['usercanedit'] == 0 && !$admin) {
return CLASSIFIEDS_errorMsg($LANG_ADVT['no_permission'], 'alert', $LANG_ADVT['access_denied']);
}
// We know that we need to have categories, so make sure some exist
// before even trying to display the form. The category dropdown is
// created later since it needs the existing cat_id, if any.
if (DB_count($_TABLES['ad_category']) < 1) {
return CLASSIFIEDS_errorMsg($LANG_ADVT['no_categories'], 'info');
}
$time = time();
// used to compare now with expiration date
if ($admin) {
$T = new Template(CLASSIFIEDS_PI_PATH . '/templates/admin');
$T->set_file('adedit', "adminedit.thtml");
$action_url = CLASSIFIEDS_ADMIN_URL . '/index.php';
} else {
$T = new Template(CLASSIFIEDS_PI_PATH . '/templates');
$T->set_file('adedit', "submitform.thtml");
$action_url = CLASSIFIEDS_URL . '/index.php';
}
// Set up the wysiwyg editor, if available
switch (PLG_getEditorType()) {
case 'ckeditor':
$T->set_var('show_htmleditor', true);
PLG_requestEditor('classifieds', 'classifieds_entry', 'ckeditor_classifieds.thtml');
PLG_templateSetVars('classifieds_entry', $T);
break;
case 'tinymce':
$T->set_var('show_htmleditor', true);
PLG_requestEditor('classifieds', 'classifieds_entry', 'tinymce_classifieds.thtml');
PLG_templateSetVars('classifieds_entry', $T);
break;
default:
// don't support others right now
$T->set_var('show_htmleditor', false);
break;
}
switch ($mode) {
case 'editsubmission':
case 'moderate':
$savemode = 'savesubmission';
$delete_img = 'delsubimg';
$delete_ad = 'deletesubmission';
$type = 'moderate';
$saveoption = $LANG_ADMIN['moderate'];
$cancel_url = $_CONF['site_admin_url'] . '/moderation.php';
break;
case 'edit':
$savemode = 'savesubmission';
$delete_img = 'delsubimg';
$delete_ad = 'deletesubmission';
$saveoption = $LANG_ADMIN['save'];
$type = 'submission';
$cancel_url = $action_url;
break;
case 'update_ad':
default:
$savemode = 'update_ad';
$delete_img = 'delete_img';
$delete_ad = 'delete_ad';
$saveoption = $LANG_ADMIN['save'];
$type = '';
$cancel_url = $action_url;
break;
}
// Admins (only) use this form for submissions as well as edits,
// so we need to expect an empty array.
if (empty($A['ad_id'])) {
if (!$admin) {
return CLASSIFIEDS_errorMsg($LANG_ADVT['no_permission'], 'alert', $LANG_ADVT['access_denied']);
}
$A['ad_id'] = COM_makeSid();
$A['subject'] = '';
$A['descript'] = '';
$A['price'] = '';
$A['url'] = '';
$A['exp_date'] = '';
$A['add_date'] = time();
$A['ad_type'] = 0;
$A['perm_owner'] = $_CONF_ADVT['default_permissions'][0];
$A['perm_group'] = $_CONF_ADVT['default_permissions'][1];
$A['perm_members'] = $_CONF_ADVT['default_permissions'][2];
$A['perm_anon'] = $_CONF_ADVT['default_permissions'][3];
$A['uid'] = $_USER['uid'];
if (isset($_REQUEST['cat'])) {
$A['cat_id'] = intval($_REQUEST['cat']);
} else {
$A['cat_id'] = 0;
}
$catsql = "SELECT cat_id,perm_anon,keywords\n FROM {$_TABLES['ad_category']} ";
if ($A['cat_id'] > 0) {
$catsql .= "WHERE cat_id = {$A['cat_id']} ";
} else {
$catsql .= "ORDER BY cat_name ASC ";
}
$catsql .= "LIMIT 1";
$r = DB_query($catsql, 1);
if ($r && DB_numRows($r) > 0) {
$row = DB_fetchArray($r, false);
$A['cat_id'] = $row['cat_id'];
$A['keywords'] = trim($row['keywords']);
} else {
$A['cat_id'] = 0;
$A['keywords'] = '';
}
$A['owner_id'] = $_USER['uid'];
// Set ad owner to current user for new ads
$A['group_id'] = isset($_GROUPS['classifieds Admin']) ? $_GROUPS['classifieds Admin'] : SEC_getFeatureGroup('classifieds.edit');
$A['exp_sent'] = 0;
// set expiration & duration info for a new ad
$T->set_var('expiration_date', $LANG_ADVT['runfor']);
// "run for: X days"
$comments_enabled = $_CONF_ADVT['commentsupport'] == 1 ? 0 : 1;
$T->set_var("sel_{$comments_enabled}", 'selected');
if ($_CONF_ADVT['purchase_enabled']) {
USES_classifieds_class_userinfo();
$User = new adUserInfo();
$T->set_var('days', min($_CONF_ADVT['default_duration'], $User->getMaxDays()));
} else {
$T->set_var('days', $_CONF_ADVT['default_duration']);
}
$photocount = 0;
// No photos yet with a new ad
} else {
// This is an existing ad with values already in $A
$T->set_var('expiration_date', $LANG_ADVT['expiration']);
$T->set_var('days', '0');
// Disable the perm_anon checkbox if it's disabled by the category.
if (!$admin && DB_getItem($_TABLES['ad_category'], 'perm_anon', "cat_id='{$A['cat_id']}'") == '0') {
$T->set_var('vis_disabled', 'disabled');
}
// get the photo information
$sql = "SELECT photo_id, filename \n FROM {$_TABLES['ad_photo']} \n WHERE ad_id='{$A['ad_id']}'";
$photo = DB_query($sql, 1);
// save the count of photos for later use
if ($photo) {
$photocount = DB_numRows($photo);
} else {
$photocount = 0;
}
$comments_enabled = (int) $A['comments_enabled'];
$T->set_var("sel_{$comments_enabled}", 'selected');
}
// Get the max image size in MB and set the message
$img_max = $_CONF['max_image_size'] / 1048576;
// Show in MB
// Sanitize entries from the database
$A['subject'] = htmlspecialchars($A['subject']);
$A['descript'] = htmlspecialchars($A['descript']);
$A['keywords'] = htmlspecialchars($A['keywords']);
$A['price'] = htmlspecialchars($A['price']);
$A['url'] = htmlspecialchars($A['url']);
$A['ad_type'] = (int) $A['ad_type'];
// set expiration & duration based on existing info
if ($A['exp_date'] == '') {
$T->set_var('row_exp_date', '');
} else {
if ($A['exp_date'] < $time) {
$T->set_var('already_expired', $LANG_ADVT['already_expired']);
} else {
$T->set_var('row_exp_date', date("d M Y", $A['exp_date']));
}
}
$T->set_var(array('post_options' => $post_options, 'change_editormode' => 'onchange="change_editmode(this);"', 'glfusionStyleBasePath' => $_CONF['site_url'] . '/fckeditor', 'gltoken_name' => CSRF_TOKEN, 'gltoken' => SEC_createToken(), 'has_delbtn' => 'true', 'txt_photo' => "{$LANG_ADVT['photo']}<br />" . sprintf($LANG_ADVT['image_max'], $img_max), 'type' => $type, 'action_url' => $action_url, 'max_file_size' => $_CONF['max_image_size'], 'row_cat_id' => $A['cat_id'], 'row_ad_id' => $A['ad_id'], 'row_subject' => $A['subject'], 'row_descript' => $A['descript'], 'row_price' => $A['price'], 'row_url' => $A['url'], 'keywords' => $A['keywords'], 'exp_date' => $A['exp_date'], 'add_date' => $A['add_date'], 'ad_type_selection' => AdType::makeSelection($A['ad_type']), 'sel_list_catid' => CLASSIFIEDS_buildCatSelection($A['cat_id']), 'saveoption' => $saveoption, 'cancel_url' => $cancel_url));
// set expiration & duration based on existing info
if ($A['exp_date'] == '') {
$T->set_var('row_exp_date', '');
} else {
if ($A['exp_date'] < $time) {
$T->set_var('already_expired', $LANG_ADVT['already_expired']);
} else {
$T->set_var('row_exp_date', date("d M Y", $A['exp_date']));
}
}
// Set up permission editor on the admin template if needed.
// Otherwise, set hidden values with existing permissions
if ($admin) {
// Set up owner selection
$T->set_var(array('ownerselect' => CLASSIFIEDS_userDropdown($A['owner_id']), 'permissions_editor' => SEC_getPermissionsHTML($A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']), 'group_dropdown' => SEC_getGroupDropdown($A['group_id'], 3)));
} else {
$ownername = COM_getDisplayName($A['owner_id']);
$T->set_var(array('owner_id' => $A['owner_id'], 'ownername' => $ownername, 'perm_owner' => $A['perm_owner'], 'perm_group' => $A['perm_group'], 'perm_members' => $A['perm_members'], 'perm_anon' => $A['perm_anon'], 'group_id' => $A['group_id']));
if ($A['perm_anon'] == 2) {
$T->set_var('perm_anon_chk', 'checked');
}
}
// Set up the photo fields. Use $photocount defined above.
// If there are photos, read the $photo result. Otherwise,
// or if this is a new ad, just clear the photo area
$T->set_block('adedit', 'PhotoRow', 'PRow');
$i = 0;
if ($photocount > 0) {
while ($prow = DB_fetchArray($photo, false)) {
$i++;
$T->set_var(array('img_url' => LGLIB_ImageUrl(CLASSIFIEDS_IMGPATH . '/' . $prow['filename'], $_CONF_ADVT['img_max_width'], $_CONF_ADVT['img_max_height']), 'thumb_url' => LGLIB_ImageUrl(CLASSIFIEDS_IMGPATH . '/' . $prow['filename'], $_CONF_ADVT['thumb_max_size'], $_CONF_ADVT['thumb_max_size']), 'seq_no' => $i, 'ad_id' => $A['ad_id'], 'del_img_url' => $action_url . "?mode={$delete_img}&mid={$prow['photo_id']}" . "&id={$A['ad_id']}"));
$T->parse('PRow', 'PhotoRow', true);
}
} else {
$T->parse('PRow', '');
}
// add upload fields for unused images
$T->set_block('adedit', 'UploadFld', 'UFLD');
for ($j = $i; $j < $_CONF_ADVT['imagecount']; $j++) {
$T->parse('UFLD', 'UploadFld', true);
}
$T->parse('output', 'adedit');
return $T->finish($T->get_var('output'));
}
/**
* Displays the static page form
*
* @param array $A Data to display
* @param string $error Error message to display
*
*/
function PAGE_form($A, $error = false)
{
global $_CONF, $_TABLES, $_USER, $_GROUPS, $_SP_CONF, $action, $sp_id, $LANG21, $LANG_STATIC, $LANG_ACCESS, $LANG_ADMIN, $LANG24, $LANG_postmodes, $MESSAGE;
USES_lib_admin();
$menu_arr = array(array('url' => $_CONF['site_admin_url'] . '/plugins/staticpages/index.php', 'text' => $LANG_STATIC['page_list']), array('url' => $_CONF['site_admin_url'], 'text' => $LANG_ADMIN['admin_home']));
$template_path = staticpages_templatePath('admin');
if (!empty($sp_id) && ($action == 'edit' || $action == 'clone')) {
$access = SEC_hasAccess($A['owner_id'], $A['group_id'], $A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']);
} else {
$A['owner_id'] = $_USER['uid'];
if (isset($_GROUPS['staticpages Admin'])) {
$A['group_id'] = $_GROUPS['staticpages Admin'];
} else {
$A['group_id'] = SEC_getFeatureGroup('staticpages.edit');
}
SEC_setDefaultPermissions($A, $_SP_CONF['default_permissions']);
$access = 3;
}
$retval = '';
if (empty($A['owner_id'])) {
$error = COM_startBlock($LANG_ACCESS['accessdenied'], '', COM_getBlockTemplate('_msg_block', 'header'));
$error .= $LANG_STATIC['deny_msg'];
$error .= COM_endBlock(COM_getBlockTemplate('_msg_block', 'footer'));
}
if ($error) {
$retval .= $error . '<br/><br/>';
} else {
$sp_template = new Template($template_path);
$sp_template->set_file('form', 'editor.thtml');
$sp_template->set_var('lang_mode', $LANG24[3]);
$sp_template->set_var('comment_options', COM_optionList($_TABLES['commentcodes'], 'code,name', $A['commentcode']));
$ownername = COM_getDisplayName($A['owner_id']);
$sp_template->set_var(array('sp_search_checked' => $A['sp_search'] == 1 ? ' checked="checked"' : '', 'sp_status_checked' => $A['sp_status'] == 1 ? ' checked="checked"' : '', 'lang_accessrights' => $LANG_ACCESS['accessrights'], 'lang_owner' => $LANG_ACCESS['owner'], 'owner_username' => DB_getItem($_TABLES['users'], 'username', "uid = {$A['owner_id']}"), 'owner_name' => $ownername, 'owner' => $ownername, 'owner_id' => $A['owner_id'], 'lang_group' => $LANG_ACCESS['group'], 'group_dropdown' => SEC_getGroupDropdown($A['group_id'], $access), 'permissions_editor' => SEC_getPermissionsHTML($A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']), 'lang_permissions' => $LANG_ACCESS['permissions'], 'lang_perm_key' => $LANG_ACCESS['permissionskey'], 'permissions_msg' => $LANG_ACCESS['permmsg'], 'start_block_editor' => COM_startBlock($LANG_STATIC['staticpages'] . ' :: ' . $LANG_STATIC['staticpageeditor'], '', COM_getBlockTemplate('_admin_block', 'header')), 'lang_save' => $LANG_ADMIN['save'], 'lang_cancel' => $LANG_ADMIN['cancel'], 'lang_preview' => $LANG_ADMIN['preview'], 'lang_editor' => $LANG_STATIC['staticpageeditor'], 'lang_attributes' => $LANG_STATIC['attributes']));
if (SEC_hasRights('staticpages.delete') && $action != 'clone' && !empty($A['sp_old_id'])) {
$delbutton = '<input type="submit" value="' . $LANG_ADMIN['delete'] . '" name="delete"%s/>';
$jsconfirm = ' onclick="return confirm(\'' . $MESSAGE[76] . '\');"';
$sp_template->set_var('delete_option', sprintf($delbutton, $jsconfirm));
$sp_template->set_var('delete_button', true);
$sp_template->set_var('lang_delete_confirm', $MESSAGE[76]);
$sp_template->set_var('lang_delete', $LANG_ADMIN['delete']);
$sp_template->set_var('delete_option_no_confirmation', sprintf($delbutton, ''));
} else {
$sp_template->set_var('delete_option', '');
}
$sp_template->set_var('lang_writtenby', $LANG_STATIC['writtenby']);
$sp_template->set_var('username', DB_getItem($_TABLES['users'], 'username', "uid = {$A['sp_uid']}"));
$authorname = COM_getDisplayName($A['sp_uid']);
$sp_template->set_var('name', $authorname);
$sp_template->set_var('author', $authorname);
$sp_template->set_var('lang_url', $LANG_STATIC['url']);
$sp_template->set_var('lang_id', $LANG_STATIC['id']);
$sp_template->set_var('sp_uid', $A['sp_uid']);
$sp_template->set_var('sp_id', $A['sp_id']);
$sp_template->set_var('sp_old_id', $A['sp_old_id']);
$sp_template->set_var('example_url', COM_buildURL($_CONF['site_url'] . '/page.php?page=' . $A['sp_id']));
$sp_template->set_var('lang_centerblock', $LANG_STATIC['centerblock']);
$sp_template->set_var('lang_centerblock_help', $LANG_ADMIN['help_url']);
$sp_template->set_var('lang_centerblock_include', $LANG21[51]);
$sp_template->set_var('lang_centerblock_desc', $LANG21[52]);
$sp_template->set_var('centerblock_help', $A['sp_help']);
$sp_template->set_var('lang_centerblock_msg', $LANG_STATIC['centerblock_msg']);
if (isset($A['sp_centerblock']) && $A['sp_centerblock'] == 1) {
$sp_template->set_var('centerblock_checked', 'checked="checked"');
} else {
$sp_template->set_var('centerblock_checked', '');
}
$sp_template->set_var('lang_topic', $LANG_STATIC['topic']);
$sp_template->set_var('lang_position', $LANG_STATIC['position']);
$current_topic = '';
if (isset($A['sp_tid'])) {
$current_topic = $A['sp_tid'];
}
if (empty($current_topic)) {
$current_topic = 'none';
}
$topics = COM_topicList('tid,topic', $current_topic, 1, true);
$alltopics = '<option value="all"';
if ($current_topic == 'all') {
$alltopics .= ' selected="selected"';
}
$alltopics .= '>' . $LANG_STATIC['all_topics'] . '</option>' . LB;
$allnhp = '<option value="allnhp"';
if ($current_topic == 'allnhp') {
$allnhp .= ' selected="selected"';
}
$allnhp .= '>' . $LANG_STATIC['allnhp_topics'] . '</option>' . LB;
$notopic = '<option value="none"';
if ($current_topic == 'none') {
$notopic .= ' selected="selected"';
}
$notopic .= '>' . $LANG_STATIC['no_topic'] . '</option>' . LB;
$sp_template->set_var('topic_selection', '<select name="sp_tid">' . $alltopics . $allnhp . $notopic . $topics . '</select>');
$position = '<select name="sp_where">';
$position .= '<option value="1"';
if ($A['sp_where'] == 1) {
$position .= ' selected="selected"';
}
$position .= '>' . $LANG_STATIC['position_top'] . '</option>';
$position .= '<option value="2"';
if ($A['sp_where'] == 2) {
$position .= ' selected="selected"';
}
$position .= '>' . $LANG_STATIC['position_feat'] . '</option>';
$position .= '<option value="3"';
if ($A['sp_where'] == 3) {
$position .= ' selected="selected"';
}
$position .= '>' . $LANG_STATIC['position_bottom'] . '</option>';
$position .= '<option value="0"';
if ($A['sp_where'] == 0) {
$position .= ' selected="selected"';
}
$position .= '>' . $LANG_STATIC['position_entire'] . '</option>';
$position .= '<option value="4"';
if ($A['sp_where'] == 4) {
$position .= ' selected="selected"';
}
$position .= '>' . $LANG_STATIC['position_nonews'] . '</option>';
$position .= '</select>';
$sp_template->set_var('pos_selection', $position);
if ($_SP_CONF['allow_php'] == 1 && SEC_hasRights('staticpages.PHP')) {
if (!isset($A['sp_php'])) {
$A['sp_php'] = 0;
}
$selection = '<select name="sp_php">' . LB;
$selection .= '<option value="0"';
if ($A['sp_php'] <= 0 || $A['sp_php'] > 2) {
$selection .= ' selected="selected"';
}
$selection .= '>' . $LANG_STATIC['select_php_none'] . '</option>' . LB;
$selection .= '<option value="1"';
if ($A['sp_php'] == 1) {
$selection .= ' selected="selected"';
}
$selection .= '>' . $LANG_STATIC['select_php_return'] . '</option>' . LB;
$selection .= '<option value="2"';
if ($A['sp_php'] == 2) {
$selection .= ' selected="selected"';
}
$selection .= '>' . $LANG_STATIC['select_php_free'] . '</option>' . LB;
$selection .= '</select>';
$sp_template->set_var('php_selector', $selection);
$sp_template->set_var('php_warn', $LANG_STATIC['php_warn']);
} else {
$sp_template->set_var('php_selector', '');
$sp_template->set_var('php_warn', $LANG_STATIC['php_not_activated']);
}
$sp_template->set_var('php_msg', $LANG_STATIC['php_msg']);
// old variables (for the 1.3-type checkbox)
$sp_template->set_var('php_checked', '');
$sp_template->set_var('php_type', 'hidden');
if (isset($A['sp_nf']) && $A['sp_nf'] == 1) {
$sp_template->set_var('exit_checked', 'checked="checked"');
} else {
$sp_template->set_var('exit_checked', '');
}
$sp_template->set_var('exit_msg', $LANG_STATIC['exit_msg']);
$sp_template->set_var('exit_info', $LANG_STATIC['exit_info']);
if (isset($A['sp_inblock']) && $A['sp_inblock'] == 1) {
$sp_template->set_var('inblock_checked', 'checked="checked"');
} else {
$sp_template->set_var('inblock_checked', '');
}
$sp_template->set_var('inblock_msg', $LANG_STATIC['inblock_msg']);
$sp_template->set_var('inblock_info', $LANG_STATIC['inblock_info']);
$curtime = COM_getUserDateTimeFormat($A['unixdate']);
$sp_template->set_var('lang_lastupdated', $LANG_STATIC['date']);
$sp_template->set_var('sp_formateddate', $curtime[0]);
$sp_template->set_var('sp_date', $curtime[1]);
$sp_template->set_var('lang_title', $LANG_STATIC['title']);
$title = '';
if (isset($A['sp_title'])) {
$title = htmlspecialchars($A['sp_title']);
}
$sp_template->set_var('sp_title', $title);
$sp_template->set_var('lang_addtomenu', $LANG_STATIC['addtomenu']);
if (isset($A['sp_onmenu']) && $A['sp_onmenu'] == 1) {
$sp_template->set_var('onmenu_checked', 'checked="checked"');
} else {
$sp_template->set_var('onmenu_checked', '');
}
$sp_template->set_var('lang_label', $LANG_STATIC['label']);
if (isset($A['sp_label'])) {
$sp_template->set_var('sp_label', $A['sp_label']);
} else {
$sp_template->set_var('sp_label', '');
}
$sp_template->set_var('lang_pageformat', $LANG_STATIC['pageformat']);
$sp_template->set_var('lang_blankpage', $LANG_STATIC['blankpage']);
$sp_template->set_var('lang_noblocks', $LANG_STATIC['noblocks']);
$sp_template->set_var('lang_leftblocks', $LANG_STATIC['leftblocks']);
$sp_template->set_var('lang_rightblocks', $LANG_STATIC['rightblocks']);
$sp_template->set_var('lang_leftrightblocks', $LANG_STATIC['leftrightblocks']);
if (!isset($A['sp_format'])) {
$A['sp_format'] = '';
}
if ($A['sp_format'] == 'noblocks') {
$sp_template->set_var('noblock_selected', 'selected="selected"');
} else {
$sp_template->set_var('noblock_selected', '');
}
if ($A['sp_format'] == 'leftblocks') {
$sp_template->set_var('leftblocks_selected', 'selected="selected"');
} else {
$sp_template->set_var('leftblocks_selected', '');
}
if ($A['sp_format'] == 'rightblocks') {
$sp_template->set_var('rightblocks_selected', 'selected="selected"');
} else {
$sp_template->set_var('rightblocks_selected', '');
}
if ($A['sp_format'] == 'blankpage') {
$sp_template->set_var('blankpage_selected', 'selected="selected"');
} else {
$sp_template->set_var('blankpage_selected', '');
}
if ($A['sp_format'] == 'allblocks' or empty($A['sp_format'])) {
$sp_template->set_var('allblocks_selected', 'selected="selected"');
} else {
$sp_template->set_var('allblocks_selected', '');
}
$sp_template->set_var('lang_content', $LANG_STATIC['content']);
$content = '';
if (isset($A['sp_content'])) {
$content = htmlspecialchars($A['sp_content']);
}
$sp_template->set_var('sp_content', $content);
if ($_SP_CONF['filter_html'] == 1) {
$sp_template->set_var('lang_allowedhtml', COM_allowedHTML(SEC_getUserPermissions(), false, 'staticpages', 'page'));
} else {
$sp_template->set_var('lang_allowedhtml', $LANG_STATIC['all_html_allowed']);
}
$sp_template->set_var('lang_hits', $LANG_STATIC['hits']);
if (empty($A['sp_hits'])) {
$sp_template->set_var('sp_hits', '0');
$sp_template->set_var('sp_hits_formatted', '0');
} else {
$sp_template->set_var('sp_hits', $A['sp_hits']);
$sp_template->set_var('sp_hits_formatted', COM_numberFormat($A['sp_hits']));
}
$sp_template->set_var('end_block', COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer')));
$sp_template->set_var('owner_dropdown', COM_buildOwnerList('owner_id', $A['owner_id']));
$sp_template->set_var('writtenby_dropdown', COM_buildOwnerList('sp_uid', $A['sp_uid']));
$sp_template->set_var('gltoken_name', CSRF_TOKEN);
$sp_template->set_var('gltoken', SEC_createToken());
$sp_template->set_var('admin_menu', ADMIN_createMenu($menu_arr, $LANG_STATIC['instructions_edit'], plugin_geticon_staticpages()));
PLG_templateSetVars('sp_editor', $sp_template);
$retval .= $sp_template->parse('output', 'form');
}
return $retval;
}
$T->set_var('site_url', $_CONF['site_url']);
$T->set_var('site_admin_url', $_CONF['site_admin_url']);
$T->set_var('header', $LANG_EX00['externpages'] . ' ' . $LANG_EX00['admin']);
$T->set_var('plugin', 'external');
$T->set_var('exidmsg', $LANG_EX00['exidmsg']);
$T->set_var('titlemsg', $LANG_EX00['titlemsg']);
$T->set_var('urlmsg', $LANG_EX00['urlmsg']);
$T->set_var('hitsmsg', $LANG_EX00['hitsmsg']);
$T->set_var('save', $LANG_EX00['save']);
$T->set_var('delete', $LANG_EX00['delete']);
$T->set_var('cancel', $LANG_EX00['cancel']);
$T->set_var('exid', $exid);
$T->set_var('title', $title);
$T->set_var('url', $url);
$T->set_var('hits', $hits);
$T->set_var('perms', SEC_getPermissionsHTML($perm_owner, $perm_group, $perm_members, $perm_anon));
$T->set_var('lang_owner', $LANG_ACCESS[owner]);
if (SEC_inGroup('Root')) {
$T->set_var('owner_username', '');
$usrdd = '<SELECT name="owner_id">' . COM_optionList($_TABLES['users'], "uid,username", $owner_id) . "</SELECT>";
$T->set_var('owner_id', $usrdd);
} else {
$T->set_var('owner_username', '  ' . DB_getItem($_TABLES['users'], 'username', "uid = {$c_oid}"));
$T->set_var('owner_id', "<input type='hidden' name='owner_id[]' value='" . $owner_id . "'>");
}
$T->set_var('lang_group', $LANG_ACCESS[group]);
$usergroups = SEC_getUserGroups();
$groupdd .= '<SELECT name="group_id">';
for ($i = 0; $i < count($usergroups); $i++) {
$groupdd .= '<option value="' . $usergroups[key($usergroups)] . '"';
if ($group_id == $usergroups[key($usergroups)]) {
/**
* Shows poll editor
*
* Diplays the poll editor form
*
* @param string $pid ID of poll to edit
* @return string HTML for poll editor form
*
*/
function editpoll($pid = '')
{
global $_CONF, $_PO_CONF, $_GROUPS, $_TABLES, $_USER, $LANG25, $LANG_ACCESS, $LANG_ADMIN, $MESSAGE, $LANG_POLLS;
$retval = '';
if (!empty($pid)) {
$topic = DB_query("SELECT * FROM {$_TABLES['polltopics']} WHERE pid='{$pid}'");
$T = DB_fetchArray($topic);
// Get permissions for poll
$access = SEC_hasAccess($T['owner_id'], $T['group_id'], $T['perm_owner'], $T['perm_group'], $T['perm_members'], $T['perm_anon']);
if ($access == 0 or $access == 2) {
// User doesn't have access...bail
$retval .= COM_startBlock($LANG25[21], '', COM_getBlockTemplate('_msg_block', 'header'));
$retval .= $LANG25[22];
$retval .= COM_endBlock(COM_getBlockTemplate('_msg_block', 'footer'));
COM_accessLog("User {$_USER['username']} tried to illegally submit or edit poll {$pid}.");
return $retval;
}
}
// writing the menu on top
require_once $_CONF['path_system'] . 'lib-admin.php';
$menu_arr = array(array('url' => $_CONF['site_admin_url'] . '/plugins/polls/index.php', 'text' => $LANG_ADMIN['list_all']), array('url' => $_CONF['site_admin_url'], 'text' => $LANG_ADMIN['admin_home']));
$token = SEC_createToken();
$retval .= COM_startBlock($LANG25[5], '', COM_getBlockTemplate('_admin_block', 'header'));
$retval .= ADMIN_createMenu($menu_arr, $LANG_POLLS['editinstructions'], plugin_geticon_polls());
$retval .= SEC_getTokenExpiryNotice($token);
$poll_templates = new Template($_CONF['path'] . 'plugins/polls/templates/admin/');
$poll_templates->set_file(array('editor' => 'polleditor.thtml', 'question' => 'pollquestions.thtml', 'answer' => 'pollansweroption.thtml'));
$poll_templates->set_var('xhtml', XHTML);
$poll_templates->set_var('site_url', $_CONF['site_url']);
$poll_templates->set_var('site_admin_url', $_CONF['site_admin_url']);
$poll_templates->set_var('layout_url', $_CONF['layout_url']);
if (!empty($pid) and $access == 3 and !empty($T['owner_id'])) {
$delbutton = '<input type="submit" value="' . $LANG_ADMIN['delete'] . '" name="mode"%s' . XHTML . '>';
$jsconfirm = ' onclick="return confirm(\'' . $MESSAGE[76] . '\');"';
$poll_templates->set_var('delete_option', sprintf($delbutton, $jsconfirm));
$poll_templates->set_var('delete_option_no_confirmation', sprintf($delbutton, ''));
} else {
$T['pid'] = COM_makeSid();
$T['topic'] = '';
$T['meta_description'] = '';
$T['meta_keywords'] = '';
$T['voters'] = 0;
$T['display'] = 1;
$T['is_open'] = 1;
$T['hideresults'] = 0;
$T['owner_id'] = $_USER['uid'];
if (isset($_GROUPS['Polls Admin'])) {
$T['group_id'] = $_GROUPS['Polls Admin'];
} else {
$T['group_id'] = SEC_getFeatureGroup('polls.edit');
}
SEC_setDefaultPermissions($T, $_PO_CONF['default_permissions']);
$T['statuscode'] = 0;
$T['commentcode'] = $_CONF['comment_code'];
$access = 3;
}
$poll_templates->set_var('lang_pollid', $LANG25[6]);
$poll_templates->set_var('poll_id', $T['pid']);
$poll_templates->set_var('lang_donotusespaces', $LANG25[7]);
$poll_templates->set_var('lang_topic', $LANG25[9]);
$poll_templates->set_var('poll_topic', htmlspecialchars($T['topic']));
$poll_templates->set_var('lang_mode', $LANG25[1]);
$poll_templates->set_var('lang_metadescription', $LANG_ADMIN['meta_description']);
$poll_templates->set_var('lang_metakeywords', $LANG_ADMIN['meta_keywords']);
if (!empty($T['meta_description'])) {
$poll_templates->set_var('meta_description', $T['meta_description']);
}
if (!empty($T['meta_keywords'])) {
$poll_templates->set_var('meta_keywords', $T['meta_keywords']);
}
$poll_templates->set_var('status_options', COM_optionList($_TABLES['statuscodes'], 'code,name', $T['statuscode']));
$poll_templates->set_var('comment_options', COM_optionList($_TABLES['commentcodes'], 'code,name', $T['commentcode']));
$poll_templates->set_var('lang_appearsonhomepage', $LANG25[8]);
$poll_templates->set_var('lang_openforvoting', $LANG25[33]);
$poll_templates->set_var('lang_hideresults', $LANG25[37]);
$poll_templates->set_var('poll_hideresults_explain', $LANG25[38]);
$poll_templates->set_var('poll_topic_info', $LANG25[39]);
if ($T['display'] == 1) {
$poll_templates->set_var('poll_display', 'checked="checked"');
}
if ($T['is_open'] == 1) {
$poll_templates->set_var('poll_open', 'checked="checked"');
}
if ($T['hideresults'] == 1) {
$poll_templates->set_var('poll_hideresults', 'checked="checked"');
}
// user access info
$poll_templates->set_var('lang_accessrights', $LANG_ACCESS['accessrights']);
$poll_templates->set_var('lang_owner', $LANG_ACCESS['owner']);
$ownername = COM_getDisplayName($T['owner_id']);
$poll_templates->set_var('owner_username', DB_getItem($_TABLES['users'], 'username', "uid = {$T['owner_id']}"));
$poll_templates->set_var('owner_name', $ownername);
$poll_templates->set_var('owner', $ownername);
$poll_templates->set_var('owner_id', $T['owner_id']);
$poll_templates->set_var('lang_group', $LANG_ACCESS['group']);
$poll_templates->set_var('group_dropdown', SEC_getGroupDropdown($T['group_id'], $access));
$poll_templates->set_var('lang_permissions', $LANG_ACCESS['permissions']);
$poll_templates->set_var('lang_permissionskey', $LANG_ACCESS['permissionskey']);
$poll_templates->set_var('lang_perm_key', $LANG_ACCESS['permissionskey']);
$poll_templates->set_var('permissions_editor', SEC_getPermissionsHTML($T['perm_owner'], $T['perm_group'], $T['perm_members'], $T['perm_anon']));
$poll_templates->set_var('lang_permissions_msg', $LANG_ACCESS['permmsg']);
$poll_templates->set_var('lang_answersvotes', $LANG25[10]);
$poll_templates->set_var('lang_save', $LANG_ADMIN['save']);
$poll_templates->set_var('lang_cancel', $LANG_ADMIN['cancel']);
// repeat for several questions
$question_sql = "SELECT question,qid " . "FROM {$_TABLES['pollquestions']} WHERE pid='{$pid}' ORDER BY qid;";
$questions = DB_query($question_sql);
include $_CONF['path_system'] . 'classes/navbar.class.php';
$navbar = new navbar();
for ($j = 0; $j < $_PO_CONF['maxquestions']; $j++) {
$display_id = $j + 1;
if ($j > 0) {
$poll_templates->set_var('style', 'style="display:none;"');
} else {
$poll_templates->set_var('style', '');
}
$navbar->add_menuitem($LANG25[31] . " {$display_id}", "showhidePollsEditorDiv(\"{$j}\",{$j},{$_PO_CONF['maxquestions']});return false;", true);
$Q = DB_fetchArray($questions);
$poll_templates->set_var('question_text', $Q['question']);
$poll_templates->set_var('question_id', $j);
$poll_templates->set_var('lang_question', $LANG25[31] . " {$display_id}");
$poll_templates->set_var('lang_saveaddnew', $LANG25[32]);
// answers
$answer_sql = "SELECT answer,aid,votes,remark " . "FROM {$_TABLES['pollanswers']} WHERE qid='{$j}' AND pid='{$pid}' ORDER BY aid";
$answers = DB_query($answer_sql);
for ($i = 0; $i < $_PO_CONF['maxanswers']; $i++) {
if (isset($answers)) {
$A = DB_fetchArray($answers);
$poll_templates->set_var('answer_text', htmlspecialchars($A['answer']));
$poll_templates->set_var('answer_votes', $A['votes']);
$poll_templates->set_var('remark_text', $A['remark']);
} else {
$poll_templates->set_var('answer_text', '');
$poll_templates->set_var('answer_votes', '');
$poll_templates->set_var('remark_text', '');
}
$poll_templates->parse('answer_option', 'answer', true);
}
$poll_templates->parse('question_list', 'question', true);
$poll_templates->clear_var('answer_option');
}
$navbar->set_selected($LANG25[31] . " 1");
$poll_templates->set_var('navbar', $navbar->generate());
$poll_templates->set_var('gltoken_name', CSRF_TOKEN);
$poll_templates->set_var('gltoken', $token);
$poll_templates->parse('output', 'editor');
$retval .= $poll_templates->finish($poll_templates->get_var('output'));
$retval .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer'));
return $retval;
}
/**
* Shows the links editor
*
* @param string $action 'edit' or 'moderate'
* @param string $lid ID of link to edit
* @global array core config vars
* @global array core group data
* @global array core table data
* @global array core user data
* @global array links plugin config vars
* @global array links plugin lang vars
* @global array core lang access vars
* @return string HTML for the link editor form
*
*/
function LINK_edit($action, $lid = '')
{
global $_CONF, $_GROUPS, $_TABLES, $_USER, $_LI_CONF, $LANG_LINKS_ADMIN, $LANG_ACCESS, $LANG_ADMIN, $MESSAGE;
USES_lib_admin();
$retval = '';
switch ($action) {
case 'edit':
$blocktitle = $LANG_LINKS_ADMIN[1];
// Link Editor
$saveoption = $LANG_ADMIN['save'];
// Save
break;
case 'moderate':
$blocktitle = $LANG_LINKS_ADMIN[65];
// Moderate Link
$saveoption = $LANG_ADMIN['moderate'];
// Save & Approve
break;
}
$menu_arr = array(array('url' => $_CONF['site_admin_url'] . '/plugins/links/index.php', 'text' => $LANG_LINKS_ADMIN[53]), array('url' => $_CONF['site_admin_url'], 'text' => $LANG_ADMIN['admin_home']));
$link_templates = new Template($_CONF['path'] . 'plugins/links/templates/admin/');
$link_templates->set_file('editor', 'linkeditor.thtml');
$link_templates->set_var('lang_pagetitle', $LANG_LINKS_ADMIN[28]);
$link_templates->set_var('lang_link_list', $LANG_LINKS_ADMIN[53]);
$link_templates->set_var('lang_new_link', $LANG_LINKS_ADMIN[51]);
$link_templates->set_var('lang_validate_links', $LANG_LINKS_ADMIN[26]);
$link_templates->set_var('lang_list_categories', $LANG_LINKS_ADMIN[50]);
$link_templates->set_var('lang_new_category', $LANG_LINKS_ADMIN[52]);
$link_templates->set_var('lang_admin_home', $LANG_ADMIN['admin_home']);
$link_templates->set_var('instructions', $LANG_LINKS_ADMIN[29]);
if ($action != 'moderate' and !empty($lid)) {
$result = DB_query("SELECT * FROM {$_TABLES['links']} WHERE lid ='{$lid}'");
if (DB_numRows($result) !== 1) {
$msg = COM_startBlock($LANG_LINKS_ADMIN[24], '', COM_getBlockTemplate('_msg_block', 'header'));
$msg .= $LANG_LINKS_ADMIN[25];
$msg .= COM_endBlock(COM_getBlockTemplate('_msg_block', 'footer'));
return $msg;
}
$A = DB_fetchArray($result);
$access = SEC_hasAccess($A['owner_id'], $A['group_id'], $A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']);
if ($access == 0 or $access == 2) {
$retval .= COM_startBlock($LANG_LINKS_ADMIN[16], '', COM_getBlockTemplate('_msg_block', 'header'));
$retval .= $LANG_LINKS_ADMIN[17];
$retval .= COM_endBlock(COM_getBlockTemplate('_msg_block', 'footer'));
COM_accessLog("User {$_USER['username']} tried to illegally submit or edit link {$lid}.");
return $retval;
}
} else {
if ($action == 'moderate') {
$result = DB_query("SELECT * FROM {$_TABLES['linksubmission']} WHERE lid = '{$lid}'");
$A = DB_fetchArray($result);
} else {
$A['lid'] = COM_makesid();
$A['cid'] = '';
$A['url'] = '';
$A['description'] = '';
$A['title'] = '';
$A['owner_id'] = $_USER['uid'];
}
$A['hits'] = 0;
if (isset($_GROUPS['Links Admin'])) {
$A['group_id'] = $_GROUPS['Links Admin'];
} else {
$A['group_id'] = SEC_getFeatureGroup('links.edit');
}
SEC_setDefaultPermissions($A, $_LI_CONF['default_permissions']);
$access = 3;
}
$retval .= COM_startBlock($blocktitle, '', COM_getBlockTemplate('_admin_block', 'header'));
$retval .= ADMIN_createMenu($menu_arr, $LANG_LINKS_ADMIN[66], plugin_geticon_links());
$link_templates->set_var('link_id', $A['lid']);
if (!empty($lid) && SEC_hasRights('links.edit')) {
$delbutton = '<input type="submit" value="' . $LANG_ADMIN['delete'] . '" name="delete"%s>';
$jsconfirm = ' onclick="return confirm(\'' . $MESSAGE[76] . '\');"';
$link_templates->set_var('delete_option', sprintf($delbutton, $jsconfirm));
$link_templates->set_var('delete_option_no_confirmation', sprintf($delbutton, ''));
$link_templates->set_var('delete_confirm_msg', $MESSAGE[76]);
if ($action == 'moderate') {
$link_templates->set_var('submission_option', '<input type="hidden" name="type" value="submission">');
}
}
$link_templates->set_var('lang_linktitle', $LANG_LINKS_ADMIN[3]);
$link_templates->set_var('link_title', htmlspecialchars($A['title']));
$link_templates->set_var('lang_linkid', $LANG_LINKS_ADMIN[2]);
$link_templates->set_var('lang_linkurl', $LANG_LINKS_ADMIN[4]);
$link_templates->set_var('max_url_length', 255);
$link_templates->set_var('link_url', $A['url']);
$link_templates->set_var('lang_includehttp', $LANG_LINKS_ADMIN[6]);
$link_templates->set_var('lang_category', $LANG_LINKS_ADMIN[5]);
$othercategory = links_select_box(3, $A['cid']);
$link_templates->set_var('category_options', $othercategory);
$link_templates->set_var('lang_ifotherspecify', $LANG_LINKS_ADMIN[20]);
$link_templates->set_var('category', $othercategory);
$link_templates->set_var('lang_linkhits', $LANG_LINKS_ADMIN[8]);
$link_templates->set_var('link_hits', $A['hits']);
$link_templates->set_var('lang_linkdescription', $LANG_LINKS_ADMIN[9]);
$link_templates->set_var('link_description', $A['description']);
$link_templates->set_var('lang_save', $saveoption);
$link_templates->set_var('lang_cancel', $LANG_ADMIN['cancel']);
// user access info
$link_templates->set_var('lang_accessrights', $LANG_ACCESS['accessrights']);
$link_templates->set_var('lang_owner', $LANG_ACCESS['owner']);
$ownername = COM_getDisplayName($A['owner_id']);
$link_templates->set_var('owner_username', DB_getItem($_TABLES['users'], 'username', "uid = {$A['owner_id']}"));
$link_templates->set_var('owner_name', $ownername);
$link_templates->set_var('owner', $ownername);
$link_templates->set_var('link_ownerid', $A['owner_id']);
$link_templates->set_var('lang_group', $LANG_ACCESS['group']);
$link_templates->set_var('group_dropdown', SEC_getGroupDropdown($A['group_id'], $access));
$link_templates->set_var('lang_permissions', $LANG_ACCESS['permissions']);
$link_templates->set_var('lang_permissionskey', $LANG_ACCESS['permissionskey']);
$link_templates->set_var('permissions_editor', SEC_getPermissionsHTML($A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']));
$link_templates->set_var('lang_lockmsg', $LANG_ACCESS['permmsg']);
$link_templates->set_var('gltoken_name', CSRF_TOKEN);
$link_templates->set_var('gltoken', SEC_createToken());
$link_templates->parse('output', 'editor');
$retval .= $link_templates->finish($link_templates->get_var('output'));
$retval .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer'));
return $retval;
}
/**
* Shows story editor
*
* Displays the story entry form
*
* @param string $sid ID of story to edit
* @param string $mode 'preview', 'edit', 'editsubmission', 'clone'
* @param string $errormsg a message to display on top of the page
* @return string HTML for story editor
*
*/
function storyeditor($sid = '', $mode = '', $errormsg = '')
{
global $_CONF, $_TABLES, $_USER, $LANG24, $LANG_ACCESS, $LANG_ADMIN, $MESSAGE, $_SCRIPTS, $LANG_DIRECTION, $LANG_MONTH, $LANG_WEEK;
$display = '';
if (!isset($_CONF['hour_mode'])) {
$_CONF['hour_mode'] = 12;
}
if (!empty($errormsg)) {
$display .= COM_showMessageText($errormsg, $LANG24[25]);
}
$story = new Story();
if ($mode == 'preview') {
// Handle Magic GPC Garbage:
while (list($key, $value) = each($_POST)) {
if (!is_array($value)) {
$_POST[$key] = COM_stripslashes($value);
} else {
while (list($subkey, $subvalue) = each($value)) {
$value[$subkey] = COM_stripslashes($subvalue);
}
}
}
$result = $story->loadFromArgsArray($_POST);
if ($_CONF['maximagesperarticle'] > 0) {
$errors = $story->checkAttachedImages();
if (count($errors) > 0) {
$msg = $LANG24[55] . LB . '<ul>' . LB;
foreach ($errors as $err) {
$msg .= '<li>' . $err . '</li>' . LB;
}
$msg .= '</ul>' . LB;
$display .= COM_showMessageText($msg, $LANG24[54]);
}
}
} else {
$result = $story->loadFromDatabase($sid, $mode);
}
if ($result == STORY_PERMISSION_DENIED || $result == STORY_NO_ACCESS_PARAMS) {
$display .= COM_showMessageText($LANG24[42], $LANG_ACCESS['accessdenied']);
COM_accessLog("User {$_USER['username']} tried to illegally access story {$sid}.");
return $display;
} elseif ($result == STORY_EDIT_DENIED || $result == STORY_EXISTING_NO_EDIT_PERMISSION) {
$display .= COM_showMessageText($LANG24[41], $LANG_ACCESS['accessdenied']);
$display .= STORY_renderArticle($story, 'p');
COM_accessLog("User {$_USER['username']} tried to illegally edit story {$sid}.");
return $display;
} elseif ($result == STORY_INVALID_SID) {
if ($mode == 'editsubmission') {
// that submission doesn't seem to be there any more (may have been
// handled by another Admin) - take us back to the moderation page
return COM_refresh($_CONF['site_admin_url'] . '/moderation.php');
} else {
return COM_refresh($_CONF['site_admin_url'] . '/story.php');
}
} elseif ($result == STORY_DUPLICATE_SID) {
$display .= COM_showMessageText($LANG24[24]);
}
// Load HTML templates
$story_templates = COM_newTemplate($_CONF['path_layout'] . 'admin/story');
if ($_CONF['advanced_editor'] && $_USER['advanced_editor']) {
$story_templates->set_file(array('editor' => 'storyeditor_advanced.thtml'));
$advanced_editormode = true;
$story_templates->set_var('change_editormode', 'onchange="change_editmode(this);"');
require_once $_CONF['path_system'] . 'classes/navbar.class.php';
$story_templates->set_var('show_preview', 'none');
$story_templates->set_var('lang_expandhelp', $LANG24[67]);
$story_templates->set_var('lang_reducehelp', $LANG24[68]);
$story_templates->set_var('lang_publishdate', $LANG24[69]);
$story_templates->set_var('lang_toolbar', $LANG24[70]);
$story_templates->set_var('toolbar1', $LANG24[71]);
$story_templates->set_var('toolbar2', $LANG24[72]);
$story_templates->set_var('toolbar3', $LANG24[73]);
$story_templates->set_var('toolbar4', $LANG24[74]);
$story_templates->set_var('toolbar5', $LANG24[75]);
if ($story->EditElements('advanced_editor_mode') == 1 or $story->EditElements('postmode') == 'adveditor') {
$story_templates->set_var('show_texteditor', 'none');
$story_templates->set_var('show_htmleditor', '');
} else {
$story_templates->set_var('show_texteditor', '');
$story_templates->set_var('show_htmleditor', 'none');
}
} else {
$story_templates->set_file(array('editor' => 'storyeditor.thtml'));
$advanced_editormode = false;
}
$story_templates->set_var('hour_mode', $_CONF['hour_mode']);
if ($story->hasContent()) {
$previewContent = STORY_renderArticle($story, 'p');
if ($advanced_editormode and $previewContent != '') {
$story_templates->set_var('preview_content', $previewContent);
} elseif ($previewContent != '') {
$display .= COM_startBlock($LANG24[26], '', COM_getBlockTemplate('_admin_block', 'header'));
$display .= $previewContent;
$display .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer'));
}
}
if ($advanced_editormode) {
$navbar = new navbar();
if (!empty($previewContent)) {
$navbar->add_menuitem($LANG24[79], 'showhideEditorDiv("preview",0);return false;', true);
$navbar->add_menuitem($LANG24[80], 'showhideEditorDiv("editor",1);return false;', true);
$navbar->add_menuitem($LANG24[81], 'showhideEditorDiv("publish",2);return false;', true);
$navbar->add_menuitem($LANG24[82], 'showhideEditorDiv("images",3);return false;', true);
$navbar->add_menuitem($LANG24[83], 'showhideEditorDiv("archive",4);return false;', true);
$navbar->add_menuitem($LANG24[84], 'showhideEditorDiv("perms",5);return false;', true);
$navbar->add_menuitem($LANG24[85], 'showhideEditorDiv("all",6);return false;', true);
} else {
$navbar->add_menuitem($LANG24[80], 'showhideEditorDiv("editor",0);return false;', true);
$navbar->add_menuitem($LANG24[81], 'showhideEditorDiv("publish",1);return false;', true);
$navbar->add_menuitem($LANG24[82], 'showhideEditorDiv("images",2);return false;', true);
$navbar->add_menuitem($LANG24[83], 'showhideEditorDiv("archive",3);return false;', true);
$navbar->add_menuitem($LANG24[84], 'showhideEditorDiv("perms",4);return false;', true);
$navbar->add_menuitem($LANG24[85], 'showhideEditorDiv("all",5);return false;', true);
}
if ($mode == 'preview') {
$story_templates->set_var('show_preview', '');
$story_templates->set_var('show_htmleditor', 'none');
$story_templates->set_var('show_texteditor', 'none');
$story_templates->set_var('show_submitoptions', 'none');
$navbar->set_selected($LANG24[79]);
} else {
$navbar->set_selected($LANG24[80]);
}
$story_templates->set_var('navbar', $navbar->generate());
}
$oldsid = $story->EditElements('originalSid');
if (!empty($oldsid) && $mode != 'clone') {
$delbutton = '<input type="submit" value="' . $LANG_ADMIN['delete'] . '" name="mode"%s' . XHTML . '>';
$jsconfirm = ' onclick="return confirm(\'' . $MESSAGE[76] . '\');"';
$story_templates->set_var('delete_option', sprintf($delbutton, $jsconfirm));
$story_templates->set_var('delete_option_no_confirmation', sprintf($delbutton, ''));
}
if ($mode == 'editsubmission' || $story->type == 'submission') {
$story_templates->set_var('submission_option', '<input type="hidden" name="type" value="submission"' . XHTML . '>');
}
$story_templates->set_var('lang_author', $LANG24[7]);
$storyauthor = COM_getDisplayName($story->EditElements('uid'));
$story_templates->set_var('story_author', $storyauthor);
$story_templates->set_var('author', $storyauthor);
$story_templates->set_var('story_uid', $story->EditElements('uid'));
// user access info
$story_templates->set_var('lang_accessrights', $LANG_ACCESS['accessrights']);
$story_templates->set_var('lang_owner', $LANG_ACCESS['owner']);
$ownername = COM_getDisplayName($story->EditElements('owner_id'));
$story_templates->set_var('owner_username', DB_getItem($_TABLES['users'], 'username', 'uid = ' . $story->EditElements('owner_id')));
$story_templates->set_var('owner_name', $ownername);
$story_templates->set_var('owner', $ownername);
$story_templates->set_var('owner_id', $story->EditElements('owner_id'));
$story_templates->set_var('lang_group', $LANG_ACCESS['group']);
$story_templates->set_var('group_dropdown', SEC_getGroupDropdown($story->EditElements('group_id'), 3));
$story_templates->set_var('lang_permissions', $LANG_ACCESS['permissions']);
$story_templates->set_var('lang_perm_key', $LANG_ACCESS['permissionskey']);
$story_templates->set_var('permissions_editor', SEC_getPermissionsHTML($story->EditElements('perm_owner'), $story->EditElements('perm_group'), $story->EditElements('perm_members'), $story->EditElements('perm_anon')));
$story_templates->set_var('permissions_msg', $LANG_ACCESS['permmsg']);
$story_templates->set_var('lang_permissions_msg', $LANG_ACCESS['permmsg']);
$curtime = COM_getUserDateTimeFormat($story->EditElements('date'));
$story_templates->set_var('lang_date', $LANG24[15]);
$story_templates->set_var('publish_second', $story->EditElements('publish_second'));
$publish_ampm = '';
$publish_hour = $story->EditElements('publish_hour');
if ($publish_hour >= 12) {
if ($publish_hour > 12) {
$publish_hour = $publish_hour - 12;
}
$ampm = 'pm';
} else {
$ampm = 'am';
}
$ampm_select = COM_getAmPmFormSelection('publish_ampm', $ampm);
$story_templates->set_var('publishampm_selection', $ampm_select);
$month_options = COM_getMonthFormOptions($story->EditElements('publish_month'));
$story_templates->set_var('publish_month_options', $month_options);
$day_options = COM_getDayFormOptions($story->EditElements('publish_day'));
$story_templates->set_var('publish_day_options', $day_options);
$year_options = COM_getYearFormOptions($story->EditElements('publish_year'));
$story_templates->set_var('publish_year_options', $year_options);
if ($_CONF['hour_mode'] == 24) {
$hour_options = COM_getHourFormOptions($story->EditElements('publish_hour'), 24);
} else {
$hour_options = COM_getHourFormOptions($publish_hour);
}
$story_templates->set_var('publish_hour_options', $hour_options);
$minute_options = COM_getMinuteFormOptions($story->EditElements('publish_minute'));
$story_templates->set_var('publish_minute_options', $minute_options);
$story_templates->set_var('publish_date_explanation', $LANG24[46]);
$story_templates->set_var('story_unixstamp', $story->EditElements('unixdate'));
$story_templates->set_var('expire_second', $story->EditElements('expire_second'));
$expire_ampm = '';
$expire_hour = $story->EditElements('expire_hour');
if ($expire_hour >= 12) {
if ($expire_hour > 12) {
$expire_hour = $expire_hour - 12;
}
$ampm = 'pm';
} else {
$ampm = 'am';
}
$ampm_select = COM_getAmPmFormSelection('expire_ampm', $ampm);
if (empty($ampm_select)) {
// have a hidden field to 24 hour mode to prevent JavaScript errors
$ampm_select = '<input type="hidden" name="expire_ampm" value=""' . XHTML . '>';
}
$story_templates->set_var('expireampm_selection', $ampm_select);
$month_options = COM_getMonthFormOptions($story->EditElements('expire_month'));
$story_templates->set_var('expire_month_options', $month_options);
$day_options = COM_getDayFormOptions($story->EditElements('expire_day'));
$story_templates->set_var('expire_day_options', $day_options);
$year_options = COM_getYearFormOptions($story->EditElements('expire_year'));
$story_templates->set_var('expire_year_options', $year_options);
if ($_CONF['hour_mode'] == 24) {
$hour_options = COM_getHourFormOptions($story->EditElements('expire_hour'), 24);
} else {
$hour_options = COM_getHourFormOptions($expire_hour);
}
$story_templates->set_var('expire_hour_options', $hour_options);
$minute_options = COM_getMinuteFormOptions($story->EditElements('expire_minute'));
$story_templates->set_var('expire_minute_options', $minute_options);
$story_templates->set_var('expire_date_explanation', $LANG24[46]);
$story_templates->set_var('story_unixstamp', $story->EditElements('expirestamp'));
$atopic = DB_getItem($_TABLES['topics'], 'tid', "archive_flag = 1");
$have_archive_topic = empty($atopic) ? false : true;
if ($story->EditElements('statuscode') == STORY_ARCHIVE_ON_EXPIRE) {
$story_templates->set_var('is_checked2', 'checked="checked"');
$story_templates->set_var('is_checked3', 'checked="checked"');
$js_showarchivedisabled = 'false';
$have_archive_topic = true;
// force display of auto archive option
} elseif ($story->EditElements('statuscode') == STORY_DELETE_ON_EXPIRE) {
$story_templates->set_var('is_checked2', 'checked="checked"');
$story_templates->set_var('is_checked4', 'checked="checked"');
if (!$have_archive_topic) {
$story_templates->set_var('is_checked3', 'style="display:none;"');
}
$js_showarchivedisabled = 'false';
} else {
if (!$have_archive_topic) {
$story_templates->set_var('is_checked3', 'style="display:none;"');
}
$js_showarchivedisabled = 'true';
}
$story_templates->set_var('lang_archivetitle', $LANG24[58]);
$story_templates->set_var('lang_option', $LANG24[59]);
$story_templates->set_var('lang_enabled', $LANG_ADMIN['enabled']);
$story_templates->set_var('lang_story_stats', $LANG24[87]);
if ($have_archive_topic) {
$story_templates->set_var('lang_optionarchive', $LANG24[61]);
} else {
$story_templates->set_var('lang_optionarchive', '');
}
$story_templates->set_var('lang_optiondelete', $LANG24[62]);
$story_templates->set_var('lang_title', $LANG_ADMIN['title']);
$story_templates->set_var('story_title', $story->EditElements('title'));
$story_templates->set_var('lang_page_title', $LANG_ADMIN['page_title']);
$story_templates->set_var('page_title', $story->EditElements('page_title'));
$story_templates->set_var('lang_metadescription', $LANG_ADMIN['meta_description']);
$story_templates->set_var('meta_description', $story->EditElements('meta_description'));
$story_templates->set_var('lang_metakeywords', $LANG_ADMIN['meta_keywords']);
$story_templates->set_var('meta_keywords', $story->EditElements('meta_keywords'));
if ($_CONF['meta_tags'] > 0) {
$story_templates->set_var('hide_meta', '');
} else {
$story_templates->set_var('hide_meta', ' style="display:none;"');
}
$story_templates->set_var('lang_topic', $LANG_ADMIN['topic']);
if ($mode == 'preview') {
$tlist = TOPIC_getTopicSelectionControl('article', '', false, true, true);
} else {
$tlist = TOPIC_getTopicSelectionControl('article', $oldsid, false, true, true);
}
if (empty($tlist)) {
$display .= COM_showMessage(101);
return $display;
}
$story_templates->set_var('topic_selection', $tlist);
$story_templates->set_var('lang_show_topic_icon', $LANG24[56]);
if ($story->EditElements('show_topic_icon') == 1) {
$story_templates->set_var('show_topic_icon_checked', 'checked="checked"');
} else {
$story_templates->set_var('show_topic_icon_checked', '');
}
$story_templates->set_var('lang_cachetime', $LANG24['cache_time']);
$story_templates->set_var('lang_cachetime_desc', $LANG24['cache_time_desc']);
$story_templates->set_var('cache_time', $story->EditElements('cache_time'));
$story_templates->set_var('lang_draft', $LANG24[34]);
if ($story->EditElements('draft_flag')) {
$story_templates->set_var('is_checked', 'checked="checked"');
}
$story_templates->set_var('lang_mode', $LANG24[3]);
$story_templates->set_var('status_options', COM_optionList($_TABLES['statuscodes'], 'code,name', $story->EditElements('statuscode')));
$story_templates->set_var('comment_options', COM_optionList($_TABLES['commentcodes'], 'code,name', $story->EditElements('commentcode')));
$story_templates->set_var('trackback_options', COM_optionList($_TABLES['trackbackcodes'], 'code,name', $story->EditElements('trackbackcode')));
// comment expire
$story_templates->set_var('lang_cmt_disable', $LANG24[63]);
if ($story->EditElements('cmt_close')) {
$story_templates->set_var('is_checked5', 'checked="checked"');
$js_showcmtclosedisabled = 'false';
} else {
$js_showcmtclosedisabled = 'true';
}
$month_options = COM_getMonthFormOptions($story->EditElements('cmt_close_month'));
$story_templates->set_var('cmt_close_month_options', $month_options);
$day_options = COM_getDayFormOptions($story->EditElements('cmt_close_day'));
$story_templates->set_var('cmt_close_day_options', $day_options);
// ensure that the year dropdown includes the close year
$endtm = mktime(0, 0, 0, date('m'), date('d') + $_CONF['article_comment_close_days'], date('Y'));
$yoffset = date('Y', $endtm) - date('Y');
$close_year = $story->EditElements('cmt_close_year');
if ($yoffset < -1) {
$year_options = COM_getYearFormOptions($close_year, $yoffset);
} elseif ($yoffset > 5) {
$year_options = COM_getYearFormOptions($close_year, -1, $yoffset);
} else {
$year_options = COM_getYearFormOptions($close_year);
}
$story_templates->set_var('cmt_close_year_options', $year_options);
$cmt_close_ampm = '';
$cmt_close_hour = $story->EditElements('cmt_close_hour');
//correct hour
if ($cmt_close_hour >= 12) {
if ($cmt_close_hour > 12) {
$cmt_close_hour = $cmt_close_hour - 12;
}
$ampm = 'pm';
} else {
$ampm = 'am';
}
$ampm_select = COM_getAmPmFormSelection('cmt_close_ampm', $ampm);
if (empty($ampm_select)) {
// have a hidden field to 24 hour mode to prevent JavaScript errors
$ampm_select = '<input type="hidden" name="cmt_close_ampm" value=""' . XHTML . '>';
}
$story_templates->set_var('cmt_close_ampm_selection', $ampm_select);
if ($_CONF['hour_mode'] == 24) {
$hour_options = COM_getHourFormOptions($story->EditElements('cmt_close_hour'), 24);
} else {
$hour_options = COM_getHourFormOptions($cmt_close_hour);
}
$story_templates->set_var('cmt_close_hour_options', $hour_options);
$minute_options = COM_getMinuteFormOptions($story->EditElements('cmt_close_minute'));
$story_templates->set_var('cmt_close_minute_options', $minute_options);
$story_templates->set_var('cmt_close_second', $story->EditElements('cmt_close_second'));
if ($_CONF['onlyrootfeatures'] == 1 && SEC_inGroup('Root') or $_CONF['onlyrootfeatures'] !== 1) {
$featured_options = "<select name=\"featured\">" . LB . COM_optionList($_TABLES['featurecodes'], 'code,name', $story->EditElements('featured')) . "</select>" . LB;
} else {
$featured_options = "<input type=\"hidden\" name=\"featured\" value=\"0\"" . XHTML . ">";
}
$story_templates->set_var('featured_options', $featured_options);
$story_templates->set_var('frontpage_options', COM_optionList($_TABLES['frontpagecodes'], 'code,name', $story->EditElements('frontpage')));
$story_templates->set_var('story_introtext', $story->EditElements('introtext'));
$story_templates->set_var('story_bodytext', $story->EditElements('bodytext'));
$story_templates->set_var('lang_introtext', $LANG24[16]);
$story_templates->set_var('lang_bodytext', $LANG24[17]);
$story_templates->set_var('lang_postmode', $LANG24[4]);
$story_templates->set_var('lang_publishoptions', $LANG24[76]);
$story_templates->set_var('noscript', COM_getNoScript(false, $LANG24[77], sprintf($LANG24[78], $_CONF['site_admin_url'], $sid)));
$postmode = $story->EditElements('postmode');
if ($_CONF['advanced_editor'] && $_USER['advanced_editor']) {
if ($story->EditElements('advanced_editor_mode') == 1 or $story->EditElements('postmode') == 'adveditor') {
$postmode = '';
}
}
$post_options = COM_optionList($_TABLES['postmodes'], 'code,name', $postmode);
$postmode_list = 'plaintext,html';
// If Advanced Mode - add post option and set default if editing story created with Advanced Editor
if ($_CONF['advanced_editor'] && $_USER['advanced_editor']) {
$postmode_list .= ',adveditor';
if ($story->EditElements('advanced_editor_mode') == 1 or $story->EditElements('postmode') == 'adveditor') {
$post_options .= '<option value="adveditor" selected="selected">' . $LANG24[86] . '</option>';
} else {
$post_options .= '<option value="adveditor">' . $LANG24[86] . '</option>';
}
}
if ($_CONF['wikitext_editor']) {
$postmode_list .= ',wikitext';
if ($story->EditElements('postmode') == 'wikitext') {
$post_options .= '<option value="wikitext" selected="selected">' . $LANG24[88] . '</option>';
} else {
$post_options .= '<option value="wikitext">' . $LANG24[88] . '</option>';
}
}
$story_templates->set_var('post_options', $post_options);
$postmode_array = explode(',', $postmode_list);
$allowed_html = '';
foreach ($postmode_array as $pm) {
$allowed_html .= COM_allowedHTML('story.edit', false, 1, $pm);
}
$allowed_tags = array('code', 'raw');
if ($_CONF['allow_page_breaks'] == 1) {
$allowed_tags = array_merge($allowed_tags, array('page_break'));
}
$allowed_html .= COM_allowedAutotags(false, $allowed_tags);
$story_templates->set_var('lang_allowed_html', $allowed_html);
$fileinputs = '';
$saved_images = '';
if ($_CONF['maximagesperarticle'] > 0) {
$story_templates->set_var('lang_images', $LANG24[47]);
$icount = DB_count($_TABLES['article_images'], 'ai_sid', $story->getSid());
if ($icount > 0) {
$result_articles = DB_query("SELECT * FROM {$_TABLES['article_images']} WHERE ai_sid = '" . $story->getSid() . "'");
for ($z = 1; $z <= $icount; $z++) {
$I = DB_fetchArray($result_articles);
$saved_images .= $z . ') ' . COM_createLink($I['ai_filename'], $_CONF['site_url'] . '/images/articles/' . $I['ai_filename']) . ' ' . $LANG_ADMIN['delete'] . ': <input type="checkbox" name="delete[' . $I['ai_img_num'] . ']"' . XHTML . '><br' . XHTML . '>';
}
}
$newallowed = $_CONF['maximagesperarticle'] - $icount;
for ($z = $icount + 1; $z <= $_CONF['maximagesperarticle']; $z++) {
$fileinputs .= $z . ') <input type="file" dir="ltr" name="file' . $z . '"' . XHTML . '>';
if ($z < $_CONF['maximagesperarticle']) {
$fileinputs .= '<br' . XHTML . '>';
}
}
$fileinputs .= '<br' . XHTML . '>' . $LANG24[51];
if ($_CONF['allow_user_scaling'] == 1) {
$fileinputs .= $LANG24[27];
}
$fileinputs .= $LANG24[28] . '<br' . XHTML . '>';
}
// Add JavaScript
$_SCRIPTS->setJavaScriptFile('story_editor', '/javascript/story_editor.js');
if ($_CONF['titletoid']) {
$_SCRIPTS->setJavaScriptFile('title_2_id', '/javascript/title_2_id.js');
$story_templates->set_var('titletoid', true);
}
$_SCRIPTS->setJavaScriptFile('postmode_control', '/javascript/postmode_control.js');
// Loads jQuery UI datepicker and timepicker-addon
$_SCRIPTS->setJavaScriptLibrary('jquery.ui.slider');
// $_SCRIPTS->setJavaScriptLibrary('jquery.ui.button');
$_SCRIPTS->setJavaScriptLibrary('jquery.ui.datepicker');
$_SCRIPTS->setJavaScriptLibrary('jquery-ui-i18n');
$_SCRIPTS->setJavaScriptLibrary('jquery-ui-timepicker-addon');
$_SCRIPTS->setJavaScriptLibrary('jquery-ui-timepicker-addon-i18n');
// $_SCRIPTS->setJavaScriptLibrary('jquery-ui-slideraccess');
$_SCRIPTS->setJavaScriptFile('datetimepicker', '/javascript/datetimepicker.js');
$langCode = COM_getLangIso639Code();
$toolTip = $MESSAGE[118];
$imgUrl = $_CONF['site_url'] . '/images/calendar.png';
$_SCRIPTS->setJavaScript("jQuery(function () {" . " geeklog.hour_mode = {$_CONF['hour_mode']};" . " geeklog.datetimepicker.set('publish', '{$langCode}', '{$toolTip}', '{$imgUrl}');" . " geeklog.datetimepicker.set('expire', '{$langCode}', '{$toolTip}', '{$imgUrl}');" . " geeklog.datetimepicker.set('cmt_close', '{$langCode}', '{$toolTip}', '{$imgUrl}');" . "});", TRUE, TRUE);
// Setup Advanced Editor
COM_setupAdvancedEditor('/javascript/storyeditor_adveditor.js');
$story_templates->set_var('saved_images', $saved_images);
$story_templates->set_var('image_form_elements', $fileinputs);
$story_templates->set_var('lang_hits', $LANG24[18]);
$story_templates->set_var('story_hits', $story->EditElements('hits'));
$story_templates->set_var('lang_comments', $LANG24[19]);
$story_templates->set_var('story_comments', $story->EditElements('comments'));
$story_templates->set_var('lang_trackbacks', $LANG24[29]);
$story_templates->set_var('story_trackbacks', $story->EditElements('trackbacks'));
$story_templates->set_var('lang_emails', $LANG24[39]);
$story_templates->set_var('story_emails', $story->EditElements('numemails'));
if ($mode == 'clone') {
$story_templates->set_var('story_id', COM_makesid());
} else {
$story_templates->set_var('story_id', $story->getSid());
$story_templates->set_var('old_story_id', $story->EditElements('originalSid'));
}
$story_templates->set_var('lang_sid', $LANG24[12]);
$story_templates->set_var('lang_save', $LANG_ADMIN['save']);
$story_templates->set_var('lang_preview', $LANG_ADMIN['preview']);
$story_templates->set_var('lang_cancel', $LANG_ADMIN['cancel']);
$story_templates->set_var('lang_delete', $LANG_ADMIN['delete']);
$story_templates->set_var('gltoken_name', CSRF_TOKEN);
$token = SEC_createToken();
$story_templates->set_var('gltoken', $token);
$story_templates->parse('output', 'editor');
$display .= COM_startBlock($LANG24[5], '', COM_getBlockTemplate('_admin_block', 'header'));
$display .= SEC_getTokenExpiryNotice($token, $LANG24[91]);
$display .= $story_templates->finish($story_templates->get_var('output'));
$display .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer'));
return $display;
}
/**
* Create an edit form for a category
*
* @param int $catid Category ID, zero for a new entry
* @return string HTML for edit form
*/
public function Edit($cat_id = 0)
{
global $_CONF, $_TABLES, $LANG_ADVT, $_CONF_ADVT, $LANG_ACCESS, $_USER;
$cat_id = (int) $cat_id;
if ($cat_id > 0) {
// Load the requested category
$this->cat_id = $cat_id;
$this->Read();
}
$T = new Template(CLASSIFIEDS_PI_PATH . '/templates/admin');
$T->set_file('modify', 'catEditForm.thtml');
// create a dropdown list of only master categories
//$T->set_var('sel_parent_cat', COM_optionList($_TABLES['ad_category'],
// 'cat_id,cat_name', $parentcat, 1, "cat_id <> $catid AND papa_id=0"));
// this code creates a complete dropdown including subcategories
$T->set_var('sel_parent_cat', self::buildSelection($this->papa_id, 0, '', 'NOT', $this->cat_id));
if (!$this->isNew) {
// If this is an existing category, load the template with the
// categories values.
$T->set_var(array('permissions_editor' => SEC_getPermissionsHTML($this->perm_owner, $this->perm_group, $this->perm_members, $this->perm_anon), 'ownername' => COM_getDisplayName($this->owner_id), 'owner_id' => $this->owner_id, 'group_dropdown' => SEC_getGroupDropdown($this->group_id, 3)));
} else {
// A new category gets default values
$T->set_var(array('txt_sub_btn' => $LANG_ADVT['add_cat'], 'permissions_editor' => SEC_getPermissionsHTML($_CONF_ADVT['default_perm_cat'][0], $_CONF_ADVT['default_perm_cat'][1], $_CONF_ADVT['default_perm_cat'][2], $_CONF_ADVT['default_perm_cat'][3]), 'ownername' => COM_getDisplayName($_USER['uid']), 'owner_id' => $_USER['uid'], 'group_dropdown' => SEC_getGroupDropdown($_CONF_ADVT['defgrpcat'], 3)));
}
$T->set_var(array('location' => self::BreadCrumbs($this->cat_id, true), 'catname' => $this->cat_name, 'keywords' => $this->keywords, 'description' => $this->description, 'fgcolor' => $this->fgcolor, 'bgcolor' => $this->bgcolor, 'cat_id' => $this->cat_id, 'cancel_url' => CLASSIFIEDS_ADMIN_URL . '/index.php?admin=cat'));
if ($this->image != '') {
$T->set_var('existing_image', CLASSIFIEDS_thumbUrl($this->image));
}
$T->parse('output', 'modify');
$display .= $T->finish($T->get_var('output'));
return $display;
}
/**
* Show topic administration form
*
* @param string tid ID of topic to edit
* @return string HTML for the topic editor
*/
function edittopic($tid = '')
{
global $_CONF, $_GROUPS, $_TABLES, $_USER, $LANG04, $LANG27, $LANG_ACCESS, $LANG_ADMIN, $MESSAGE, $_SCRIPTS;
$retval = '';
if (empty($tid)) {
// new topic - set defaults
$A = array('tid' => '', 'topic' => '', 'sortnum' => 0, 'parent_id' => TOPIC_ROOT, 'inherit' => 1, 'hidden' => 0, 'limitnews' => '', 'is_default' => 0, 'archive_flag' => 0);
} else {
$result = DB_query("SELECT * FROM {$_TABLES['topics']} WHERE tid ='{$tid}'");
$A = DB_fetchArray($result);
$access = SEC_hasAccess($A['owner_id'], $A['group_id'], $A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']);
if ($access == 0 || $access == 2) {
$retval .= COM_showMessageText($LANG27[13], $LANG27[12]);
COM_accessLog("User {$_USER['username']} tried to illegally create or edit topic {$tid}.");
return $retval;
}
}
$token = SEC_createToken();
$retval .= COM_startBlock($LANG27[1], '', COM_getBlockTemplate('_admin_block', 'header'));
$retval .= SEC_getTokenExpiryNotice($token);
if (!is_array($A) || empty($A['owner_id'])) {
$A['owner_id'] = $_USER['uid'];
// this is the one instance where we default the group
// most topics should belong to the Topic Admin group
if (isset($_GROUPS['Topic Admin'])) {
$A['group_id'] = $_GROUPS['Topic Admin'];
} else {
$A['group_id'] = SEC_getFeatureGroup('topic.edit');
}
SEC_setDefaultPermissions($A, $_CONF['default_permissions_topic']);
$access = 3;
}
$topic_templates = COM_newTemplate($_CONF['path_layout'] . 'admin/topic');
$topic_templates->set_file('editor', 'topiceditor.thtml');
if (!empty($tid) && SEC_hasRights('topic.edit')) {
$delButton = '<input type="submit" value="' . $LANG_ADMIN['delete'] . '" name="mode"%s' . XHTML . '>';
$jsConfirm = ' onclick="return confirm(\'' . $MESSAGE[76] . '\');"';
$topic_templates->set_var('delete_option', sprintf($delButton, $jsConfirm));
$topic_templates->set_var('delete_option_no_confirmation', sprintf($delButton, ''));
$topic_templates->set_var('allow_delete', true);
$topic_templates->set_var('lang_delete', $LANG_ADMIN['delete']);
$topic_templates->set_var('confirm_message', $MESSAGE[76]);
$topic_templates->set_var('warning_msg', $LANG27[6]);
}
if ($_CONF['titletoid'] && empty($tid)) {
$_SCRIPTS->setJavaScriptFile('title_2_id', '/javascript/title_2_id.js');
$topic_templates->set_var('titletoid', true);
}
$topic_templates->set_var('lang_topicid', $LANG27[2]);
$topic_templates->set_var('topic_id', $A['tid']);
$topic_templates->set_var('lang_parent_id', $LANG27[32]);
$topic_templates->set_var('parent_id_options', TOPIC_getTopicListSelect($A['parent_id'], 1, false, $A['tid'], true));
$topic_templates->set_var('lang_inherit', $LANG27[33]);
$topic_templates->set_var('lang_inherit_info', $LANG27[34]);
if ($A['inherit'] == 1) {
$topic_templates->set_var('inherit_checked', 'checked="checked"');
} else {
$topic_templates->set_var('inherit_checked', '');
}
$topic_templates->set_var('lang_hidden', $LANG27[35]);
$topic_templates->set_var('lang_hidden_info', $LANG27[36]);
if ($A['hidden'] == 1) {
$topic_templates->set_var('hidden_checked', 'checked="checked"');
} else {
$topic_templates->set_var('hidden_checked', '');
}
$topic_templates->set_var('lang_donotusespaces', $LANG27[5]);
$topic_templates->set_var('lang_accessrights', $LANG_ACCESS['accessrights']);
$topic_templates->set_var('lang_owner', $LANG_ACCESS['owner']);
$ownername = COM_getDisplayName($A['owner_id']);
$topic_templates->set_var('owner_username', DB_getItem($_TABLES['users'], 'username', "uid = {$A['owner_id']}"));
$topic_templates->set_var('owner_name', $ownername);
$topic_templates->set_var('owner', $ownername);
$topic_templates->set_var('owner_id', $A['owner_id']);
$topic_templates->set_var('lang_group', $LANG_ACCESS['group']);
$topic_templates->set_var('lang_save', $LANG_ADMIN['save']);
$topic_templates->set_var('lang_cancel', $LANG_ADMIN['cancel']);
$topic_templates->set_var('group_dropdown', SEC_getGroupDropdown($A['group_id'], $access));
$topic_templates->set_var('lang_permissions', $LANG_ACCESS['permissions']);
$topic_templates->set_var('lang_permissions_key', $LANG_ACCESS['permissionskey']);
$topic_templates->set_var('lang_perm_key', $LANG_ACCESS['permissionskey']);
$topic_templates->set_var('permissions_msg', $LANG_ACCESS['permmsg']);
$topic_templates->set_var('lang_permissions_msg', $LANG_ACCESS['permmsg']);
$topic_templates->set_var('permissions_editor', SEC_getPermissionsHTML($A['perm_owner'], $A['perm_group'], $A['perm_members'], $A['perm_anon']));
// show sort order only if they specified sortnum as the sort method
if ($_CONF['sortmethod'] !== 'alpha') {
$topic_templates->set_var('lang_sortorder', $LANG27[10]);
if ($A['sortnum'] == 0) {
$A['sortnum'] = '';
}
$topic_templates->set_var('sort_order', '<input type="text" size="5" maxlength="5" name="sortnum" value="' . $A['sortnum'] . '"' . XHTML . '>');
} else {
$topic_templates->set_var('lang_sortorder', $LANG27[14]);
$topic_templates->set_var('sort_order', $LANG27[15] . '<input type="hidden" name="sortnum" value="' . $A['sortnum'] . '"' . XHTML . '>');
}
$topic_templates->set_var('lang_storiesperpage', $LANG27[11]);
if ($A['limitnews'] == 0) {
$topic_templates->set_var('story_limit', '');
} else {
$topic_templates->set_var('story_limit', $A['limitnews']);
}
$topic_templates->set_var('default_limit', $_CONF['limitnews']);
$topic_templates->set_var('lang_defaultis', $LANG27[16]);
$topic_templates->set_var('lang_topicname', $LANG27[3]);
$topic_templates->set_var('topic_name', htmlspecialchars(stripslashes($A['topic']), ENT_QUOTES, COM_getEncodingt()));
if (empty($A['tid'])) {
$A['imageurl'] = '/images/topics/';
}
$topic_templates->set_var('lang_topicimage', $LANG27[4]);
$topic_templates->set_var('lang_uploadimage', $LANG27[27]);
$topic_templates->set_var('lang_maxsize', $LANG27[28]);
$topic_templates->set_var('icon_dimensions', $_CONF['max_topicicon_width'] . ' x ' . $_CONF['max_topicicon_height']);
$topic_templates->set_var('max_url_length', 255);
$topic_templates->set_var('image_url', $A['imageurl']);
if (empty($_CONF['image_lib'])) {
$scaling = $LANG04[162];
} else {
$scaling = $LANG04[161];
}
$topic_templates->set_var('icon_max_dimensions', sprintf($LANG04[160], $_CONF['max_topicicon_width'], $_CONF['max_topicicon_height'], $_CONF['max_topicicon_size'], $scaling));
$topic_templates->set_var('lang_metadescription', $LANG_ADMIN['meta_description']);
$topic_templates->set_var('lang_metakeywords', $LANG_ADMIN['meta_keywords']);
if (!empty($A['meta_description'])) {
$topic_templates->set_var('meta_description', $A['meta_description']);
}
if (!empty($A['meta_keywords'])) {
$topic_templates->set_var('meta_keywords', $A['meta_keywords']);
}
if ($_CONF['meta_tags'] > 0) {
$topic_templates->set_var('hide_meta', '');
} else {
$topic_templates->set_var('hide_meta', ' style="display:none;"');
}
$topic_templates->set_var('lang_defaulttopic', $LANG27[22]);
$topic_templates->set_var('lang_defaulttext', $LANG27[23]);
if ($A['is_default'] == 1) {
$topic_templates->set_var('default_checked', 'checked="checked"');
} else {
$topic_templates->set_var('default_checked', '');
}
$topic_templates->set_var('lang_archivetopic', $LANG27[25]);
$topic_templates->set_var('lang_archivetext', $LANG27[26]);
$topic_templates->set_var('archive_disabled', '');
if ($A['archive_flag'] == 1) {
$topic_templates->set_var('archive_checked', 'checked="checked"');
} else {
$topic_templates->set_var('archive_checked', '');
// Only 1 topic can be the archive topic - so check if there already is one
if (DB_count($_TABLES['topics'], 'archive_flag', '1') > 0) {
$topic_templates->set_var('archive_disabled', 'disabled');
}
}
if (empty($tid)) {
$num_stories = $LANG_ADMIN['na'];
} else {
$nResult = DB_query("SELECT COUNT(*) AS count FROM {$_TABLES['stories']}, {$_TABLES['topic_assignments']} ta WHERE ta.type = 'article' AND ta.id = sid AND ta.tid = '" . DB_escapeString($tid) . "'" . COM_getPermSql('AND'));
$N = DB_fetchArray($nResult);
$num_stories = COM_numberFormat($N['count']);
}
$topic_templates->set_var('lang_num_stories', $LANG27[30]);
$topic_templates->set_var('num_stories', $num_stories);
$topic_templates->set_var('gltoken_name', CSRF_TOKEN);
$topic_templates->set_var('gltoken', $token);
$topic_templates->parse('output', 'editor');
$retval .= $topic_templates->finish($topic_templates->get_var('output'));
$retval .= COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer'));
return $retval;
}
/**
* Provide the form to create or edit a calendar
*
* @return string HTML for editing form
*/
public function Edit()
{
global $_SYSTEM;
$T = new Template(EVLIST_PI_PATH . '/templates');
$T->set_file('modify', 'calEditForm.thtml');
$T->set_var(array('cal_id' => $this->cal_id, 'cal_name' => $this->cal_name, 'fgcolor' => $this->fgcolor, 'bgcolor' => $this->bgcolor, 'owner_id' => $this->owner_id, 'ownername' => COM_getDisplayName($this->owner_id), 'group_dropdown' => SEC_getGroupDropdown($this->group_id, 3), 'permissions_editor' => SEC_getPermissionsHTML($this->perm_owner, $this->perm_group, $this->perm_members, $this->perm_anon), 'stat_chk' => $this->cal_status == 1 ? EVCHECKED : '', 'ical_chk' => $this->cal_ena_ical == 1 ? EVCHECKED : '', 'cancel_url' => EVLIST_ADMIN_URL . '/index.php?admin=cal', 'can_delete' => $this->cal_id > 1 ? 'true' : '', 'mootools' => $_SYSTEM['disable_mootools'] ? '' : 'true'));
$T->parse('output', 'modify');
$display .= $T->finish($T->get_var('output'));
return $display;
}
