if (isset($_REQUEST['action'])) { $action = COM_applyFilter($_REQUEST['action'], false); } if ($action == "") { } else { if (!SEC_checkToken()) { COM_accessLog("User {$_USER['username']} tried to illegally and failed CSRF checks."); echo COM_refresh($_CONF['site_admin_url'] . '/index.php'); exit; } } $display = ''; $menuno = 6; $information = array(); $information['pagetitle'] = $LANG_USERBOX_ADMIN['piname'] . "backup and restore"; $display .= ppNavbarjp($navbarMenu, $LANG_USERBOX_admin_menu[$menuno]); if (isset($_REQUEST['msg'])) { $display .= COM_showMessage(COM_applyFilter($_REQUEST['msg'], true), $pi_name); } switch ($action) { case $LANG_USERBOX_ADMIN['config_init']: $dummy = LIB_Deleteconfig($pi_name, $config); $dummy = LIB_Initializeconfig($pi_name); echo COM_refresh($_CONF['site_admin_url'] . '/plugins/userbox/backuprestore.php'); exit; break; case $LANG_USERBOX_ADMIN['config_backup']: $display .= LIB_Backupconfig($pi_name); break; case $LANG_USERBOX_ADMIN['config_restore']: $display .= LIB_Restoreconfig($pi_name, $config);
case 'save': // 保存 $retval = LIB_Save($pi_name, $edt_flg, $navbarMenu, $menuno); $information['pagetitle'] = $retval['title']; $display .= $retval['display']; break; case 'delete': // 削除 $display .= LIB_delete($pi_name); break; case 'copy': //コピー //コピー case 'edit': // 編集 if (!empty($id)) { $information['pagetitle'] = $LANG_DATABOX_ADMIN['piname'] . $LANG_DATABOX_ADMIN['edit']; $display .= LIB_Edit($pi_name, $id, $edt_flg, $msg, "", $mode); } break; default: // 初期表示、一覧表示 $information['pagetitle'] = $LANG_DATABOX_ADMIN['piname']; if (isset($msg)) { $display .= COM_showMessage($msg, $pi_name); } $display .= LIB_List($pi_name); } $display = COM_startBlock($LANG_DATABOX_ADMIN['piname'], '', COM_getBlockTemplate('_admin_block', 'header')) . ppNavbarjp($navbarMenu, $LANG_DATABOX_admin_menu[$menuno]) . LIB_Menu($pi_name) . $display . COM_endBlock(COM_getBlockTemplate('_admin_block', 'footer')); $display = DATABOX_displaypage($pi_name, '_admin', $display, $information); COM_output($display);
function LIB_Save($pi_name, $edt_flg, $navbarMenu, $menuno) { global $_CONF; global $_TABLES; global $_USER; $box_conf = "_" . strtoupper($pi_name) . "_CONF"; global ${$box_conf}; $box_conf = ${$box_conf}; $lang_box_admin = "LANG_" . strtoupper($pi_name) . "_ADMIN"; global ${$lang_box_admin}; $lang_box_admin = ${$lang_box_admin}; $lang_box_admin_menu = "LANG_" . strtoupper($pi_name) . "_admin_menu"; global ${$lang_box_admin_menu}; $lang_box_admin_menu = ${$lang_box_admin_menu}; $table = $_TABLES[strtoupper($pi_name) . '_def_group']; $retval = ''; // clean 'em up $id = COM_applyFilter($_POST['id'], true); $code = COM_applyFilter($_POST['code']); $code = addslashes(COM_checkHTML(COM_checkWords($code))); $name = COM_applyFilter($_POST['name']); $name = addslashes(COM_checkHTML(COM_checkWords($name))); $description = $_POST['description']; //COM_applyFilter($_POST['description']); $description = addslashes(COM_checkHTML(COM_checkWords($description))); $parent_flg = COM_applyFilter($_POST['parent_flg'], true); $orderno = mb_convert_kana($_POST['orderno'], "a"); //全角英数字を半角英数字に変換する $orderno = COM_applyFilter($orderno, true); //$name = mb_convert_kana($name,"AKV"); //A:半角英数字を全角英数字に変換する //K:半角カタカナを全角カタカナに変換する //V:濁点つきの文字を1文字に変換する (K、H と共に利用する) //$name = str_replace ("'", "’",$name); //$code = mb_convert_kana($code,"a");//全角英数字を半角英数字に変換する //----- $type = 1; $uuid = $_USER['uid']; // CHECK はじめ $err = ""; //ID コード if ($id == 0) { //$err.=$lang_box_admin['err_uid']."<br/>".LB; } else { if (!is_numeric($id)) { $err .= $lang_box_admin['err_id'] . "<br/>" . LB; } } //コード if ($code != "") { $cntsql = "SELECT code FROM {$table} "; $cntsql .= " WHERE "; $cntsql .= " code='{$code}' "; $cntsql .= " AND group_id<>{$id}"; $result = DB_query($cntsql); $numrows = DB_numRows($result); if ($numrows != 0) { $err .= $lang_box_admin['err_code_w'] . "<br/>" . LB; } } //タイトル必須 if (empty($name)) { $err .= $lang_box_admin['err_name'] . "<br/>" . LB; } //errorのあるとき if ($err != "") { $page_title = $lang_box_admin['piname'] . $lang_box_admin['edit']; $retval .= DATABOX_siteHeader($pi_name, '_admin', $page_title); $retval .= ppNavbarjp($navbarMenu, $lang_box_admin_menu[$menuno]); $retval .= LIB_Edit($pi_name, $id, $edt_flg, 3, $err); $retval .= DATABOX_siteFooter($pi_name, '_admin'); return $retval; } // CHECK おわり if ($id == 0) { $w = DB_getItem($table, "max(group_id)", "1=1"); if ($w == "") { $w = 0; } $id = $w + 1; } $fields = "group_id"; $values = "{$id}"; $fields .= ",code"; $values .= ",'{$code}'"; $fields .= ",name"; $values .= ",'{$name}'"; $fields .= ",description"; $values .= ",'{$description}'"; $fields .= ",orderno"; // $values .= ",{$orderno}"; $fields .= ",parent_flg"; // $values .= ",{$parent_flg}"; $fields .= ",uuid"; $values .= ",{$uuid}"; $fields .= ",udatetime"; $values .= ",NOW( )"; // // if ($edt_flg){ // $return_page=$_CONF['site_url'] . "/".THIS_SCRIPT; // $return_page.="?id=".$id; // }else{ // $return_page=$_CONF['site_admin_url'] . '/plugins/'.THIS_SCRIPT.'?msg=1'; // } DB_save($table, $fields, $values, $return_page); // $rt=fncsendmail ($id); $message = ""; if ($box_conf['aftersave_admin'] === 'no') { $page_title = $lang_box_admin['piname'] . $lang_box_admin['edit']; $retval .= DATABOX_siteHeader($pi_name, '_admin', $page_title); $retval .= ppNavbarjp($navbarMenu, $lang_box_admin_menu[$menuno]); $retval .= LIB_Edit($pi_name, $id, $edt_flg, 1, ""); $retval .= DATABOX_siteFooter($pi_name, '_admin'); return $retval; } else { if ($box_conf['aftersave_admin'] === 'list') { $url = $_CONF['site_admin_url'] . "/plugins/{$pi_name}/group.php"; $item_url = COM_buildURL($url); $target = 'item'; $message = 1; } else { if ($box_conf['aftersave_admin'] === 'admin') { $target = $box_conf['aftersave_admin']; $message = 1; } else { $item_url = COM_buildURL($_CONF['site_url'] . $box_conf['top']); $target = $box_conf['aftersave_admin']; } } } $return_page = PLG_afterSaveSwitch($target, $item_url, $pi_name, $message); echo $return_page; // exit; }
// | MAIN | // +---------------------------------------------------------------------------+ // 引数 if ($mode == "" or $mode == "importform" or $mode == "deleteform") { } else { if (!SEC_checkToken()) { // if (SEC_checkToken()){//テスト用 COM_accessLog("User {$_USER['username']} tried to illegally and failed CSRF checks."); echo COM_refresh($_CONF['site_admin_url'] . '/index.php'); exit; } } $menuno = 1; $display = ''; $information = array(); $information['what'] = 'menu'; $information['pagetitle'] = $LANG_ASSIST_ADMIN['piname']; $information['rightblock'] = false; if (isset($_REQUEST['msg'])) { $display .= COM_showMessage(COM_applyFilter($_REQUEST['msg'], true), 'assist'); } $display .= ppNavbarjp($navbarMenu, $LANG_ASSIST_admin_menu[$menuno]); $display .= fncDisplay(); //FOR GL2.0.0 if (COM_versionCompare(VERSION, "2.0.0", '>=')) { $display = COM_createHTMLDocument($display, $information); } else { $display = COM_siteHeader($information['what'], $information['pagetitle']) . $display; $display .= COM_siteFooter($information['rightblock']); } COM_output($display);
function LIB_Save($pi_name, $edt_flg, $navbarMenu, $menuno) { global $_CONF; global $_TABLES; global $_USER; $box_conf = "_" . strtoupper($pi_name) . "_CONF"; global ${$box_conf}; $box_conf = ${$box_conf}; $lang_box_admin = "LANG_" . strtoupper($pi_name) . "_ADMIN"; global ${$lang_box_admin}; $lang_box_admin = ${$lang_box_admin}; $lang_box_admin_menu = "LANG_" . strtoupper($pi_name) . "_admin_menu"; global ${$lang_box_admin_menu}; $lang_box_admin_menu = ${$lang_box_admin_menu}; $table = $_TABLES[strtoupper($pi_name) . '_def_field']; $table1 = $_TABLES[strtoupper($pi_name) . '_base']; $table2 = $_TABLES[strtoupper($pi_name) . '_addition']; $retval = ''; // clean 'em up $id = COM_applyFilter($_POST['id'], true); if ($id == 0) { $new_flg = true; } else { $new_flg = false; } $name = COM_applyFilter($_POST['name']); $name = addslashes(COM_checkHTML(COM_checkWords($name))); $templatesetvar = COM_applyFilter($_POST['templatesetvar']); $templatesetvar = addslashes(COM_checkHTML(COM_checkWords($templatesetvar))); $description = $_POST['description']; //COM_applyFilter($_POST['description']); $description = addslashes(COM_checkHTML(COM_checkWords($description))); $allow_display = COM_applyFilter($_POST['allow_display']); $allow_display = addslashes(COM_checkHTML(COM_checkWords($allow_display))); $allow_edit = COM_applyFilter($_POST['allow_edit']); $allow_edit = addslashes(COM_checkHTML(COM_checkWords($allow_edit))); $type = COM_applyFilter($_POST['type']); $type = addslashes(COM_checkHTML(COM_checkWords($type))); $selection = COM_applyFilter($_POST['selection']); $selection = addslashes(COM_checkHTML(COM_checkWords($selection))); $selectlist = COM_applyFilter($_POST['selectlist']); $selectlist = addslashes(COM_checkHTML(COM_checkWords($selectlist))); $checkrequried = COM_applyFilter($_POST['checkrequried']); $checkrequried = addslashes(COM_checkHTML(COM_checkWords($checkrequried))); $size = COM_applyFilter($_POST['size'], true); $size = addslashes(COM_checkHTML(COM_checkWords($size))); $maxlength = COM_applyFilter($_POST['maxlength']); $maxlength = addslashes(COM_checkHTML(COM_checkWords($maxlength))); $rows = COM_applyFilter($_POST['rows']); $rows = addslashes(COM_checkHTML(COM_checkWords($rows))); $br = COM_applyFilter($_POST['br']); $br = addslashes(COM_checkHTML(COM_checkWords($br))); $fieldgroup_id = COM_applyFilter($_POST['group']); $fieldgroup_id = addslashes(COM_checkHTML(COM_checkWords($fieldgroup_id))); $orderno = mb_convert_kana($_POST['orderno'], "a"); //全角英数字を半角英数字に変換する $orderno = COM_applyFilter($orderno, true); //$name = mb_convert_kana($name,"AKV"); //A:半角英数字を全角英数字に変換する //K:半角カタカナを全角カタカナに変換する //V:濁点つきの文字を1文字に変換する (K、H と共に利用する) //$name = str_replace ("'", "’",$name); //$code = mb_convert_kana($code,"a");//全角英数字を半角英数字に変換する //----- $uuid = $_USER['uid']; // CHECK はじめ $err = ""; //ID if ($id == 0) { //$err.=$lang_box_admin['err_id']."<br/>".LB; } else { if (!is_numeric($id)) { $err .= $lang_box_admin['err_id'] . "<br/>" . LB; } } //名称必須 if (empty($name)) { $err .= $lang_box_admin['err_name'] . "<br/>" . LB; } //テンプレート必須,二重チェック if (empty($templatesetvar)) { $err .= $lang_box_admin['err_templatesetvar'] . "<br/>" . LB; } else { $cntsql = "SELECT field_id FROM {$table} "; $cntsql .= " WHERE "; $cntsql .= " templatesetvar='{$templatesetvar}' "; $cntsql .= " AND field_id<>{$id}"; //echo "cntsql=".$cntsql."<br>"; $result = DB_query($cntsql); $numrows = DB_numRows($result); if ($numrows != 0) { $err .= $lang_box_admin['err_templatesetvar_w'] . "<br/>" . LB; } } //7 = 'オプションリスト'; //8 = 'ラジオボタンリスト'; if ($type == 7 or $type == 8) { if ($selection == "") { $err .= $lang_box_admin['err_selection'] . "<br/>" . LB; } } //errorのあるとき if ($err != "") { $page_title = $lang_box_admin['piname'] . $lang_box_admin['edit']; $retval .= DATABOX_siteHeader($pi_name, '_admin', $page_title); $retval .= ppNavbarjp($navbarMenu, $lang_box_admin_menu[$menuno]); $retval .= LIB_Edit($pi_name, $id, $edt_flg, 3, $err); $retval .= DATABOX_siteFooter($pi_name, '_admin'); return $retval; } // CHECK おわり if ($id == 0) { $w = DB_getItem($table, "max(field_id)", "1=1"); if ($w == "") { $w = 0; } $id = $w + 1; } $fields = "field_id"; $values = "{$id}"; $fields .= ",name"; $values .= ",'{$name}'"; $fields .= ",templatesetvar"; $values .= ",'{$templatesetvar}'"; $fields .= ",description"; $values .= ",'{$description}'"; $fields .= ",type"; $values .= ",{$type}"; $fields .= ",selection"; $values .= ",'{$selection}'"; $fields .= ",selectlist"; $values .= ",{$selectlist}"; $fields .= ",checkrequried"; $values .= ",{$checkrequried}"; $fields .= ",size"; $values .= ",{$size}"; $fields .= ",maxlength"; $values .= ",{$maxlength}"; $fields .= ",rows"; $values .= ",{$rows}"; $fields .= ",br"; $values .= ",{$br}"; $fields .= ",fieldgroup_id"; $values .= ",'{$fieldgroup_id}'"; $fields .= ",orderno"; // $values .= ",'{$orderno}'"; $fields .= ",allow_display"; $values .= ",{$allow_display}"; $fields .= ",allow_edit"; $values .= ",{$allow_edit}"; $fields .= ",uuid"; $values .= ",{$uuid}"; $fields .= ",udatetime"; $values .= ",NOW( )"; // DB_save($table, $fields, $values); // if ($new_flg){ $sql = "INSERT INTO " . $table2 . LB; $sql .= " (`id`,`field_id`,`value`)" . LB; $sql .= " SELECT id"; $sql .= " ," . $id; //7 = 'オプションリスト'; //8 = 'ラジオボタンリスト'; if (($type == 7 or $type == 8) and $selection != "") { $sql .= ",'0' "; } else { $sql .= ",'' "; } $sql .= " FROM " . $table1 . LB; $sql .= " where id NOT IN (select id from " . $table2 . LB; $sql .= " where field_id=" . $id . ")" . LB; //COM_errorLog( "sql= " . $sql, 1 ); DB_query($sql); // } // $rt=fncsendmail ($id); // if ($edt_flg){ // $return_page=$_CONF['site_url'] . "/".THIS_SCRIPT; // $return_page.="?id=".$id; // }else{ // $return_page=$_CONF['site_admin_url'] . '/plugins/'.THIS_SCRIPT.'?msg=1'; // } //$return_page="";//@@@@@debug 用 $message = ""; if ($box_conf['aftersave_admin'] === 'no') { $page_title = $lang_box_admin['piname'] . $lang_box_admin['edit']; $retval .= DATABOX_siteHeader($pi_name, '_admin', $page_title); $retval .= ppNavbarjp($navbarMenu, $lang_box_admin_menu[$menuno]); $retval .= LIB_Edit($pi_name, $id, $edt_flg, 1, ""); $retval .= DATABOX_siteFooter($pi_name, '_admin'); return $retval; } else { if ($box_conf['aftersave_admin'] === 'list') { $url = $_CONF['site_admin_url'] . "/plugins/{$pi_name}/field.php"; $item_url = COM_buildURL($url); $target = 'item'; $message = 1; } else { if ($box_conf['aftersave_admin'] === 'admin') { $target = $box_conf['aftersave_admin']; $message = 1; } else { $item_url = COM_buildURL($_CONF['site_url'] . $box_conf['top']); $target = $box_conf['aftersave_admin']; } } } $return_page = PLG_afterSaveSwitch($target, $item_url, $pi_name, $message); echo $return_page; //exit; }
function fncSave($edt_flg, $navbarMenu, $menuno) { $pi_name = "userbox"; global $_CONF; global $_TABLES; global $_USER; global $_USERBOX_CONF; global $LANG_USERBOX_ADMIN; global $LANG_USERBOX_user_menu; $addition_def = DATABOX_getadditiondef($pi_name); $retval = ''; // clean 'em up $id = COM_applyFilter($_POST['id'], true); if ($id == 0) { $new_flg = true; } else { $new_flg = false; } $code = COM_applyFilter($_POST['code'], true); $code = addslashes(COM_checkHTML(COM_checkWords($code))); $title = COM_applyFilter($_POST['title']); $title = addslashes(COM_checkHTML(COM_checkWords($title))); $username = COM_applyFilter($_POST['username']); $username = addslashes(COM_checkHTML(COM_checkWords($username))); $fullname = COM_applyFilter($_POST['fullname']); $fullname = addslashes(COM_checkHTML(COM_checkWords($fullname))); $page_title = COM_applyFilter($_POST['page_title']); $page_title = addslashes(COM_checkHTML(COM_checkWords($page_title))); $description = $_POST['description']; //COM_applyFilter($_POST['description']); $description = addslashes(COM_checkHTML(COM_checkWords($description))); $language_id = COM_applyFilter($_POST['language_id']); $language_id = addslashes(COM_checkHTML(COM_checkWords($language_id))); $category = $_POST['category']; //@@@@@ $additionfields = $_POST['afield']; $additionfields_old = $_POST['afield']; $additionfields_fnm = $_POST['afield_fnm']; $additionfields_del = $_POST['afield_del']; $additionfields_alt = $_POST['afield_alt']; $additionfields_date = array(); $additionfields = DATABOX_cleanaddtiondatas($additionfields, $addition_def, $additionfields_fnm, $additionfields_del, $additionfields_date, $additionfields_alt); //----- $type = 1; $uuid = $_USER['uid']; // CHECK はじめ $err = ""; //id if ($id == 0) { //$err.=$LANG_USERBOX_ADMIN['err_uid']."<br/>".LB; } else { if (!is_numeric($id)) { $err .= $LANG_USERBOX_ADMIN['err_id'] . "<br/>" . LB; } } //説明必須 if ($_USERBOX_CONF['descriptionemptycheck'] == 1) { if (empty($description)) { $err .= $LANG_USERBOX_ADMIN['err_description'] . "<br/>" . LB; } } //文字数制限チェック if (mb_strlen($description, 'UTF-8') > $_USERBOX_CONF['maxlength_description']) { $err .= $LANG_USERBOX_ADMIN['description'] . $_USERBOX_CONF['maxlength_description'] . $LANG_USERBOX_ADMIN['err_maxlength'] . "<br/>" . LB; } //----追加項目チェック $err .= databox_checkaddtiondatas($additionfields, $addition_def, $pi_name, $additionfields_fnm, $additionfields_del, $additionfields_alt); //errorのあるとき if ($err != "") { $page_title = $LANG_USERBOX_ADMIN['piname'] . $LANG_USERBOX_ADMIN['edit']; $retval .= DATABOX_siteHeader($pi_name, '_admin', $page_title); $retval .= ppNavbarjp($navbarMenu, $LANG_USERBOX_user_menu[$menuno]); $retval .= fncEdit($id, $edt_flg, 3, $err); $retval .= DATABOX_siteFooter($pi_name, '_admin'); return $retval; } // CHECK おわり //----- // 新規登録時 if ($new_flg) { $w = DB_getItem($_TABLES['USERBOX_base'], "max(id)", "1=1"); if ($w == "") { $w = 0; } $id = $w + 1; } $fields = LB . "id"; $values = LB . "{$id}"; if ($new_flg) { if ($_USERBOX_CONF['datacode']) { $code = "000000" . date(Ymdhis); } $created = date("Y-m-d H:i:s"); $modified = $created; $released = $created; $commentcode = -1; $trackbackcode = $_CONF[trackback_code]; $comment_expire = '0000-00-00 00:00:00'; $expired = '0000-00-00 00:00:00'; // $defaulttemplatesdirectory = null; //--- $meta_description = ""; $meta_keywords = ""; $owner_id = $_USER['uid']; $group_id = SEC_getFeatureGroup('userbox.admin', $_USER['uid']); $array = array(); SEC_setDefaultPermissions($array, $_USERBOX_CONF['default_permissions']); $perm_owner = $array['perm_owner']; $perm_group = $array['perm_group']; $perm_anon = $array['perm_anon']; $perm_members = $array['perm_members']; $draft_flag = $_USERBOX_CONF['user_draft_default']; //----- $fields .= ",defaulttemplatesdirectory"; // $values .= ",'{$defaulttemplatesdirectory}'"; $fields .= ",draft_flag"; $values .= ",{$draft_flag}"; $fields .= ",meta_description"; // $values .= ",'{$meta_description}'"; $fields .= ",meta_keywords"; // $values .= ",'{$meta_keywords}'"; $fields .= ",commentcode"; // $values .= ",{$commentcode}"; $fields .= ",comment_expire"; // if ($comment_expire == '0000-00-00 00:00:00') { $values .= ",'{$comment_expire}'"; } else { $values .= ",FROM_UNIXTIME('{$comment_expire}')"; } $fields .= ",language_id"; // $values .= ",'{$language_id}'"; $fields .= ",owner_id"; $values .= ",{$owner_id}"; $fields .= ",group_id"; $values .= ",{$group_id}"; $fields .= ",perm_owner"; $values .= ",{$perm_owner}"; $fields .= ",perm_group"; $values .= ",{$perm_group}"; $fields .= ",perm_members"; $values .= ",{$perm_members}"; $fields .= ",perm_anon"; $values .= ",{$perm_anon}"; $fields .= ",modified"; $values .= ",FROM_UNIXTIME('{$modified}')"; $fields .= ",created"; $values .= ",FROM_UNIXTIME('{$created}')"; $fields .= ",expired"; if ($expired == '0000-00-00 00:00:00') { $values .= ",'{$expired}'"; } else { $values .= ",FROM_UNIXTIME('{$expired}')"; } $fields .= ",released"; $values .= ",FROM_UNIXTIME('{$released}')"; $comments = 0; $fields .= ",page_title"; // $values .= ",'{$page_title}'"; $fields .= ",description"; // $values .= ",'{$description}'"; $fields .= ",comments"; // $values .= ",{$comments}"; $fields .= ",trackbackcode"; // $values .= ",{$trackbackcode}"; $fields .= ",uuid"; $values .= ",{$uuid}"; // if ($edt_flg){ // $return_page=$_CONF['site_url'] . "/".THIS_SCRIPT; // $return_page.="?id=".$id; // }else{ // $return_page=$_CONF['site_url'] . '/'.THIS_SCRIPT.'?msg=1'; // } DB_save($_TABLES['USERBOX_base'], $fields, $values); } else { $sql = "UPDATE {$_TABLES['USERBOX_base']} set "; $sql .= " page_title = '{$page_title}'"; $sql .= " ,description = '{$description}'"; $sql .= " ,language_id = '{$language_id}'"; $sql .= " ,modified = FROM_UNIXTIME('{$modified}')"; $sql .= ",uuid='{$uuid}' WHERE id={$id}"; DB_query($sql); $sql = "UPDATE " . $_TABLES['users'] . " SET "; $sql .= " fullname ='" . $fullname . "'"; $sql .= " WHERE uid=" . $id; DB_query($sql); } //カテゴリ $rt = DATABOX_savecategorydatas($id, $category, $pi_name); //追加項目@@@@@ DATABOX_uploadaddtiondatas($additionfields, $addition_def, $pi_name, $id, $additionfields_fnm, $additionfields_del, $additionfields_old, $additionfields_alt); $rt = DATABOX_saveaddtiondatas_update($id, $additionfields, $addition_def, $pi_name); //user (コアのテーブル) $sql = "UPDATE " . $_TABLES['users'] . " SET "; $sql .= " fullname ='" . $fullname . "'"; $sql .= " WHERE uid=" . $id; DB_query($sql); $rt = fncsendmail('data', $id); $cacheInstance = 'userbox__' . $id . '__'; CACHE_remove_instance($cacheInstance); //exit;// debug 用 if ($_USERBOX_CONF['aftersave'] === 'no') { $page_title = $LANG_USERBOX_ADMIN['piname'] . $LANG_USERBOX_ADMIN['edit']; $retval .= DATABOX_siteHeader($pi_name, '_admin', $page_title); $retval .= ppNavbarjp($navbarMenu, $LANG_USERBOX_user_menu[$menuno]); $retval .= fncEdit($id, $edt_flg, 1, $err); $retval .= DATABOX_siteFooter($pi_name, '_admin'); return $retval; } else { if ($_USERBOX_CONF['aftersave'] === 'list' or $_USERBOX_CONF['aftersave'] === 'admin') { $url = $_CONF['site_url'] . "/userbox/profile.php"; $url .= "?"; //コード使用の時 if ($_USERBOX_CONF['datacode']) { $url .= "code=" . $username; $url .= "&m=code"; } else { $url .= "id=" . $id; $url .= "&m=id"; } $item_url = COM_buildUrl($url); $target = 'item'; } else { $url = $_CONF['site_url'] . "/userbox/profile.php"; $url .= "?"; //コード使用の時 if ($_USERBOX_CONF['datacode']) { $url .= "code=" . $username; $url .= "&m=code"; } else { $url .= "id=" . $id; $url .= "&m=id"; } $item_url = COM_buildUrl($url); $target = $_USERBOX_CONF['aftersave']; } } // $return_page=""; $return_page = PLG_afterSaveSwitch($target, $item_url, $pi_name, 1); echo $return_page; }
function fncSave($navbarMenu, $menuno) { global $_CONF; global $_TABLES; global $_USER; global $_USERBOX_CONF; global $LANG_USERBOX_user_menu; global $LANG_USERBOX_ADMIN; $pi_name = "userbox"; $retval = ''; // $groups = $_POST['groups']; $uid = $_USER['uid']; $groupsforuser = fncGetGroupsForUser(); $whereGroups = 'ug_main_grp_id IN (' . implode(',', $groupsforuser) . ')'; $sql = "DELETE FROM {$_TABLES['group_assignments']} WHERE "; $sql .= "(ug_uid = {$uid}) "; $sql .= " AND " . $whereGroups; DB_query($sql); if (is_array($groups)) { foreach ($groups as $userGroup) { //foreach( $groups as $fid => $fvalue ){ //echo "fid=".$fid." fvalue=".$fvalue."<br>"; $sql = "INSERT INTO {$_TABLES['group_assignments']} "; $sql .= "(ug_main_grp_id, ug_uid) "; $sql .= "VALUES ("; $sql .= " {$userGroup}"; $sql .= ", {$uid}"; $sql .= ")"; DB_query($sql); } } //exit;// debug 用 $id = $uid; if ($_USERBOX_CONF['aftersave'] === 'no') { $page_title = $LANG_USERBOX_ADMIN['piname'] . $LANG_USERBOX_ADMIN['edit']; $retval .= DATABOX_siteHeader($pi_name, '_admin', $page_title); $retval .= ppNavbarjp($navbarMenu, $LANG_USERBOX_user_menu[$menuno]); //$retval .= fncEdit($id, $edt_flg,1,$err); $retval .= fncEdit(1); $retval .= DATABOX_siteFooter($pi_name, '_admin'); return $retval; } else { if ($_USERBOX_CONF['aftersave'] === 'list' or $_USERBOX_CONF['aftersave'] === 'admin') { $url = $_CONF['site_url'] . "/userbox/profile.php"; $url .= "?"; //コード使用の時 if ($_USERBOX_CONF['datacode']) { $url .= "code=" . $username; $url .= "&m=code"; } else { $url .= "id=" . $id; $url .= "&m=id"; } $item_url = COM_buildUrl($url); $target = 'item'; } else { $url = $_CONF['site_url'] . "/userbox/profile.php"; $url .= "?"; //コード使用の時 if ($_USERBOX_CONF['datacode']) { $url .= "code=" . $username; $url .= "&m=code"; } else { $url .= "id=" . $id; $url .= "&m=id"; } $item_url = COM_buildUrl($url); $target = $_USERBOX_CONF['aftersave_admin']; } } // $return_page=""; $return_page = PLG_afterSaveSwitch($target, $item_url, $pi_name, 1); echo $return_page; return; }