public function index() { // require_once(MODPATH . "aws_s3/lib/s3.php"); $form = $this->_get_s3_form(); if (request::method() == "post") { access::verify_csrf(); if ($form->validate()) { module::set_var("aws_s3", "enabled", isset($_POST['enabled']) ? true : false); module::set_var("aws_s3", "access_key", $_POST['access_key']); module::set_var("aws_s3", "secret_key", $_POST['secret_key']); module::set_var("aws_s3", "bucket_name", $_POST['bucket_name']); module::set_var("aws_s3", "g3id", $_POST['g3id']); module::set_var("aws_s3", "url_str", $_POST['url_str']); module::set_var("aws_s3", "sig_exp", $_POST['sig_exp']); module::set_var("aws_s3", "use_ssl", isset($_POST['use_ssl']) ? true : false); if (module::get_var("aws_s3", "enabled") && !module::get_var("aws_s3", "synced", false)) { site_status::warning(t('Your site has not yet been syncronised with your Amazon S3 bucket. Content will not appear correctly until you perform syncronisation. <a href="%url" class="g-dialog-link">Fix this now</a>', array("url" => html::mark_clean(url::site("admin/maintenance/start/aws_s3_task::sync?csrf=__CSRF__")))), "aws_s3_not_synced"); } message::success(t("Settings have been saved")); url::redirect("admin/aws_s3"); } else { message::error(t("There was a problem with the submitted form. Please check your values and try again.")); } } $v = new Admin_View("admin.html"); $v->page_title = t("Amazon S3 Configuration"); $v->content = new View("admin_aws_s3.html"); $v->content->form = $form; $v->content->end = ""; echo $v; }
public function index() { if ($this->auth->logged_in()) { $this->template->title = 'Already Logged In'; $this->template->content = new View('login/login_message'); $this->template->content->message = 'You are already logged in.<br />'; $this->template->content->link_to_home = 'YES'; $this->template->content->link_to_logout = 'YES'; return; } $this->template->title = 'Forgotten Password Email Request'; $this->template->content = new View('login/forgotten_password'); if (request::method() == 'post') { $post = new Validation($_POST); $post->pre_filter('trim', TRUE); $post->add_rules('UserID', 'required'); $returned = $this->auth->user_and_person_by_username_or_email($_POST['UserID']); if (array_key_exists('error_message', $returned)) { $this->template->content->error_message = $returned['error_message']; return; } $user = $returned['user']; $person = $returned['person']; if (!$this->check_can_login($user)) { return; } $this->auth->send_forgotten_password_mail($user, $person); $this->template->title = 'Email Sent'; $this->template->content = new View('login/login_message'); $this->template->content->message = 'An email providing a link which will allow your password to be reset has been sent to the specified email address, or if a username was provided, to the registered email address for that user.<br />'; } }
public function single() { // Check auth here if (intval(Router::$arguments[0])) { $id = intval(Router::$arguments[0]); } else { throw new Kohana_Exception(); } switch (strtoupper(request::method())) { case "GET": echo json_encode($this->get_messages_array($id)); break; case "POST": $this->rest_error(501); break; case "PUT": // Messages are read-only $this->rest_error(405); break; case "DELETE": $message = ORM::factory('message', $id); if ($message->loaded) { $message->delete(); } else { $this->rest_error(404); } break; } }
public function single() { // Check auth here if (intval(Router::$arguments[0])) { $id = intval(Router::$arguments[0]); } else { throw new Kohana_Exception(); } switch (strtoupper(request::method())) { case "GET": echo json_encode($this->get_categories_array($id)); break; case "POST": // Not sure what this would do $this->rest_error(405); break; case "PUT": if (!$this->admin) { $this->rest_error(401); } $this->rest_error(501); break; case "DELETE": if (!$this->admin) { $this->rest_error(401); } $category = ORM::factory('category', $id); if ($category->loaded) { $category->delete(); } else { $this->rest_error(404); } break; } }
public function profile_pic() { if (request::is_ajax() && request::method() === 'post') { $this->auto_render = FALSE; $client_id = $this->auth->get_user()->id; //print_r($_FILES['profile-image']);exit; if (!empty($_FILES['profile-image']['name'])) { $tempFile = $_FILES["profile-image"]["tmp_name"]; $filename = $_FILES["profile-image"]["name"]; $targetPath = 'assets/uploads/'; $temp = explode(".", $filename); $extension = end($temp); if (!is_dir($targetPath)) { mkdir($targetPath, 0700); $salt = 'user-' . $client_id . '-' . uniqid() . '-'; $targetFile = $targetPath . $salt . $filename; $file_data_name = array("name" => $filename, "location" => $targetPath, "extension" => $extension); $this->start_upload($targetFile, $tempFile); $json = json_encode($file_data_name, TRUE); } else { $salt = 'user-' . $client_id . '-' . uniqid() . '-'; $targetFile = $targetPath . $salt . $filename; $file_data_name = array("name" => $filename, "location" => $targetFile, "extension" => $extension); $this->start_upload($targetFile, $tempFile); $json = json_encode($file_data_name, TRUE); } } else { $json = $this->auth->get_user()->user_avatar; } $data_profile_pic = array("user_avatar" => $json); log_helper::add("2", $this->user_log, $this->user_id, "Profile Picture was Successfully Updated"); $this->setting_model->update_user($this->auth->get_user()->id, $data_profile_pic); } }
/** * bit.ly module's settings * @todo Show default tweet value after resetting it! */ public function index() { $form = twitter::get_configure_form(); if (request::method() == "post") { access::verify_csrf(); if ($form->validate()) { $consumer_key = $form->twitter_oauth->consumer_key->value; $consumer_secret = $form->twitter_oauth->consumer_secret->value; $reset_tweet = $form->twitter_message->reset_tweet->value; if ($reset_tweet) { $default_tweet = twitter::reset_default_tweet(); } else { $default_tweet = $form->twitter_message->default_tweet->value; } $shorten_urls = $form->urls->shorten_urls->value; module::set_var("twitter", "consumer_key", $consumer_key); module::set_var("twitter", "consumer_secret", $consumer_secret); module::set_var("twitter", "default_tweet", $default_tweet); module::set_var("twitter", "shorten_urls", $shorten_urls); message::success("Twitter settings saved"); url::redirect("admin/twitter"); } } $is_registered = twitter::is_registered(); $v = new Admin_View("admin.html"); $v->page_title = t("Twitter"); $v->content = new View("admin_twitter.html"); $v->content->form = $form; $v->content->is_registered = $is_registered; print $v; }
public function __toString() { /** * poa = product options atributes */ // echo Kohana::debug(@$_POST); $opa = new fpp_product_has_attributes_product_Model(); $orm = $opa->db2cls(); $uri = URI::Instance(); $id = (int) $uri->segment("edit"); if (request::method() == 'post' and is_array(@$_POST['opt'])) { $orm->delete(array('product_id_product' => $id)); foreach ($_POST['opt'] as $key => $value) { $orm = $opa->db2cls(); $data['product_id_product'] = $id; // $data['ap_id_attributes_product'] = @$_POST['atr'][$key]; $data['prefix'] = @$_POST['prefix'][$key]; $data['vap_id_values_atributtes_product'] = @$_POST['opt'][$key]; $data['value'] = @$_POST['val'][$key]; $data['extra'] = @$_POST['extra'][$key]; $orm->set_fields($data); $orm->save(); } } $results = $this->GetAttr($id); // fetch_where(array('product_id_product'=> ) ); $atr_p = new fpp_attributes_product_Model(); $orm_atrp = $atr_p->db2cls(); $attributes = form::dropdown("poa_id", $orm_atrp->select_list('id_attributes_product', 'name_attributes_product')); $string = View::factory("extras/ajaxattributes")->set("attributes", $attributes)->set("results", $results)->render(); return $string; }
public function index() { $form = $this->_get_form(); if (request::method() == "post") { access::verify_csrf(); if ($form->validate()) { module::set_var("strip_exif", "exiv_path", $_POST['exiv_path']); if ($_POST['exif_tags'] != "") { module::set_var("strip_exif", "exif_remove", isset($_POST['exif_remove']) ? $_POST['exif_remove'] : false); module::set_var("strip_exif", "exif_tags", $_POST['exif_tags']); } else { module::set_var("strip_exif", "exif_remove", false); module::set_var("strip_exif", "exif_tags", self::$defExifTags); } if ($_POST['iptc_tags'] != "") { module::set_var("strip_exif", "iptc_remove", isset($_POST['iptc_remove']) ? $_POST['iptc_remove'] : false); module::set_var("strip_exif", "iptc_tags", $_POST['iptc_tags']); } else { module::set_var("strip_exif", "iptc_remove", false); module::set_var("strip_exif", "iptc_tags", self::$defIptcTags); } if (isset($_POST['verbose'])) { module::set_var("strip_exif", "verbose", $_POST['verbose']); } message::success(t("Settings have been saved")); url::redirect("admin/strip_exif"); } else { message::error(t("There was a problem with the submitted form. Please check your values and try again.")); } } print $this->_get_view(); }
public function index() { if (request::method() == "post") { $this->_try_login(); } else { print $this->_login_form(); } }
public function getOne() { if (request::is_ajax() and request::method() == 'get') { $this->auto_render = FALSE; $setting = $this->setting_model->getOne(); echo json_encode($setting); } }
private static function _prompt_for_reauth($controller_name, $args) { if (request::method() == "get" && !request::is_ajax()) { // Avoid anti-phishing protection by passing the url as session variable. Session::instance()->set("continue_url", url::current(true)); } url::redirect("reauthenticate"); }
public function delete($id) { if (request::is_ajax() && request::method() === 'post') { $this->auto_render = FALSE; $category = $this->category_model->find($id); echo $this->category_model->delete($category->id); log_helper::add("1", $this->user_log, $this->user_id, "Deleted Category named " . $category->name . "."); } }
public function delete($id) { if (request::is_ajax() and request::method() === 'post') { $this->auto_render = FALSE; $officeBudget = $this->budget_model->with('office')->find($id); log_helper::add("2", $this->user_log, $this->user_id, "Deleted a Office Budget for " . $officeBudget->office->name . "."); echo $this->budget_model->delete($id); } }
public function save() { if (request::is_ajax() && request::method() === 'post') { $this->auto_render = FALSE; $post = security::xss_clean($this->input->post()); log_helper::add("1", $this->user_log, $this->user_id, "Added New Purchase"); $this->purchase_model->insert($post); } }
public function save() { if (request::is_ajax() && request::method() === 'post') { $this->auto_render = FALSE; $post = security::xss_clean($this->input->post()); $latest = json_helper::convert($this->district_model->insert($post)); echo json_encode($latest); } }
public function delete($id) { if (request::is_ajax() && request::method() === 'post') { $this->auto_render = FALSE; $supplier = $this->supplier_model->find($id); log_helper::add("1", $this->user_log, $this->user_id, "Deleted Supplier named " . $supplier->name . "."); echo $this->supplier_model->delete($id); } }
public function delete($id) { if (request::is_ajax() && request::method() === 'post') { $this->auto_render = FALSE; $office = $this->office_model->with('district')->find($id); log_helper::add("1", $this->user_log, $this->user_id, "Deleted Office named " . $office->name . "."); echo $this->office_model->delete($id); } }
public function delete($id) { if (request::is_ajax() && request::method() === 'post') { $this->auto_render = FALSE; $request = $this->request_model->find($id); log_helper::add("1", $this->user_log, $this->user_id, "Request deleted with reference no. " . $request->reference_no . "."); echo $this->request_model->delete($id); } }
private static function _prompt_for_reauth($controller_name, $args) { if (request::method() == "get") { // Avoid anti-phishing protection by passing the url as session variable. Session::instance()->set("continue_url", url::abs_current(true)); } // Save the is_ajax value as we lose it, if set, when we redirect Session::instance()->set("is_ajax_request", request::is_ajax()); url::redirect("reauthenticate"); }
public function do_reset() { if (request::method() == "post") { $this->_change_password(); } else { $user = user::lookup_by_hash(Input::instance()->get("key")); if (!empty($user)) { print $this->_new_password_form($user->hash); } else { throw new Exception("@todo FORBIDDEN", 503); } } }
public function do_reset() { if (request::method() == "post") { $this->_change_password(); } else { $user = ORM::factory("user")->where("hash", Input::instance()->get("key"))->find(); if ($user->loaded) { print $this->_new_password_form($user->hash); } else { throw new Exception("@todo FORBIDDEN", 503); } } }
/** * the index page of the user homes admin */ public function index() { $form = upload_configuration::get_configure_form(); if (request::method() == "post") { access::verify_csrf(); if ($form->validate()) { upload_configuration::extractForm($form); message::success(t("GWTOrganise Module Configured!")); } } else { upload_configuration::populateForm($form); } print $form; }
public function index() { $form = $this->_get_form(); if (request::method() == "post") { access::verify_csrf(); if ($form->validate()) { module::set_var("auto_date", "template", $_POST['template']); message::success(t("Settings have been saved")); url::redirect("admin/auto_date"); } else { message::error(t("There was a problem with the submitted form. Please check your values and try again.")); } } print $this->_get_view(); }
public function __construct() { $this->db = Database::instance(); $this->auth = Auth::instance(); $this->_login(); header("Cache-Control: no-cache, must-revalidate"); // HTTP/1.1 header("Expires: Sat, 26 Jul 1997 05:00:00 GMT"); // Date in the pass // currently always json header("Content-type: application/json; charset=utf-8"); // Parse HTTP put data if (strtoupper(request::method()) == 'PUT' or strtoupper(request::method()) == 'POST') { $this->data = json_decode(file_get_contents("php://input")); } }
/** * We're expecting to run in an environment that only supports GET/POST, so expect to tunnel * PUT and DELETE through POST. * * Returns the HTTP request method taking into consideration PUT/DELETE tunneling. * @return string HTTP request method */ static function request_method() { if (request::method() == "get") { return "get"; } else { $input = Input::instance(); switch (strtolower($input->post("_method", $input->get("_method", request::method())))) { case "put": return "put"; case "delete": return "delete"; default: return "post"; } } }
public function update($id) { if (request::is_ajax() && request::method() === 'post') { $this->auto_render = FALSE; $changes = ""; $post = security::xss_clean($this->input->post('name')); $district = $this->district_model->find($id); $changes .= custom_helper::compare_variable("District Name", $district->name, $post); if ($changes != "") { $changes = substr($changes, 0, -2) . '.'; } $district->name = $post; log_helper::add("1", $this->user_log, $this->user_id, "Updated a District. " . $changes); echo json_encode($this->district_model->getOne($district->save($id))); } }
/** * the index page of the user homes admin */ public function index() { $form = favourites_configuration::get_configure_form(); if (request::method() == "post") { access::verify_csrf(); if ($form->validate()) { favourites_configuration::extractForm($form); message::success(t("Favourites Module Configured!")); } } else { favourites_configuration::populateForm($form); } $view = new Admin_View("admin.html"); $view->content = new View("admin_favourites_configure.html"); $view->content->form = $form; print $view; }
public function save() { if (request::is_ajax() and request::method() === 'post') { $this->auto_render = FALSE; $office_id = Auth::instance()->get_user()->office_id; $post = security::xss_clean($this->input->post()); $post['office_id'] = $office_id; $post['status'] = 'Received'; $officeBudget = arr::remove('currentBudget', $post); if ($post['status'] == 'Approved') { $this->budget_model->updateBudget($post['office_id'], $officeBudget); echo $this->request_model->insert($post); } log_helper::add("1", $this->user_log, $this->user_id, "Requested a Budget"); $this->request_model->insert($post); } }
/** * the index page of the user homes admin */ public function templates() { $form = basket::get_template_form(); if (request::method() == "post") { access::verify_csrf(); if ($form->validate()) { basket::extractTemplateForm($form); message::success(t("Basket Module Configured!")); } } else { basket::populateTemplateForm($form); } $view = new Admin_View("admin.html"); $view->content = new View("admin_templates.html"); $view->content->form = $form; print $view; }
public function index() { $form = akismet::get_configure_form(); if (request::method() == "post") { // @todo move the "post" handler part of this code into a separate function access::verify_csrf(); $valid = $form->validate(); if ($valid) { $new_key = $form->configure_akismet->api_key->value; if ($new_key && !akismet::validate_key($new_key)) { $form->configure_akismet->api_key->add_error("invalid", 1); $valid = false; } } if ($valid) { $old_key = module::get_var("akismet", "api_key"); if ($old_key && !$new_key) { message::success(t("Your Akismet key has been cleared.")); } else { if ($old_key && $new_key && $old_key != $new_key) { message::success(t("Your Akismet key has been changed.")); } else { if (!$old_key && $new_key) { message::success(t("Your Akismet key has been saved.")); } } } log::success("akismet", t("Akismet key changed to {$new_key}")); module::set_var("akismet", "api_key", $new_key); akismet::check_config(); url::redirect("admin/akismet"); } else { $valid_key = false; } } else { $valid_key = module::get_var("akismet", "api_key") ? 1 : 0; } akismet::check_config(); $view = new Admin_View("admin.html"); $view->content = new View("admin_akismet.html"); $view->content->valid_key = $valid_key; $view->content->form = $form; print $view; }