/** * Shows topic control for an object * * This will return the HTML needed to create the topic control seen on the * admin screen for GL objects (i.e. stories, blocks, etc) * * @param string $type Type of object to display access for * @param string $id Id of onject (if '' then load date from control) * @param boolean $show_options True/False. If true then All and Homepage options will be visible * @param boolean $show_inherit True/False. If true then inhert selection will be enabled * @param boolean $show_default True/False. If true then default topic selection will be enabled * @return string needed HTML (table) in HTML * */ function TOPIC_getTopicSelectionControl($type, $id, $show_options = false, $show_inherit = false, $show_default = false) { global $_CONF, $LANG27, $_TABLES, $topic, $_SCRIPTS; $tids = array(); $inherit_tids = array(); $default_tid = ''; // Set Default Topic Option $topic_option = TOPIC_SELECTED_OPTION; if ($show_options) { $topic_option = TOPIC_ALL_OPTION; // Default to all topics so things will work similar to how topics handled before Geeklog 2.0.0 } // Do they have any access to topics first? // Retrieve Topic options $from_db = true; if (empty($type) || empty($id)) { $from_db = false; } if (!$from_db) { // see if a selection control variable is_a set. If not then first time for display of control if (isset($_POST['topic_options_hide'])) { TOPIC_getDataTopicSelectionControl($topic_option, $tids, $inherit_tids, $default_tid); } else { // Figure out if we set current topic for first display or use default topic if ($topic_option == TOPIC_SELECTED_OPTION && empty($tids)) { if ($topic == '') { $tids = DB_getItem($_TABLES['topics'], 'tid', 'is_default = 1' . COM_getPermSQL('AND')); } else { $tids = $topic; } } } } else { $sql = "SELECT * FROM {$_TABLES['topic_assignments']} WHERE type = '{$type}' AND id ='{$id}'"; $result = DB_query($sql); $B = DB_fetchArray($result); $nrows = DB_numRows($result); if ($nrows > 0) { if ($B['tid'] == TOPIC_ALL_OPTION || $B['tid'] == TOPIC_HOMEONLY_OPTION) { $topic_option = $B['tid']; } else { $topic_option = TOPIC_SELECTED_OPTION; $tids = array(); $tids[] = $B['tid']; if ($B['inherit'] == 1) { $inherit_tids[] = $B['tid']; } if ($B['tdefault'] == 1) { $default_tid = $B['tid']; } for ($i = 1; $i < $nrows; $i++) { $B = DB_fetchArray($result); $tids[] = $B['tid']; if ($B['inherit'] == 1) { $inherit_tids[] = $B['tid']; } if ($B['tdefault'] == 1) { $default_tid = $B['tid']; } } } } else { // Shouldn't happen but prepare $show_inherit = false; $show_default = false; } } $retval = ''; $topic_info = $LANG27[40]; $topic_templates = COM_newTemplate($_CONF['path_layout'] . 'admin/common'); $topic_templates->set_file(array('editor' => 'edit_topics.thtml')); $_SCRIPTS->setJavaScriptLibrary('jquery'); $_SCRIPTS->setJavascriptFile('topic_control', '/javascript/topic_control.js'); $topiclist = TOPIC_getTopicListSelect($tids, false); if (!$show_options && $topiclist == '') { // If access to no topics return nothing return ''; } $topic_hide = false; // If false then topics multi select box will be visible $val_hide = 'display:none;'; if ($topiclist == '') { // Topics do not exist $topic_hide = true; $topic_templates->set_var('topic_option_hide', $val_hide); } else { $topic_templates->set_var('topic_options', $topiclist); } if ($show_options && $topic_option !== TOPIC_SELECTED_OPTION) { $topic_hide = true; } $inherit_hide = true; // If false then inhert topic selection will be visible $default_hide = true; // If false then default topic selection will be visible if (!$topic_hide) { $inherit_hide = $show_inherit ? false : true; $default_hide = $show_default ? false : true; } if ($show_options) { $topic_templates->set_var('topic_options_hide', '0'); $topic_info = $LANG27[41]; $val_checked = 'checked="checked"'; $all_checked = $topic_option == TOPIC_ALL_OPTION ? $val_checked : ''; $homeonly_checked = $topic_option == TOPIC_HOMEONLY_OPTION ? $val_checked : ''; $selectedtopics_checked = $topic_option == TOPIC_SELECTED_OPTION ? $val_checked : ''; // if no topics found cannot check so set default if ($topic_option == TOPIC_SELECTED_OPTION && $topiclist == '') { $all_checked = $val_checked; $selectedtopics_checked = ''; } $topic_templates->set_var('all_checked', $val_checked); $topic_templates->set_var('homeonly_checked', $homeonly_checked); $topic_templates->set_var('selectedtopics_checked', $selectedtopics_checked); } else { $topic_templates->set_var('options_hide', $val_hide); $topic_templates->set_var('topic_options_hide', '1'); } $opt_dummy = '<option value="dummy">dummy</option>'; $inherit_options = $opt_dummy; $topic_inherit_hide = '1'; if ($show_inherit) { $topic_inherit_hide = '0'; $topic_info .= $LANG27[42]; if (!empty($inherit_tids)) { if ($from_db) { $inherit_options = TOPIC_getOtherListSelect($type, $id, $inherit_tids); } else { $inherit_options = TOPIC_getOtherListSelect($type, $id, $inherit_tids, $tids); } } else { $inherit_hide = true; } } $default_options = $opt_dummy; $topic_default_hide = '1'; if ($show_default) { $topic_default_hide = '0'; $topic_info .= $LANG27[43]; if (!empty($default_tid)) { if ($from_db) { $default_options = TOPIC_getOtherListSelect($type, $id, $default_tid); } else { $default_options = TOPIC_getOtherListSelect($type, $id, $default_tid, $tids); } } else { $default_hide = true; } } $topic_templates->set_var('topic_inherit_hide', $topic_inherit_hide); $topic_templates->set_var('inherit_options', $inherit_options); $topic_templates->set_var('topic_default_hide', $topic_default_hide); $topic_templates->set_var('default_options', $default_options); $topic_templates->set_var('topic_hide', $topic_hide ? $val_hide : ''); $topic_templates->set_var('inherit_hide', $inherit_hide ? $val_hide : ''); $topic_templates->set_var('default_hide', $default_hide ? $val_hide : ''); $topic_templates->set_var('info_hide', ''); $topic_templates->set_var('topic_info', $topic_info); $topic_templates->set_var('lang_all', $LANG27[38]); $topic_templates->set_var('lang_homeonly', $LANG27[39]); $topic_templates->set_var('lang_selected', $LANG27[54]); $topic_templates->set_var('lang_assigned', $LANG27[55]); $topic_templates->set_var('lang_inherit', $LANG27[44]); $topic_templates->set_var('lang_default', $LANG27[45]); $topic_templates->parse('output', 'editor'); $retval .= $topic_templates->finish($topic_templates->get_var('output')); return $retval; }
/** * Submit static page. The page is updated if it exists, or a new one is created * * @param array args Contains all the data provided by the client * @param string &output OUTPUT parameter containing the returned text * @param string &svc_msg OUTPUT parameter containing any service messages * @return int Response code as defined in lib-plugins.php */ function service_submit_staticpages($args, &$output, &$svc_msg) { global $_CONF, $_TABLES, $_USER, $LANG_ACCESS, $LANG12, $LANG_STATIC, $_GROUPS, $_SP_CONF; if (!$_CONF['disable_webservices']) { require_once $_CONF['path_system'] . 'lib-webservices.php'; } $output = ''; if (!SEC_hasRights('staticpages.edit')) { $output .= COM_showMessageText($LANG_STATIC['access_denied_msg'], $LANG_STATIC['access_denied']); $output = COM_createHTMLDocument($output, array('pagetitle' => $LANG_STATIC['access_denied'])); return PLG_RET_AUTH_FAILED; } $gl_edit = false; if (isset($args['gl_edit'])) { $gl_edit = $args['gl_edit']; } if ($gl_edit) { // This is EDIT mode, so there should be an sp_old_id if (empty($args['sp_old_id'])) { if (!empty($args['id'])) { $args['sp_old_id'] = $args['id']; } else { return PLG_RET_ERROR; } if (empty($args['sp_id'])) { $args['sp_id'] = $args['sp_old_id']; } } } else { if (empty($args['sp_id']) && !empty($args['id'])) { $args['sp_id'] = $args['id']; } } if (empty($args['sp_title']) && !empty($args['title'])) { $args['sp_title'] = $args['title']; } if (empty($args['sp_content']) && !empty($args['content'])) { $args['sp_content'] = $args['content']; } if (!isset($args['owner_id'])) { $args['owner_id'] = $_USER['uid']; } if (empty($args['group_id'])) { $args['group_id'] = SEC_getFeatureGroup('staticpages.edit', $_USER['uid']); } $args['sp_id'] = COM_sanitizeID($args['sp_id']); if (!$gl_edit) { if (strlen($args['sp_id']) > STATICPAGE_MAX_ID_LENGTH) { $slug = ''; if (isset($args['slug'])) { $slug = $args['slug']; } if (function_exists('WS_makeId')) { $args['sp_id'] = WS_makeId($slug, STATICPAGE_MAX_ID_LENGTH); } else { $args['sp_id'] = COM_makeSid(); } } } // Apply filters to the parameters passed by the webservice if ($args['gl_svc']) { $par_str = array('mode', 'sp_id', 'sp_old_id', 'sp_format', 'postmode'); $par_num = array('sp_hits', 'owner_id', 'group_id', 'sp_where', 'sp_php', 'commentcode'); foreach ($par_str as $str) { if (isset($args[$str])) { $args[$str] = COM_applyBasicFilter($args[$str]); } else { $args[$str] = ''; } } foreach ($par_num as $num) { if (isset($args[$num])) { $args[$num] = COM_applyBasicFilter($args[$num], true); } else { $args[$num] = 0; } } } // START: Staticpages defaults if (empty($args['sp_format'])) { $args['sp_format'] = 'allblocks'; } if ($args['sp_where'] < 0 || $args['sp_where'] > 3) { $args['sp_where'] = 0; } if ($args['sp_php'] < 0 || $args['sp_php'] > 2) { $args['sp_php'] = 0; } if ($args['commentcode'] < -1 || $args['commentcode'] > 1) { $args['commentcode'] = $_CONF['comment_code']; } if ($args['gl_svc']) { // Permissions if (!isset($args['perm_owner'])) { $args['perm_owner'] = $_SP_CONF['default_permissions'][0]; } else { $args['perm_owner'] = COM_applyBasicFilter($args['perm_owner'], true); } if (!isset($args['perm_group'])) { $args['perm_group'] = $_SP_CONF['default_permissions'][1]; } else { $args['perm_group'] = COM_applyBasicFilter($args['perm_group'], true); } if (!isset($args['perm_members'])) { $args['perm_members'] = $_SP_CONF['default_permissions'][2]; } else { $args['perm_members'] = COM_applyBasicFilter($args['perm_members'], true); } if (!isset($args['perm_anon'])) { $args['perm_anon'] = $_SP_CONF['default_permissions'][3]; } else { $args['perm_anon'] = COM_applyBasicFilter($args['perm_anon'], true); } if (!isset($args['sp_onmenu'])) { $args['sp_onmenu'] = ''; } elseif ($args['sp_onmenu'] == 'on' && empty($args['sp_label'])) { $svc_msg['error_desc'] = 'Menu label missing'; return PLG_RET_ERROR; } if (empty($args['sp_content'])) { $svc_msg['error_desc'] = 'No content'; return PLG_RET_ERROR; } if (!TOPIC_checkTopicSelectionControl()) { $svc_msg['error_desc'] = 'No topic selected.'; return PLG_RET_ERROR; } if (!TOPIC_hasMultiTopicAccess('topic') < 3) { $svc_msg['error_desc'] = 'Do not have access to one or more of selected topics.'; return PLG_RET_ERROR; } if (empty($args['sp_inblock']) && $_SP_CONF['in_block'] == '1') { $args['sp_inblock'] = 'on'; } if (empty($args['sp_centerblock'])) { $args['sp_centerblock'] = ''; } if (empty($args['draft_flag']) && $_SP_CONF['draft_flag'] == '1') { $args['draft_flag'] = 'on'; } if (empty($args['cache_time'])) { $args['cache_time'] = $_SP_CONF['default_cache_time']; } if (empty($args['template_flag'])) { $args['template_flag'] = ''; } if (empty($args['template_id'])) { $args['template_id'] = ''; } } // END: Staticpages defaults $sp_id = $args['sp_id']; $sp_title = $args['sp_title']; $sp_page_title = $args['sp_page_title']; $sp_content = $args['sp_content']; $sp_hits = $args['sp_hits']; $sp_format = $args['sp_format']; $sp_onmenu = $args['sp_onmenu']; $sp_label = ''; if (!empty($args['sp_label'])) { $sp_label = $args['sp_label']; } else { // If empty but menu on then use title as default if ($sp_onmenu == 'on') { $sp_label = $sp_title; } } $meta_description = $args['meta_description']; $meta_keywords = $args['meta_keywords']; $commentcode = $args['commentcode']; $owner_id = $args['owner_id']; $group_id = $args['group_id']; $perm_owner = $args['perm_owner']; $perm_group = $args['perm_group']; $perm_members = $args['perm_members']; $perm_anon = $args['perm_anon']; $sp_php = $args['sp_php']; $sp_nf = ''; if (!empty($args['sp_nf'])) { $sp_nf = $args['sp_nf']; } $sp_old_id = $args['sp_old_id']; $sp_centerblock = $args['sp_centerblock']; $draft_flag = $args['draft_flag']; $cache_time = $args['cache_time']; $template_flag = $args['template_flag']; $template_id = $args['template_id']; $sp_help = ''; if (!empty($args['sp_help'])) { $sp_help = $args['sp_help']; } $sp_where = $args['sp_where']; $sp_inblock = $args['sp_inblock']; $postmode = $args['postmode']; if ($gl_edit && !empty($args['gl_etag'])) { // First load the original staticpage to check if it has been modified $o = array(); $s = array(); $r = service_get_staticpages(array('sp_id' => $sp_old_id, 'gl_svc' => true), $o, $s); if ($r == PLG_RET_OK) { if ($args['gl_etag'] != $o['updated']) { $svc_msg['error_desc'] = 'A more recent version of the staticpage is available'; return PLG_RET_PRECONDITION_FAILED; } } else { $svc_msg['error_desc'] = 'The requested staticpage no longer exists'; return PLG_RET_ERROR; } } // Check for unique page ID $duplicate_id = false; $delete_old_page = false; if (DB_count($_TABLES['staticpage'], 'sp_id', $sp_id) > 0) { if ($sp_id != $sp_old_id) { $duplicate_id = true; } } elseif (!empty($sp_old_id)) { if ($sp_id != $sp_old_id) { $delete_old_page = true; } } if ($duplicate_id) { $output .= COM_errorLog($LANG_STATIC['duplicate_id'], 2); if (!$args['gl_svc']) { $output .= staticpageeditor($sp_id); } $output = COM_createHTMLDocument($output, array('pagetitle' => $LANG_STATIC['staticpageeditor'])); $svc_msg['error_desc'] = 'Duplicate ID'; return PLG_RET_ERROR; } elseif (!empty($sp_title) && !empty($sp_content) && TOPIC_checkTopicSelectionControl() && TOPIC_hasMultiTopicAccess('topic') == 3) { if (empty($sp_hits)) { $sp_hits = 0; } if ($sp_onmenu == 'on') { $sp_onmenu = 1; } else { $sp_onmenu = 0; } if ($sp_nf == 'on') { $sp_nf = 1; } else { $sp_nf = 0; } if ($sp_centerblock == 'on') { $sp_centerblock = 1; } else { $sp_centerblock = 0; } if ($sp_inblock == 'on') { $sp_inblock = 1; } else { $sp_inblock = 0; } if ($draft_flag == 'on') { $draft_flag = 1; } else { $draft_flag = 0; } if ($template_flag == 'on') { $template_flag = 1; } else { $template_flag = 0; } // Remove any autotags the user doesn't have permission to use $sp_content = PLG_replaceTags($sp_content, '', true); // Clean up the text if ($_SP_CONF['censor'] == 1) { $sp_content = COM_checkWords($sp_content); $sp_title = COM_checkWords($sp_title); } if ($_SP_CONF['filter_html'] == 1) { $sp_content = COM_checkHTML($sp_content, 'staticpages.edit'); } $sp_title = strip_tags($sp_title); $sp_page_title = strip_tags($sp_page_title); $sp_label = strip_tags($sp_label); $meta_description = strip_tags($meta_description); $meta_keywords = strip_tags($meta_keywords); $sp_content = DB_escapeString($sp_content); $sp_title = DB_escapeString($sp_title); $sp_page_title = DB_escapeString($sp_page_title); $sp_label = DB_escapeString($sp_label); $meta_description = DB_escapeString($meta_description); $meta_keywords = DB_escapeString($meta_keywords); // If user does not have php edit perms, then set php flag to 0. if ($_SP_CONF['allow_php'] != 1 || !SEC_hasRights('staticpages.PHP')) { $sp_php = 0; } // If PHP page then no cache if ($sp_php == 0) { if ($cache_time < -1) { $cache_time = $_SP_CONF['default_cache_time']; } } else { $cache_time = $_SP_CONF['default_cache_time']; } // If marked as a template then set id to nothing and other default settings if ($template_flag == 1) { $template_id = ''; $sp_onmenu = 0; $sp_label = ""; $sp_centerblock = 0; $sp_php = 0; $cache_time = 0; $sp_inblock = 0; $sp_nf = 0; $sp_hits = 0; $meta_description = ""; $meta_keywords = ""; } else { // See if it was a template before, if so and option changed, remove use from other pages if (DB_getItem($_TABLES['staticpage'], 'template_flag', "sp_id = '{$sp_old_id}'") == 1) { $sql = "UPDATE {$_TABLES['staticpage']} SET template_id = '' WHERE template_id = '{$sp_old_id}'"; $result = DB_query($sql); } if ($template_id != '') { // If using a template, make sure php disabled $sp_php = 0; // Double check template id exists and is still a template $perms = SP_getPerms(); if (!empty($perms)) { $perms = ' AND ' . $perms; } if (DB_getItem($_TABLES['staticpage'], 'COUNT(sp_id)', "sp_id = '{$template_id}' AND template_flag = 1 AND (draft_flag = 0)" . $perms) == 0) { $template_id = ''; } } } // make sure there's only one "entire page" static page per topic if ($sp_centerblock == 1 && $sp_where == 0) { // Retrieve Topic data TOPIC_getDataTopicSelectionControl($topic_option, $tids, $inherit_tids, $default_tid); $sql = "UPDATE {$_TABLES['staticpage']},{$_TABLES['topic_assignments']} ta SET sp_centerblock = 0\n WHERE (sp_centerblock = 1) AND (sp_where = 0) AND (draft_flag = 0)\n AND ta.type = 'staticpages' AND ta.id = sp_id "; if ($topic_option == TOPIC_ALL_OPTION || $topic_option == TOPIC_HOMEONLY_OPTION) { $sql .= " AND (ta.tid = '{$topic_option}')"; } else { $sql .= " AND (ta.tid IN ('" . implode("','", $tids) . "'))"; } // if we're in a multi-language setup, we need to allow one "entire // page" centerblock for 'all' or 'none' per language if (!empty($_CONF['languages']) && !empty($_CONF['language_files']) && ($topic_option == TOPIC_ALL_OPTION || $topic_option == TOPIC_HOMEONLY_OPTION)) { $ids = explode('_', $sp_id); if (count($ids) > 1) { $lang_id = array_pop($ids); $sql .= " AND ta.tid LIKE '%\\_{$lang_id}'"; } } DB_query($sql); } $formats = array('allblocks', 'blankpage', 'leftblocks', 'noblocks'); if (!in_array($sp_format, $formats)) { $sp_format = 'allblocks'; } if (!$args['gl_svc']) { list($perm_owner, $perm_group, $perm_members, $perm_anon) = SEC_getPermissionValues($perm_owner, $perm_group, $perm_members, $perm_anon); } // Retrieve created date $datecreated = DB_getItem($_TABLES['staticpage'], 'created', "sp_id = '{$sp_id}'"); if ($datecreated == '') { $datecreated = date('Y-m-d H:i:s'); } DB_save($_TABLES['staticpage'], 'sp_id,sp_title,sp_page_title, sp_content,created,modified,sp_hits,sp_format,sp_onmenu,sp_label,commentcode,meta_description,meta_keywords,template_flag,template_id,draft_flag,cache_time,owner_id,group_id,' . 'perm_owner,perm_group,perm_members,perm_anon,sp_php,sp_nf,sp_centerblock,sp_help,sp_where,sp_inblock,postmode', "'{$sp_id}','{$sp_title}','{$sp_page_title}','{$sp_content}','{$datecreated}',NOW(),{$sp_hits},'{$sp_format}',{$sp_onmenu},'{$sp_label}','{$commentcode}','{$meta_description}','{$meta_keywords}',{$template_flag},'{$template_id}',{$draft_flag},{$cache_time},{$owner_id},{$group_id}," . "{$perm_owner},{$perm_group},{$perm_members},{$perm_anon},'{$sp_php}','{$sp_nf}',{$sp_centerblock},'{$sp_help}',{$sp_where}," . "'{$sp_inblock}','{$postmode}'"); TOPIC_saveTopicSelectionControl('staticpages', $sp_id); if ($delete_old_page && !empty($sp_old_id)) { // If a template and the id changed, update any staticpages that use it if ($template_flag == 1) { $sql = "UPDATE {$_TABLES['staticpage']} SET template_id = '{$sp_id}' WHERE template_id = '{$sp_old_id}'"; $result = DB_query($sql); } // Delete Topic Assignments for this old staticpage since we just created new ones TOPIC_deleteTopicAssignments('staticpages', $sp_old_id); DB_delete($_TABLES['staticpage'], 'sp_id', $sp_old_id); } if (empty($sp_old_id) || $sp_id == $sp_old_id) { if (!$template_flag) { PLG_itemSaved($sp_id, 'staticpages'); // Clear Cache $cacheInstance = 'staticpage__' . $sp_id . '__'; CACHE_remove_instance($cacheInstance); } else { // If template then have to notify of all pages that use this template that a change to the page happened $sql = "SELECT sp_id FROM {$_TABLES['staticpage']} WHERE template_id = '{$sp_id}'"; $result = DB_query($sql); while ($A = DB_fetchArray($result)) { PLG_itemSaved($A['sp_id'], 'staticpages'); // Clear Cache $cacheInstance = 'staticpage__' . $A['sp_id'] . '__'; CACHE_remove_instance($cacheInstance); } } } else { DB_change($_TABLES['comments'], 'sid', DB_escapeString($sp_id), array('sid', 'type'), array(DB_escapeString($sp_old_id), 'staticpages')); if (!$template_flag) { PLG_itemSaved($sp_id, 'staticpages', $sp_old_id); // Clear Cache $cacheInstance = 'staticpage__' . $sp_old_id . '__'; CACHE_remove_instance($cacheInstance); } else { // If template then have to notify of all pages that use this template that a change to the page happened $sql = "SELECT sp_id FROM {$_TABLES['staticpage']} WHERE template_id = '{$sp_id}'"; $result = DB_query($sql); while ($A = DB_fetchArray($result)) { PLG_itemSaved($A['sp_id'], 'staticpages'); // Clear Cache $cacheInstance = 'staticpage__' . $A['sp_id'] . '__'; CACHE_remove_instance($cacheInstance); } } } $url = COM_buildURL($_CONF['site_url'] . '/staticpages/index.php?page=' . $sp_id); $output .= PLG_afterSaveSwitch($_SP_CONF['aftersave'], $url, 'staticpages', 19); $svc_msg['id'] = $sp_id; return PLG_RET_OK; } else { $output .= COM_errorLog($LANG_STATIC['no_title_or_content'], 2); if (!$args['gl_svc']) { $output .= staticpageeditor($sp_id); } $output = COM_createHTMLDocument($output, array('pagetitle' => $LANG_STATIC['staticpageeditor'])); return PLG_RET_ERROR; } }