<?php
if (isset($_REQUEST["subdomaindefault"]) && $_REQUEST["subdomaindefault"] == "Ok") {
checkLoginPassAndDomain($adm_login, $adm_pass, $edit_domain);
if (!checkSubdomainFormat($_REQUEST["subdomaindefault_name"])) {
$submit_err .= _("Incorrect sub-domain format.");
$commit_flag = "no";
}
if ($commit_flag == "yes") {
if ($_REQUEST["wildcard_dns"] == "yes") {
$wild = ",wildcard_dns='yes'";
} else {
$wild = ",wildcard_dns='no'";
}
if ($_REQUEST["default_sub_server_alias"] == "yes") {
$srvalias = ",default_sub_server_alias='yes'";
} else {
$srvalias = ",default_sub_server_alias='no'";
}
$adm_query = "UPDATE {$pro_mysql_domain_table} SET default_subdomain='" . $_REQUEST["subdomaindefault_name"] . "'" . $wild . $srvalias . " WHERE name='{$edit_domain}' LIMIT 1;";
mysql_query($adm_query) or die("Cannot execute query \"{$adm_query}\"");
updateUsingCron("gen_vhosts='yes',restart_apache='yes',gen_named='yes',reload_named='yes'");
}
}
function drawAdminTools_PackageInstaller($domain, $adm_path)
{
global $adm_login;
global $adm_pass;
global $edit_domain;
global $addrlink;
global $dtcshared_path;
global $pro_mysql_subdomain_table;
global $conf_mysql_db;
global $conf_user_mysql_type;
global $conf_user_mysql_host;
global $conf_user_mysql_root_login;
global $conf_user_mysql_root_pass;
global $package_installer_console;
global $dtcpkg_db_login;
global $pkg_info;
$txt = "";
$dir = $dtcshared_path . "/package-installer";
if (isset($_REQUEST["action"]) && ($_REQUEST["action"] == "do_install" || $_REQUEST["action"] == "prepareinstall")) {
$pkg_path = $dir . "/" . $_REQUEST["pkg"];
$dtc_pkg_info = $pkg_path . "/dtc-pkg-info.php";
if (!file_exists($dtc_pkg_info)) {
die("Package {$dtc_pkg_info} not found line " . __LINE__ . " file " . __FILE__);
}
include $dtc_pkg_info;
}
if (isset($_REQUEST["action"]) && $_REQUEST["action"] == "do_install") {
$pkg_path = $dir . "/" . $_REQUEST["pkg"];
$dtc_pkg_install = $pkg_path . "/dtc-pkg-install.php";
if (file_exists($dtc_pkg_install)) {
include $dtc_pkg_install;
}
// Check if user has enough rights
checkLoginPassAndDomain($adm_login, $adm_pass, $edit_domain);
checkSubdomainFormat($_REQUEST["subdomain"]);
$admin_path = getAdminPath($adm_login);
$target = "{$admin_path}/{$edit_domain}/subdomains/" . $_REQUEST["subdomain"] . "/html";
if (!is_dir($target)) {
die("Destination directory does not exists line " . __LINE__ . " file " . __FILE__);
}
// Unpack the distribution package in target folder
if ($pkg_info["unpack_type"] == "tar.gz") {
$cmd = "tar -C {$target} -xvzf {$pkg_path}/" . $pkg_info["file"];
$x = "=> tar -C {$target} -xvzf {$pkg_path}/" . $pkg_info["file"] . "\n";
exec($cmd, $exec_out, $return_val);
} else {
if ($pkg_info["unpack_type"] == "tar.bz2") {
$cmd = "tar -C {$target} -xvjf {$pkg_path}/" . $pkg_info["file"];
$x = "=> tar -xvjf " . $pkg_info["file"] . "\n";
exec($cmd, $exec_out, $return_val);
} else {
die("Package methode not supported yet");
}
}
// Rename folder to the destination folder name (eg remove version out of package.X.X.X folder name if exists)
if (isset($pkg_info["renamedir_to"]) && isset($pkg_info["resulting_dir"]) && $pkg_info["resulting_dir"] != $pkg_info["renamedir_to"]) {
$cmd = "mv {$target}/" . $pkg_info["resulting_dir"] . " {$target}/" . $pkg_info["renamedir_to"];
$x .= "=> Moving " . $pkg_info["resulting_dir"] . " to " . $pkg_info["renamedir_to"] . "<br>";
exec($cmd, $exec_out, $return_val);
}
// https://dtc.gpl-host.com/dtc/index.php?adm_login=zigo&adm_pass=toto&addrlink=gpl-host.com/package-installer&action=prepareinstall&pkg=phpbb
// Move the folder to the requested name dtcpkg_directory=bla
if ($pkg_info["can_select_directory"] == "yes") {
if ($_REQUEST["dtcpkg_directory"] == "") {
$cmd = "mv {$target}/" . $pkg_info["renamedir_to"] . "/* {$target}/";
$x .= "=> Moving " . $pkg_info["renamedir_to"] . " to folder /<br>";
exec($cmd, $exec_out, $return_val);
$realtarget = "{$target}";
} else {
$cmd = "mv {$target}/" . $pkg_info["renamedir_to"] . " {$target}/" . $_REQUEST["dtcpkg_directory"];
$x .= "=> Moving " . $pkg_info["renamedir_to"] . " to " . $_REQUEST["dtcpkg_directory"] . "<br>";
exec($cmd, $exec_out, $return_val);
$realtarget = "{$target}/" . $_REQUEST["dtcpkg_directory"];
}
}
if ($conf_user_mysql_type == "distant") {
$newid = mysql_connect($conf_user_mysql_host, $conf_user_mysql_root_login, $conf_user_mysql_root_pass) or die("Cannot connect to user host");
}
// Get the database infos beffore calling the custom package installer
$q = "SELECT DISTINCT db.Db,db.User FROM mysql.user,mysql.db WHERE user.dtcowner='{$adm_login}' AND db.User=user.User AND db.Db='" . $_REQUEST["database_name"] . "';";
$r = mysql_query($q) or die("Cannot query {$q} line " . __LINE__ . " file " . __FILE__ . " sql said: " . mysql_error());
$n = mysql_num_rows($r);
if ($n != 1) {
die("Cannot find database line " . __LINE__ . " file " . __FILE__);
}
$a = mysql_fetch_array($r);
$dtcpkg_db_login = $a["User"];
if ($conf_user_mysql_type == "distant") {
mysql_close($newid) or die("Cannot disconnect to user database");
connect2base();
}
// Call the package specific installer php script
$install_ret = do_package_install();
// reselect the current dtc db in case another have been set
mysql_select_db($conf_mysql_db);
if ($install_ret == 0) {
$package_installer_console .= "Install successful !<br>";
}
$nbr_remove = sizeof($pkg_info["remove_folder_path"]);
if ($nbr_remove > 0) {
// print_r($pkg_info["remove_folder_path"]);
$nbr_remove = sizeof($pkg_info["remove_folder_path"]);
$package_installer_console .= "Removing install folders...<br>";
for ($i = 0; $i < $nbr_remove; $i++) {
$cmd = "rm -r {$realtarget}/" . $pkg_info["remove_folder_path"][$i];
// $package_installer_console .= $cmd."<br>";
exec($cmd, $exec_out, $return_val);
}
}
// Print the results
$txt .= "<h3>Installation of " . $pkg_info["name"] . ":</h3><br><pre>" . $x . $package_installer_console . "</pre>";
return $txt;
}
if (isset($_REQUEST["action"]) && $_REQUEST["action"] == "prepareinstall") {
$txt = "<h3>You are about to install " . $pkg_info["name"] . ":</h3><br>\n\t\t<u>Description:</u> " . $pkg_info["long_desc"] . "<br>\n\t\t<u>Version:</u> " . $pkg_info["version"] . "<br><br>";
$txt .= "<form action=\"" . $_SERVER["PHP_SELF"] . "\">\n\t\t<input type=\"hidden\" name=\"adm_login\" value=\"{$adm_login}\">\n\t\t<input type=\"hidden\" name=\"adm_pass\" value=\"{$adm_pass}\">\n\t\t<input type=\"hidden\" name=\"addrlink\" value=\"{$addrlink}\">";
if ($pkg_info["need_database"] == "yes") {
$txt .= "<h3>Choose a database name for setup:</h3><br>";
if ($conf_user_mysql_type == "distant") {
$newid = mysql_connect($conf_user_mysql_host, $conf_user_mysql_root_login, $conf_user_mysql_root_pass) or die("Cannot connect to user SQL host");
}
mysql_select_db("mysql") or die("Cannot select db: mysql");
$q = "SELECT db.Db,db.User FROM user,db\n\t\t\tWHERE user.dtcowner='{$adm_login}'\n\t\t\tAND db.User=user.User";
$r = mysql_query($q) or die("Cannot query {$q} line " . __LINE__ . " file " . __FILE__ . " sql said: " . mysql_error());
$n = mysql_num_rows($r);
if ($n < 1) {
$txt .= "You don't have any database yet. Please create one using the database tool\n\t\t\t\t(click database in the menu, then create a user and a database for this user).";
if ($conf_user_mysql_type == "distant") {
mysql_close($newid) or die("Cannot disconnect to user database");
connect2base();
}
mysql_select_db($conf_mysql_db);
return $txt;
}
$txt .= "Database name: <select name=\"database_name\">";
for ($i = 0; $i < $n; $i++) {
$a = mysql_fetch_array($r);
$txt .= "<option value=\"" . $a["Db"] . "\">" . $a["Db"] . " (login: "******"User"] . ")" . "</option>";
}
$txt .= "</select><br>\n\t\t\t\tDatabase password: <input type=\"password\" name=\"dtcpkg_db_pass\" value=\"\"><br><br>";
if ($conf_user_mysql_type == "distant") {
mysql_close($newid) or die("Cannot disconnect to user database");
connect2base();
}
mysql_select_db($conf_mysql_db) or die("Cannot select db: {$conf_mysql_db} line " . __LINE__ . " file " . __FILE__);
}
if ($pkg_info["need_admin_email"] == "yes") {
$txt .= "<h3>Enter email for the admin of this package:</h3><br>";
$txt .= "Email: <input type=\"text\" name=\"dtcpkg_email\" value=\"\"><br><br>";
}
if ($pkg_info["need_admin_login"] == "yes") {
$txt .= "<h3>Enter login informations for the admin of this package:</h3><br>";
$txt .= "Login: <input type=\"text\" name=\"dtcpkg_login\" value=\"\"><br>";
if ($pkg_info["need_admin_pass"] == "yes") {
$txt .= "Pass: <input type=\"text\" name=\"dtcpkg_pass\" value=\"\"><br>";
}
$txt .= "<br>";
}
$txt .= "<h3>Choose the subdomain and install :</h3><br>";
$txt .= "<input type=\"hidden\" name=\"action\" value=\"do_install\">\n\t\t<input type=\"hidden\" name=\"pkg\" value=\"" . $_REQUEST["pkg"] . "\">\n\t\tSubdomain: <select name=\"subdomain\">";
// echo "<pre>";
// print_r($domain);
// echo "</pre>";
$n = sizeof($domain["subdomains"]);
for ($i = 0; $i < $n; $i++) {
$txt .= "<option value=\"" . $domain["subdomains"][$i]["name"] . "\">" . $domain["subdomains"][$i]["name"] . "</option>";
}
$txt .= "</select><br><br>";
if ($pkg_info["can_select_directory"] == "yes") {
$txt .= "<h3>Enter the directory where you want to install this package:</h3><br>";
$txt .= "Directory (blank for /): <input type=\"text\" name=\"dtcpkg_directory\" value=\"\"><br><br>";
}
$txt .= "<input type=\"submit\" value=\"Install\">";
$txt .= "</form>";
return $txt;
}
$txt = "<h3>" . _("Choose a package to install") . ":</h3>";
$txt .= "<table cellspacing=\"0\" cellpadding=\"4\" border=\"1\">";
$txt .= "<tr><td>" . _("Package name") . "</td><td>" . _("Description") . "</td><td>" . _("Package version") . "</td><td>" . _("Need a database") . "</td><td>" . _("Unpack size") . "</td><td>" . _("Install") . "</td></tr>";
$packages = array();
if (is_dir($dir) && ($dh = opendir($dir))) {
while (($file = readdir($dh)) !== false) {
if (is_dir($dir . "/" . $file) && $file != "." && $file != "..") {
$packages[] = $file;
}
}
closedir($dh);
}
sort($packages);
foreach ($packages as $package) {
if (file_exists($dir . "/" . $package . "/dtc-pkg-info.php")) {
include $dir . "/" . $package . "/dtc-pkg-info.php";
$txt .= "<tr><td>" . $pkg_info["name"] . "</td>\n\t\t\t\t<td>" . $pkg_info["short_desc"] . "</td>\n\t\t\t\t<td>" . $pkg_info["version"] . "</td>\n\t\t\t\t<td>" . $pkg_info["need_database"] . "</td>\n\t\t\t\t<td style=\"white-space:nowrap;text-align=right\" nowrap>" . smartByte($pkg_info["unpack_disk_usage"]) . "</td>\n\t\t\t\t<td><a href=\"" . $_SERVER["PHP_SELF"] . "?adm_login={$adm_login}&adm_pass={$adm_pass}&addrlink={$addrlink}&action=prepareinstall&pkg={$package}\">" . _("Install") . "</a></td></tr>";
}
}
$txt .= "</table>";
return $txt;
}
<?php
$panel_type = "none";
require_once "../shared/autoSQLconfig.php";
require_once "{$dtcshared_path}/dtc_lib.php";
if (!isHostnameOrIP($_REQUEST["vps_server_hostname"])) {
die("VPS node name has wrong format: dying.");
}
if (isset($_REQUEST["vps_name"])) {
if (!checkSubdomainFormat($_REQUEST["vps_name"])) {
die("VPS name has wrong format: dying.");
}
}
if ($_SERVER["SCRIPT_NAME"] != "/dtc/vm-io-all.php") {
require_once "authme.php";
} else {
checkLoginPass($adm_login, $adm_pass);
$q = "SELECT * FROM {$pro_mysql_vps_table} WHERE owner='{$adm_login}' AND vps_server_hostname='" . $_REQUEST["vps_server_hostname"] . "' AND vps_xen_name='" . $_REQUEST["vps_name"] . "'";
$r = mysql_query($q) or die;
$n = mysql_num_rows($r);
if ($n != 1) {
die(_("Access not granted line ") . __LINE__ . _(" file ") . __FILE__);
}
}
// Date in the past
header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
// always modified
header("Last-Modified: " . gmdate("D, d M Y H:i:s") . " GMT");
// HTTP/1.1
header("Cache-Control: no-store, no-cache, must-revalidate");
header("Cache-Control: post-check=0, pre-check=0", false);
function dtcListItemsEdit($dsc)
{
global $adm_pass;
$out = "<h3>" . $dsc["title"] . "</u></b></h3>";
// Calculate the forwards parameters for links and forms
$nbr_forwards = sizeof($dsc["forward"]);
$keys_fw = array_keys($dsc["forward"]);
$fw = "";
$fw_link = $_SERVER["PHP_SELF"] . "?";
for ($i = 0; $i < $nbr_forwards; $i++) {
if ($dsc["forward"][$i] == "adm_pass") {
$fw .= "<input type=\"hidden\" name=\"" . $dsc["forward"][$i] . "\" value=\"" . $adm_pass . "\">";
} else {
$fw .= "<input type=\"hidden\" name=\"" . $dsc["forward"][$i] . "\" value=\"" . $_REQUEST[$dsc["forward"][$i]] . "\">";
}
if ($i != 0) {
$fw_link .= "&";
}
if ($dsc["forward"][$i] == "adm_pass") {
$fw_link .= $dsc["forward"][$i] . "={$adm_pass}";
} else {
$fw_link .= $dsc["forward"][$i] . "=" . $_REQUEST[$dsc["forward"][$i]];
}
}
// Condition to add to each queries
$where = "WHERE 1";
if (isset($dsc["order_by"])) {
$order_by = " ORDER BY " . $dsc["order_by"];
} else {
$order_by = "";
}
$added_insert_names = "";
$added_insert_values = "";
if (isset($dsc["where_list"])) {
$nbr_where = sizeof($dsc["where_list"]);
$where_keys = array_keys($dsc["where_list"]);
for ($i = 0; $i < $nbr_where; $i++) {
if ($i != 0) {
$added_insert_names .= ",";
$added_insert_values .= ",";
}
$added_insert_names .= $where_keys[$i];
$added_insert_values .= "'" . $dsc["where_list"][$where_keys[$i]] . "'";
$where .= " AND " . $where_keys[$i] . "='" . $dsc["where_list"][$where_keys[$i]] . "'";
}
// As there will be other fields, we need that one
$added_insert_names .= ",";
$added_insert_values .= ",";
}
// Number of fields that we are about to manage here and theire names
$nbr_fld = sizeof($dsc["cols"]);
$keys = array_keys($dsc["cols"]);
// We need the current number of items now to check against the max number for addition
$q = "SELECT " . $dsc["id_fld"] . "," . $dsc["list_fld_show"] . " FROM " . $dsc["table_name"] . " {$where};";
$r_item_list = mysql_query($q) or die("Cannot query {$q} in " . __FILE__ . " line " . __LINE__ . " sql said: " . mysql_error());
$current_num_items = mysql_num_rows($r_item_list);
// SQL submit stuffs
if (isset($_REQUEST["action"]) && $_REQUEST["action"] == $dsc["action"] . "_new_item") {
// Todo: do the fields checkings
$commit_flag = "yes";
$commit_err = "";
for ($i = 0; $i < $nbr_fld; $i++) {
switch ($dsc["cols"][$keys[$i]]["type"]) {
case "popup":
case "radio":
$nbr_choices = sizeof($dsc["cols"][$keys[$i]]["values"]);
$is_one_of_them = "no";
for ($j = 0; $j < $nbr_choices; $j++) {
if ($dsc["cols"][$keys[$i]]["values"][$j] == $_REQUEST[$keys[$i]]) {
$is_one_of_them = "yes";
}
}
if ($is_one_of_them == "no") {
$commit_flag = "no";
$commit_err = "the variable " . $keys[$i] . " is not one of the allowed values<br>";
}
break;
default:
break;
}
if (isset($dsc["cols"][$keys[$i]]["check"])) {
switch ($dsc["cols"][$keys[$i]]["check"]) {
case "subdomain":
if (!checkSubdomainFormat($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a subdomain<br>";
}
}
break;
case "subdomain_or_ip":
if (!checkSubdomainFormat($_REQUEST[$keys[$i]]) && !isIP($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a subdomain or IP addresse<br>";
}
}
break;
case "ip6":
if (!isIP6($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
if (!isset($dsc["cols"][$keys[$i]]["empty_makes_default"]) || $dsc["cols"][$keys[$i]]["empty_makes_default"] != "yes" || $_REQUEST[$keys[$i]] != "default") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not an IPv6 address<br>";
}
}
}
break;
case "ip_addr":
if (!isIP($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not an IP address<br>";
}
}
break;
case "domain_or_ip":
if (!isIP($_REQUEST[$keys[$i]]) && !isHostname($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a domain or IP addresse<br>";
}
}
break;
case "dtc_login":
if (!isFtpLogin($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a correct login format.<br>";
}
}
break;
case "dtc_login_or_email":
if (!isFtpLogin($_REQUEST[$keys[$i]]) && !isValidEmail($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a correct login format.<br>";
}
}
break;
case "mail_alias_group":
$mail_alias_group_raw = trim($_REQUEST[$keys[$i]], "\r\n");
$mail_alias_nocr = str_replace("\r", "", $mail_alias_group_raw);
$mail_alias_array = split("\n", $mail_alias_nocr);
for ($x = 0; $x < count($mail_alias_array); $x++) {
if (!isValidEmail($mail_alias_array[$x])) {
$commit_flag = "no";
$commit_err .= $mail_alias_array[$x] . ": not a valid email format.<br>";
}
}
break;
case "dtc_pass":
if (!isDTCPassword($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a correct password format<br>";
}
}
break;
case "email":
if (!isValidEmail($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a correct email format<br>";
}
}
break;
case "number":
if (!isRandomNum($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a correct number format<br>";
}
}
break;
case "max_value_2096":
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
if (!isRandomNum($_REQUEST[$keys[$i]])) {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a correct number format<br>";
}
if ($_REQUEST[$keys[$i]] >= 2096) {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": is greater or equal than the max value 2096<br>";
}
}
break;
default:
$commit_flag = "no";
$commit_err .= $keys[$i] . ": unknown field checking type (" . $dsc["cols"][$keys[$i]]["check"] . ").<br>";
break;
}
}
}
if (isset($dsc["max_item"]) && $current_num_items >= $dsc["max_item"]) {
$commit_flag = "no";
$commit_err = "Max number of items reached!";
}
if (isset($dsc["check_unique"])) {
$nbr_unique_check = sizeof($dsc["check_unique"]);
$where_clause = "";
for ($i = 0; $i < $nbr_unique_check; $i++) {
if ($i != 0) {
$where_clause .= " AND ";
}
if (isset($dsc["cols"][$dsc["check_unique"][$i]]["happen_domain"])) {
$where_clause .= $dsc["check_unique"][$i] . "='" . $_REQUEST[$dsc["check_unique"][$i]] . $dsc["cols"][$dsc["check_unique"][$i]]["happen_domain"] . "' ";
} else {
$where_clause .= $dsc["check_unique"][$i] . "='" . $_REQUEST[$dsc["check_unique"][$i]] . "' ";
}
}
if (!isset($dsc["check_unique_use_where_list"]) || $dsc["check_unique_use_where_list"] == "yes") {
$nbr_where_list_fld = sizeof($dsc["where_list"]);
$where_list_keys_fld = array_keys($dsc["where_list"]);
for ($i = 0; $i < $nbr_where_list_fld; $i++) {
$where_clause .= " AND " . $where_list_keys_fld[$i] . "='" . $dsc["where_list"][$where_list_keys_fld[$i]] . "'";
}
}
$q = "SELECT * FROM " . $dsc["table_name"] . " WHERE {$where_clause} ";
$r = mysql_query($q) or die("Cannot query \"{$q}\" line " . __LINE__ . " file " . __FILE__ . " sql said: " . mysql_error());
$n = mysql_num_rows($r);
if ($n > 0) {
$commit_flag = "no";
$commit_err = $dsc["check_unique_msg"];
}
}
// Build the request
$fld_names = "";
$values = "";
$added_one = "no";
for ($i = 0; $i < $nbr_fld; $i++) {
switch ($dsc["cols"][$keys[$i]]["type"]) {
case "password":
if ($added_one == "yes") {
$fld_names .= ",";
$values .= ",";
}
$fld_names .= $keys[$i];
if (isset($dsc["cols"][$keys[$i]]["empty_makes_sql_null"]) && $dsc["cols"][$keys[$i]]["empty_makes_sql_null"] == "yes" && $_REQUEST[$keys[$i]] == "") {
$values .= "NULL";
} else {
if (isset($dsc["cols"][$keys[$i]]["empty_makes_default"]) && $dsc["cols"][$keys[$i]]["empty_makes_default"] == "yes" && $_REQUEST[$keys[$i]] == "") {
$values .= "'default'";
} else {
if (isset($dsc["cols"][$keys[$i]]["happen_domain"])) {
$values .= "'" . addslashes($_REQUEST[$keys[$i]]) . $dsc["cols"][$keys[$i]]["happen_domain"] . "'";
} else {
$values .= "'" . addslashes($_REQUEST[$keys[$i]]) . "'";
}
// if the crypt field is set, then we use this as the SQL field to populate the crypted password into
if (isset($dsc["cols"][$keys[$i]]["cryptfield"])) {
if ($added_one == "yes") {
$fld_names .= ",";
$values .= ",";
}
$fld_names .= $dsc["cols"][$keys[$i]]["cryptfield"];
$values .= "'" . crypt($_REQUEST[$keys[$i]], dtc_makesalt()) . "'";
}
}
}
$added_one = "yes";
break;
case "text":
case "textarea":
if ($added_one == "yes") {
$fld_names .= ",";
$values .= ",";
}
$fld_names .= $keys[$i];
if (isset($dsc["cols"][$keys[$i]]["empty_makes_sql_null"]) && $dsc["cols"][$keys[$i]]["empty_makes_sql_null"] == "yes" && $_REQUEST[$keys[$i]] == "") {
$values .= "NULL";
} else {
if (isset($dsc["cols"][$keys[$i]]["empty_makes_default"]) && $dsc["cols"][$keys[$i]]["empty_makes_default"] == "yes" && $_REQUEST[$keys[$i]] == "") {
$values .= "'default'";
} else {
if (isset($dsc["cols"][$keys[$i]]["happen_domain"])) {
$values .= "'" . addslashes($_REQUEST[$keys[$i]]) . $dsc["cols"][$keys[$i]]["happen_domain"] . "'";
} else {
$values .= "'" . addslashes($_REQUEST[$keys[$i]]) . "'";
}
}
}
$added_one = "yes";
break;
case "checkbox":
if ($added_one == "yes") {
$fld_names .= ",";
$values .= ",";
}
$added_one = "yes";
$fld_names .= $keys[$i];
if (isset($_REQUEST[$keys[$i]])) {
$values .= "'" . $dsc["cols"][$keys[$i]]["values"][0] . "'";
} else {
$values .= "'" . $dsc["cols"][$keys[$i]]["values"][1] . "'";
}
break;
case "popup":
case "radio":
if ($added_one == "yes") {
$fld_names .= ",";
$values .= ",";
}
$fld_names .= $keys[$i];
$values .= "'" . addslashes($_REQUEST[$keys[$i]]) . "'";
$added_one = "yes";
break;
}
}
if ($commit_flag == "yes") {
$q = "INSERT INTO " . $dsc["table_name"] . " ({$added_insert_names} {$fld_names}) VALUES ({$added_insert_values} {$values});";
$success = "yes";
$r = mysql_query($q) or $success = "no";
if ($success == "yes") {
$insert_id = mysql_insert_id();
if (isset($dsc["create_item_callback"])) {
$out .= $dsc["create_item_callback"]($insert_id);
}
} else {
$out .= "<font color=\"red\">Cannot query {$q} in " . __FILE__ . " line " . __LINE__ . " sql said: " . mysql_error() . "</font>";
}
} else {
$out .= "<font color=\"red\">Could not commit the changes because of an error in field format: <br>{$commit_err}</font><br>";
}
} else {
if (isset($_REQUEST["action"]) && $_REQUEST["action"] == $dsc["action"] . "_save_item") {
// Todo: do the fields checkings
$commit_flag = "yes";
$commit_err = "";
for ($i = 0; $i < $nbr_fld; $i++) {
switch ($dsc["cols"][$keys[$i]]["type"]) {
case "checkbox":
break;
case "popup":
case "radio":
case "checkbox":
$nbr_choices = sizeof($dsc["cols"][$keys[$i]]["values"]);
$is_one_of_them = "no";
for ($j = 0; $j < $nbr_choices; $j++) {
if ($dsc["cols"][$keys[$i]]["values"][$j] == $_REQUEST[$keys[$i]]) {
$is_one_of_them = "yes";
}
}
if ($is_one_of_them == "no") {
$commit_flag = "no";
$commit_err = "the variable " . $keys[$i] . " is not one of the allowed values<br>";
}
break;
default:
break;
}
if (isset($dsc["cols"][$keys[$i]]["check"]) && (!isset($dsc["cols"][$keys[$i]]["disable_edit"]) || $dsc["cols"][$keys[$i]]["disable_edit"] != "yes")) {
switch ($dsc["cols"][$keys[$i]]["check"]) {
case "subdomain":
if (!checkSubdomainFormat($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a subdomain<br>";
}
}
break;
case "subdomain_or_ip":
if (!checkSubdomainFormat($_REQUEST[$keys[$i]]) && !isIP($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a subdomain or IP addresse<br>";
}
}
break;
case "ip6":
if (!isIP6($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
if (!isset($dsc["cols"][$keys[$i]]["empty_makes_default"]) || $dsc["cols"][$keys[$i]]["empty_makes_default"] != "yes" || $_REQUEST[$keys[$i]] != "default") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not an IPv6 address<br>";
}
}
}
break;
case "ip_addr":
if (!isIP($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not an IP address<br>";
}
}
break;
case "domain_or_ip":
if (!isIP($_REQUEST[$keys[$i]]) && !isHostname($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a domain or IP addresse<br>";
}
}
break;
case "dtc_login":
if (!isFtpLogin($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a correct login format.<br>";
}
}
break;
case "dtc_login_or_email":
if (!isFtpLogin($_REQUEST[$keys[$i]]) && !isValidEmail($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a correct login format.<br>";
}
}
break;
case "mail_alias_group":
$mail_alias_group_raw = trim($_REQUEST[$keys[$i]], "\r\n");
$mail_alias_nocr = str_replace("\r", "", $mail_alias_group_raw);
$mail_alias_array = split("\n", $mail_alias_nocr);
for ($x = 0; $x < count($mail_alias_array); $x++) {
if (!isValidEmail($mail_alias_array[$x])) {
$commit_flag = "no";
$commit_err .= $mail_alias_array[$x] . ": not a valid email format.<br>";
}
}
break;
case "dtc_pass":
if (!isDTCPassword($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a correct password format<br>";
}
}
break;
case "email":
if (!isValidEmail($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a correct email format<br>";
}
}
break;
case "number":
if (!isRandomNum($_REQUEST[$keys[$i]])) {
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a correct number format<br>";
}
}
break;
case "max_value_2096":
if (!isset($dsc["cols"][$keys[$i]]["can_be_empty"]) || $dsc["cols"][$keys[$i]]["can_be_empty"] != "yes" || $_REQUEST[$keys[$i]] != "") {
if (!isRandomNum($_REQUEST[$keys[$i]])) {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": not a correct number format<br>";
}
if ($_REQUEST[$keys[$i]] >= 2096) {
$commit_flag = "no";
$commit_err .= $keys[$i] . ": is greater or equal than the max value 2096<br>";
}
}
break;
default:
$commit_flag = "no";
$commit_err .= $keys[$i] . ": unknown field checking type (" . $dsc["cols"][$keys[$i]]["check"] . ").<br>";
break;
}
}
}
// Build the request
$added_one = "no";
$reqs = "";
for ($i = 0; $i < $nbr_fld; $i++) {
switch ($dsc["cols"][$keys[$i]]["type"]) {
case "id":
$id_fldname = $keys[$i];
$id_fld_value = addslashes($_REQUEST[$keys[$i]]);
break;
case "readonly":
break;
case "text":
case "textarea":
case "password":
if (!isset($dsc["cols"][$keys[$i]]["disable_edit"]) || $dsc["cols"][$keys[$i]]["disable_edit"] != "yes") {
if ($added_one == "yes") {
$reqs .= ",";
}
if (isset($dsc["cols"][$keys[$i]]["happen_domain"])) {
$happen = $dsc["cols"][$keys[$i]]["happen_domain"];
} else {
$happen = "";
}
if (isset($dsc["cols"][$keys[$i]]["empty_makes_sql_null"]) && $dsc["cols"][$keys[$i]]["empty_makes_sql_null"] == "yes" && $_REQUEST[$keys[$i]] == "") {
$reqs .= $keys[$i] . "=NULL";
} else {
if (isset($dsc["cols"][$keys[$i]]["empty_makes_default"]) && $dsc["cols"][$keys[$i]]["empty_makes_default"] == "yes" && $_REQUEST[$keys[$i]] == "") {
$reqs .= $keys[$i] . "='default'";
} else {
$reqs .= $keys[$i] . "='" . addslashes($_REQUEST[$keys[$i]]) . $happen . "'";
// if the crypt field is set, then we use this as the SQL field to populate the crypted password into
if (isset($dsc["cols"][$keys[$i]]["cryptfield"])) {
if ($added_one == "yes") {
$reqs .= ", ";
}
$reqs .= " " . $dsc["cols"][$keys[$i]]["cryptfield"] . "='" . crypt($_REQUEST[$keys[$i]], dtc_makesalt()) . "' ";
}
}
}
$added_one = "yes";
}
break;
case "popup":
case "radio":
if ($added_one == "yes") {
$reqs .= ",";
}
$reqs .= $keys[$i] . "='" . addslashes($_REQUEST[$keys[$i]]) . "'";
$added_one = "yes";
break;
case "checkbox":
if ($added_one == "yes") {
$reqs .= ",";
}
if (isset($_REQUEST[$keys[$i]])) {
$reqs .= $keys[$i] . "='" . $dsc["cols"][$keys[$i]]["values"][0] . "'";
} else {
$reqs .= $keys[$i] . "='" . $dsc["cols"][$keys[$i]]["values"][1] . "'";
}
break;
default:
die($dsc["cols"][$keys[$i]]["type"] . ": Not implemented yet line " . __LINE__ . " file " . __FILE__);
break;
}
}
if ($commit_flag != "yes") {
$out .= "<font color=\"red\">Could not commit the changes because of an error in field format: [todo: error desc]<br>{$commit_err}</font>";
} else {
if (!isset($id_fldname) || !isset($id_fld_value)) {
$out .= "<font color=\"red\">Could not commit the changes because the id is not set!</font>";
} else {
$q = "UPDATE " . $dsc["table_name"] . " SET {$reqs} {$where} AND {$id_fldname}='{$id_fld_value}';";
$r = mysql_query($q) or $out .= "<font color=\"red\">Cannot query {$q} in " . __FILE__ . " line " . __LINE__ . " sql said: " . mysql_error() . "</font>";
if (isset($dsc["edit_item_callback"])) {
$dsc["edit_item_callback"]($id_fld_value);
}
}
}
} else {
if (isset($_REQUEST["action"]) && $_REQUEST["action"] == $dsc["action"] . "_delete_item") {
for ($i = 0; $i < $nbr_fld; $i++) {
if ($dsc["cols"][$keys[$i]]["type"] == "id") {
$id_fldname = $keys[$i];
$id_fld_value = addslashes($_REQUEST[$keys[$i]]);
}
}
if (isset($id_fldname) && isset($id_fld_value)) {
if (isset($dsc["delete_item_callback"])) {
$dsc["delete_item_callback"]($id_fld_value);
}
$q = "DELETE FROM " . $dsc["table_name"] . " {$where} AND {$id_fldname}='" . $id_fld_value . "';";
$r = mysql_query($q) or $out .= "<font color=\"red\">Cannot query {$q} in " . __FILE__ . " line " . __LINE__ . " sql said: " . mysql_error() . "</font>";
} else {
$out .= "<font color=\"red\">Could not commit the deletion because the id field could not be found.</font>";
}
}
}
}
// We have to query it again, in case an insert or a delete has occured!
$q = "SELECT " . $dsc["id_fld"] . "," . $dsc["list_fld_show"] . " FROM " . $dsc["table_name"] . " {$where} {$order_by};";
$r_item_list = mysql_query($q) or die("Cannot query {$q} in " . __FILE__ . " line " . __LINE__ . " sql said: " . mysql_error());
$current_num_items = mysql_num_rows($r_item_list);
if (isset($dsc["max_item"])) {
if ($current_num_items >= $dsc["max_item"]) {
$out .= "<font color=\"red\">";
}
$out .= $dsc["num_item_txt"] . $current_num_items . "/" . $dsc["max_item"];
if ($current_num_items >= $dsc["max_item"]) {
$out .= "</font>";
}
$out .= "<br><br>";
}
// First display a list of items
for ($i = 0; $i < $current_num_items; $i++) {
$a = mysql_fetch_array($r_item_list);
if ($i != 0) {
$out .= " - ";
}
if (isset($_REQUEST["subaction"]) && $_REQUEST["subaction"] == $dsc["action"] . "_edit_item" && $_REQUEST["item"] == $a[$dsc["id_fld"]]) {
$out .= $a[$dsc["list_fld_show"]];
} else {
$out .= "<a href=\"{$fw_link}&subaction=" . $dsc["action"] . "_edit_item&item=" . $a[$dsc["id_fld"]] . "\">" . $a[$dsc["list_fld_show"]] . "</a>";
}
}
$out .= "<br><br>";
// Creation of new items
if (!isset($_REQUEST["subaction"]) || $_REQUEST["subaction"] != $dsc["action"] . "_edit_item") {
$out .= $dsc["new_item_link"] . "<br><br>";
$out .= "<h3>" . $dsc["new_item_title"] . "</h3><br>";
if (isset($dsc["max_item"]) && $current_num_items >= $dsc["max_item"]) {
$out .= "<font color=\"red\">" . _("Maximum number reached") . "!</font><br>";
} else {
$out .= "<form name=\"" . $dsc["action"] . "_new_item_frm\" action=\"" . $_SERVER["PHP_SELF"] . "\">{$fw}\n\t\t\t\t<input type=\"hidden\" name=\"action\" value=\"" . $dsc["action"] . "_new_item\">" . dtcFormTableAttrs();
for ($i = 0; $i < $nbr_fld; $i++) {
if (isset($dsc["cols"][$keys[$i]]["help"])) {
$help = $dsc["cols"][$keys[$i]]["help"];
} else {
$help = "";
}
switch ($dsc["cols"][$keys[$i]]["type"]) {
case "id":
$out .= "<input type=\"hidden\" name=\"" . $keys[$i] . "\" value=\"\">";
break;
case "password":
$genpass = autoGeneratePassButton($dsc["action"] . "_new_item_frm", $keys[$i]);
$ctrl = "<input type=\"password\" name=\"" . $keys[$i] . "\" value=\"\">{$genpass}";
$out .= dtcFormLineDraw($dsc["cols"][$keys[$i]]["legend"], $ctrl, $i % 2, $help);
break;
case "text":
case "readonly":
if (isset($dsc["cols"][$keys[$i]]["hide_create"]) && $dsc["cols"][$keys[$i]]["hide_create"] == "yes") {
break;
}
if (isset($dsc["cols"][$keys[$i]]["happen_domain"])) {
$happen = $dsc["cols"][$keys[$i]]["happen_domain"];
} else {
$happen = "";
}
if (isset($dsc["cols"][$keys[$i]]["happen"])) {
$happen .= $dsc["cols"][$keys[$i]]["happen"];
}
if (isset($dsc["cols"][$keys[$i]]["default"])) {
$ctrl_value = $dsc["cols"][$keys[$i]]["default"];
} else {
$ctrl_value = "";
}
if ($dsc["cols"][$keys[$i]]["type"] == "readonly") {
$ctrl = "<input type=\"text\" name=\"" . $keys[$i] . "\" value=\"{$ctrl_value}\" READONLY>{$happen}";
} else {
$ctrl = "<input type=\"text\" name=\"" . $keys[$i] . "\" value=\"{$ctrl_value}\">{$happen}";
}
$out .= dtcFormLineDraw($dsc["cols"][$keys[$i]]["legend"], $ctrl, $i % 2, $help);
break;
case "textarea":
if (isset($dsc["cols"][$keys[$i]]["cols"])) {
$ctrl_cols = " cols=\"" . $dsc["cols"][$keys[$i]]["cols"] . "\" ";
} else {
$ctrl_cols = "";
}
if (isset($dsc["cols"][$keys[$i]]["rows"])) {
$ctrl_rows = " rows=\"" . $dsc["cols"][$keys[$i]]["rows"] . "\" ";
} else {
$ctrl_rows = "";
}
$ctrl = "<textarea {$ctrl_cols} {$ctrl_rows} name=\"" . $keys[$i] . "\"></textarea>";
$out .= dtcFormLineDraw($dsc["cols"][$keys[$i]]["legend"], $ctrl, $i % 2, $help);
break;
case "radio":
$nbr_choices = sizeof($dsc["cols"][$keys[$i]]["values"]);
$ctrl = "";
for ($x = 0; $x < $nbr_choices; $x++) {
if (isset($dsc["cols"][$keys[$i]]["default"])) {
if ($dsc["cols"][$keys[$i]]["values"][$x] == $dsc["cols"][$keys[$i]]["default"]) {
$selected = " checked ";
} else {
$selected = "";
}
} else {
if ($x == 0) {
$selected = " checked ";
} else {
$selected = "";
}
}
if (isset($dsc["cols"][$keys[$i]]["display_replace"][$x])) {
$display_val = $dsc["cols"][$keys[$i]]["display_replace"][$x];
} else {
$display_val = $dsc["cols"][$keys[$i]]["values"][$x];
}
$ctrl .= "<input type=\"radio\" name=\"" . $keys[$i] . "\" value=\"" . $dsc["cols"][$keys[$i]]["values"][$x] . "\" {$selected}> ";
$ctrl .= $display_val;
}
$out .= dtcFormLineDraw($dsc["cols"][$keys[$i]]["legend"], $ctrl, $i % 2, $help);
break;
case "checkbox":
if (!isset($dsc["cols"][$keys[$i]]["default"])) {
$checked = " checked ";
} else {
$checked = " ";
}
$ctrl = "<input type=\"checkbox\" name=\"" . $keys[$i] . "\" value=\"yes\" {$checked}>";
$out .= dtcFormLineDraw($dsc["cols"][$keys[$i]]["legend"], $ctrl, $i % 2, $help);
break;
case "popup":
$nbr_choices = sizeof($dsc["cols"][$keys[$i]]["values"]);
$ctrl = "<select name=\"" . $keys[$i] . "\">";
for ($x = 0; $x < $nbr_choices; $x++) {
$selected = "";
if (isset($dsc["cols"][$keys[$i]]["default"])) {
if ($dsc["cols"][$keys[$i]]["values"][$x] == $dsc["cols"][$keys[$i]]["default"]) {
$selected = " selected ";
} else {
$selected = "";
}
}
if (isset($dsc["cols"][$keys[$i]]["display_replace"][$x])) {
$display_val = $dsc["cols"][$keys[$i]]["display_replace"][$x];
} else {
$display_val = $dsc["cols"][$keys[$i]]["values"][$x];
}
$ctrl .= " <option value=\"" . $dsc["cols"][$keys[$i]]["values"][$x] . "\" {$selected}>{$display_val}</option>";
}
$out .= dtcFormLineDraw($dsc["cols"][$keys[$i]]["legend"], $ctrl, $i % 2, $help);
break;
default:
$ctrl = "Not implemented yet!!!";
$out .= dtcFormLineDraw($dsc["cols"][$keys[$i]]["legend"], $ctrl, $i % 2, $help);
break;
}
}
$out .= dtcFromOkDraw();
$out .= "</table></form>";
}
// Edition of existing items
} else {
$out .= "<a href=\"{$fw_link}&subaction=" . $dsc["action"] . "_new_item\">" . $dsc["new_item_link"] . "</a><br><br>";
$out .= "<h3>" . $dsc["edit_item_title"] . "</h3><br>";
$q = "SELECT * FROM " . $dsc["table_name"] . " {$where} AND " . $dsc["id_fld"] . "='" . addslashes($_REQUEST["item"]) . "';";
$r = mysql_query($q) or die("Cannot query {$q} in " . __FILE__ . " line " . __LINE__ . " sql said: " . mysql_error());
$n = mysql_num_rows($r);
if ($n == 1) {
$a = mysql_fetch_array($r);
$out .= "<form name=\"" . $dsc["action"] . "_save_item_frm\" action=\"" . $_SERVER["PHP_SELF"] . "\">{$fw}";
$out .= "<input type=\"hidden\" name=\"action\" value=\"" . $dsc["action"] . "_save_item\">";
$out .= "<input type=\"hidden\" name=\"subaction\" value=\"" . $dsc["action"] . "_edit_item\">";
$out .= "<input type=\"hidden\" name=\"item\" value=\"" . $a[$dsc["id_fld"]] . "\">";
$out .= dtcFormTableAttrs();
for ($j = 0; $j < $nbr_fld; $j++) {
$the_fld = $dsc["cols"][$keys[$j]];
if (isset($dsc["cols"][$keys[$j]]["help"])) {
$help = $dsc["cols"][$keys[$j]]["help"];
} else {
$help = "";
}
switch ($the_fld["type"]) {
case "id":
$out .= "<input type=\"hidden\" name=\"" . $keys[$j] . "\" value=\"" . $a[$keys[$j]] . "\">";
$id_fldname = $keys[$j];
$id_fld_value = $a[$keys[$j]];
break;
case "textarea":
if (isset($dsc["cols"][$keys[$j]]["cols"])) {
$ctrl_cols = " cols=\"" . $dsc["cols"][$keys[$j]]["cols"] . "\" ";
} else {
$ctrl_cols = "";
}
if (isset($dsc["cols"][$keys[$j]]["rows"])) {
$ctrl_rows = " rows=\"" . $dsc["cols"][$keys[$j]]["rows"] . "\" ";
} else {
$ctrl_rows = "";
}
$ctrl = "<textarea {$ctrl_cols} {$ctrl_rows} name=\"" . $keys[$j] . "\">" . stripslashes($a[$keys[$j]]) . "</textarea>";
$out .= dtcFormLineDraw($dsc["cols"][$keys[$j]]["legend"], $ctrl, $j % 2, $help);
break;
case "password":
case "text":
case "readonly":
if (isset($dsc["cols"][$keys[$j]]["disable_edit"]) && $dsc["cols"][$keys[$j]]["disable_edit"] == "yes") {
$disabled = " disabled ";
} else {
$disabled = " ";
}
if (isset($dsc["cols"][$keys[$j]]["size"])) {
$size = " size=\"" . $dsc["cols"][$keys[$j]]["size"] . "\" ";
} else {
$size = "";
}
if (isset($dsc["cols"][$keys[$j]]["happen_domain"]) && preg_match("/" . $dsc["cols"][$keys[$j]]["happen_domain"] . "\$/", $a[$keys[$j]])) {
$input_disp_value = substr($a[$keys[$j]], 0, strlen($a[$keys[$j]]) - strlen($dsc["cols"][$keys[$j]]["happen_domain"]));
$happen = $dsc["cols"][$keys[$j]]["happen_domain"];
} else {
if ($dsc["cols"][$keys[$j]]["type"] != "readonly") {
$input_disp_value = $a[$keys[$j]];
}
$happen = "";
}
if (isset($dsc["cols"][$keys[$j]]["happen"])) {
$happen .= $dsc["cols"][$keys[$j]]["happen"];
}
if ($the_fld["type"] == "password") {
$genpass = autoGeneratePassButton($dsc["action"] . "_save_item_frm", $keys[$j]);
$input_disp_type = "password";
} else {
$genpass = "";
$input_disp_type = "text";
}
// Do this only for readonly
if ($dsc["cols"][$keys[$j]]["type"] == "readonly") {
$disabled = " READONLY";
isset($dsc["cols"][$keys[$j]]["default"]) ? $input_disp_value = $dsc["cols"][$keys[$j]]["default"] : ($input_disp_value = '');
isset($dsc["cols"][$keys[$j]]["happen"]) ? $happen = $dsc["cols"][$keys[$j]]["happen"] : ($happen = '');
}
if (isset($dsc["cols"][$keys[$j]]["callback"])) {
$retArray = $dsc["cols"][$keys[$j]]["callback"]($id_fld_value);
$input_disp_value = $retArray["value"];
$happen = $retArray["happen"];
}
$ctrl = "<input type=\"{$input_disp_type}\" {$size} name=\"" . $keys[$j] . "\" value=\"" . stripslashes($input_disp_value) . "\" {$disabled}>{$genpass}{$happen}";
$out .= dtcFormLineDraw($dsc["cols"][$keys[$j]]["legend"], $ctrl, $j % 2, $help);
break;
case "radio":
$nbr_choices = sizeof($dsc["cols"][$keys[$j]]["values"]);
$ctrl = "";
for ($x = 0; $x < $nbr_choices; $x++) {
if ($dsc["cols"][$keys[$j]]["values"][$x] == $a[$keys[$j]]) {
$selected = " checked ";
} else {
$selected = "";
}
$ctrl .= " <input type=\"radio\" name=\"" . $keys[$j] . "\" value=\"" . $dsc["cols"][$keys[$j]]["values"][$x] . "\" {$selected}> ";
$ctrl .= $dsc["cols"][$keys[$j]]["values"][$x];
}
$out .= dtcFormLineDraw($dsc["cols"][$keys[$j]]["legend"], $ctrl, $j % 2, $help);
break;
case "checkbox":
if ($dsc["cols"][$keys[$j]]["values"][0] == $a[$keys[$j]]) {
$selected = " checked ";
} else {
$selected = " ";
}
$ctrl = "<input type=\"checkbox\" name=\"" . $keys[$j] . "\" value=\"yes\" " . $selected . ">";
$out .= dtcFormLineDraw($dsc["cols"][$keys[$j]]["legend"], $ctrl, $j % 2, $help);
break;
case "popup":
$nbr_choices = sizeof($dsc["cols"][$keys[$j]]["values"]);
$ctrl = "<select name=\"" . $keys[$j] . "\">";
for ($x = 0; $x < $nbr_choices; $x++) {
if ($dsc["cols"][$keys[$j]]["values"][$x] == $a[$keys[$j]]) {
$selected = " selected ";
} else {
$selected = "";
}
if (isset($dsc["cols"][$keys[$j]]["display_replace"][$x])) {
$display_val = $dsc["cols"][$keys[$j]]["display_replace"][$x];
} else {
$display_val = $dsc["cols"][$keys[$j]]["values"][$x];
}
$ctrl .= " <option value=\"" . $dsc["cols"][$keys[$j]]["values"][$x] . "\" {$selected}>{$display_val}</option>";
}
$out .= dtcFormLineDraw($dsc["cols"][$keys[$j]]["legend"], $ctrl, $j % 2, $help);
break;
default:
$ctrl = "Not implemented yet!!!";
$out .= dtcFormLineDraw($dsc["cols"][$keys[$j]]["legend"], $ctrl, $j % 2, $help);
break;
}
}
$delete_button = "<form action=\"" . $_SERVER["PHP_SELF"] . "\">{$fw}\n\t\t\t<input type=\"hidden\" name=\"action\" value=\"" . $dsc["action"] . "_delete_item" . "\">\n\t\t\t<input type=\"hidden\" name=\"{$id_fldname}\" value=\"{$id_fld_value}\">\n\t\t\t" . dtcDeleteButton() . "</form>";
$out .= "<tr><td> </td><td><table cellspacing=\"0\" cellpadding=\"0\" border=\"0\">\n\t\t\t<tr><td>" . dtcApplyButton() . "</form></td><td>{$delete_button}</td></tr></table></td></tr>";
$out .= "</table>";
} else {
$out .= "No item by this number!";
}
}
return $out;
}
