/**
* @param $value
* @param int $limit
* @return string
*/
function excerpt($value, $limit = 64)
{
$value = str_replace(["\n", "\t", "\r"], ' ', plain($value));
$value = trim(preg_replace('/ {2,}/', ' ', $value));
$value = htmlspecialchars($value, ENT_COMPAT, 'UTF-8', false);
return html_limit(plain($value), $limit);
}
function healOutput($x = null)
{
if (!isset($x)) {
return null;
} else {
if (is_string($x)) {
return plain($x);
} else {
if (is_array($x)) {
foreach ($x as $k => $v) {
$x[$k] = healOutput($v);
}
return $x;
}
}
}
return $x;
}
<div class=""> <div class="span-3" style="text-align: right;"> <label>Name:</label> </div> <span><?php echo empty($db_object->array['name']) ? ' ' : plain($db_object->array['name']); ?> </span> </div> <div class=""> <div class="span-3" style="text-align: right;"> <label>Value:</label> </div> <span><?php echo empty($db_object->array['value']) ? ' ' : plain($db_object->array['value']); ?> </span> </div> <div class=""> <div class="span-3" style="text-align: right;"> <label>Modified:</label> </div> <span><?php echo empty($db_object->array['modified']) ? ' ' : plain($db_object->array['modified']); ?> </span> </div>
?>
</a></h2>
<div class="post-info">
Napísané dňa <?php
echo $post["created_at"];
?>
.
</div>
<div class="post-teaser">
<?php
echo $post["teaser"];
?>
</div>
</div>
<?php
}
} else {
?>
<div class="message">Žiaľ v databáze autor <strong><?php
echo plain($user["name"]);
?>
</strong> nemá žiadne príspevky.</div>
<?php
}
?>
<?php
include_footer();
function html_display($content)
{
if ($content instanceof DBObject) {
Backend::add('Sub Title', $content->array['title']);
if ($content->array['from_file']) {
//Move this to the object ??
$filename = 'content/static/' . $content->array['name'] . '.html';
$template = 'content/' . $content->array['name'] . '.tpl.php';
if (Render::checkTemplateFile($template)) {
$content->object->body = Render::file($template);
} else {
if (file_exists(SITE_FOLDER . '/' . $filename)) {
$content->object->body = file_get_contents(APP_FOLDER . '/' . $filename);
} else {
if (file_exists(APP_FOLDER . '/' . $filename)) {
$content->object->body = file_get_contents(APP_FOLDER . '/' . $filename);
} else {
if (file_exists(BACKEND_FOLDER . '/' . $filename)) {
$content->object->body = file_get_contents(BACKEND_FOLDER . '/' . $filename);
//SITE FOLDER too?
}
}
}
}
}
$meta_desc = Backend::get('meta_description');
if (empty($meta_desc)) {
Backend::add('meta_description', plain(self::createPreview($content->object->body, false)));
}
$http_equiv = Backend::get('meta_http_equiv', array());
$http_equiv['Last-Modified'] = $content->object->modified;
Backend::add('meta_http_equiv', $http_equiv);
if (!headers_sent()) {
$max_age = ConfigValue::get('content.MaxAge', 86400);
header('Last-Modified: ' . $content->object->modified);
header('Expires: ' . gmdate('r', strtotime('+1 day')));
header('Cache-Control: max-age=' . $max_age . ', must-revalidate');
header('Pragma: cache');
}
}
if (Backend::getDB('default')) {
//TODO Make some of the content values (such as added and lastmodified) available
//So you can add Last Modified on #lastmodified# to the content.
$content = parent::html_display($content);
}
return $content;
}
exit(0);
}
$file = $_GET["file"];
$word = $_GET["word"];
$around = 100;
if (isset($_GET["around"])) {
$around = $_GET["around"];
}
$class = Auth::curClass();
if (strpos($file, $class) === FALSE) {
echo "Research more! {$file} {$class}";
exit(0);
}
$fs = new NativeFS("./log/");
if ($fs->exists("{$file}-data.txt")) {
plain($file);
} else {
if ($fs->exists("{$file}-data.log")) {
json($file);
}
}
function plain($file)
{
global $fs, $word;
$lines = explode("\n", $fs->getContent("{$file}-data.txt"));
$a = array();
$found = FALSE;
foreach ($lines as $line) {
array_push($a, "<code>" . mkTimeLink(preg_replace("/ /", " ", htmlspecialchars($line))) . "\n</code><BR>");
if ($found) {
if (count($a) > $around * 2) {
<label id="obj_active_label" for="obj_active">Active</label><br>
<select id="obj_active" name="active" class="">
<option value="0"<?php
if (empty($values['active'])) {
?>
selected="selected"<?php
}
?>
>No</option>
<option value="1"<?php
if ($values['active']) {
?>
selected="selected"<?php
}
?>
>Yes</option>
</select>
</div>
<div id="obj_weight_container">
<label id="obj_weight_label" for="obj_weight">Weight</label><br>
<input id="obj_weight" name="weight" type="text" class="text" value="<?php
echo plain($values['weight']);
?>
">
</div>
<input type="submit" value="<?php
echo $action_name;
?>
Tag" class=""/>
</form>
?> </span> </div> <div class=""> <div class="span-3" style="text-align: right;"> <label>Active:</label> </div> <span><?php echo empty($db_object->array['active']) ? ' ' : plain($db_object->array['active']); ?> </span> </div> <div class=""> <div class="span-3" style="text-align: right;"> <label>Modified:</label> </div> <span><?php echo empty($db_object->array['modified']) ? ' ' : plain($db_object->array['modified']); ?> </span> </div> <div class=""> <div class="span-3" style="text-align: right;"> <label>Added:</label> </div> <span><?php echo empty($db_object->array['added']) ? ' ' : plain($db_object->array['added']); ?> </span> </div>
<hr> <form method="post" action="?q=<?php echo $action_url; ?> " enctype="multipart/form-data"> <input id="obj_foreign_table" name="foreign_table" type="hidden" value="<?php echo plain($values['foreign_table']); ?> "> <input id="obj_foreign_id" name="foreign_id" type="hidden" value="<?php echo plain($values['foreign_id']); ?> "> <div id="obj_title_container"> <input id="obj_title" name="title" type="text" class="text title" value="<?php echo plain($values['title']); ?> "> </div> <div id="obj_content_container"> <textarea id="obj_content" name="content" class="textarea"><?php echo $values['content']; ?> </textarea> </div> <input type="submit" value="<?php echo $action_name; ?> Comment" class=""/> </form>
include_header(array("title" => "Úprava článku"));
?>
<h1 class="text-center">Úprava článku</h1>
<form method="post" enctype="multipart/form-data">
<label for="title"><strong>Názov článku:</strong></label>
<input type="text" name="title" id="title" value="<?php
echo isset($_POST["title"]) ? $_POST["title"] : plain($post["title"]);
?>
">
<label for="text"><strong>Text článku:</strong></label>
<textarea name="text" id="text"><?php
echo isset($_POST["text"]) ? $_POST["text"] : plain($post["text"]);
?>
</textarea>
<?php
if (!empty($tags)) {
?>
<div><strong>Tagy:</strong>
<?php
foreach ($tags as $tag) {
?>
<label><input type="checkbox" name="tags[]" value="<?php
echo $tag["id"];
?>
" <?php
echo isset($tag["checked"]) ? "checked" : "";
?>
"><strong><?php
echo $post["user_name"];
?>
</strong></a> dňa <?php
echo $post["created_at"];
?>
.
</div>
<div class="post-teaser">
<?php
echo $post["teaser"];
?>
</div>
</div>
<?php
}
} else {
?>
<div class="message">Žiaľ v databáze k tagu <strong><?php
echo plain($tag);
?>
</strong> nemáme žiadne príspevky.</div>
<?php
}
?>
<?php
include_footer();
<th> Name: </th> <td> <?php echo plain(trim($db_object->array['name'] . ' ' . $db_object->array['surname'])); ?> </td> </tr> <tr> <th> Website: </th> <td> <?php echo empty($db_object->array['website']) ? 'None' : plain($db_object->array['website']); ?> </td> </tr> <tr> <td colspan="2" style="text-align: center;"> <?php echo empty($db_object->array['bio']) ? ' ' : simple($db_object->array['bio']); ?> </tr> </tr> </table> </div> <div id="gravatar_div" class="span-4 last"> <a href="http://en.gravatar.com/site/check/<?php echo $db_object->array['email'];
?>
">
</label>
</div>
<div id="value_mobile_container">
<label id="value_mobile_label">Mobile<br>
<input id="value_mobile" name="mobile" type="text" class="text" value="<?php
echo plain($values['mobile']);
?>
">
</label>
</div>
<div id="value_username_container">
<label id="value_username_label">Username<br>
<input id="value_username" name="username" type="text" class="text" value="<?php
echo plain($values['username']);
?>
">
</label>
</div>
<?php
if (Permission::check('manage', 'BackendUser')) {
?>
<div id="value_confirmed_container">
<label id="value_confirmed_label">Confirmed<br>
<select id="value_confirmed" name="confirmed" class="">
<option value="0"<?php
if (!is_null($values['confirmed']) && empty($values['confirmed'])) {
?>
selected="selected"<?php
}
?>
<form method="post" action="?q=<?php
echo $action_url;
?>
" enctype="multipart/form-data">
<div id="obj_alias_container">
<label id="obj_alias_label" for="obj_alias">Alias</label><br>
<input id="obj_alias" name="alias" type="text" class="text" value="<?php
echo plain($values['alias']);
?>
">
</div>
<div id="obj_query_container">
<label id="obj_query_label" for="obj_query">Query</label><br>
<input id="obj_query" name="query" type="text" class="text" value="<?php
echo plain($values['query']);
?>
">
</div>
<div id="obj_active_container">
<label id="obj_active_label" for="obj_active">Active</label><br>
<select id="obj_active" name="active" class="">
<option value="0"<?php
if (empty($values['active'])) {
?>
selected="selected"<?php
}
?>
>No</option>
<option value="1"<?php
if ($values['active']) {
$task = get_task(get_user_id(), segment(2));
if (!$task) {
show_404();
}
include_header(array("title" => "delete", "show_logout" => true));
?>
<div class="row">
<div class="col-md-12">
<form id="js-form-delete" method="post">
<div class="form-group">
<textarea disabled class="form-control" id="js-text" rows="4" title=""><?php
echo plain($task["task_text"]);
?>
</textarea>
</div>
<div class="form-group">
<input name="id" type="hidden" value="<?php
echo plain($task["task_id"]);
?>
">
<button class="btn btn-sm btn-danger" type="submit">delete task</button>
<a href="<?php
echo url();
?>
" class="btn btn-sm btn-default">back</a>
</div>
</form>
</div>
</div>
<?php
include_footer();
if (!empty($_GET["search"])) {
$posts = get_posts_like($_GET["search"]);
} else {
$posts = array();
}
include_header(array("title" => "Vyhľadávanie"));
?>
<h1 class="text-center">Vyhľadávanie</h1>
<form method="get">
<label for="search"><strong>Čo hľadáte?</strong></label>
<input type="text" name="search" id="search" value="<?php
echo isset($_GET["search"]) ? $_GET["search"] : plain($post["search"]);
?>
" autofocus>
<input type="submit" value="Hľadať">
</form>
<?php
if (!empty($_GET["search"])) {
if (count($posts)) {
foreach ($posts as $post) {
?>
<div class="post extra-padding">
<h2><a href="<?php
echo $post["link"];
function slugify($text)
{
return join('/', array_map('parameterize', explode('/', plain($text))));
}
<form method="post" action="?q=<?php
echo Controller::$area . '/' . Controller::$action . (empty(Controller::$parameters[0]) ? '' : '/' . Controller::$parameters[0]);
?>
" enctype="multipart/form-data">
<div id="obj_name_container">
<label id="obj_name_label" for="obj_name">Name</label><br>
<input id="obj_name" name="name" type="text" class="text title" value="<?php
echo plain($values['name']);
?>
">
</div>
<div id="obj_description_container">
<label id="obj_description_label" for="obj_description">Description</label><br>
<textarea id="obj_description" name="description" class="textarea"><?php
echo $values['description'];
?>
</textarea>
</div>
<div id="obj_active_container">
<label id="obj_active_label" for="obj_active">Active</label><br>
<select id="obj_active" name="active" class="">
<option value="1"<?php
if ($values['active']) {
?>
selected="selected"<?php
}
?>
>Yes</option>
<option value="0"<?php
if (empty($values['active'])) {
?>
function format_post(array $post)
{
// odstráni všetky biele znaky
$post = array_map("trim", $post);
// escapuje názov a obsah článku pre výpis, ochrana proti XSS útoku
$post["title"] = plain($post["title"]);
$post["text"] = plain($post["text"]);
// vytvorí užitočné linky
$post["link"] = filter_var(url() . "/clanok/" . $post["id"], FILTER_SANITIZE_URL);
$post["link_edit"] = filter_var(url() . "/upravit-clanok/" . $post["id"], FILTER_SANITIZE_URL);
$post["link_delete"] = filter_var(url() . "/vymazat-clanok/" . $post["id"], FILTER_SANITIZE_URL);
// vytvorí linky na užívateľa
$post["user_email"] = filter_var($post["user_email"], FILTER_SANITIZE_EMAIL);
$post["user_link"] = filter_var(url() . "/autor/" . $post["user_id"], FILTER_SANITIZE_URL);
// vytvorí náhľad článku pre úvodnú stránku so 40 slovami
$post["teaser"] = word_limiter($post["text"], 40);
// upraví text pre zobranenie článku
$post['text'] = add_paragraphs($post['text']);
// spracujeme dátum vytvorenia článku do krajšieho tvaru
$post["created_at"] = str_replace(' ', ' ', date('j.n.Y \\o G:i', strtotime($post['created_at'])));
// získame tagy
$tags = $post['tags'] ? explode('|', $post['tags']) : array();
$post["tags"] = array();
foreach ($tags as $tag) {
$post["tags"][$tag] = filter_var(url() . "/tag/" . urlencode($tag), FILTER_SANITIZE_URL);
}
return $post;
}
<button class="btn btn-sm btn-danger" type="submit">add new task</button>
</div>
</form>
</div>
<div class="col-md-12">
<ul id="js-list" class="list-group">
<?php
foreach ($tasks as $task) {
?>
<li id="item-<?php
echo $task["task_id"];
?>
" class="list-group-item item-in-the-list">
<?php
echo plain($task["task_text"]);
?>
<div class="controls pull-right">
<a href="<?php
echo url();
?>
/edit/<?php
echo $task["task_id"];
?>
" class="text-muted edit-link">edit</a>
<a href="<?php
echo url();
?>
/delete/<?php
echo $task["task_id"];
?>
<div class="row">
<div class="col-md-4 col-md-offset-4">
<form id="login-form" method="post">
<div class="form-group">
<label for="inputName" class="sr-only">name</label>
<input type="text" name="name" id="inputName" class="form-control" placeholder="name"
value="<?php
echo isset($_POST["name"]) ? plain($_POST["name"]) : "";
?>
" required autofocus>
</div>
<div class="form-group">
<label for="inputEmail" class="sr-only">email address</label>
<input type="email" name="email" id="inputEmail" class="form-control" placeholder="email address"
value="<?php
echo isset($_POST["email"]) ? plain($_POST["email"]) : "";
?>
" required>
</div>
<div class="form-group">
<label for="inputPassword" class="sr-only">password</label>
<input type="password" name="password" id="inputPassword" class="form-control"
placeholder="password"
required>
</div>
<div class="form-group">
<label for="inputPasswordConfirm" class="sr-only">password again</label>
<input type="password" name="passwordConfirm" id="inputPasswordConfirm" class="form-control"
placeholder="password again"
required>
</div>
$list_length = empty($list_length) ? Controller::$parameters[2] : $list_length;
$pages = ceil($list_count / $list_length);
$current_page = floor($list_start / $list_length) + 1;
//var_dump(count($list), $list_count, $area, $action, $list_start, $list_length, $pages, $current_page);
}
if (!empty($db_object->array['list']) && is_array($db_object->array['list'])) {
foreach ($db_object->array['list'] as $item) {
$tags = Tag::getTags('contents', $item['id']);
$link = '?q=content/' . $item['name'];
?>
<h3>
<a href="<?php
echo $link;
?>
"><?php
echo plain($item['title']);
?>
</a>
</h3>
<p>
<?php
echo Content::createPreview($item['body'], false);
?>
</p>
<div class="clear">
<div class="span-3">
<a href="<?php
echo $link;
?>
">Read more</a>
</div>