function display_link_template($link, $model, $time = 10)
{
global $_LANG;
$inPage = cmsPage::getInstance();
$is_domain_banned = false;
// проверяем ссылку
if (function_exists('curl_init') && $model->config['check_link']) {
$link_domain = parse_url($link, PHP_URL_HOST);
if ($model->config['white_list'] && $link_domain && !in_array($link_domain, $model->config['white_list']) || !$model->config['white_list']) {
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, 'https://api.vk.com/method/utils.checkLink?url=' . $link);
curl_setopt($ch, CURLOPT_HEADER, false);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_TIMEOUT, 2);
curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 2);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, false);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
curl_setopt($ch, CURLOPT_USERAGENT, 'InstantCMS/' . CORE_VERSION . ' +' . HOST);
$data = json_decode(curl_exec($ch), true);
if (!isset($data['error']) && isset($data['response'])) {
$is_domain_banned = $data['response']['status'] == 'banned';
$link = $data['response']['link'];
}
}
}
$inPage->setTitle($_LANG['FILE_EXTERNAL_LINK']);
$inPage->setDescription($_LANG['FILE_EXTERNAL_LINK']);
cmsPage::initTemplate('components', 'com_files_redirect')->assign('url', htmlspecialchars($link))->assign('time', $time)->assign('sitename', cmsConfig::getConfig('sitename'))->assign('is_domain_banned', $is_domain_banned)->display('com_files_redirect.tpl');
}
public function __construct()
{
cmsCore::loadClass('page');
$this->inCore = cmsCore::getInstance();
$this->inDB = cmsDatabase::getInstance();
$this->inPage = cmsPage::getInstance();
}
function __construct()
{
$this->inDB = cmsDatabase::getInstance();
$this->inCore = cmsCore::getInstance();
$this->inPage = cmsPage::getInstance();
$this->inUser = cmsUser::getInstance();
$this->root = $_SERVER['DOCUMENT_ROOT'];
}
public function __construct()
{
cmsCore::loadClass('page');
$this->inCore = cmsCore::getInstance();
$this->inDB = cmsDatabase::getInstance();
$this->inPage = cmsPage::getInstance();
$this->config = array_merge($this->config, $this->inCore->loadPluginConfig(get_called_class()));
}
function cpHead()
{
global $_LANG;
$inPage = cmsPage::getInstance();
$inPage->title = !empty($GLOBALS['cp_page_title']) ? $GLOBALS['cp_page_title'] . ' - ' . $_LANG['AD_ADMIN_PANEL'] . ' v ' . CORE_VERSION : $_LANG['AD_ADMIN_PANEL'];
array_unshift($inPage->page_head, '<script type="text/javascript" src="js/common.js"></script>');
$inPage->addHeadJsLang(array('AD_NO_SELECT_OBJECTS', 'AD_SWITCH_EDITOR', 'CANCEL', 'CONTINUE', 'CLOSE', 'ATTENTION'));
if (!empty($GLOBALS['cp_jquery'])) {
array_unshift($inPage->page_head, '<script type="text/javascript" src="' . $GLOBALS['cp_jquery'] . '"></script>');
} else {
array_unshift($inPage->page_head, '<script type="text/javascript" src="/includes/jquery/jquery.js"></script>');
}
foreach ($GLOBALS['cp_page_head'] as $key => $value) {
$inPage->addHead($value);
unset($GLOBALS['cp_page_head'][$key]);
}
$inPage->printHead();
return;
}
function smarty_function_city_input($params, &$smarty)
{
global $_LANG;
if (!cmsCore::getInstance()->isComponentInstalled('forms')) {
return '<input type="text" value="' . htmlspecialchars($params['value']) . '" name="' . htmlspecialchars($params['name']) . '" class="text-input" style="width:300px"/>';
}
array_walk($params, create_function('&$value', 'return htmlspecialchars($value);'));
if (!isset($params['placeholder'])) {
$params['placeholder'] = $_LANG['SELECT_CITY'];
}
if (!isset($params['width'])) {
$params['width'] = '100%';
}
if (!isset($params['input_width'])) {
$params['input_width'] = '150px';
}
if (!isset($params['city_id'])) {
$params['city_id'] = 0;
}
if (!isset($params['region_id'])) {
$params['region_id'] = 0;
}
if (!isset($params['country_id'])) {
$params['country_id'] = 0;
}
if (!isset($params['value'])) {
$params['value'] = '';
}
cmsPage::getInstance()->addHeadJS('components/geo/js/geo.js');
$id = uniqid();
$display = $params['value'] ? '' : 'style="display:none"';
return '<div class="text-input city_block" id="' . $id . '" style="width:' . $params['width'] . '">
<input type="hidden" value="' . htmlspecialchars($params['value']) . '" name="' . $params['name'] . '" class="city_name" />
<input type="hidden" value="' . $params['city_id'] . '" name="city_id" class="city_id" />
<input type="hidden" value="' . $params['region_id'] . '" name="region_id" class="region_id" />
<input type="hidden" value="' . $params['country_id'] . '" name="country_id" class="country_id" />
<input readonly="readonly" placeholder="' . $params['placeholder'] . '" type="text" value="' . $params['value'] . '" class="city_view" onclick="geo.viewForm(\'' . $id . '\');return false;" style="width:' . $params['input_width'] . '" />
<a class="city_link city_clear_link" href="#" onclick="geo.clear(\'' . $id . '\');return false;" ' . $display . '>' . $_LANG['DELETE'] . '</a>
<a class="city_link" href="#" onclick="geo.viewForm(\'' . $id . '\');return false;">' . $_LANG['SELECT'] . '</a>
</div>' . "\n";
}
function arhive()
{
global $_LANG;
$model = new cms_model_arhive();
$inCore = cmsCore::getInstance();
$inPage = cmsPage::getInstance();
$pagetitle = $inCore->getComponentTitle();
$do = $inCore->do;
$inPage->setTitle($pagetitle);
$inPage->addPathway($pagetitle, '/arhive');
//======================================================================================================//
if ($do == 'view' || $do == 'y') {
if ($do == 'y') {
$pagetitle = $_LANG['ARCHIVE_MATERIALS_FROM'] . $model->year . $_LANG['ARHIVE_YEAR'];
$inPage->addPathway($model->year, '/arhive/' . $model->year);
$inPage->setTitle($pagetitle);
$model->whereYearIs();
}
$items = $model->getArhiveContent();
cmsPage::initTemplate('components', 'com_arhive_dates')->assign('pagetitle', $pagetitle)->assign('items', $items)->assign('do', $do)->display('com_arhive_dates.tpl');
}
//======================================================================================================//
if ($do == 'ymd' || $do == 'ym') {
$month_name = cmsCore::intMonthToStr($model->month);
$inPage->addPathway($model->year, '/arhive/' . $model->year);
$inPage->addPathway($month_name, '/arhive/' . $model->year . '/' . $model->month);
if ($do == 'ymd') {
$inPage->addPathway($model->day, '/arhive/' . $model->year . '/' . $model->month . '/' . $model->day);
$pagetitle = $_LANG['ARCHIVE_MATERIALS_FROM'] . $model->day . ' ' . $_LANG['MONTH_' . $model->month] . ' ' . $model->year . $_LANG['ARHIVE_YEARS'];
$model->whereDayIs();
} else {
$pagetitle = $_LANG['ARCHIVE_MATERIALS_FROM'] . $month_name . ' ' . $model->year . $_LANG['ARHIVE_YEARS'];
$model->whereMonthIs();
}
$inPage->setTitle($pagetitle);
$model->setArtticleSql();
$items = $model->getArhiveContent();
cmsPage::initTemplate('components', 'com_arhive_list')->assign('pagetitle', $pagetitle)->assign('items', $items)->display('com_arhive_list.tpl');
}
}
function wishes()
{
$inCore = cmsCore::getInstance();
$inPage = cmsPage::getInstance();
$inDB = cmsDatabase::getInstance();
$inUser = cmsUser::getInstance();
$user_id = $inUser->id;
//$inPage->addHeadJS('');
//$inPage->addHeadJS('');
global $_LANG;
$inCore->loadModel('wishes');
$model = new cms_model_wishes();
//Загрузка настроек встреч
$cfg = $inCore->loadComponentConfig('wishes');
// Проверяем включени ли компонент
if (!$cfg['component_enabled']) {
cmsCore::error404();
}
if (!isset($cfg['perpage'])) {
$cfg['perpage'] = 10;
}
if (!isset($cfg['on_main'])) {
$cfg['on_main'] = 5;
}
//Получаем параметры
$id = $inCore->request('id', 'int', 0);
$do = $inCore->request('do', 'str', 'view');
$page = $inCore->request('page', 'int', 1);
$pagetitle = "Потрібно - Допоможу";
$inPage->addPathway($pagetitle, '/wishes/all.html');
$types = array();
$sql = "select * from `cms_wishes_cat`";
$result = $inDB->query($sql);
$j = 1;
while ($tinfo = $inDB->fetch_assoc($result)) {
$types[$j]["1"] = $tinfo['class'];
$types[$j]["2"] = $tinfo['title'];
$j++;
}
$inPage->addHead('<link rel="stylesheet" href="/components/wishes/css/style.css">');
/***********************************************************/
if ($do == 'load') {
$n = $inCore->request('n', 'int', 1);
$page = $inCore->request('page', 'int', 1);
//echo $page." ".$n." дозагрузка данных<br/>";
$t = $types[$n];
$inf = $model->wish_type($n, $t, $user_id, $page, $active = 0, $types = array(), $cfg['on_main']);
echo $inf;
exit;
}
if ($do == 'delete') {
if ($model->is_author($user_id, $id) or $inUser->is_admin) {
$sql = "DELETE FROM `cms_wishes` WHERE `id` = " . $id . ";";
$result = $inDB->query($sql);
cmsCore::addSessionMessage("Успішно видалено!", 'success');
}
cmsCore::redirect('/wishes/');
}
if ($do == 'wish_item') {
$sql = "select * from `cms_wishes` where `published`='1' and `id`='" . $id . "' ";
//echo $sql;
$result = $inDB->query($sql);
$sinfo = $inDB->fetch_assoc($result);
$us = $inUser->loadUser($sinfo['user_id']);
$t = $types[$sinfo['type']];
$inPage->addPathway($t[2], '/wishes/type' . $sinfo['type'] . '.html');
$inPage->addPathway($sinfo['title'], '');
$inPage->setTitle($sinfo['title']);
echo "<h2><a href='/wishes/type" . $sinfo['type'] . ".html'>" . $t[2] . "</a> » " . $sinfo['title'] . "</h2>";
echo "<div style='font-size:11px;'><a href='/users/" . $us['login'] . "'>" . $us['nickname'] . "</a> | " . $inCore->dateformat($sinfo['datetime']) . "</div>";
if ($model->is_author($user_id, $id) or $inUser->is_admin) {
echo "<div style='float:right;'><a href='/wishes/delete" . $id . ".html'>Видалити</a></div>";
}
echo "\n\t\t\t<table width='100%'><tr><td valign='top' width='10%'>\n\t\t\t<a href='/users/" . $us['login'] . "'><img src='" . $us['imageurl'] . "' style='float:left;border-radius:10px;margin:0px 10px 10px 0px;' border='0' /></a>\n\t\t\t</td>\n\t\t\t<td>\n\t\t\t<div style='padding:10px;margin-bottom:50px; background-color:#f2f0f0; border-bottom: 1px solid #DDDDDD;border-top: 1px solid #DDDDDD;'>\n\t\t\t" . $sinfo['info'] . "</div>\n\t\t\t</td>\n\t\t\t\t</tr>\n\t\t\t</table>\n\t\t";
if ($inCore->isComponentInstalled('comments')) {
cmsCore::includeComments();
comments('wishes', $sinfo['id']);
}
}
/***********************************************************/
if ($do == 'add_item') {
$title = $inCore->request('title', 'str', '');
$info = $inCore->request('info', 'str', '');
$send = $inCore->request('send', 'str', '');
$type = $id;
$guest_info = $inUser->getGuestInfo();
$user_access = $inUser->id;
if ($user_access > 0) {
/**/
/**/
/**/
/**/
$inf = "0";
$success = "0";
$tr = strlen($title);
if ($send == "ok") {
if ($tr > 0) {
$ip = $_SERVER['REMOTE_ADDR'];
$browser = $_SERVER['HTTP_USER_AGENT'];
$sql = "INSERT INTO `cms_wishes` (`id` ,\n`title` ,\n`info` ,\n`published` ,\n`datetime` ,\n`user_id` ,\n`rate` ,\n`type` ,\n`ip` ,\n`browser` \n)\nVALUES (NULL , '" . $title . "', '" . $info . "', '1', NOW(), '" . $user_id . "', '0', '" . $type . "', '" . $ip . "', '" . $browser . "'\n);";
$inDB->query($sql);
$msg = "<span style='font-size:10px;'>Інформація успішно додана</span>";
cmsCore::addSessionMessage($msg, 'success');
$inf = "1";
$success = "1";
cmsCore::redirect('/wishes/');
} else {
$msg = "<span style='font-size:10px;'>Ви не ввели заголовок!</span>";
cmsCore::addSessionMessage($msg, 'error');
$inf = "1";
}
}
if ($inf != "1") {
$msg = "<span style='font-size:10px;'>Заповніть поля Заголовок та Інформація.</span>";
cmsCore::addSessionMessage($msg, 'info');
}
$pagetitle = "Додання в розділ «" . $types[$id][2] . "»";
$inPage->addPathway($pagetitle, '');
if ($success == "0") {
echo "<h2>Додання в розділ «" . $types[$id][2] . "»</h2>";
echo "<form action='' method='post'>\n\t\tЗаголовок:<br/>\n\t\t<input type='text' name='title' style='width:400px;' /><br/>\n\t\tІнформація «" . $types[$id][2] . "»<br/>\n\t\t\t<textarea name='info' style='width:400px;height:150px;'></textarea><br/>\n\t\t\t\t<input type='hidden' name='type' value='" . $id . "' />\n\t\t\t\t<input type='hidden' name='send' value='ok' />\n\t\t\t\t<input type='submit' value='Відправити'> <input type='button' value='Відміна' onclick='window.history.back()' />\n\t\t\t\t\t\n\t\t\n\t</form>\n\t";
} else {
echo "<a href='/wishes/all.html'>Перейти на початок</a>";
}
/**/
/**/
/**/
/**/
} else {
$msg = "<span style='font-size:10px;'>Доступно тільки зареєстрованим користувачам</span> <input type='button' value='Вернуться' onclick='window.history.back()' />";
cmsCore::addSessionMessage($msg, 'error');
}
}
/***********************************************************/
if ($do == 'type') {
$n = $id;
$t = $types[$n];
$active = '1';
$inf = $model->wish_type($n, $t, $user_id, $page, $active, $types, $cfg['perpage']);
if ($n == 0) {
$total = $inDB->rows_count("cms_wishes", "`published`=1");
} else {
$total = $inDB->rows_count("cms_wishes", "`type`='" . $n . "' and `published`=1");
}
if ($user_id <= 0) {
$model->modal();
}
$name = $t[2];
if ($n == 0) {
$name = "Все";
}
$inPage->addPathway($name, '');
echo "<h3><a href='/wishes/all.html'>На початок</a> » " . $name . "</h3>";
echo "<a href='/wishes/add" . $n . ".html' class='usr_wall_addlink " . $t["1"] . "'>Допомогти</a>";
echo $inf;
if ($n == 0) {
$pagination = cmsPage::getPagebar($total, $page, $cfg['perpage'], '/wishes/all-page%page%.html');
} else {
$pagination = cmsPage::getPagebar($total, $page, $cfg['perpage'], '/wishes/type' . $n . '-page%page%.html');
}
echo $pagination;
}
/***********************************************************/
if ($do == 'view') {
$st = "";
$cntt = count($types);
foreach ($types as $n => $t) {
$links .= " <span style='border-radius:3px;border:1px dotted #999;color:#333;'><a href='/wishes/type" . intval($n) . ".html'>" . $t[2] . "</a></span> ";
$inf = $model->wish_type($n, $t, $user_id, $page = 1, $active = 0, $types = array(), $cfg['on_main']);
//print_r($t);
$st .= "<tr valign='top' ><div class='wish-type'><span style='font-size:20px;font-weight:bold;color:#333;'>\n\t\t<a href='/wishes/type" . $n . ".html'>" . $t["2"] . "</span> \n\t\t<br/>\n\t\t<div >\n\t\t<a href='/wishes/add" . $n . ".html' class='usr_wall_addlink " . $t["1"] . "'>Допомогти</a>\n\t\t</div></div>\n\t\t<br/>\n\t\t" . $inf . "<br/>\n\t\t" . $inf1 . "\n\t\t<div id='rrr" . $n . "'></div>\n\t\t<div id='temp" . $n . "' style='display:none;'></div>\t\n\t\t<div style='text-align:center;'>\n\t\t<div id='imgload" . $n . "'></div>\n\t\t<input type='hidden' id='page" . $n . "' name='page" . $n . "' value='2'>\n\t\t</div>\n\t\t<input type='button' style='width:100%;' onclick='upload_wish(rrr" . $n . ",page" . $n . ", temp" . $n . "," . $n . ")' value='Завантажити ще'>\n\t\t</tr>";
}
}
}
function fenom_function_printBody($params)
{
cmsPage::getInstance()->printBody();
}
function blogs()
{
$inCore = cmsCore::getInstance();
$inPage = cmsPage::getInstance();
$inDB = cmsDatabase::getInstance();
$inUser = cmsUser::getInstance();
cmsCore::loadClass('blog');
$inBlog = cmsBlogs::getInstance();
$inBlog->owner = 'user';
global $_LANG;
$model = new cms_model_blogs();
define('IS_BILLING', $inCore->isComponentInstalled('billing'));
if (IS_BILLING) {
cmsCore::loadClass('billing');
}
//Получаем параметры
$id = cmsCore::request('id', 'int', 0);
$post_id = cmsCore::request('post_id', 'int', 0);
$bloglink = cmsCore::request('bloglink', 'str', '');
$seolink = cmsCore::request('seolink', 'str', '');
$do = $inCore->do;
$page = cmsCore::request('page', 'int', 1);
$cat_id = cmsCore::request('cat_id', 'int', 0);
$ownertype = cmsCore::request('ownertype', 'str', '');
$on_moderate = cmsCore::request('on_moderate', 'int', 0);
$pagetitle = $inCore->getComponentTitle();
$inPage->addPathway($pagetitle, '/blogs');
$inPage->setTitle($pagetitle);
$inPage->setDescription($model->config['meta_desc'] ? $model->config['meta_desc'] : $pagetitle);
$inPage->setKeywords($model->config['meta_keys'] ? $model->config['meta_keys'] : $pagetitle);
$inPage->addHeadJsLang(array('CONFIG_BLOG', 'DEL_BLOG', 'YOU_REALY_DELETE_BLOG', 'NEW_CAT', 'RENAME_CAT', 'YOU_REALY_DELETE_CAT', 'YOU_REALY_DELETE_POST', 'NO_PUBLISHED'));
///////////////////////// МОЙ БЛОГ /////////////////////////////////////////////
if ($do == 'my_blog') {
if (!$inUser->id) {
cmsCore::error404();
}
$my_blog = $inBlog->getBlogByUserId($inUser->id);
if (!$my_blog) {
cmsCore::redirect('/blogs/createblog.html');
} else {
cmsCore::redirect($model->getBlogURL($my_blog['seolink']));
}
}
///////////////////////// ПОСЛЕДНИЕ ПОСТЫ //////////////////////////////////////
if ($do == 'view') {
$inPage->addHead('<link rel="alternate" type="application/rss+xml" title="' . $_LANG['RSS_BLOGS'] . '" href="' . HOST . '/rss/blogs/all/feed.rss">');
// кроме админов в списке только с доступом для всех
if (!$inUser->is_admin) {
$inBlog->whereOnlyPublic();
}
// ограничиваем по рейтингу если надо
if ($model->config['list_min_rating']) {
$inBlog->ratingGreaterThan($model->config['list_min_rating']);
}
// всего постов
$total = $inBlog->getPostsCount($inUser->is_admin);
//устанавливаем сортировку
$inDB->orderBy('p.pubdate', 'DESC');
$inDB->limitPage($page, $model->config['perpage']);
// сами посты
$posts = $inBlog->getPosts($inUser->is_admin, $model);
if (!$posts && $page > 1) {
cmsCore::error404();
}
cmsPage::initTemplate('components', 'com_blog_view_posts')->assign('pagetitle', $pagetitle)->assign('ownertype', $ownertype)->assign('total', $total)->assign('posts', $posts)->assign('pagination', cmsPage::getPagebar($total, $page, $model->config['perpage'], '/blogs/latest-%page%.html'))->assign('cfg', $model->config)->display('com_blog_view_posts.tpl');
}
////////// СОЗДАНИЕ БЛОГА //////////////////////////////////////////////////////
if ($do == 'create') {
//Проверяем авторизацию
if (!$inUser->id) {
cmsUser::goToLogin();
}
//Если у пользователя уже есть блог, то выходим
if ($inBlog->getUserBlogId($inUser->id)) {
cmsCore::redirectBack();
}
$inPage->addPathway($_LANG['PATH_CREATING_BLOG']);
$inPage->setTitle($_LANG['CREATE_BLOG']);
if (IS_BILLING) {
cmsBilling::checkBalance('blogs', 'add_blog');
}
//Показ формы создания блога
if (!cmsCore::inRequest('goadd')) {
cmsPage::initTemplate('components', 'com_blog_create')->assign('is_restrictions', !$inUser->is_admin && $model->config['min_karma'])->assign('cfg', $model->config)->display('com_blog_create.tpl');
}
//Сам процесс создания блога
if (cmsCore::inRequest('goadd')) {
$title = cmsCore::request('title', 'str');
$allow_who = cmsCore::request('allow_who', 'str', 'all');
$ownertype = cmsCore::request('ownertype', 'str', 'single');
//Проверяем название
if (mb_strlen($title) < 5) {
cmsCore::addSessionMessage($_LANG['BLOG_ERR_TITLE'], 'error');
cmsCore::redirect('/blogs/createblog.html');
}
//Проверяем хватает ли кармы, но только если это не админ
if ($model->config['min_karma'] && !$inUser->is_admin) {
// если персональный блог
if ($ownertype == 'single' && $inUser->karma < $model->config['min_karma_private']) {
cmsCore::addSessionMessage($_LANG['BLOG_YOU_NEED'] . ' <a href="/users/' . $inUser->id . '/karma.html">' . $_LANG['BLOG_KARMS'] . '</a> ' . $_LANG['FOR_CREATE_PERSON_BLOG'] . ' — ' . $model->config['min_karma_private'] . ', ' . $_LANG['BLOG_HEAVING'] . ' — ' . $inUser->karma, 'error');
cmsCore::redirect('/blogs/createblog.html');
}
// если коллективный блог
if ($ownertype == 'multi' && $inUser->karma < $model->config['min_karma_public']) {
cmsCore::addSessionMessage($_LANG['BLOG_YOU_NEED'] . ' <a href="/users/' . $inUser->id . '/karma.html">' . $_LANG['BLOG_KARMS'] . '</a> ' . $_LANG['FOR_CREATE_TEAM_BLOG'] . ' — ' . $model->config['min_karma_public'] . ', ' . $_LANG['BLOG_HEAVING'] . ' — ' . $inUser->karma, 'error');
cmsCore::redirect('/blogs/createblog.html');
}
}
//Добавляем блог в базу
$blog_id = $inBlog->addBlog(array('user_id' => $inUser->id, 'title' => $title, 'allow_who' => $allow_who, 'ownertype' => $ownertype, 'forall' => 1));
$blog_link = $inDB->get_field('cms_blogs', "id='{$blog_id}'", 'seolink');
//регистрируем событие
cmsActions::log('add_blog', array('object' => $title, 'object_url' => $model->getBlogURL($blog_link), 'object_id' => $blog_id, 'target' => '', 'target_url' => '', 'target_id' => 0, 'description' => ''));
if (IS_BILLING) {
cmsBilling::process('blogs', 'add_blog');
}
cmsCore::addSessionMessage($_LANG['BLOG_CREATED_TEXT'], 'info');
cmsCore::redirect($model->getBlogURL($blog_link));
}
}
////////// НАСТРОЙКИ БЛОГА /////////////////////////////////////////////////////
if ($do == 'config') {
if (!$inUser->id) {
cmsCore::error404();
}
if (!cmsCore::isAjax()) {
cmsCore::error404();
}
// получаем блог
$blog = $inBlog->getBlog($id);
if (!$blog) {
cmsCore::error404();
}
//Проверяем является пользователь хозяином блога или админом
if ($blog['user_id'] != $inUser->id && !$inUser->is_admin) {
cmsCore::halt();
}
//Если нет запроса на сохранение, показываем форму настроек блога
if (!cmsCore::inRequest('goadd')) {
//Получаем список авторов блога
$authors = $inBlog->getBlogAuthors($blog['id']);
cmsPage::initTemplate('components', 'com_blog_config')->assign('blog', $blog)->assign('form_action', '/blogs/' . $blog['id'] . '/editblog.html')->assign('authors_list', cmsUser::getAuthorsList($authors))->assign('users_list', cmsUser::getUsersList(false, $authors))->assign('is_restrictions', !$inUser->is_admin && $model->config['min_karma'])->assign('cfg', $model->config)->assign('is_admin', $inUser->is_admin)->display('com_blog_config.tpl');
cmsCore::jsonOutput(array('error' => false, 'html' => ob_get_clean()));
}
//Если пришел запрос на сохранение
if (cmsCore::inRequest('goadd')) {
//Получаем настройки
$title = cmsCore::request('title', 'str');
$allow_who = cmsCore::request('allow_who', 'str', 'all');
$ownertype = cmsCore::request('ownertype', 'str', 'single');
$premod = cmsCore::request('premod', 'int', 0);
$forall = cmsCore::request('forall', 'int', 1);
$showcats = cmsCore::request('showcats', 'int', 1);
$authors = cmsCore::request('authorslist', 'array_int', array());
if ($model->config['seo_user_access'] || $inUser->is_admin) {
$page_title = cmsCore::request('pagetitle', 'str', '');
$meta_keys = cmsCore::request('meta_keys', 'str', '');
$meta_desc = cmsCore::request('meta_desc', 'str', '');
} else {
$page_title = $meta_keys = $meta_desc = '';
}
//Проверяем настройки
if (mb_strlen($title) < 5) {
$title = $blog['title'];
}
//Проверяем ограничения по карме (для смены типа блога)
if ($model->config['min_karma'] && !$inUser->is_admin) {
// если персональный блог
if ($ownertype == 'single' && $inUser->karma < $model->config['min_karma_private']) {
cmsCore::jsonOutput(array('error' => true, 'text' => $_LANG['BLOG_YOU_NEED'] . ' <a href="/users/' . $inUser->id . '/karma.html">' . $_LANG['BLOG_KARMS'] . '</a> ' . $_LANG['FOR_CREATE_PERSON_BLOG'] . ' — ' . $model->config['min_karma_private'] . ', ' . $_LANG['BLOG_HEAVING'] . ' — ' . $inUser->karma));
}
// если коллективный блог
if ($ownertype == 'multi' && $inUser->karma < $model->config['min_karma_public']) {
cmsCore::jsonOutput(array('error' => true, 'text' => $_LANG['BLOG_YOU_NEED'] . ' <a href="/users/' . $inUser->id . '/karma.html">' . $_LANG['BLOG_KARMS'] . '</a> ' . $_LANG['FOR_CREATE_TEAM_BLOG'] . ' — ' . $model->config['min_karma_public'] . ', ' . $_LANG['BLOG_HEAVING'] . ' — ' . $inUser->karma));
}
}
if (!cmsUser::checkCsrfToken()) {
cmsCore::halt();
}
//сохраняем авторов
$inBlog->updateBlogAuthors($blog['id'], $authors);
//сохраняем настройки блога
$blog['seolink_new'] = $inBlog->updateBlog($blog['id'], array('title' => $title, 'pagetitle' => $page_title, 'meta_keys' => $meta_keys, 'meta_desc' => $meta_desc, 'allow_who' => $allow_who, 'showcats' => $showcats, 'ownertype' => $ownertype, 'premod' => $premod, 'forall' => $forall), $model->config['update_seo_link_blog']);
$blog['seolink'] = $blog['seolink_new'] ? $blog['seolink_new'] : $blog['seolink'];
if (stripslashes($title) != $blog['title']) {
// обновляем записи постов
cmsActions::updateLog('add_post', array('target' => $title, 'target_url' => $model->getBlogURL($blog['seolink'])), 0, $blog['id']);
// обновляем запись добавления блога
cmsActions::updateLog('add_blog', array('object' => $title, 'object_url' => $model->getBlogURL($blog['seolink'])), $blog['id']);
}
cmsCore::jsonOutput(array('error' => false, 'redirect' => $model->getBlogURL($blog['seolink'])));
}
}
////////// СПИСОК БЛОГОВ ///////////////////////////////////////////////////////
if ($do == 'view_blogs') {
// rss в адресной строке
$inPage->addHead('<link rel="alternate" type="application/rss+xml" title="' . $_LANG['BLOGS'] . '" href="' . HOST . '/rss/blogs/all/feed.rss">');
// тип блога
if ($ownertype && $ownertype != 'all') {
$inBlog->whereOwnerTypeIs($ownertype);
}
// всего блогов
$total = $inBlog->getBlogsCount();
//устанавливаем сортировку
$inDB->orderBy('b.rating', 'DESC');
$inDB->limitPage($page, $model->config['perpage_blog']);
//Получаем список блогов
$blogs = $inBlog->getBlogs($model);
if (!$blogs && $page > 1) {
cmsCore::error404();
}
//Генерируем панель со страницами и устанавливаем заголовки страниц и глубиномера
switch ($ownertype) {
case 'all':
$inPage->setTitle($_LANG['ALL_BLOGS']);
$inPage->setDescription($_LANG['BLOGS'] . ' - ' . $_LANG['ALL_BLOGS']);
$inPage->addPathway($_LANG['ALL_BLOGS']);
$link = '/blogs/all-%page%.html';
break;
case 'single':
$inPage->setTitle($_LANG['PERSONALS']);
$inPage->setDescription($_LANG['PERSONALS'] . ' ' . $_LANG['BLOGS']);
$inPage->addPathway($_LANG['PERSONALS']);
$link = '/blogs/single-%page%.html';
break;
case 'multi':
$inPage->setTitle($_LANG['COLLECTIVES']);
$inPage->setDescription($_LANG['COLLECTIVES'] . ' ' . $_LANG['BLOGS']);
$inPage->addPathway($_LANG['COLLECTIVES']);
$link = '/blogs/multi-%page%.html';
break;
}
if ($blogs) {
foreach ($blogs as $b) {
$k[] = $b['title'];
}
$inPage->setKeywords(implode(', ', $k));
}
cmsPage::initTemplate('components', 'com_blog_view_all')->assign('cfg', $model->config)->assign('total', $total)->assign('ownertype', $ownertype)->assign('blogs', $blogs)->assign('pagination', cmsPage::getPagebar($total, $page, $model->config['perpage_blog'], $link))->display('com_blog_view_all.tpl');
}
////////// ПРОСМОТР БЛОГА //////////////////////////////////////////////////////
if ($do == 'blog') {
// получаем блог
$blog = $inBlog->getBlog($bloglink);
// Совместимость со старыми ссылками на клубные блоги
// Пробуем клубный блог получить по ссылке
if (!$blog) {
$blog_user_id = $inDB->get_field('cms_blogs', "seolink = '{$bloglink}' AND owner = 'club'", 'user_id');
if ($blog_user_id) {
cmsCore::redirect('/clubs/' . $blog_user_id . '_blog', '301');
}
}
if (!$blog) {
cmsCore::error404();
}
// Права доступа
$myblog = $inUser->id && $inUser->id == $blog['user_id'];
// автор блога
$is_writer = $inBlog->isUserBlogWriter($blog, $inUser->id);
// может ли пользователь писать в блог
$inPage->addPathway($blog['title'], $model->getBlogURL($blog['seolink']));
// rss в адресной строке
$inPage->addHead('<link rel="alternate" type="application/rss+xml" title="' . htmlspecialchars(strip_tags($blog['title'])) . '" href="' . HOST . '/rss/blogs/' . $blog['id'] . '/feed.rss">');
if ($myblog || $inUser->is_admin) {
$inPage->addHeadJS('components/blogs/js/blog.js');
}
//Если доступа нет, возвращаемся и выводим сообщение об ошибке
if (!cmsUser::checkUserContentAccess($blog['allow_who'], $blog['user_id'])) {
cmsCore::addSessionMessage($_LANG['CLOSED_BLOG'] . '<br>' . $_LANG['CLOSED_BLOG_TEXT'], 'error');
cmsCore::redirect('/blogs');
}
// Если показываем посты на модерации, если запрашиваем их
if ($on_moderate) {
if (!$inUser->is_admin && !($myblog && $blog['ownertype'] == 'multi' && $blog['premod'])) {
cmsCore::error404();
}
$inBlog->whereNotPublished();
$inPage->setTitle($_LANG['POSTS_ON_MODERATE']);
$inPage->addPathway($_LANG['POSTS_ON_MODERATE']);
$blog['title'] .= ' - ' . $_LANG['POSTS_ON_MODERATE'];
}
//Получаем html-код ссылки на автора с иконкой его пола
$blog['author'] = cmsUser::getGenderLink($blog['user_id']);
// посты данного блога
$inBlog->whereBlogIs($blog['id']);
// кроме админов автора в списке только с доступом для всех
if (!$inUser->is_admin && !$myblog && !$inUser->isFriend($blog['user_id'])) {
$inBlog->whereOnlyPublic();
}
// если пришла категория
if ($cat_id) {
$all_total = $inBlog->getPostsCount($inUser->is_admin || $myblog);
$inBlog->whereCatIs($cat_id);
}
// всего постов
$total = $inBlog->getPostsCount($inUser->is_admin || $myblog);
//устанавливаем сортировку
$inDB->orderBy('p.pubdate', 'DESC');
$inDB->limitPage($page, $model->config['perpage']);
// сами посты
$posts = $inBlog->getPosts($inUser->is_admin || $myblog, $model);
if (!$posts && $page > 1) {
cmsCore::error404();
}
//Если нужно, получаем список рубрик (категорий) этого блога
$blogcats = $blog['showcats'] ? $inBlog->getBlogCats($blog['id']) : false;
//Считаем количество постов, ожидающих модерации
$on_moderate = ($inUser->is_admin || $myblog) && !$on_moderate ? $inBlog->getModerationCount($blog['id']) : false;
// админлинки
$blog['moderate_link'] = $model->getBlogURL($blog['seolink']) . '/moderate.html';
$blog['blog_link'] = $model->getBlogURL($blog['seolink']);
$blog['add_post_link'] = '/blogs/' . $blog['id'] . '/newpost' . ($cat_id ? $cat_id : '') . '.html';
//Генерируем панель со страницами
if ($cat_id) {
$pagination = cmsPage::getPagebar($total, $page, $model->config['perpage'], $blog['blog_link'] . '/page-%page%/cat-' . $cat_id);
} else {
$pagination = cmsPage::getPagebar($total, $page, $model->config['perpage'], $blog['blog_link'] . '/page-%page%');
}
// SEO
$inPage->setTitle($blog['pagetitle'] ? $blog['pagetitle'] : $blog['title']);
$inPage->setDescription($blog['meta_desc'] ? $blog['meta_desc'] : $blog['title']);
// keywords
if ($blog['meta_keys']) {
$meta_keys = $blog['meta_keys'];
} elseif ($posts) {
foreach ($posts as $p) {
$k[] = $p['title'];
}
$meta_keys = implode(', ', $k);
} else {
$meta_keys = $blog['title'];
}
$inPage->setKeywords($meta_keys);
cmsPage::initTemplate('components', 'com_blog_view')->assign('myblog', $myblog)->assign('is_config', true)->assign('is_admin', $inUser->is_admin)->assign('is_writer', $is_writer)->assign('on_moderate', $on_moderate)->assign('cat_id', $cat_id)->assign('blogcats', $blogcats)->assign('total', $total)->assign('all_total', isset($all_total) ? $all_total : 0)->assign('blog', $blog)->assign('posts', $posts)->assign('pagination', $pagination)->display('com_blog_view.tpl');
}
////////// НОВЫЙ ПОСТ / РЕДАКТИРОВАНИЕ ПОСТА ///////////////////////////////////
if ($do == 'newpost' || $do == 'editpost') {
if (!$inUser->id) {
cmsUser::goToLogin();
}
// для редактирования сначала получаем пост
if ($do == 'editpost') {
$post = $inBlog->getPost($post_id);
if (!$post) {
cmsCore::error404();
}
$id = $post['blog_id'];
$post['tags'] = cmsTagLine('blogpost', $post['id'], false);
}
// получаем блог
$blog = $inBlog->getBlog($id);
if (!$blog) {
cmsCore::error404();
}
//Если доступа нет, возвращаемся и выводим сообщение об ошибке
if (!cmsUser::checkUserContentAccess($blog['allow_who'], $blog['user_id'])) {
cmsCore::addSessionMessage($_LANG['CLOSED_BLOG'] . '<br>' . $_LANG['CLOSED_BLOG_TEXT'], 'error');
cmsCore::redirect('/blogs');
}
// Права доступа
$myblog = $inUser->id && $inUser->id == $blog['user_id'];
// автор блога
$is_writer = $inBlog->isUserBlogWriter($blog, $inUser->id);
// может ли пользователь писать в блог
// если не его блог, пользователь не писатель и не админ, вне зависимости от авторства показываем 404
if (!$myblog && !$is_writer && !$inUser->is_admin) {
cmsCore::error404();
}
// проверяем является ли пользователь автором, если редактируем пост
if ($do == 'editpost' && !$inUser->is_admin && $post['user_id'] != $inUser->id) {
cmsCore::error404();
}
//Если еще не было запроса на сохранение
if (!cmsCore::inRequest('goadd')) {
$inPage->addPathway($blog['title'], $model->getBlogURL($blog['seolink']));
//для нового поста
if ($do == 'newpost') {
if (IS_BILLING) {
cmsBilling::checkBalance('blogs', 'add_post');
}
$inPage->addPathway($_LANG['NEW_POST']);
$inPage->setTitle($_LANG['NEW_POST']);
$post = cmsUser::sessionGet('mod');
if ($post) {
cmsUser::sessionDel('mod');
} else {
$post['cat_id'] = $cat_id;
$post['comments'] = 1;
}
}
//для редактирования поста
if ($do == 'editpost') {
$inPage->addPathway($post['title'], $model->getPostURL($blog['seolink'], $post['seolink']));
$inPage->addPathway($_LANG['EDIT_POST']);
$inPage->setTitle($_LANG['EDIT_POST']);
}
$inPage->initAutocomplete();
$autocomplete_js = $inPage->getAutocompleteJS('tagsearch', 'tags');
//получаем рубрики блога
$cat_list = cmsCore::getListItems('cms_blog_cats', $post['cat_id'], 'id', 'ASC', "blog_id = '{$blog['id']}'");
//получаем код панелей bbcode и смайлов
$bb_toolbar = cmsPage::getBBCodeToolbar('message', $model->config['img_on'], 'blogs', 'blog_post', $post_id);
$smilies = cmsPage::getSmilesPanel('message');
$inCore->initAutoGrowText('#message');
//показываем форму
cmsPage::initTemplate('components', 'com_blog_edit_post')->assign('blog', $blog)->assign('pagetitle', $do == 'editpost' ? $_LANG['EDIT_POST'] : $_LANG['NEW_POST'])->assign('mod', $post)->assign('cat_list', $cat_list)->assign('bb_toolbar', $bb_toolbar)->assign('smilies', $smilies)->assign('is_admin', $inUser->is_admin)->assign('cfg', $model->config)->assign('myblog', $myblog)->assign('user_can_iscomments', cmsUser::isUserCan('comments/iscomments'))->assign('autocomplete_js', $autocomplete_js)->display('com_blog_edit_post.tpl');
}
//Если есть запрос на сохранение
if (cmsCore::inRequest('goadd')) {
$errors = false;
//Получаем параметры
$mod['title'] = cmsCore::request('title', 'str');
$mod['content'] = cmsCore::request('content', 'html');
$mod['feel'] = cmsCore::request('feel', 'str', '');
$mod['music'] = cmsCore::request('music', 'str', '');
$mod['cat_id'] = cmsCore::request('cat_id', 'int');
$mod['allow_who'] = cmsCore::request('allow_who', 'str', $blog['allow_who']);
$mod['tags'] = cmsCore::request('tags', 'str', '');
$mod['comments'] = cmsCore::request('comments', 'int', 1);
if ($model->config['seo_user_access'] || $inUser->is_admin) {
$mod['pagetitle'] = cmsCore::request('pagetitle', 'str', '');
$mod['meta_keys'] = cmsCore::request('meta_keys', 'str', '');
$mod['meta_desc'] = cmsCore::request('meta_desc', 'str', '');
}
$mod['published'] = $myblog || !$blog['premod'] ? 1 : 0;
$mod['blog_id'] = $blog['id'];
//Проверяем их
if (mb_strlen($mod['title']) < 2) {
cmsCore::addSessionMessage($_LANG['POST_ERR_TITLE'], 'error');
$errors = true;
}
if (mb_strlen($mod['content']) < 5) {
cmsCore::addSessionMessage($_LANG['POST_ERR_TEXT'], 'error');
$errors = true;
}
// Если есть ошибки, возвращаемся назад
if ($errors) {
cmsUser::sessionPut('mod', $mod);
cmsCore::redirectBack();
}
//Если нет ошибок
//добавляем новый пост...
if ($do == 'newpost') {
if (IS_BILLING) {
cmsBilling::process('blogs', 'add_post');
}
$mod['pubdate'] = date('Y-m-d H:i:s');
$mod['user_id'] = $inUser->id;
// добавляем пост, получая его id и seolink
$added = $inBlog->addPost($mod);
$mod = array_merge($mod, $added);
if ($mod['published']) {
$mod['seolink'] = $model->getPostURL($blog['seolink'], $mod['seolink']);
if ($blog['allow_who'] != 'nobody' && $mod['allow_who'] != 'nobody') {
cmsCore::callEvent('ADD_POST_DONE', $mod);
cmsActions::log('add_post', array('object' => $mod['title'], 'object_url' => $mod['seolink'], 'object_id' => $mod['id'], 'target' => $blog['title'], 'target_url' => $model->getBlogURL($blog['seolink']), 'target_id' => $blog['id'], 'description' => '', 'is_friends_only' => (int) ($blog['allow_who'] == 'friends' || $mod['allow_who'] == 'friends')));
}
cmsCore::addSessionMessage($_LANG['POST_CREATED'], 'success');
cmsCore::redirect($mod['seolink']);
}
if (!$mod['published']) {
$message = str_replace('%user%', cmsUser::getProfileLink($inUser->login, $inUser->nickname), $_LANG['MSG_POST_SUBMIT']);
$message = str_replace('%post%', '<a href="' . $model->getPostURL($blog['seolink'], $added['seolink']) . '">' . $mod['title'] . '</a>', $message);
$message = str_replace('%blog%', '<a href="' . $model->getBlogURL($blog['seolink']) . '">' . $blog['title'] . '</a>', $message);
cmsUser::sendMessage(USER_UPDATER, $blog['user_id'], $message);
cmsCore::addSessionMessage($_LANG['POST_PREMODER_TEXT'], 'info');
cmsCore::redirect($model->getBlogURL($blog['seolink']));
}
}
//...или сохраняем пост после редактирования
if ($do == 'editpost') {
if ($model->config['update_date']) {
$mod['pubdate'] = date('Y-m-d H:i:s');
}
$mod['edit_times'] = (int) $post['edit_times'] + 1;
$new_post_seolink = $inBlog->updatePost($post['id'], $mod, $model->config['update_seo_link']);
$post['seolink'] = is_string($new_post_seolink) ? $new_post_seolink : $post['seolink'];
cmsActions::updateLog('add_post', array('object' => $mod['title'], 'pubdate' => $model->config['update_date'] ? $mod['pubdate'] : $post['pubdate'], 'object_url' => $model->getPostURL($blog['seolink'], $post['seolink'])), $post['id']);
if (!$mod['published']) {
$message = str_replace('%user%', cmsUser::getProfileLink($inUser->login, $inUser->nickname), $_LANG['MSG_POST_UPDATE']);
$message = str_replace('%post%', '<a href="' . $model->getPostURL($blog['seolink'], $post['seolink']) . '">' . $mod['title'] . '</a>', $message);
$message = str_replace('%blog%', '<a href="' . $model->getBlogURL($blog['seolink']) . '">' . $blog['title'] . '</a>', $message);
cmsUser::sendMessage(USER_UPDATER, $blog['user_id'], $message);
cmsCore::addSessionMessage($_LANG['POST_PREMODER_TEXT'], 'info');
} else {
cmsCore::addSessionMessage($_LANG['POST_UPDATED'], 'success');
}
cmsCore::redirect($model->getPostURL($blog['seolink'], $post['seolink']));
}
}
}
////////// НОВАЯ РУБРИКА / РЕДАКТИРОВАНИЕ РУБРИКИ //////////////////////////////
if ($do == 'newcat' || $do == 'editcat') {
if (!$inUser->id) {
cmsCore::error404();
}
if (!cmsCore::isAjax()) {
cmsCore::error404();
}
$cat = array();
// Для редактирования сначала получаем рубрику
if ($do == 'editcat') {
$cat = $inBlog->getBlogCategory($cat_id);
if (!$cat) {
cmsCore::halt();
}
$id = $cat['blog_id'];
}
// получаем блог
$blog = $inBlog->getBlog($id);
if (!$blog) {
cmsCore::halt();
}
//Проверяем является пользователь хозяином блога или админом
if ($blog['user_id'] != $inUser->id && !$inUser->is_admin) {
cmsCore::halt();
}
//Если нет запроса на сохранение
if (!cmsCore::inRequest('goadd')) {
cmsPage::initTemplate('components', 'com_blog_edit_cat')->assign('mod', $cat)->assign('form_action', $do == 'newcat' ? '/blogs/' . $blog['id'] . '/newcat.html' : '/blogs/editcat' . $cat['id'] . '.html')->display('com_blog_edit_cat.tpl');
cmsCore::jsonOutput(array('error' => false, 'html' => ob_get_clean()));
}
//Если есть запрос на сохранение
if (cmsCore::inRequest('goadd')) {
$new_cat['title'] = cmsCore::request('title', 'str', '');
$new_cat['description'] = cmsCore::request('description', 'str', '');
$new_cat['blog_id'] = $blog['id'];
if (mb_strlen($new_cat['title']) < 3) {
cmsCore::jsonOutput(array('error' => true, 'text' => $_LANG['CAT_ERR_TITLE']));
}
if (!cmsUser::checkCsrfToken()) {
cmsCore::halt();
}
//новая рубрика
if ($do == 'newcat') {
$cat['id'] = $inBlog->addBlogCategory($new_cat);
cmsCore::addSessionMessage($_LANG['CAT_IS_ADDED'], 'success');
}
//редактирование рубрики
if ($do == 'editcat') {
$inBlog->updateBlogCategory($cat['id'], $new_cat);
cmsCore::addSessionMessage($_LANG['CAT_IS_UPDATED'], 'success');
}
cmsCore::jsonOutput(array('error' => false, 'redirect' => $model->getBlogURL($blog['seolink'], 1, $cat['id'])));
}
}
///////////////////////// УДАЛЕНИЕ РУБРИКИ /////////////////////////////////////
if ($do == 'delcat') {
if (!$inUser->id) {
cmsCore::error404();
}
if (!cmsCore::isAjax()) {
cmsCore::error404();
}
$cat = $inBlog->getBlogCategory($cat_id);
if (!$cat) {
cmsCore::halt();
}
$blog = $inBlog->getBlog($cat['blog_id']);
if (!$blog) {
cmsCore::halt();
}
if ($blog['user_id'] != $inUser->id && !$inUser->is_admin) {
cmsCore::halt();
}
if (!cmsUser::checkCsrfToken()) {
cmsCore::halt();
}
$inBlog->deleteBlogCategory($cat['id']);
cmsCore::addSessionMessage($_LANG['CAT_IS_DELETED'], 'success');
cmsCore::jsonOutput(array('error' => false, 'redirect' => $model->getBlogURL($blog['seolink'])));
}
////////////////////////// ПРОСМОТР ПОСТА //////////////////////////////////////
if ($do == 'post') {
$post = $inBlog->getPost($seolink);
if (!$post) {
cmsCore::error404();
}
$blog = $inBlog->getBlog($post['blog_id']);
// Совместимость со старыми ссылками на клубные посты блога
if (!$blog) {
$blog_user_id = $inDB->get_field('cms_blogs', "id = '{$post['blog_id']}' AND owner = 'club'", 'user_id');
if ($blog_user_id) {
cmsCore::redirect('/clubs/' . $blog_user_id . '_' . $post['seolink'] . '.html', '301');
}
}
if (!$blog) {
cmsCore::error404();
}
// Проверяем сеолинк блога и делаем редирект если он изменился
if ($bloglink != $blog['seolink']) {
cmsCore::redirect($model->getPostURL($blog['seolink'], $post['seolink']), '301');
}
// право просмотра блога
if (!cmsUser::checkUserContentAccess($blog['allow_who'], $blog['user_id'])) {
cmsCore::addSessionMessage($_LANG['CLOSED_BLOG'] . '<br>' . $_LANG['CLOSED_BLOG_TEXT'], 'error');
cmsCore::redirect('/blogs');
}
// право просмотра самого поста
if (!cmsUser::checkUserContentAccess($post['allow_who'], $post['user_id'])) {
cmsCore::addSessionMessage($_LANG['CLOSED_POST'] . '<br>' . $_LANG['CLOSED_POST_TEXT'], 'error');
cmsCore::redirect($model->getBlogURL($blog['seolink']));
}
if ($inUser->id) {
$inPage->addHeadJS('components/blogs/js/blog.js');
}
$inPage->addPathway($blog['title'], $model->getBlogURL($blog['seolink']));
$inPage->addPathway($post['title']);
$inPage->setTitle($post['pagetitle'] ? $post['pagetitle'] : $post['title']);
$inPage->setDescription($post['meta_desc'] ? $post['meta_desc'] : crop($post['content_html']));
$inPage->setKeywords($post['meta_keys'] ? $post['meta_keys'] : $post['title']);
if ($post['cat_id']) {
$cat = $inBlog->getBlogCategory($post['cat_id']);
}
$post['tags'] = cmsTagBar('blogpost', $post['id']);
$is_author = $inUser->id && $inUser->id == $post['user_id'];
// увеличиваем кол-во просмотров
if (!$is_author) {
$inDB->setFlag('cms_blog_posts', $post['id'], 'hits', $post['hits'] + 1);
}
cmsPage::initTemplate('components', 'com_blog_view_post')->assign('post', $post)->assign('blog', $blog)->assign('cat', $cat)->assign('is_author', $is_author)->assign('is_writer', $inBlog->isUserBlogWriter($blog, $inUser->id))->assign('myblog', $inUser->id && $inUser->id == $blog['user_id'])->assign('is_admin', $inUser->is_admin)->assign('karma_form', cmsKarmaForm('blogpost', $post['id'], $post['rating'], $is_author))->assign('navigation', $inBlog->getPostNavigation($post['id'], $blog['id'], $model, $blog['seolink']))->display('com_blog_view_post.tpl');
if ($inCore->isComponentInstalled('comments') && $post['comments']) {
cmsCore::includeComments();
comments('blog', $post['id'], array(), $is_author);
}
}
///////////////////////// УДАЛЕНИЕ ПОСТА ///////////////////////////////////////
if ($do == 'delpost') {
if (!$inUser->id) {
cmsCore::error404();
}
if (!cmsCore::isAjax()) {
cmsCore::error404();
}
$post = $inBlog->getPost($post_id);
if (!$post) {
cmsCore::halt();
}
$blog = $inBlog->getBlog($post['blog_id']);
if (!$blog) {
cmsCore::halt();
}
$myblog = $inUser->id == $blog['user_id'];
// автор блога
$is_writer = $inBlog->isUserBlogWriter($blog, $inUser->id);
// если не его блог, пользователь не писатель и не админ
if (!$myblog && !$is_writer && !$inUser->is_admin) {
cmsCore::halt();
}
// проверяем является ли пользователь автором
if (!$inUser->is_admin && !$myblog && $post['user_id'] != $inUser->id) {
cmsCore::halt();
}
if (!cmsUser::checkCsrfToken()) {
cmsCore::halt();
}
$inBlog->deletePost($post['id']);
if ($inUser->id != $post['user_id']) {
cmsUser::sendMessage(USER_UPDATER, $post['user_id'], $_LANG['YOUR_POST'] . ' <b>«' . $post['title'] . '»</b> ' . $_LANG['WAS_DELETED_FROM_BLOG'] . ' <b>«<a href="' . $model->getBlogURL($blog['seolink']) . '">' . $blog['title'] . '</a>»</b>');
}
cmsCore::addSessionMessage($_LANG['POST_IS_DELETED'], 'success');
cmsCore::jsonOutput(array('error' => false, 'redirect' => $model->getBlogURL($blog['seolink'])));
}
///////////////////////// ПУБЛИКАЦИЯ ПОСТА /////////////////////////////////////
if ($do == 'publishpost') {
if (!$inUser->id) {
cmsCore::error404();
}
if (!cmsCore::isAjax()) {
cmsCore::error404();
}
$post = $inBlog->getPost($post_id);
if (!$post) {
cmsCore::halt();
}
$blog = $inBlog->getBlog($post['blog_id']);
if (!$blog) {
cmsCore::halt();
}
// публикуют авторы блога и админы
if ($blog['user_id'] != $inUser->id && !$inUser->is_admin) {
cmsCore::halt();
}
$inBlog->publishPost($post_id);
$post['seolink'] = $model->getPostURL($blog['seolink'], $post['seolink']);
if ($blog['allow_who'] == 'all' && $post['allow_who'] == 'all') {
cmsCore::callEvent('ADD_POST_DONE', $post);
}
if ($blog['allow_who'] != 'nobody' && $post['allow_who'] != 'nobody') {
cmsActions::log('add_post', array('object' => $post['title'], 'user_id' => $post['user_id'], 'object_url' => $post['seolink'], 'object_id' => $post['id'], 'target' => $blog['title'], 'target_url' => $model->getBlogURL($blog['seolink']), 'target_id' => $blog['id'], 'description' => '', 'is_friends_only' => (int) ($blog['allow_who'] == 'friends' || $post['allow_who'] == 'friends')));
}
cmsUser::sendMessage(USER_UPDATER, $post['user_id'], $_LANG['YOUR_POST'] . ' <b>«<a href="' . $post['seolink'] . '">' . $post['title'] . '</a>»</b> ' . $_LANG['PUBLISHED_IN_BLOG'] . ' <b>«<a href="' . $model->getBlogURL($blog['seolink']) . '">' . $blog['title'] . '</a>»</b>');
cmsCore::halt('ok');
}
///////////////////////// УДАЛЕНИЕ БЛОГА ///////////////////////////////////////
if ($do == 'delblog') {
if (!$inUser->id) {
cmsCore::error404();
}
if (!cmsCore::isAjax()) {
cmsCore::error404();
}
// получаем блог
$blog = $inBlog->getBlog($id);
if (!$blog) {
cmsCore::error404();
}
//Проверяем является пользователь хозяином блога или админом
if ($blog['user_id'] != $inUser->id && !$inUser->is_admin) {
cmsCore::halt();
}
if (!cmsUser::checkCsrfToken()) {
cmsCore::halt();
}
$inBlog->deleteBlog($blog['id']);
cmsCore::addSessionMessage($_LANG['BLOG_IS_DELETED'], 'success');
cmsCore::jsonOutput(array('error' => false, 'redirect' => '/blogs'));
}
////////// VIEW POPULAR POSTS //////////////////////////////////////////////////
if ($do == 'best') {
$inPage->setTitle($_LANG['POPULAR_IN_BLOGS']);
$inPage->addPathway($_LANG['POPULAR_IN_BLOGS']);
$inPage->setDescription($_LANG['POPULAR_IN_BLOGS']);
// кроме админов в списке только с доступом для всех
if (!$inUser->is_admin) {
$inBlog->whereOnlyPublic();
}
// ограничиваем по рейтингу если надо
if ($model->config['list_min_rating']) {
$inBlog->ratingGreaterThan($model->config['list_min_rating']);
}
// всего постов
$total = $inBlog->getPostsCount($inUser->is_admin);
//устанавливаем сортировку
$inDB->orderBy('p.rating', 'DESC');
$inDB->limitPage($page, $model->config['perpage']);
// сами посты
$posts = $inBlog->getPosts($inUser->is_admin, $model);
if (!$posts && $page > 1) {
cmsCore::error404();
}
cmsPage::initTemplate('components', 'com_blog_view_posts')->assign('pagetitle', $_LANG['POPULAR_IN_BLOGS'])->assign('total', $total)->assign('ownertype', $ownertype)->assign('posts', $posts)->assign('pagination', cmsPage::getPagebar($total, $page, $model->config['perpage'], '/blogs/popular-%page%.html'))->assign('cfg', $model->config)->display('com_blog_view_posts.tpl');
}
}
function faq(){
$inCore = cmsCore::getInstance();
$inPage = cmsPage::getInstance();
$inDB = cmsDatabase::getInstance();
$inUser = cmsUser::getInstance();
$model = new cms_model_faq();
define('IS_BILLING', $inCore->isComponentInstalled('billing'));
if (IS_BILLING) { $inCore->loadClass('billing'); }
global $_LANG;
$pagetitle = $inCore->getComponentTitle();
$inPage->addPathway($pagetitle, '/faq');
$inPage->setTitle($pagetitle);
$inPage->setDescription($pagetitle);
$inPage->addHeadJsLang(array('ERR_QUESTION'));
$cfg = $inCore->loadComponentConfig('faq');
if(!isset($cfg['guest_enabled'])) { $cfg['guest_enabled'] = 1; }
if(!isset($cfg['user_link'])) { $cfg['user_link'] = 1; }
if(!isset($cfg['publish'])) { $cfg['publish'] = 0; }
if(!isset($cfg['is_comment'])) { $cfg['is_comment'] = 1; }
$id = $inCore->request('id', 'int', 0);
$do = $inCore->do;
///////////////////////////////////// VIEW CATEGORY ////////////////////////////////////////////////////////////////////////////////
if ($do=='view'){
if($id>0){
//CURRENT CATEGORY
$sql = "SELECT *
FROM cms_faq_cats
WHERE id = '$id'
ORDER BY title ASC LIMIT 1
";
$result = $inDB->query($sql) ;
if (!$inDB->num_rows($result)) { cmsCore::error404(); }
$cat = $inDB->fetch_assoc($result);
//PAGE HEADING
$pagetitle = $cat['title'];
$inPage->setTitle($cat['title']);
$inPage->addPathway($cat['title']);
$inPage->setDescription($cat['title']);
}
//LIST OF SUBCATEGORIES
$sql = "SELECT *
FROM cms_faq_cats
WHERE parent_id = $id AND id > 0 AND published = 1
ORDER BY title ASC
";
$result = $inDB->query($sql) ;
if ($inDB->num_rows($result)){
$subcats = array();
while($subcat = $inDB->fetch_assoc($result)){
$subcats[] = $subcat;
}
$is_subcats = true;
} else {
$is_subcats = false;
}
//CURRENT CATEGORY CONTENT
$perpage = 15;
$page = $inCore->request('page', 'int', 1);
$records = 0;
if ($id > 0){
$sql = "SELECT q.*, u.login, u.nickname
FROM cms_faq_quests q
LEFT JOIN cms_users u ON u.id = q.user_id
WHERE q.category_id = $id AND q.published = 1
ORDER BY q.pubdate DESC
LIMIT ".(($page-1)*$perpage).", $perpage";
$result_total = $inDB->query("SELECT id FROM cms_faq_quests WHERE category_id = $id AND published = 1") ;
$records = $inDB->num_rows($result_total);
} else {
$sql = "SELECT q.*, c.title cat_title, c.id cid, u.login, u.nickname
FROM cms_faq_quests q
LEFT JOIN cms_faq_cats c ON c.id = q.category_id
LEFT JOIN cms_users u ON u.id = q.user_id
WHERE q.published = 1
ORDER BY q.pubdate DESC
LIMIT 15";
}
$result = $inDB->query($sql) ;
if ($inDB->num_rows($result)){
$quests = array();
while($con = $inDB->fetch_assoc($result)){
$con['pubdate'] = $inCore->dateFormat($con['pubdate'], true, false, false);
$con['quest'] = nl2br($con['quest']);
$quests[] = $con;
}
$is_quests = true;
} else {
$is_quests = false;
}
cmsPage::initTemplate('components', 'com_faq_view')->
assign('pagetitle', $pagetitle)->
assign('id', $id)->
assign('subcats', $subcats)->
assign('is_subcats', $is_subcats)->
assign('quests', $quests)->
assign('cfg', $cfg)->
assign('is_quests', $is_quests)->
assign('is_user', $inUser->id)->
assign('pagebar', cmsPage::getPagebar($records, $page, $perpage, '/faq/%id%-%page%', array('id'=>$id)))->
display();
}
///////////////////////////////////// READ QUESTION ////////////////////////////////////////////////////////////////////////////////
if ($do=='read'){
$sql = "SELECT con.*,
cat.title cat_title, cat.id cat_id, u.login, u.nickname
FROM cms_faq_quests con
LEFT JOIN cms_faq_cats cat ON cat.id = con.category_id
LEFT JOIN cms_users u ON u.id = con.user_id
WHERE con.id = $id LIMIT 1";
$result = $inDB->query($sql);
if ($inDB->num_rows($result)){
$inDB->query("UPDATE cms_faq_quests SET hits = hits + 1 WHERE id = $id") ;
$quest = $inDB->fetch_assoc($result);
$quest['pubdate'] = $inCore->dateFormat($quest['pubdate'], true, false, false);
$quest['answerdate'] = $inCore->dateFormat($quest['answerdate'], true, false, false);
if (mb_strlen($quest['quest'])>40) { $shortquest = mb_substr($quest['quest'], 0, 40).'...'; }
else { $shortquest = $quest['quest']; }
$quest['quest'] = nl2br($quest['quest']);
$inPage->setTitle($shortquest);
$inPage->setDescription($shortquest);
$inPage->addPathway($quest['cat_title'], '/faq/'.$quest['cat_id']);
$inPage->addPathway($shortquest);
cmsPage::initTemplate('components', 'com_faq_read')->
assign('quest', $quest)->
assign('cfg', $cfg)->
assign('labels', array('comments' => $_LANG['ANSWERS'], 'add' => $_LANG['REPLY'], 'rss' => $_LANG['RSS_FEED'], 'not_comments' => $_LANG['NOT_ANSWERS']))->
assign('is_admin', $inUser->is_admin)->
display();
} else { cmsCore::error404(); }
}
///////////////////////////////////// SEND QUEST ////////////////////////////////////////////////////////////////////////////////
if ($do=='sendquest'){
if (!$inUser->id && !$cfg['guest_enabled']){ cmsCore::error404(); }
$inPage->setTitle($_LANG['SET_QUESTION']);
$inPage->addPathway($_LANG['SET_QUESTION']);
$inPage->addHeadJS('components/faq/js/common.js');
$error = '';
$captha_code = $inCore->request('code', 'str', '');
$message = $inCore->request('message', 'str', '');
$category_id = $inCore->request('category_id', 'int', '');
$published = ($inUser->is_admin || $cfg['publish']) ? 1 : 0;
$is_submit = $inCore->inRequest('message');
if ($is_submit && !$inUser->id && !cmsCore::checkCaptchaCode()) { $error = $_LANG['ERR_CAPTCHA']; }
if (!$is_submit || $error){
if (IS_BILLING && $inUser->id){ cmsBilling::checkBalance('faq', 'add_quest'); }
cmsPage::initTemplate('components', 'com_faq_add')->
assign('catslist', $inCore->getListItems('cms_faq_cats', $category_id))->
assign('user_id', $inUser->id)->
assign('message', htmlspecialchars($inCore->request('message', 'html', '')))->
assign('error', $error)->
display();
} else {
//SAVE QUESTION
$sql = "INSERT INTO cms_faq_quests (category_id, pubdate, published, quest, answer, user_id, answeruser_id, answerdate, hits)
VALUES ('$category_id', NOW(), '$published', '$message', '', '{$inUser->id}', 0, NOW(), 0)";
$inDB->query($sql);
$quest_id = $inDB->get_last_id('cms_faq_quests');
if (IS_BILLING && $inUser->id){ cmsBilling::process('faq', 'add_quest'); }
$inPage->setTitle($_LANG['QUESTION_SEND']);
$inPage->addPathway($_LANG['QUESTION_SEND']);
if (!$published){
echo '<div class="con_heading">'.$_LANG['QUESTION_SEND'].'</div>';
echo '<div style="margin-top:10px">'.$_LANG['QUESTION_PREMODER'].'</div>';
echo '<div style="margin-top:10px"><a href="/faq">'.$_LANG['CONTINUE'].'</a></div>';
} elseif ($published) {
$category = $inDB->get_field('cms_faq_cats', "id={$category_id}", 'title');
//регистрируем событие
cmsActions::log('add_quest', array(
'object' => $_LANG['QUESTION'],
'object_url' => '/faq/quest'.$quest_id.'.html',
'object_id' => $quest_id,
'target' => $category,
'target_url' => '/faq/'.$category_id,
'target_id' => $category_id,
'description' => strip_tags( mb_strlen(strip_tags($message))>100 ? mb_substr($message, 0, 100) : $message )
));
$inCore->redirect('/faq/quest'.$quest_id.'.html');
} else { $inCore->redirect('/faq/quest'.$quest_id.'.html'); }
}
}
///////////////////////////////////// DELETE QUEST ////////////////////////////////////////////////////////////////////////////////
if ($do=='delquest'){
$quest_id = $inCore->request('quest_id', 'int', 0);
$user_id = $inUser->id;
$sql = "SELECT con.id, con.quest, con.category_id
FROM cms_faq_quests con
WHERE con.id = '$quest_id' LIMIT 1";
$result = $inDB->query($sql);
$quest = $inDB->fetch_assoc($result);
if (!$user_id || !$quest_id || !$quest) { $inCore->redirectBack(); }
if ( !$inCore->inRequest('confirm') ) {
if (cmsUser::userIsAdmin($user_id)){
$inPage->setTitle($_LANG['DEL_QUES']);
$inPage->addPathway($_LANG['DEL_QUES']);
$confirm['title'] = $_LANG['DELETE_QUES'];
$confirm['text'] = $_LANG['YOU_REALY_DELETE_QUES'].':<br> "<a href="/faq/quest'.$quest['id'].'.html">'.$quest['quest'].'</a>"<br><br>';
$confirm['action'] = $_SERVER['REQUEST_URI'];
$confirm['yes_button'] = array();
$confirm['yes_button']['type'] = 'submit';
$confirm['yes_button']['name'] = 'confirm';
cmsPage::initTemplate('components', 'action_confirm')->
assign('confirm', $confirm)->
display();
} else {
$inCore->redirectBack();
}
}
if ( $inCore->inRequest('confirm') ){
if (cmsUser::userIsAdmin($user_id)){
$model->deleteQuest($quest_id);
}
$inCore->redirect('/faq/'.$quest['category_id']);
}
}
} //function
function users()
{
header('X-Frame-Options: DENY');
$inCore = cmsCore::getInstance();
$inPage = cmsPage::getInstance();
$inDB = cmsDatabase::getInstance();
$inUser = cmsUser::getInstance();
global $_LANG;
$model = new cms_model_users();
// id пользователя
$id = cmsCore::request('id', 'int', 0);
// логин пользователя
$login = cmsCore::strClear(urldecode(cmsCore::request('login', 'html', '')));
$do = $inCore->do;
$page = cmsCore::request('page', 'int', 1);
$pagetitle = $inCore->getComponentTitle();
if ($model->config['sw_search'] != 2) {
$inPage->addPathway($pagetitle, '/users');
}
$inPage->setTitle($pagetitle);
$inPage->setDescription($pagetitle);
// js только авторизованным
if ($inUser->id) {
$inPage->addHeadJS('components/users/js/profile.js');
$inPage->addHeadJsLang(array('CONFIRM_CLEAN_CAT', 'CHOOSE_RECIPIENT', 'SEND_TO_USER', 'FRIENDSHIP_OFFER', 'STOP_FRIENDLY', 'REALY_STOP_FRIENDLY', 'ENTER_STATUS', 'HAVE_JUST'));
}
//============================================================================//
//========================= Список пользователей ============================//
//============================================================================//
if ($do == 'view') {
// если запрещен просмотр всех пользователей, 404
if ($model->config['sw_search'] == 2) {
cmsCore::error404();
}
//очищаем поисковые запросы если пришли со другой страницы
if (!strstr(cmsCore::getBackURL(), '/users')) {
cmsUser::sessionClearAll();
}
$stext = array();
// Возможные входные переменные
$name = cmsCore::getSearchVar('name');
$city = cmsCore::getSearchVar('city');
$hobby = cmsCore::getSearchVar('hobby');
$gender = cmsCore::getSearchVar('gender');
$orderby = cmsCore::request('orderby', array('karma', 'rating', 'regdate'), 'regdate');
$orderto = cmsCore::request('orderto', array('asc', 'desc'), 'desc');
$age_to = (int) cmsCore::getSearchVar('ageto', 'all');
$age_fr = (int) cmsCore::getSearchVar('agefrom', 'all');
$group_id = cmsCore::request('group_id', 'int', 0);
// Флаг о показе только онлайн пользователей
if (cmsCore::inRequest('online')) {
cmsUser::sessionPut('usr_online', (bool) cmsCore::request('online', 'int'));
$page = 1;
}
$only_online = cmsUser::sessionGet('usr_online');
if ($only_online) {
$stext[] = $_LANG['SHOWING_ONLY_ONLINE'];
}
///////////////////////////////////////
//////////Условия выборки//////////////
///////////////////////////////////////
// группа
if ($group_id) {
$model->whereUserGroupIs($group_id);
$link['group'] = '/users/group/' . $group_id;
$_LANG['GROUP_SEARCH_NAME'] = cmsUser::getGroupTitle($group_id);
}
// Добавляем в выборку имя, если оно есть
if ($name) {
$model->whereNameIs($name);
$stext[] = $_LANG['NAME'] . " — " . htmlspecialchars(stripslashes($name));
}
// Добавляем в выборку город, если он есть
if ($city) {
$model->whereCityIs($city);
$stext[] = $_LANG['CITY'] . " — " . htmlspecialchars(stripslashes($city));
}
// Добавляем в выборку хобби, если есть
if ($hobby) {
$model->whereHobbyIs($hobby);
$stext[] = $_LANG['HOBBY'] . " — " . htmlspecialchars(stripslashes($hobby));
}
// Добавляем в выборку пол, если есть
if ($gender) {
$model->whereGenderIs($gender);
if ($gender == 'm') {
$stext[] = $_LANG['MALE'];
} else {
$stext[] = $_LANG['FEMALE'];
}
}
// Добавляем в выборку возраст, более
if ($age_fr) {
$model->whereAgeFrom($age_fr);
$stext[] = $_LANG['NOT_YOUNG'] . " {$age_fr} " . $_LANG['YEARS'];
}
// Добавляем в выборку возраст, менее
if ($age_to) {
$model->whereAgeTo($age_to);
$stext[] = $_LANG['NOT_OLD'] . " {$age_fr} " . $_LANG['YEARS'];
}
// Считаем общее количество согласно выборки
$total = $model->getUsersCount($only_online);
if ($total) {
//устанавливаем сортировку
$inDB->orderBy($orderby, $orderto);
//устанавливаем номер текущей страницы и кол-во пользователей на странице
$inDB->limitPage($page, $model->config['users_perpage']);
// Загружаем пользователей согласно выборки
$users = $model->getUsers($only_online);
} else {
$inDB->resetConditions();
}
$link['latest'] = '/users';
$link['positive'] = '/users/positive.html';
$link['rating'] = '/users/rating.html';
if ($orderby == 'regdate') {
$link['selected'] = 'latest';
}
if ($orderby == 'karma') {
$link['selected'] = 'positive';
}
if ($orderby == 'rating') {
$link['selected'] = 'rating';
}
$pagebar_link = '/users/' . $link['selected'] . '%page%.html';
if ($group_id) {
$link['selected'] = 'group';
$pagebar_link = '/users/' . $link['selected'] . '/' . $group_id . '-%page%';
}
cmsPage::initTemplate('components', 'com_users_view')->assign('stext', $stext)->assign('orderby', $orderby)->assign('orderto', $orderto)->assign('users', $users)->assign('total', $total)->assign('only_online', $only_online)->assign('gender', $gender)->assign('name', stripslashes($name))->assign('city', stripslashes($city))->assign('hobby', stripslashes($hobby))->assign('age_to', $age_to)->assign('age_fr', $age_fr)->assign('cfg', $model->config)->assign('link', $link)->assign('pagebar', cmsPage::getPagebar($total, $page, $model->config['users_perpage'], $pagebar_link))->display('com_users_view.tpl');
}
//============================================================================//
//======================= Редактирование профиля ============================//
//============================================================================//
if ($do == 'editprofile') {
// неавторизованным, не владельцам и не админам тут делать нечего
if (!$inUser->id || $inUser->id != $id && !$inUser->is_admin) {
cmsCore::error404();
}
$usr = $model->getUser($id);
if (!$usr) {
cmsCore::error404();
}
$opt = cmsCore::request('opt', 'str', 'edit');
// главного админа может редактировать только он сам
if ($id == 1 && $inUser->id != $id) {
cmsCore::error404();
}
// показываем форму
if ($opt == 'edit') {
$inPage->setTitle($_LANG['CONFIG_PROFILE'] . ' - ' . $usr['nickname']);
$inPage->addPathway($usr['nickname'], cmsUser::getProfileURL($usr['login']));
$inPage->addPathway($_LANG['CONFIG_PROFILE']);
$private_forms = array();
if (isset($model->config['privforms'])) {
if (is_array($model->config['privforms'])) {
foreach ($model->config['privforms'] as $form_id) {
$private_forms = array_merge($private_forms, cmsForm::getFieldsHtml($form_id, $usr['formsdata']));
}
}
}
cmsPage::initTemplate('components', 'com_users_edit_profile')->assign('opt', $opt)->assign('usr', $usr)->assign('private_forms', $private_forms)->assign('cfg_forum', $inCore->loadComponentConfig('forum'))->assign('cfg', $model->config)->display('com_users_edit_profile.tpl');
return;
}
// Если сохраняем профиль
if ($opt == 'save') {
if (!cmsUser::checkCsrfToken()) {
cmsCore::error404();
}
$errors = false;
$users['nickname'] = cmsCore::request('nickname', 'str');
if (mb_strlen($users['nickname']) < 2) {
cmsCore::addSessionMessage($_LANG['SHORT_NICKNAME'], 'error');
$errors = true;
}
cmsCore::loadModel('registration');
$modreg = new cms_model_registration();
if (!$inUser->is_admin) {
if ($modreg->getBadNickname($users['nickname'])) {
cmsCore::addSessionMessage($_LANG['ERR_NICK_EXISTS'], 'error');
$errors = true;
}
}
$profiles['gender'] = cmsCore::request('gender', 'str');
$profiles['city'] = cmsCore::request('city', 'str');
if (mb_strlen($profiles['city']) > 50) {
cmsCore::addSessionMessage($_LANG['LONG_CITY_NAME'], 'error');
$errors = true;
}
$users['email'] = cmsCore::request('email', 'email');
if (!$users['email']) {
cmsCore::addSessionMessage($_LANG['REALY_ADRESS_EMAIL'], 'error');
$errors = true;
}
if ($usr['email'] != $users['email']) {
$is_set_email = $inDB->get_field('cms_users', "email='{$users['email']}'", 'id');
if ($is_set_email) {
cmsCore::addSessionMessage($_LANG['ADRESS_EMAIL_IS_BUSY'], 'error');
$errors = true;
} else {
// формируем токен
$token = md5($usr['email'] . uniqid() . microtime());
$inDB->insert('cms_users_activate', array('user_id' => $inUser->id, 'pubdate' => date("Y-m-d H:i:s"), 'code' => $token));
$codelink = HOST . '/users/change_email/' . $token . '/' . $users['email'];
// по старому адресу высылаем письмо с подтверждением
$letter = cmsCore::getLanguageTextFile('change_email');
$letter = str_replace(array('{nickname}', '{codelink}'), array($inUser->nickname, $codelink), $letter);
cmsCore::mailText($usr['email'], '', $letter);
cmsCore::addSessionMessage(sprintf($_LANG['YOU_CHANGE_EMAIL'], $usr['email']), 'info');
// email не меняем
$users['email'] = $usr['email'];
}
}
$profiles['showphone'] = cmsCore::request('showphone', 'int', 0);
$profiles['showmail'] = cmsCore::request('showmail', 'int');
$profiles['email_newmsg'] = cmsCore::request('email_newmsg', 'int');
$profiles['showbirth'] = cmsCore::request('showbirth', 'int');
$profiles['description'] = cmsCore::request('description', 'str', '');
$users['birthdate'] = (int) $_REQUEST['birthdate']['year'] . '-' . (int) $_REQUEST['birthdate']['month'] . '-' . (int) $_REQUEST['birthdate']['day'];
$profiles['signature'] = $inDB->escape_string(cmsCore::badTagClear(cmsCore::request('signature', 'html', '')));
$profiles['signature_html'] = $inDB->escape_string(cmsCore::parseSmiles(cmsCore::request('signature', 'html', ''), true));
$profiles['allow_who'] = cmsCore::request('allow_who', 'str');
if (!preg_match('/^([a-zA-Z]+)$/ui', $profiles['allow_who'])) {
$errors = true;
}
$users['icq'] = cmsCore::request('icq', 'str', '');
$profiles['showicq'] = cmsCore::request('showicq', 'int');
$profiles['cm_subscribe'] = cmsCore::request('cm_subscribe', 'str');
if (!preg_match('/^([a-zA-Z]+)$/ui', $profiles['cm_subscribe'])) {
$errors = true;
}
$users['phone'] = cmsCore::request('phone', 'int', 0);
// получаем данные форм
$profiles['formsdata'] = '';
if (isset($model->config['privforms'])) {
if (is_array($model->config['privforms'])) {
foreach ($model->config['privforms'] as $form_id) {
$form_input = cmsForm::getFieldsInputValues($form_id);
$profiles['formsdata'] .= $inDB->escape_string(cmsCore::arrayToYaml($form_input['values']));
// Проверяем значения формы
foreach ($form_input['errors'] as $field_error) {
if ($field_error) {
cmsCore::addSessionMessage($field_error, 'error');
$errors = true;
}
}
}
}
}
if ($errors) {
cmsCore::redirectBack();
}
$inDB->update('cms_user_profiles', cmsCore::callEvent('UPDATE_USER_PROFILES', array_merge(array('id' => $usr['pid'], 'user_id' => $usr['id']), $profiles)), $usr['pid']);
$inDB->update('cms_users', cmsCore::callEvent('UPDATE_USER_USERS', array_merge(array('id' => $usr['id']), $users)), $usr['id']);
cmsCore::addSessionMessage($_LANG['PROFILE_SAVED'], 'info');
cmsCore::redirect(cmsUser::getProfileURL($usr['login']));
}
if ($opt == 'changepass') {
$errors = false;
$oldpass = cmsCore::request('oldpass', 'str');
$newpass = cmsCore::request('newpass', 'str');
$newpass2 = cmsCore::request('newpass2', 'str');
if ($inUser->password != md5($oldpass)) {
cmsCore::addSessionMessage($_LANG['OLD_PASS_WRONG'], 'error');
$errors = true;
}
if ($newpass != $newpass2) {
cmsCore::addSessionMessage($_LANG['WRONG_PASS'], 'error');
$errors = true;
}
if ($oldpass && $newpass && $newpass2 && mb_strlen($newpass) < 6) {
cmsCore::addSessionMessage($_LANG['PASS_SHORT'], 'error');
$errors = true;
}
if ($errors) {
cmsCore::redirectBack();
}
cmsCore::callEvent('UPDATE_USER_PASSWORD', array('user_id' => $usr['id'], 'oldpass' => $oldpass, 'newpass' => $newpass));
$sql = "UPDATE cms_users SET password='******' WHERE id = '{$id}' AND password='******'";
$inDB->query($sql);
cmsCore::addSessionMessage($_LANG['PASS_CHANGED'], 'info');
cmsCore::redirect(cmsUser::getProfileURL($inUser->login));
}
}
//============================================================================//
//============================= Просмотр профиля ============================//
//============================================================================//
if ($do == 'profile') {
$inPage->addHeadJsLang(array('NEW_POST_ON_WALL', 'CONFIRM_DEL_POST_ON_WALL'));
// если просмотр профиля гостям запрещен
if (!$inUser->id && !$model->config['sw_guest']) {
cmsUser::goToLogin();
}
if (is_numeric($login)) {
cmsCore::error404();
}
$usr = $model->getUser($login);
if (!$usr) {
cmsCore::error404();
}
$myprofile = $inUser->id == $usr['id'];
$inPage->setTitle($usr['nickname']);
$inPage->addPathway($usr['nickname']);
// просмотр профиля запрещен
if (!cmsUser::checkUserContentAccess($usr['allow_who'], $usr['id'])) {
cmsPage::initTemplate('components', 'com_users_not_allow')->assign('is_auth', $inUser->id)->assign('usr', $usr)->display('com_users_not_allow.tpl');
return;
}
// Профиль удален
if ($usr['is_deleted']) {
cmsPage::initTemplate('components', 'com_users_deleted.tpl')->assign('usr', $usr)->assign('is_admin', $inUser->is_admin)->assign('others_active', $inDB->rows_count('cms_users', "login='******'login']}' AND is_deleted=0", 1))->display('com_users_deleted.tpl');
return;
}
// Данные о друзьях
$usr['friends_total'] = cmsUser::getFriendsCount($usr['id']);
$usr['friends'] = cmsUser::getFriends($usr['id']);
// очищать сессию друзей если в своем профиле и количество друзей из базы не совпадает с количеством друзей в сессии
if ($myprofile && sizeof($usr['friends']) != $usr['friends_total']) {
cmsUser::clearSessionFriends();
}
// обрезаем список
$usr['friends'] = array_slice($usr['friends'], 0, 6);
// выясняем друзья ли мы с текущим пользователем
$usr['isfriend'] = !$myprofile ? cmsUser::isFriend($usr['id']) : false;
// награды пользователя
$usr['awards'] = $model->config['sw_awards'] ? $model->getUserAwards($usr['id']) : false;
// стена
if ($model->config['sw_wall']) {
$inDB->limitPage(1, $model->config['wall_perpage']);
$usr['wall_html'] = cmsUser::getUserWall($usr['id'], 'users', $myprofile, $inUser->is_admin);
}
// можно ли пользователю изменять карму
$usr['can_change_karma'] = $model->isUserCanChangeKarma($usr['id']) && $inUser->id;
// Фотоальбомы пользователя
if ($model->config['sw_photo']) {
$usr['albums'] = $model->getPhotoAlbums($usr['id'], $usr['isfriend'], !$inCore->isComponentEnable('photos'));
$usr['albums_total'] = sizeof($usr['albums']);
$usr['albums_show'] = 6;
if ($usr['albums_total'] > $usr['albums_show']) {
array_splice($usr['albums'], $usr['albums_show']);
}
}
$usr['board_count'] = $model->config['sw_board'] ? $inDB->rows_count('cms_board_items', "user_id='{$usr['id']}' AND published=1") : 0;
$usr['comments_count'] = $model->config['sw_comm'] ? $inDB->rows_count('cms_comments', "user_id='{$usr['id']}' AND published=1") : 0;
$usr['forum_count'] = $model->config['sw_forum'] ? $inDB->rows_count('cms_forum_posts', "user_id = '{$usr['id']}'") : 0;
$usr['files_count'] = $model->config['sw_files'] ? $inDB->rows_count('cms_user_files', "user_id = '{$usr['id']}'") : 0;
$cfg_reg = $inCore->loadComponentConfig('registration');
$usr['invites_count'] = $inUser->id && $myprofile && $cfg_reg['reg_type'] == 'invite' ? $model->getUserInvitesCount($inUser->id) : 0;
$usr['blog'] = $model->config['sw_blogs'] ? $inDB->get_fields('cms_blogs', "user_id = '{$usr['id']}' AND owner = 'user'", 'title, seolink') : false;
$usr['form_fields'] = array();
if (is_array($model->config['privforms'])) {
foreach ($model->config['privforms'] as $form_id) {
$usr['form_fields'] = array_merge($usr['form_fields'], cmsForm::getFieldsValues($form_id, $usr['formsdata']));
}
}
if ($usr['city']) {
cmsCore::loadModel('geo');
$geo = new cms_model_geo();
$city_parents = $geo->getCityParents($usr['city']);
if ($city_parents) {
$usr['country'] = $city_parents['country_name'];
}
}
$plugins = $model->getPluginsOutput($usr);
cmsPage::initTemplate('components', 'com_users_profile.tpl')->assign('usr', $usr)->assign('plugins', $plugins)->assign('cfg', $model->config)->assign('myprofile', $myprofile)->assign('cfg_forum', $inCore->loadComponentConfig('forum'))->assign('is_admin', $inUser->is_admin)->assign('is_auth', $inUser->id)->display('com_users_profile.tpl');
}
//============================================================================//
//============================= Список сообщений ============================//
//============================================================================//
if ($do == 'messages') {
if (!$model->config['sw_msg']) {
cmsCore::error404();
}
if (!$inUser->id || $inUser->id != $id && !$inUser->is_admin) {
cmsUser::goToLogin();
}
$usr = cmsUser::getShortUserData($id);
if (!$usr) {
cmsCore::error404();
}
$inPage->setTitle($_LANG['MY_MESS']);
$inPage->addPathway($usr['nickname'], cmsUser::getProfileURL($usr['login']));
$inPage->addPathway($_LANG['MY_MESS'], '/users/' . $id . '/messages.html');
include 'components/users/messages.php';
}
//============================================================================//
//=========================== Отправка сообщения ============================//
//============================================================================//
if ($do == 'sendmessage') {
if (!$model->config['sw_msg']) {
cmsCore::halt();
}
if ($_SERVER['HTTP_X_REQUESTED_WITH'] != 'XMLHttpRequest') {
cmsCore::halt();
}
if (!$inUser->id || $inUser->id == $id && !cmsCore::inRequest('massmail') && !cmsCore::request('send_to_group', 'int', 0)) {
cmsCore::halt();
}
if (!cmsCore::inRequest('gosend')) {
$replyid = cmsCore::request('replyid', 'int', 0);
if ($replyid) {
$msg = $model->getReplyMessage($replyid, $inUser->id);
if (!$msg) {
cmsCore::halt();
}
}
$inPage->setRequestIsAjax();
cmsPage::initTemplate('components', 'com_users_messages_add')->assign('msg', isset($msg) ? $msg : array())->assign('is_reply_user', $replyid)->assign('id', $id)->assign('bbcodetoolbar', cmsPage::getBBCodeToolbar('message'))->assign('smilestoolbar', cmsPage::getSmilesPanel('message'))->assign('groups', $inUser->is_admin ? cmsUser::getGroups(true) : array())->assign('friends', cmsUser::getFriends($inUser->id))->assign('id_admin', $inUser->is_admin)->display('com_users_messages_add.tpl');
cmsCore::jsonOutput(array('error' => false, 'html' => ob_get_clean()));
}
if (cmsCore::inRequest('gosend')) {
// Кому отправляем
$usr = cmsUser::getShortUserData($id);
if (!$usr) {
cmsCore::halt();
}
$message = cmsCore::parseSmiles(cmsCore::request('message', 'html', ''), true);
if (mb_strlen($message) < 2) {
cmsCore::jsonOutput(array('error' => true, 'text' => $_LANG['ERR_SEND_MESS']));
}
if (!cmsUser::checkCsrfToken()) {
cmsCore::error404();
}
$output = cmsCore::callEvent('USER_SEND_MESSEDGE', array('text' => $message, 'to_id' => $id));
$message = $output['text'];
$id = $output['to_id'];
$send_to_group = cmsCore::request('send_to_group', 'int', 0);
$group_id = cmsCore::request('group_id', 'int', 0);
//
// Обычная отправка (1 получатель)
//
if (!cmsCore::inRequest('massmail') && !$send_to_group) {
//отправляем сообщение
$msg_id = cmsUser::sendMessage($inUser->id, $id, $message);
// отправляем уведомление на email если нужно
$model->sendNotificationByEmail($id, $inUser->id, $msg_id);
cmsCore::jsonOutput(array('error' => false, 'text' => $_LANG['SEND_MESS_OK']));
}
//
// далее идут массовые рассылки, доступные только админам
//
if (!$inUser->is_admin) {
cmsCore::halt();
}
// отправить всем: получаем список всех пользователей
if (cmsCore::inRequest('massmail')) {
$userlist = cmsUser::getAllUsers();
// проверяем что есть кому отправлять
if (!$userlist) {
cmsCore::jsonOutput(array('error' => false, 'text' => $_LANG['ERR_SEND_MESS']));
}
$count = array();
// отправляем всем по списку
foreach ($userlist as $usr) {
$count[] = cmsUser::sendMessage(USER_MASSMAIL, $usr['id'], $message);
}
cmsCore::jsonOutput(array('error' => false, 'text' => sprintf($_LANG['SEND_MESS_ALL_OK'], sizeof($count))));
}
// отправить группе: получаем список членов группы
if ($send_to_group) {
$count = cmsUser::sendMessageToGroup(USER_MASSMAIL, $group_id, $message);
$success_msg = sprintf($_LANG['SEND_MESS_GROUP_OK'], $count, cmsUser::getGroupTitle($group_id));
cmsCore::jsonOutput(array('error' => false, 'text' => $success_msg));
}
}
}
//============================================================================//
//============================= Удаление сообщения ==========================//
//============================================================================//
if ($do == 'delmessage') {
if ($_SERVER['HTTP_X_REQUESTED_WITH'] != 'XMLHttpRequest') {
cmsCore::halt();
}
if (!$model->config['sw_msg']) {
cmsCore::halt();
}
if (!$inUser->id) {
cmsCore::halt();
}
$msg = $inDB->get_fields('cms_user_msg', "id='{$id}'", '*');
if (!$msg) {
cmsCore::halt();
}
$can_delete = $inUser->id == $msg['to_id'] || $inUser->id == $msg['from_id'] ? true : false;
if (!$can_delete && !$inUser->is_admin) {
cmsCore::halt();
}
// Сообщения с from_id < 0
if ($msg['from_id'] < 0) {
$inDB->query("DELETE FROM cms_user_msg WHERE id = '{$id}' LIMIT 1");
$info_text = $_LANG['MESS_NOTICE_DEL_OK'];
}
// мне сообщение от пользователя
if ($msg['to_id'] == $inUser->id && $msg['from_id'] > 0) {
$inDB->query("UPDATE cms_user_msg SET to_del=1 WHERE id='{$id}'");
$info_text = $_LANG['MESS_DEL_OK'];
}
// от меня сообщение
if ($msg['from_id'] == $inUser->id && !$msg['is_new']) {
$inDB->query("UPDATE cms_user_msg SET from_del=1 WHERE id='{$id}'");
$info_text = $_LANG['MESS_DEL_OK'];
}
// отзываем сообщение
if ($msg['from_id'] == $inUser->id && $msg['is_new']) {
$inDB->query("DELETE FROM cms_user_msg WHERE id = '{$id}' LIMIT 1");
$info_text = $_LANG['MESS_BACK_OK'];
}
// удаляем сообщения, которые удалены с двух сторон
$inDB->query("DELETE FROM cms_user_msg WHERE to_del=1 AND from_del=1");
cmsCore::jsonOutput(array('error' => false, 'text' => $info_text));
}
//============================================================================//
//=========================== Удаление сообщений ============================//
//============================================================================//
if ($do == 'delmessages') {
if (!$model->config['sw_msg']) {
cmsCore::error404();
}
if ($inUser->id != $id && !$inUser->is_admin) {
cmsCore::error404();
}
$usr = cmsUser::getShortUserData($id);
if (!$usr) {
cmsCore::error404();
}
$opt = cmsCore::request('opt', 'str', 'in');
if ($opt == 'notices') {
$inDB->query("DELETE FROM cms_user_msg WHERE to_id = '{$id}' AND from_id < 0");
} else {
$del_flag = $opt == 'in' ? 'to_del' : 'from_del';
$id_flag = $opt == 'in' ? 'to_id' : 'from_id';
$inDB->query("UPDATE cms_user_msg SET {$del_flag}=1 WHERE {$id_flag}='{$id}'");
$inDB->query("DELETE FROM cms_user_msg WHERE to_del=1 AND from_del=1");
}
cmsCore::addSessionMessage($_LANG['MESS_ALL_DEL_OK'], 'info');
cmsCore::redirectBack();
}
//============================================================================//
//============================= Загрузка аватара ============================//
//============================================================================//
if ($do == 'avatar') {
if (!$inUser->id || $inUser->id && $inUser->id != $id) {
cmsCore::error404();
}
$inPage->setTitle($_LANG['LOAD_AVATAR']);
$inPage->addPathway($inUser->nickname, cmsUser::getProfileURL($inUser->login));
$inPage->addPathway($_LANG['LOAD_AVATAR']);
if (cmsCore::inRequest('upload')) {
cmsCore::loadClass('upload_photo');
$inUploadPhoto = cmsUploadPhoto::getInstance();
// Выставляем конфигурационные параметры
$inUploadPhoto->upload_dir = PATH . '/images/';
$inUploadPhoto->dir_medium = 'users/avatars/';
$inUploadPhoto->dir_small = 'users/avatars/small/';
$inUploadPhoto->small_size_w = $model->config['smallw'];
$inUploadPhoto->medium_size_w = $model->config['medw'];
$inUploadPhoto->medium_size_h = $model->config['medh'];
$inUploadPhoto->is_watermark = false;
$inUploadPhoto->input_name = 'picture';
$file = $inUploadPhoto->uploadPhoto($inUser->orig_imageurl);
if (!$file) {
cmsCore::addSessionMessage('<strong>' . $_LANG['ERROR'] . ':</strong> ' . cmsCore::uploadError() . '!', 'error');
cmsCore::redirect('/users/' . $id . '/avatar.html');
}
$sql = "UPDATE cms_user_profiles SET imageurl = '{$file['filename']}' WHERE user_id = '{$id}' LIMIT 1";
$inDB->query($sql);
// очищаем предыдущую запись о смене аватара
cmsActions::removeObjectLog('add_avatar', $id);
// выводим сообщение в ленту
cmsActions::log('add_avatar', array('object' => '', 'object_url' => '', 'object_id' => $id, 'target' => '', 'target_url' => '', 'description' => '<a href="' . cmsUser::getProfileURL($inUser->login) . '" class="act_usr_ava">
<img border="0" src="/images/users/avatars/small/' . $file['filename'] . '">
</a>'));
cmsCore::redirect(cmsUser::getProfileURL($inUser->login));
} else {
cmsPage::initTemplate('components', 'com_users_avatar_upload')->assign('id', $id)->display('com_users_avatar_upload.tpl');
}
}
//============================================================================//
//============================= Библиотека аватаров =========================//
//============================================================================//
if ($do == 'select_avatar') {
if (!$inUser->id || $inUser->id && $inUser->id != $id) {
cmsCore::error404();
}
$avatars_dir = PATH . "/images/users/avatars/library";
$avatars_dir_rel = "/images/users/avatars/library";
$avatars_dir_handle = opendir($avatars_dir);
$avatars = array();
while ($nextfile = readdir($avatars_dir_handle)) {
if ($nextfile != '.' && $nextfile != '..' && (mb_strstr($nextfile, '.gif') || mb_strstr($nextfile, '.jpg') || mb_strstr($nextfile, '.jpeg') || mb_strstr($nextfile, '.png'))) {
$avatars[] = $nextfile;
}
}
closedir($avatars_dir_handle);
if (!cmsCore::inRequest('set_avatar')) {
$inPage->setTitle($_LANG['SELECT_AVATAR']);
$inPage->addPathway($inUser->nickname, cmsUser::getProfileURL($inUser->login));
$inPage->addPathway($_LANG['SELECT_AVATAR']);
$perpage = 20;
$total = sizeof($avatars);
$avatars = array_slice($avatars, ($page - 1) * $perpage, $perpage);
cmsPage::initTemplate('components', 'com_users_avatars')->assign('userid', $id)->assign('avatars', $avatars)->assign('avatars_dir', $avatars_dir_rel)->assign('page', $page)->assign('perpage', $perpage)->assign('pagebar', cmsPage::getPagebar($total, $page, $perpage, '/users/%user_id%/select-avatar-%page%.html', array('user_id' => $id)))->display('com_users_avatars.tpl');
} else {
$avatar_id = cmsCore::request('avatar_id', 'int', 0);
$file = $avatars[$avatar_id];
if (file_exists($avatars_dir . '/' . $file)) {
$uploaddir = PATH . '/images/users/avatars/';
$realfile = $file;
$filename = md5($realfile . '-' . $id . '-' . time()) . '.jpg';
$uploadfile = $avatars_dir . '/' . $realfile;
$uploadavatar = $uploaddir . $filename;
$uploadthumb = $uploaddir . 'small/' . $filename;
if ($inUser->orig_imageurl && $inUser->orig_imageurl != 'nopic.jpg') {
@unlink(PATH . '/images/users/avatars/' . $inUser->orig_imageurl);
@unlink(PATH . '/images/users/avatars/small/' . $inUser->orig_imageurl);
}
cmsCore::includeGraphics();
copy($uploadfile, $uploadavatar);
@img_resize($uploadfile, $uploadthumb, $model->config['smallw'], $model->config['smallw']);
$sql = "UPDATE cms_user_profiles SET imageurl = '{$filename}' WHERE user_id = '{$id}' LIMIT 1";
$inDB->query($sql);
// очищаем предыдущую запись о смене аватара
cmsActions::removeObjectLog('add_avatar', $id);
// выводим сообщение в ленту
cmsActions::log('add_avatar', array('object' => '', 'object_url' => '', 'object_id' => $id, 'target' => '', 'target_url' => '', 'description' => '<a href="' . cmsUser::getProfileURL($inUser->login) . '" class="act_usr_ava">
<img border="0" src="/images/users/avatars/small/' . $filename . '">
</a>'));
}
cmsCore::redirect(cmsUser::getProfileURL($inUser->login));
}
}
//============================================================================//
//======================== Работа с фотографиями ============================//
//============================================================================//
if ($do == 'photos') {
if (!$model->config['sw_photo']) {
cmsCore::error404();
}
$pdo = cmsCore::request('pdo', 'str', '');
include 'components/users/photos.php';
}
//============================================================================//
//============================= Друзья пользователя =========================//
//============================================================================//
if ($do == 'friendlist') {
if (!$inUser->id) {
cmsUser::goToLogin();
}
$usr = cmsUser::getShortUserData($id);
if (!$usr) {
cmsCore::error404();
}
$perpage = 10;
$inPage->addPathway($usr['nickname'], cmsUser::getProfileURL($usr['login']));
$inPage->addPathway($_LANG['FRIENDS']);
$inPage->setTitle($_LANG['FRIENDS']);
// все друзья
$friends = cmsUser::getFriends($usr['id']);
// их общее количество
$total = count($friends);
// получаем только нужных на странице
$friends = array_slice($friends, ($page - 1) * $perpage, $perpage);
cmsPage::initTemplate('components', 'com_users_friends')->assign('friends', $friends)->assign('usr', $usr)->assign('myprofile', $id == $inUser->id)->assign('total', $total)->assign('pagebar', cmsPage::getPagebar($total, $page, $perpage, 'javascript:centerLink(\'/users/' . $id . '/friendlist%page%.html\')'))->display('com_users_friends.tpl');
}
//============================================================================//
//============================= Запрос на дружбу ============================//
//============================================================================//
if ($do == 'addfriend') {
if ($_SERVER['HTTP_X_REQUESTED_WITH'] != 'XMLHttpRequest') {
cmsCore::halt();
}
if (!$inUser->id || $inUser->id == $id) {
cmsCore::halt();
}
$usr = cmsUser::getShortUserData($id);
if (!$usr) {
cmsCore::halt();
}
cmsUser::clearSessionFriends();
if (cmsUser::isFriend($id)) {
cmsCore::jsonOutput(array('error' => true, 'text' => $_LANG['YOU_ARE_BE_FRIENDS']));
}
// проверяем был ли ранее запрос на дружбу
// если был, то делаем accept запросу
$is_need_accept_id = cmsUser::getFriendFieldId($id, 0, 'to_me');
if ($is_need_accept_id) {
$inDB->query("UPDATE cms_user_friends SET is_accepted = 1 WHERE id = '{$is_need_accept_id}'");
//регистрируем событие
cmsActions::log('add_friend', array('object' => $inUser->nickname, 'user_id' => $usr['id'], 'object_url' => cmsUser::getProfileURL($inUser->login), 'object_id' => $is_need_accept_id, 'target' => '', 'target_url' => '', 'target_id' => 0, 'description' => ''));
cmsCore::callEvent('USER_ACCEPT_FRIEND', $id);
cmsCore::jsonOutput(array('error' => false, 'text' => $_LANG['ADD_FRIEND_OK'] . $usr['nickname']));
}
// Если пользователь пытается добавиться в друзья к
// пользователю, к которому уже отправил запрос
if (cmsUser::getFriendFieldId($id, 0, 'from_me')) {
cmsCore::jsonOutput(array('error' => true, 'text' => $_LANG['ADD_TO_FRIEND_SEND_ERR']));
}
// Мы вообще не друзья с пользователем, создаем запрос
cmsUser::addFriend($id);
cmsUser::sendMessage(USER_UPDATER, $id, sprintf($_LANG['RECEIVED_F_O'], cmsUser::getProfileLink($inUser->login, $inUser->nickname), '<a class="ajaxlink" href="javascript:void(0)" onclick="users.acceptFriend(' . $inUser->id . ', this);return false;">' . $_LANG['ACCEPT'] . '</a>', '<a class="ajaxlink" href="javascript:void(0)" onclick="users.rejectFriend(' . $inUser->id . ', this);return false;">' . $_LANG['REJECT'] . '</a>'));
cmsCore::jsonOutput(array('error' => false, 'text' => $_LANG['ADD_TO_FRIEND_SEND']));
}
//============================================================================//
//============================= Прекращение дружбы ==========================//
//============================================================================//
if ($do == 'delfriend') {
if ($_SERVER['HTTP_X_REQUESTED_WITH'] != 'XMLHttpRequest') {
cmsCore::halt();
}
if (!$inUser->id || $inUser->id == $id) {
cmsCore::halt();
}
$usr = cmsUser::getShortUserData($id);
if (!$usr) {
cmsCore::error404();
}
if (cmsUser::getFriendFieldId($id)) {
$is_accepted_friend = cmsUser::isFriend($id);
if (cmsUser::deleteFriend($id)) {
// Если подтвержденный друг
if ($is_accepted_friend) {
cmsCore::jsonOutput(array('error' => false, 'text' => $usr['nickname'] . $_LANG['DEL_FRIEND']));
} else {
cmsCore::jsonOutput(array('error' => false, 'text' => $_LANG['REJECT_FRIEND'] . $usr['nickname']));
}
} else {
cmsCore::halt();
}
} else {
cmsCore::halt();
}
}
//============================================================================//
//============================= История кармы ===============================//
//============================================================================//
if ($do == 'karma') {
$usr = cmsUser::getShortUserData($id);
if (!$usr) {
cmsCore::error404();
}
$inPage->setTitle($_LANG['KARMA_HISTORY']);
$inPage->addPathway($usr['nickname'], cmsUser::getProfileURL($usr['login']));
$inPage->addPathway($_LANG['KARMA_HISTORY']);
cmsPage::initTemplate('components', 'com_users_karma')->assign('karma', $model->getUserKarma($usr['id']))->assign('usr', $usr)->display('com_users_karma.tpl');
}
//============================================================================//
//============================= Изменение кармы =============================//
//============================================================================//
if ($do == 'votekarma') {
if ($_SERVER['HTTP_X_REQUESTED_WITH'] != 'XMLHttpRequest') {
cmsCore::halt();
}
if (!$inUser->id) {
cmsCore::halt();
}
$points = cmsCore::request('sign', 'str', 'plus') == 'plus' ? 1 : -1;
$to = cmsCore::request('to', 'int', 0);
$user = cmsUser::getShortUserData($to);
if (!$user) {
cmsCore::halt();
}
if (!$model->isUserCanChangeKarma($to)) {
cmsCore::halt();
}
cmsCore::halt(cmsUser::changeKarmaUser($to, $points));
}
//============================================================================//
//======================= Наградить пользователя ============================//
//============================================================================//
if ($do == 'giveaward') {
if (!$inUser->is_admin) {
cmsCore::error404();
}
$usr = cmsUser::getShortUserData($id);
if (!$usr) {
cmsCore::error404();
}
$inPage->setTitle($_LANG['AWARD_USER']);
$inPage->addPathway($usr['nickname'], cmsUser::getProfileURL($usr['login']));
$inPage->addPathway($_LANG['AWARD']);
if (!cmsCore::inRequest('gosend')) {
cmsPage::initTemplate('components', 'com_users_awards_give')->assign('usr', $usr)->assign('awardslist', cmsUser::getAwardsImages())->display('com_users_awards_give.tpl');
} else {
$award['title'] = cmsCore::request('title', 'str', $_LANG['AWRD']);
$award['description'] = cmsCore::request('description', 'str', '');
$award['imageurl'] = cmsCore::request('imageurl', 'str', '');
$award['from_id'] = $inUser->id;
$award['id'] = 0;
cmsUser::giveAward($award, $id);
cmsCore::redirect(cmsUser::getProfileURL($usr['login']));
}
}
//============================================================================//
//============================= Удаление награды ============================//
//============================================================================//
if ($do == 'delaward') {
$aw = $inDB->get_fields('cms_user_awards', "id = '{$id}'", '*');
if (!$aw) {
cmsCore::error404();
}
if (!$inUser->id || $inUser->id != $aw['user_id'] && !$inUser->is_admin) {
cmsCore::error404();
}
$inDB->delete('cms_user_awards', "id = '{$id}'", 1);
cmsActions::removeObjectLog('add_award', $id);
cmsCore::redirectBack();
}
//============================================================================//
//============================= Награды на сайте ============================//
//============================================================================//
if ($do == 'awardslist') {
$inPage->setTitle($_LANG['SITE_AWARDS']);
$inPage->addPathway($_LANG['SITE_AWARDS']);
$awards = cmsUser::getAutoAwards();
if (!$awards) {
cmsCore::error404();
}
foreach ($awards as $aw) {
//Перебираем все награды и ищем пользователей с текущей наградой
$sql = "SELECT u.id as id, u.nickname as nickname, u.login as login, IFNULL(p.gender, 'm') as gender\r\n FROM cms_user_awards aw\r\n LEFT JOIN cms_users u ON u.id = aw.user_id\r\n LEFT JOIN cms_user_profiles p ON p.user_id = u.id\r\n WHERE aw.award_id = '{$aw['id']}'";
$rs = $inDB->query($sql);
$aw['uhtml'] = '';
if ($inDB->num_rows($rs)) {
while ($user = $inDB->fetch_assoc($rs)) {
$aw['uhtml'] .= cmsUser::getGenderLink($user['id'], $user['nickname'], $user['gender'], $user['login']) . ', ';
}
$aw['uhtml'] = rtrim($aw['uhtml'], ', ');
} else {
$aw['uhtml'] = $_LANG['NOT_USERS_WITH_THIS_AWARD'];
}
$aws[] = $aw;
}
cmsPage::initTemplate('components', 'com_users_awards_site')->assign('aws', $aws)->display('com_users_awards_site.tpl');
}
//============================================================================//
//============================= Удаление профиля ============================//
//============================================================================//
if ($do == 'delprofile') {
// неавторизованным тут делать нечего
if (!$inUser->id) {
cmsCore::error404();
}
// есть ли удаляемый профиль
$data = cmsUser::getShortUserData($id);
if (!$data) {
cmsCore::error404();
}
// владелец профиля или админ
if ($inUser->is_admin) {
// могут ли администраторы удалять профиль
if (!cmsUser::isAdminCan('admin/users', cmsUser::getAdminAccess())) {
cmsCore::error404();
}
// администратор сам себя не удалит
if ($inUser->id == $data['id']) {
cmsCore::error404();
}
} else {
// удаляем только свой профиль
if ($inUser->id != $data['id']) {
cmsCore::error404();
}
}
if (isset($_POST['csrf_token'])) {
if (!cmsUser::checkCsrfToken()) {
cmsCore::error404();
}
$model->deleteUser($id);
if (!$inUser->is_admin) {
session_destroy();
cmsCore::redirect('/logout');
} else {
cmsCore::addSessionMessage($_LANG['DELETING_PROFILE_OK'], 'info');
cmsCore::redirect('/users');
}
} else {
$inPage->setTitle($_LANG['DELETING_PROFILE']);
$inPage->addPathway($data['nickname'], $inUser->getProfileURL($data['login']));
$inPage->addPathway($_LANG['DELETING_PROFILE']);
$confirm['title'] = $_LANG['DELETING_PROFILE'];
$confirm['text'] = '<p>' . $_LANG['REALLY_DEL_PROFILE'] . '</p>';
$confirm['action'] = '/users/' . $id . '/delprofile.html';
$confirm['yes_button'] = array();
$confirm['yes_button']['type'] = 'submit';
cmsPage::initTemplate('components', 'action_confirm.tpl')->assign('confirm', $confirm)->display('action_confirm.tpl');
}
}
//============================================================================//
//============================ Восстановить профиль =========================//
//============================================================================//
if ($do == 'restoreprofile') {
if (!$inUser->is_admin) {
cmsCore::error404();
}
$usr = cmsUser::getShortUserData($id);
if (!$usr) {
cmsCore::error404();
}
$inDB->query("UPDATE cms_users SET is_deleted = 0 WHERE id = '{$id}'");
cmsCore::redirectBack();
}
//============================================================================//
//============================= Файлы пользователей =========================//
//============================================================================//
if ($do == 'files') {
if (!$model->config['sw_files']) {
cmsCore::error404();
}
$fdo = cmsCore::request('fdo', 'str', '');
include 'components/users/files.php';
}
//============================================================================//
//================================ Инвайты =================================//
//============================================================================//
if ($do == 'invites') {
$reg_cfg = $inCore->loadComponentConfig('registration');
if ($reg_cfg['reg_type'] != 'invite') {
cmsCore::error404();
}
$invites_count = $model->getUserInvitesCount($inUser->id);
if (!$invites_count) {
cmsCore::error404();
}
if (!cmsCore::inRequest('send_invite')) {
$inPage->addPathway($inUser->nickname, cmsUser::getProfileURL($inUser->login));
$inPage->addPathway($_LANG['MY_INVITES']);
cmsPage::initTemplate('components', 'com_users_invites')->assign('invites_count', $invites_count)->display('com_users_invites.tpl');
return;
}
if (cmsCore::inRequest('send_invite')) {
if (!cmsUser::checkCsrfToken()) {
cmsCore::error404();
}
$invite_email = cmsCore::request('invite_email', 'email', '');
if (!$invite_email) {
cmsCore::redirectBack();
}
if ($model->sendInvite($inUser->id, $invite_email)) {
cmsCore::addSessionMessage(sprintf($_LANG['INVITE_SENDED'], $invite_email), 'success');
} else {
cmsCore::addSessionMessage($_LANG['INVITE_ERROR'], 'error');
}
cmsCore::redirect(cmsUser::getProfileURL($inUser->login));
}
}
if ($do == 'change_email') {
if (!$inUser->id) {
cmsUser::goToLogin();
}
$email = cmsCore::request('email', 'email', '');
$token = cmsCore::request('token', 'str', '');
// не занят ли email
$is_email = $inDB->get_field('cms_users', "email='{$email}'", 'id');
if ($is_email || !$email || !$token) {
cmsCore::error404();
}
// проверяем токен
$valid_id = $inDB->get_field('cms_users_activate', "code='{$token}' AND user_id = '{$inUser->id}'", 'id');
if (!$valid_id) {
cmsCore::error404();
}
$inDB->delete('cms_users_activate', "id = '{$valid_id}'");
// Сохраняем новый email
$inDB->update('cms_users', array('email' => $email), $inUser->id);
cmsCore::addSessionMessage($_LANG['NEW_EMAIL_SAVED'], 'success');
cmsCore::redirect(cmsUser::getProfileURL($inUser->login));
}
///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
}
function calendar()
{
$inCore = cmsCore::getInstance();
$inPage = cmsPage::getInstance();
$inUser = cmsUser::getInstance();
$inCore->loadModel('calendar');
$model = new cms_model_calendar();
$do = $inCore->request('do', 'str', 'view');
$cfg = $inCore->loadComponentConfig('calendar');
if ($do == 'view') {
$inPage->setTitle("Календарь событий");
$smarty = $inCore->initSmarty('components', 'com_calendar_view.tpl');
$guest = TRUE;
if ($inUser->id == 0 and $cfg['calendar_access'] == "all") {
$guest = FALSE;
}
if ($inUser->id != 0 and $cfg['calendar_access'] == "users") {
$guest = FALSE;
}
if ($inUser->is_admin) {
$guest = FALSE;
}
$catigories = $model->getAllCategories();
$smarty->assign('guest', $guest);
$smarty->assign('cfg', $cfg);
$smarty->assign('catigories', $catigories);
$smarty->assign('category', "all");
$smarty->display('com_calendar_view.tpl');
return;
}
if ($do == "category_view") {
$category_id = $inCore->request('category_id', 'int', 0);
$smarty = $inCore->initSmarty('components', 'com_calendar_view.tpl');
$guest = TRUE;
if ($inUser->id == 0 and $cfg['calendar_access'] == "all") {
$guest = FALSE;
}
if ($inUser->id != 0 and $cfg['calendar_access'] == "users") {
$guest = FALSE;
}
if ($inUser->is_admin) {
$guest = FALSE;
}
$category = $model->getCategory($category_id);
$catigories = $model->getAllCategories();
if (!$category) {
//$inCore->redirect("/calendar");
print mysql_error();
}
$inPage->setTitle("Календарь событий:" . $category['title']);
$smarty->assign('guest', $guest);
$smarty->assign('cfg', $cfg);
$smarty->assign('catigories', $catigories);
$smarty->assign('category', $category_id);
$smarty->display('com_calendar_view.tpl');
return;
}
if ($do == 'add') {
$guest = TRUE;
if ($inUser->id == 0 and $cfg['calendar_access'] == "all") {
$guest = FALSE;
}
if ($inUser->id != 0 and $cfg['calendar_access'] == "users") {
$guest = FALSE;
}
if ($inUser->is_admin) {
$guest = FALSE;
}
if ($guest) {
$inCore->redirect('/');
exit;
}
$is_send = $inCore->inRequest('title');
if ($is_send) {
$title = $inCore->request('title', 'str');
$type_raw = $inCore->request('type', 'str');
$date_start = $inCore->request('date_start', 'str');
$date_end = $inCore->request('date_end', 'str');
$hour_start = $inCore->request('hour_start', 'str');
$hour_end = $inCore->request('hour_end', 'str');
$min_start = $inCore->request('min_start', 'str');
$min_end = $inCore->request('min_end', 'str');
$content = $inCore->request('content', 'str');
if (!$title || !$type_raw || !$date_start || !$hour_start || !$hour_end || !$min_start || !$min_end) {
cmsCore::addSessionMessage('Ой, что то не было заполнено...', 'error');
$inCore->redirectBack();
exit;
} else {
$start_time = strtotime($date_start . ' ' . $hour_start . ':' . $min_start);
$end_time = strtotime($date_end . ' ' . $hour_end . ':' . $min_end);
if ($data_end == "" or $date_end < $date_start) {
$data_end = $data_start;
}
$type_data = explode("_", $type_raw);
$type = $type_data[0];
$apx = $type_data[1];
$event_id = $model->addEvent($inUser->id, $type, $apx, $start_time, $end_time, $title, $content);
if ($event_id) {
if ($type != "private") {
cmsActions::log('add_event', array('object' => 'событие', 'object_url' => '/calendar/event' . $event_id . '.html', 'object_id' => $event_id, 'target' => $title, 'target_url' => '/calendar/event' . $event_id . '.html', 'target_id' => '0', 'description' => $title));
}
cmsCore::addSessionMessage('Ваше мероприятие добавлено!', 'success');
} else {
cmsCore::addSessionMessage('Ошибка добавления!', 'error');
}
$inCore->redirect('/calendar');
exit;
}
}
if ($event['start_time'] == "") {
$event['start_time'] = time();
}
if ($event['end_time'] == "") {
$event['end_time'] = time();
}
$bb_toolbar = cmsPage::getBBCodeToolbar('message', $cfg['img_on'], 'forum');
$smilies = cmsPage::getSmilesPanel('message');
$inPage->setTitle("Добавить событие");
$smarty = $inCore->initSmarty('components', 'com_calendar_add.tpl');
$smarty->assign('bb_toolbar', $bb_toolbar);
$smarty->assign('smilies', $smilies);
$smarty->assign('title', $event['title']);
$smarty->assign('content', $event['content']);
$smarty->assign('type', $event['type']);
$smarty->assign('start_date', date("d.m.Y", $event['start_time']));
$smarty->assign('start_hour', date("H", $event['start_time']));
$smarty->assign('start_min', date("i", $event['start_time']));
$smarty->assign('end_date', date("d.m.Y", $event['end_time']));
$smarty->assign('end_hour', date("H", $event['end_time']));
$smarty->assign('end_min', date("i", $event['end_time']));
$smarty->display('com_calendar_add.tpl');
return;
}
if ($do == "view_event") {
$event_id = $inCore->request('event_id', 'int', 0);
/*FOTOLIB*/
include 'fotolib.class.php';
$foto = new FotoLib();
//Проверяем можем ли добавлять фото
$allow_add_foto = $foto->addAcces("calendar");
if ($_FILES) {
$foto->uploadFoto($_FILES, "calendar", $event_id);
}
$images = $foto->loadImages("calendar", $event_id);
/*FOTOLIB*/
$event = $model->getEvent($event_id);
if (!$event) {
cmsCore::addSessionMessage('Ошибка запроса' . mysql_error(), 'error');
$inCore->redirect('/calendar');
exit;
} else {
if ($event['type'] == 'private' and $event['author_id'] != $inUser->id) {
cmsCore::addSessionMessage('Ошибка запроса', 'error');
$inCore->redirect('/calendar');
exit;
}
$msg = $inCore->parseSmiles($event['content'], true);
if (count($event['parent']) != 0) {
$delta = $event['end_time'] - $event['start_time'];
$day = date("d", $event['start_time']);
$month = date("n", $event['start_time']) - 1;
//Яваскриптики считают с 0
$year = date("Y", $event['start_time']);
if ($delta < 24 * 60 * 60) {
$calendar_view = "agendaDay";
if (date("d", $event['start_time']) != date("d", $event['end_time'])) {
//Если меньше 24 часов но всё же в разные дни включаем недельный вид
$calendar_view = "agendaWeek";
}
} elseif ($delta < 7 * 24 * 60 * 60) {
$calendar_view = "agendaWeek";
} else {
$calendar_view = "month";
}
$events_string = "";
foreach ($event['parent'] as $parent) {
$events_string .= "{\n\t id : '" . $parent['id'] . "',\n\t title : '" . str_replace("'", '"', $parent['title']) . "',\n\t start : '" . date("Y-m-d H:i:s", $parent['start_time']) . "',\n\t end : '" . date("Y-m-d H:i:s", $parent['end_time']) . "',\n\t url : '/calendar/event" . $parent['id'] . ".html',";
if ($parent['end_time'] - $parent['start_time'] > 60 * 60 * 8) {
$events_string .= "allDay: true,";
} else {
$events_string .= "allDay: false,";
}
switch ($parent['type']) {
case "public":
if ($parent['author_id'] == $inUser->id) {
$events_string .= "color: '#B9C3BC',\n";
} else {
$events_string .= "color: '#C3BCB9',\n";
}
$events_string .= "textColor: '#000000',\n";
break;
case "private":
$events_string .= "color: '#3366CC'\n";
}
$events_string .= "},";
}
}
$issignup = $model->isSignup($event_id);
$singups_user = $model->getSingupsUsers($event_id);
$inPage->setTitle('Просмотр события "' . $event['title'] . '"');
$smarty = $inCore->initSmarty('components', 'com_calendar_event_view.tpl');
$smarty->assign('event', $event);
$smarty->assign('content', $msg);
$smarty->assign('parent', $event['parent']);
$smarty->assign('calendar_view', $calendar_view);
$smarty->assign('events_string', $events_string);
$smarty->assign('year', $year);
$smarty->assign('month', $month);
$smarty->assign('day', $day);
$smarty->assign('start_time', date("d.m.Y H:i", $event['start_time']));
$smarty->assign('end_time', date("d.m.Y H:i", $event['end_time']));
$smarty->assign('issngnup', $issignup);
$smarty->assign('singups_user', $singups_user);
$smarty->assign('images', $images);
//fotolib
$smarty->assign('allow_add_foto', $allow_add_foto);
//fotolib
if ($event['start_time'] - time() < 0) {
$status = "Прошедшее событие";
} else {
if ($event['start_time'] - time() > 86400) {
$status = 'Осталось ' . declension(round(($event['start_time'] - time()) / 86400), array("день", "дня", "дней"));
} else {
$status = 'Осталось ' . declension(round(($event['start_time'] - time()) / 3600), array("час", "часа", "часов"));
}
}
$smarty->assign('status', $status);
if ($inUser->id == $event['author_id'] or $inUser->is_admin) {
$smarty->assign('admin', TRUE);
}
$smarty->display('com_calendar_event_view.tpl');
$inCore->includeComments();
comments('calendar', $event_id);
return;
}
}
if ($do == "delete_event") {
if ($inUser->id == 0) {
$inCore->redirect('/');
exit;
}
$event_id = $inCore->request('event_id', 'int', 0);
$deleted = $model->deleteEvent($event_id);
if ($deleted) {
cmsCore::addSessionMessage('Ваше мероприятие удалено!', 'success');
$inCore->redirect('/calendar');
exit;
} else {
cmsCore::addSessionMessage('Ошибка', 'error');
$inCore->redirect('/calendar');
exit;
}
}
if ($do == "edit_event") {
if ($inUser->id == 0) {
$inCore->redirect('/');
exit;
}
$event_id = $inCore->request('event_id', 'int', 0);
$event = $model->getEvent($event_id);
if ($event["author_id"] != $inUser->id and !$inUser->is_admin) {
cmsCore::addSessionMessage('Ошибка доступа', 'error');
$inCore->redirectBack();
exit;
}
$is_send = $inCore->inRequest('title');
if ($is_send) {
$title = $inCore->request('title', 'str');
$type = $inCore->request('type', 'str');
$date_start = $inCore->request('date_start', 'str');
$date_end = $inCore->request('date_end', 'str');
$hour_start = $inCore->request('hour_start', 'str');
$hour_end = $inCore->request('hour_end', 'str');
$min_start = $inCore->request('min_start', 'str');
$min_end = $inCore->request('min_end', 'str');
$content = $inCore->request('content', 'str');
if (!$title || !$type || !$date_start || !$hour_start || !$hour_end || !$min_start || !$min_end) {
cmsCore::addSessionMessage('Ой, что то не было заполнено...', 'error');
$inCore->redirectBack();
exit;
} else {
$start_time = strtotime($date_start . ' ' . $hour_start . ':' . $min_start);
if ($data_end == "" or $data_end < $data_start) {
$data_end = $data_start;
}
$end_time = strtotime($date_end . ' ' . $hour_end . ':' . $min_end);
if (!is_numeric($type)) {
$category_id = "0";
} else {
$category_id = $type;
$type = "public";
}
$update = $model->updateEvent($event_id, $type, $category_id, $start_time, $end_time, $title, $content);
if ($update) {
cmsCore::addSessionMessage('Ваше мероприятие изменено!', 'success');
$inCore->redirect('/calendar/event' . $event_id . '.html');
exit;
} else {
cmsCore::addSessionMessage('Ошибка добавления!', 'error');
$inCore->redirect('/calendar/edit' . $event_id . '.html');
exit;
}
}
} else {
$event = $model->getEvent($event_id);
if (!$event) {
cmsCore::addSessionMessage('Ошибка запроса', 'error');
$inCore->redirect('/calendar');
exit;
}
if ($event['category_id']) {
$event['type'] = $event['category_id'];
}
$bb_toolbar = cmsPage::getBBCodeToolbar('calendar', 1, 'forum');
$smilies = cmsPage::getSmilesPanel('calendar');
//Проверяем присоедиялся ли пользователь ко встрече
$catigories = $model->getAllCategories();
$inPage->setTitle("Редактировать событие");
$smarty = $inCore->initSmarty('components', 'com_calendar_add.tpl');
$smarty->assign('event', $event);
$smarty->assign('edit', 1);
$smarty->assign('catigories', $catigories);
$smarty->assign('title', $event['title']);
$smarty->assign('content', $event['content']);
$smarty->assign('type', $event['type']);
$smarty->assign('start_date', date("d.m.Y", $event['start_time']));
$smarty->assign('start_hour', date("H", $event['start_time']));
$smarty->assign('start_min', date("i", $event['start_time']));
$smarty->assign('end_date', date("d.m.Y", $event['end_time']));
$smarty->assign('end_hour', date("H", $event['end_time']));
$smarty->assign('end_min', date("i", $event['end_time']));
$smarty->assign('bb_toolbar', $bb_toolbar);
$smarty->assign('smilies', $smilies);
$smarty->display('com_calendar_add.tpl');
return;
}
}
if ($do == "add_parent") {
if ($inUser->id == 0) {
$inCore->redirectBack();
return;
}
$event_id = $inCore->request('event_id', 'int', 0);
$event = $model->getEvent($event_id);
if (!$event) {
$inCore->redirectBack();
return;
}
$is_send = $inCore->inRequest('title');
if ($is_send) {
$title = $inCore->request('title', 'str');
$date_start = $inCore->request('date_start', 'str');
$date_end = $inCore->request('date_end', 'str');
$hour_start = $inCore->request('hour_start', 'str');
$hour_end = $inCore->request('hour_end', 'str');
$min_start = $inCore->request('min_start', 'str');
$min_end = $inCore->request('min_end', 'str');
$content = $inCore->request('content', 'str');
if (!$title || !$date_start || !$hour_start || !$hour_end || !$min_start || !$min_end) {
cmsCore::addSessionMessage('Ой, что то не было заполнено...', 'error');
$inCore->redirectBack();
exit;
} else {
$start_time = strtotime($date_start . ' ' . $hour_start . ':' . $min_start);
$end_time = strtotime($date_end . ' ' . $hour_end . ':' . $min_end);
if ($data_end == "" or $date_end < $date_start) {
$data_end = $data_start;
}
$type = $event['type'];
$model->addEvent($inUser->id, $type, $apx, $start_time, $end_time, $title, $content, $event['id']);
$inCore->redirect('/calendar/event' . $event['id'] . ".html");
exit;
}
}
$bb_toolbar = cmsPage::getBBCodeToolbar('message', $cfg['img_on'], 'forum');
$smilies = cmsPage::getSmilesPanel('message');
$inPage->setTitle("Добавить вложеное событие");
$smarty = $inCore->initSmarty('components', 'com_calendar_add.tpl');
$smarty->assign('bb_toolbar', $bb_toolbar);
$smarty->assign('smilies', $smilies);
$smarty->assign('parent', "1");
$smarty->assign('parent_title', $event['title']);
$smarty->assign('title', "");
$smarty->assign('content', "");
$smarty->assign('type', $event['type']);
$smarty->assign('start_date', date("d.m.Y", $event['start_time']));
$smarty->assign('start_hour', date("H", $event['start_time']));
$smarty->assign('start_min', date("i", $event['start_time']));
$smarty->assign('end_date', date("d.m.Y", $event['end_time']));
$smarty->assign('end_hour', date("H", $event['end_time']));
$smarty->assign('end_min', date("i", $event['end_time']));
$smarty->display('com_calendar_add.tpl');
return;
}
if ($do == "event_signup") {
//Если не залогинились то возвращаем обратно
if ($inUser->id == 0) {
$inCore->redirectBack();
return;
}
$event_id = $inCore->request('event_id', 'int', 0);
$event = $model->getEvent($event_id);
//Если приватное событие то отправляем обратно
if ($event["type"] == "private") {
$inCore->redirectBack();
return;
}
//Если мероприятие уже прошло говорим ай-яй-яй
if ($event['start_time'] - time() < 0) {
cmsCore::addSessionMessage('Присоединиться к мероприятию уже невозможно', 'error');
$inCore->redirectBack();
exit;
}
//Проверяем статус присоединения ко встрече
if ($model->isSignup($event_id)) {
//Если уже присоединялись то удаляем и выводим статус
$model->deleteSignup($event_id);
cmsCore::addSessionMessage('Вы отказались от участия в мероприятии ' . $event["title"], 'success');
// Добавляем событие в ленту
cmsActions::log('del_signup', array('object' => $event["title"], 'object_url' => '/calendar/event' . $event_id . '.html', 'object_id' => $event_id, 'target' => '', 'target_url' => '/calendar/event' . $event_id . '.html', 'target_id' => '0', 'description' => ''));
$inCore->redirect('/calendar/event' . $event_id . '.html');
} else {
//Если не присоединялись то добавляем в базу и выводим статус
//Если уже присоединялись то удаляем и выводим статус
$model->addSignup($event["id"]);
cmsCore::addSessionMessage('Вы присоединились к событию ' . $event["title"], 'success');
// Добавляем событие в ленту
cmsActions::log('add_signup', array('object' => $event["title"], 'object_url' => '/calendar/event' . $event_id . '.html', 'object_id' => $event["id"], 'target' => '', 'target_url' => '/calendar/event' . $event_id . '.html', 'target_id' => '0', 'description' => ''));
$inCore->redirect('/calendar/event' . $event_id . '.html');
}
return;
}
//AJAX
if ($do == "ajax_add") {
$guest = TRUE;
if ($inUser->id == 0 and $cfg['calendar_access'] == "all") {
$guest = FALSE;
}
if ($inUser->id != 0 and $cfg['calendar_access'] == "users") {
$guest = FALSE;
}
if ($inUser->is_admin) {
$guest = FALSE;
}
if (!$guest) {
$title = iconv("utf8", "cp1251", $inCore->request('title', 'str'));
$type = $inCore->request('type', 'str');
$date_start = $inCore->request('date_start', 'str');
$date_end = $inCore->request('date_end', 'str');
$hour_start = $inCore->request('hour_start', 'str');
$hour_end = $inCore->request('hour_end', 'str');
$min_start = $inCore->request('min_start', 'str');
$min_end = $inCore->request('min_end', 'str');
$content = iconv("utf8", "cp1251", $inCore->request('content', 'str'));
$start_time = strtotime($date_start . ' ' . $hour_start . ':' . $min_start);
$end_time = strtotime($date_end . ' ' . $hour_end . ':' . $min_end);
if ($type == "prvate") {
$category_id = 0;
$type = "private";
} else {
if (is_numeric($type)) {
$category_id = $type;
} else {
$category_id = 0;
}
$type = "public";
}
$event_id = $model->addEvent($inUser->id, $type, $category_id, $start_time, $end_time, $title, $content);
$output = array();
if (!$event_id) {
$output['error'] = TRUE;
$output['errortext'] = iconv("CP1251", "UTF-8", "Ошибка БД");
} else {
$output['error'] = FALSE;
$event = $model->getEvent($event_id);
$output['event_id'] = $event_id;
$output['start'] = $event['start_time'];
$output['end_time'] = $event['end_time'];
if ($event['end_time'] - $event['start_time'] > 60 * 60 * 8) {
$output['allDay'] = TRUE;
} else {
$output['allDay'] = FALSE;
}
$output['bg'] = $event['bg'];
$output['tx'] = $event['tx'];
if ($type != "private") {
cmsActions::log('add_event', array('object' => 'событие', 'object_url' => '/calendar/event' . $event_id . '.html', 'object_id' => $event_id, 'target' => $title, 'target_url' => '/calendar/event' . $event_id . '.html', 'target_id' => '0', 'description' => $title));
}
}
} else {
$output['error'] = TRUE;
$output['errortext'] = iconv("CP1251", "UTF-8", "Ошибка доступа");
}
print json_encode($output);
exit;
}
if ($do == "ajax_edit") {
$type_act = $inCore->request('type', 'str');
$id = $inCore->request('id', 'int');
$dayDelta = $inCore->request('dayDelta', 'str');
$minuteDelta = $inCore->request('minuteDelta', 'str');
$event = $model->getEvent($id);
if ($event['author_id'] == $inUser->id) {
$type = $event['type'];
$apx = "";
$start_time = $event['start_time'];
$end_time = $event['end_time'];
$title = $event['title'];
$content = $event['content'];
$delta = $dayDelta * 24 * 60 * 60 + $minuteDelta * 60;
if ($type_act == "drop") {
$start_time = $start_time + $delta;
$end_time = $end_time + $delta;
}
if ($type_act == "resize") {
$end_time = $end_time + $delta;
}
$model->updateEvent($id, $type, $apx, $start_time, $end_time, $title, $content);
} else {
print "Ошибка доступа";
}
exit;
}
if ($do == "ajax_get_event") {
$starttime = $inCore->request('start', 'int');
$endtime = $inCore->request('end', 'int');
$parent_id = $inCore->request('parent_id', 'parent_id');
$category = $inCore->request('category', 'str');
if ($category == "all" or !is_numeric($category)) {
$category = FALSE;
}
if (!$parent_id) {
$parent_id = 0;
}
$events = $model->getCalendar($starttime, $endtime, $category, $parent_id);
$output = array();
foreach ($events as $data) {
$data['title'] = iconv("cp1251", "utf8", $data["title"]);
$data['start'] = date("Y-m-d H:i:s", $data["start_time"]);
$data['end'] = date("Y-m-d H:i:s", $data["end_time"]);
$data['url'] = "/calendar/event" . $data['id'] . ".html";
if ($data["author_id"] == $inUser->id) {
$data['editable'] = true;
} else {
$data['editable'] = false;
}
if ($data["end_time"] - $data["start_time"] > 60 * 60 * 8) {
$data['allDay'] = "true";
}
if (!$data['category_id']) {
switch ($data["type"]) {
case "public":
$data['color'] = $cfg['public_bg_color'];
$data['textColor'] = $cfg['public_tx_color'];
break;
case "private":
$data['color'] = $cfg['private_bg_color'];
$data['textColor'] = $cfg['private_tx_color'];
break;
}
} else {
$data['color'] = $data['bg'];
$data['textColor'] = $data['tx'];
}
if ($data["type"] == "private" and $data['author_id'] != $inUser->id) {
} else {
$output[] = $data;
}
}
print json_encode($output);
exit;
}
if ($do == "isc_calendar") {
header('Content-type: text/calendar; charset=utf-8');
header('Content-Disposition: inline; filename=calendar.ics');
echo "BEGIN:VCALENDAR\n";
echo "VERSION:2.0\n";
echo "PRODID:-//hacksw/handcal//NONSGML v1.0//EN'\n";
$events = $model->getCalendar(time() - 60 * 60 * 24 * 30, time() + 60 * 60 * 24 * 30, 0);
foreach ($events as $event) {
if ($event['type'] == "public") {
$title = iconv("cp1251", "utf8", $event["title"]);
//$content = iconv("cp1251","utf8",str_replace("\n",'',$event["content"]));
$dtstart = date("Ymd", $event["start_time"]) . "T" . date("His", $event["start_time"]) . "Z";
$dtend = date("Ymd", $event["end_time"]) . "T" . date("His", $event["end_time"]) . "Z";
echo "BEGIN:VEVENT\n";
echo "DTSTART:{$dtstart}\n";
echo "DTEND:{$dtend}\n";
echo "SUMMARY:{$title}\n";
//echo "DESCRIPTION:$content\n";
echo "END:VEVENT\n";
}
}
echo "END:VCALENDAR\n";
exit;
}
if ($do == "ajax_add_form") {
$start = strtotime($inCore->request('start', 'str'));
$end = strtotime($inCore->request('end', 'str'));
if (!$inUser->id) {
print "Ошибка доступа.";
exit;
}
$catigories = $model->getAllCategories();
$bb_toolbar = cmsPage::getBBCodeToolbar('message', $cfg['img_on'], 'forum');
$smilies = cmsPage::getSmilesPanel('message');
$smarty = $inCore->initSmarty('components', 'com_calendar_add.tpl');
$smarty->assign('catigories', $catigories);
$smarty->assign('start_date', date("d.m.Y", $start));
$smarty->assign('start_hour', date("H", $start));
$smarty->assign('start_min', date("i", $start));
$smarty->assign('end_date', date("d.m.Y", $end));
$smarty->assign('end_hour', date("H", $end));
$smarty->assign('end_min', date("i", $end));
$smarty->assign('bb_toolbar', $bb_toolbar);
$smarty->assign('smilies', $smilies);
$smarty->display('com_calendar_add.tpl');
exit;
}
// FOTOLIB
if ($do == "imagerotate") {
$side = $md5 = $inCore->request('side', 'str');
$image_id = $inCore->request('image_id', 'int');
include 'fotolib.class.php';
$foto = new FotoLib();
$foto->Rotate($side, $image_id);
$inCore->redirectBack();
exit;
}
if ($do == "imagedelete") {
include 'fotolib.class.php';
$image_id = $inCore->request('image_id', 'int');
$foto = new FotoLib();
$foto->Delete($image_id);
$inCore->redirectBack();
exit;
}
}
function comments($target = '', $target_id = 0, $labels = array())
{
$inCore = cmsCore::getInstance();
$inPage = cmsPage::getInstance();
$inDB = cmsDatabase::getInstance();
$inUser = cmsUser::getInstance();
cmsCore::loadModel('comments');
$model = new cms_model_comments($labels);
// Проверяем включени ли компонент
if (!$inCore->isComponentEnable('comments')) {
return false;
}
// Инициализируем права доступа для группы текущего пользователя
$model->initAccess();
global $_LANG;
$do = $inCore->do;
$page = cmsCore::request('page', 'int', 1);
$id = cmsCore::request('id', 'int', 0);
$login = cmsCore::strClear(urldecode(cmsCore::request('login', 'html', '')));
$inPage->addHeadJS('components/comments/js/comments.js');
$inPage->addHeadJsLang(array('EDIT_COMMENT', 'CONFIRM_DEL_COMMENT', 'COMMENT_IN_LINK'));
//========================================================================================================================//
//========================================================================================================================//
if ($do == 'view' && !$target && !$target_id) {
if (!$login) {
$myprofile = false;
$page_title = $inCore->getComponentTitle();
$inPage->addHead('<link rel="alternate" type="application/rss+xml" title="' . $_LANG['COMMENTS'] . '" href="' . HOST . '/rss/comments/all/feed.rss">');
} else {
// проверяем что пользователь есть
$user = cmsUser::getShortUserData($login);
if (!$user) {
cmsCore::error404();
}
// Мои комментарии
$myprofile = $inUser->id == $user['id'];
$page_title = $_LANG['COMMENTS'] . ' - ' . $user['nickname'];
$inPage->addPathway($user['nickname'], cmsUser::getProfileURL($user['login']));
// Добавляем условие в выборку
$model->whereUserIs($user['id']);
}
$inPage->setTitle($page_title);
$inPage->addPathway($page_title);
$inPage->setDescription($model->config['meta_desc'] ? $model->config['meta_desc'] : $page_title);
$inPage->setKeywords($model->config['meta_keys'] ? $model->config['meta_keys'] : $page_title);
// флаг модератора
$is_moder = $inUser->is_admin || $model->is_can_moderate;
// Не админам только открытые комментарии
if (!($is_moder || $myprofile)) {
$model->whereIsShow();
}
// Общее количество комментариев
$total = $model->getCommentsCount(!($is_moder || $myprofile));
// Сортировка и разбивка на страницы
$inDB->orderBy('c.pubdate', 'DESC');
$inDB->limitPage($page, $model->config['perpage']);
// Сами комментарии
$comments = $total ? $model->getComments(!($is_moder || $myprofile)) : array();
$inDB->resetConditions();
if (!$comments && $page > 1) {
cmsCore::error404();
}
// пагинация
if (!$login) {
$pagebar = cmsPage::getPagebar($total, $page, $model->config['perpage'], '/comments/page-%page%');
} else {
$pagebar = cmsPage::getPagebar($total, $page, $model->config['perpage'], 'javascript:centerLink(\'/comments/by_user_' . $user['login'] . '/page-%page%\')');
}
// Отдаем в шаблон
cmsPage::initTemplate('components', 'com_comments_list_all')->assign('comments_count', $total)->assign('comments', $comments)->assign('pagebar', $pagebar)->assign('is_user', $inUser->id)->assign('page_title', $page_title)->assign('cfg', $model->config)->assign('is_admin', $is_moder)->display('com_comments_list_all.tpl');
}
//========================================================================================================================//
//========================================================================================================================//
if (!in_array($do, array('add', 'edit', 'delete')) && $target && $target_id) {
if (!$model->config['cmm_ajax']) {
$model->whereTargetIs($target, $target_id);
$inDB->orderBy('c.pubdate', 'ASC');
$comments = cmsCore::callEvent('BEFORE_SHOW_COMMENTS', $model->getComments(!($inUser->is_admin || $model->is_can_moderate), true));
$total = count($comments);
ob_start();
cmsPage::initTemplate('components', 'com_comments_list')->assign('comments_count', $total)->assign('comments', $comments)->assign('user_can_moderate', $model->is_can_moderate)->assign('user_can_delete', $model->is_can_delete)->assign('user_can_add', $model->is_can_add)->assign('is_admin', $inUser->is_admin)->assign('is_user', $inUser->id)->assign('cfg', $model->config)->assign('labels', $model->labels)->assign('target', $target)->assign('target_id', $target_id)->display('com_comments_list.tpl');
$html = ob_get_clean();
} else {
$model->whereTargetIs($target, $target_id);
$total = $model->getCommentsCount(!($inUser->is_admin || $model->is_can_moderate));
$inDB->resetConditions();
}
cmsPage::initTemplate('components', 'com_comments_view')->assign('comments_count', $total)->assign('target', $target)->assign('target_id', $target_id)->assign('is_admin', $inUser->is_admin)->assign('labels', $model->labels)->assign('is_user', $inUser->id)->assign('cfg', $model->config)->assign('user_can_add', $model->is_can_add)->assign('html', isset($html) ? $html : '')->assign('add_comment_js', "addComment('" . $target . "', '" . $target_id . "', 0)")->assign('user_subscribed', cmsUser::isSubscribed($inUser->id, $target, $target_id))->display('com_comments_view.tpl');
}
//========================================================================================================================//
//========================================================================================================================//
// Добавление комментария, форма добавления в addform.php
if ($do == 'add') {
// Только аякс
if (!cmsCore::isAjax()) {
cmsCore::error404();
}
// Очищаем буфер
ob_end_clean();
// Добавлять могут только админы и те, кому разрешено в настройках группы
if (!$model->is_can_add && !$inUser->is_admin) {
cmsCore::error404();
}
// Входные данные
$comment['guestname'] = cmsCore::request('guestname', 'str', '');
$comment['user_id'] = $inUser->id;
if ($model->is_can_bbcode) {
$content = cmsCore::request('content', 'html', '');
$comment['content_bbcode'] = $inDB->escape_string($content);
$content = cmsCore::parseSmiles($content, true);
$comment['content'] = $inDB->escape_string($content);
} else {
$comment['content'] = cmsCore::request('content', 'str', '');
$comment['content_bbcode'] = $comment['content'];
$comment['content'] = str_replace(array('\\r', '\\n'), '<br>', $comment['content']);
}
$comment['parent_id'] = cmsCore::request('parent_id', 'int', 0);
$comment['target'] = cmsCore::request('target', 'str', '');
$comment['target_id'] = cmsCore::request('target_id', 'int', 0);
$comment['ip'] = cmsCore::strClear($_SERVER['REMOTE_ADDR']);
// Проверяем правильность/наличие входных парамеров
// цель комментария
if (!$comment['target'] || !$comment['target_id']) {
cmsCore::jsonOutput(array('error' => true, 'text' => $_LANG['ERR_UNKNOWN_TARGET']));
}
// Имя гостя отсутствует
if (!$comment['guestname'] && !$inUser->id) {
cmsCore::jsonOutput(array('error' => true, 'text' => $_LANG['ERR_USER_NAME']));
}
// Текст комментраия отсутствует
if (!$comment['content']) {
cmsCore::jsonOutput(array('error' => true, 'text' => $_LANG['ERR_COMMENT_TEXT']));
}
// проверяем каптчу
$need_captcha = $model->config['regcap'] ? true : ($inUser->id ? false : true);
if ($need_captcha && !cmsPage::checkCaptchaCode()) {
cmsCore::jsonOutput(array('error' => true, 'is_captcha' => true, 'text' => $_LANG['ERR_CAPTCHA']));
}
// получаем массив со ссылкой и заголовком цели комментария
// для этого:
// 1. узнаем ответственный компонент из cms_comment_targets
$target = $inDB->get_fields('cms_comment_targets', "target='{$comment['target']}'", '*');
if (!$target) {
cmsCore::jsonOutput(array('error' => true, 'text' => $_LANG['ERR_UNKNOWN_TARGET'] . ' #1'));
}
// 2. подключим модель этого компонента
if (cmsCore::loadModel($target['component'])) {
$model_class = 'cms_model_' . $target['component'];
if (class_exists($model_class)) {
$target_model = new $model_class();
}
}
if (!isset($target_model)) {
cmsCore::jsonOutput(array('error' => true, 'text' => $_LANG['ERR_UNKNOWN_TARGET'] . ' #2'));
}
// 3. запросим массив $target_data[link, title] у метода getCommentTarget модели
$target_data = $target_model->getCommentTarget($comment['target'], $comment['target_id']);
if (!$target_data) {
cmsCore::jsonOutput(array('error' => true, 'text' => $_LANG['ERR_UNKNOWN_TARGET'] . ' #3'));
}
$comment['target_title'] = $target_data['title'];
$comment['target_link'] = $target_data['link'];
// 4. Узнаем видимость комментария в модели $target_model
if (method_exists($target_model, 'getVisibility')) {
$comment['is_hidden'] = $target_model->getVisibility($comment['target'], $comment['target_id']);
} else {
$comment['is_hidden'] = 0;
}
// публикация согласно настроек
$comment['published'] = $inUser->is_admin || $model->is_can_moderate || $model->is_add_published ? 1 : 0;
// Проверяем токен перед самым добавлением комментария
if (!cmsUser::checkCsrfToken()) {
cmsCore::error404();
}
// 5. добавляем комментарий в базу
$comment_id = $model->addComment($comment);
// 6. Пересчитываем количество комментариев у цели если нужно
if (method_exists($target_model, 'updateCommentsCount')) {
$target_model->updateCommentsCount($comment['target'], $comment['target_id']);
}
if (!$comment['is_hidden'] && $comment['published']) {
//регистрируем событие
$content_short = strip_tags($comment['content']);
cmsActions::log('add_comment', array('object' => $_LANG['COMMENT'], 'object_url' => $comment['target_link'] . '#c' . $comment_id, 'object_id' => $comment_id, 'target' => $comment['target_title'], 'target_url' => $comment['target_link'], 'target_id' => $comment['target_id'], 'description' => mb_strlen($content_short) > 140 ? mb_substr($content_short, 0, 140) : $content_short));
}
////////////////////////////////////////////////////////////////
///////////////// Операции по уведомлениям /////////////////////
$inConf = cmsConfig::getInstance();
$from_nick = $inUser->id ? $inUser->nickname : $comment['guestname'];
$targetlink = HOST . $comment['target_link'] . '#c' . $comment_id;
//получаем ID и e-mail автора
$author = $inUser->id ? $model->getTargetAuthor($target['target_table'], $comment['target_id']) : '';
//подписываем пользователя на обновления, если нужно
if ($inUser->id && cmsCore::inRequest('subscribe')) {
cmsUser::subscribe($inUser->id, $comment['target'], $comment['target_id']);
}
if ($comment['published']) {
//рассылаем уведомления о новом комменте
cmsUser::sendUpdateNotify($comment['target'], $comment['target_id'], array('link' => $comment['target_link'] . '#c' . $comment_id, 'title' => stripslashes($comment['target_title']), 'letter_file' => 'newcomment', 'author' => $inUser->id ? $inUser->nickname : $comment['guestname']));
//проверяем и выдаем награду если нужно
cmsUser::checkAwards($inUser->id);
}
//отправляем админу уведомление о комментарии на e-mail, если нужно
if ($model->config['email']) {
$mailmsg = str_replace(array('{sitename}', '{date}', '{from}', '{subjtitle}', '{targetlink}', '{content}'), array($inConf->sitename, date('d/m/Y (H:i)'), $from_nick, stripslashes($comment['target_title']), $targetlink, strip_tags($comment['content'])), cmsCore::getLanguageTextFile('newcomment_admin'));
$inCore->mailText($model->config['email'], '', $mailmsg);
}
//отправляем автору уведомление на e-mail
if ($author && $comment['published']) {
if ($model->isAuthorNeedMail($author['id']) && $inUser->id != $author['id']) {
$letter = cmsCore::getLanguageTextFile('newpostcomment');
$letter = str_replace('{sitename}', $inConf->sitename, $letter);
$letter = str_replace('{subj}', $target['subj'], $letter);
$letter = str_replace('{subjtitle}', stripslashes($comment['target_title']), $letter);
$letter = str_replace('{targetlink}', $targetlink, $letter);
$letter = str_replace('{date}', date('d/m/Y H:i:s'), $letter);
$letter = str_replace('{from}', $from_nick, $letter);
$inCore->mailText($author['email'], '', $letter);
}
}
if (!$comment['published']) {
$message = str_replace(array('%user%', '%targetlink%'), array($from_nick, $targetlink), $_LANG['COMM_PREMODER_ADMIN_TEXT']);
cmsUser::sendMessage(USER_UPDATER, 1, $message);
}
cmsCore::jsonOutput(array('error' => false, 'target' => $comment['target'], 'target_id' => $comment['target_id'], 'is_premod' => $comment['published'] ? 0 : $_LANG['COMM_PREMODER_TEXT'], 'comment_id' => $comment_id));
}
//========================================================================================================================//
//========================================================================================================================//
if ($do == 'edit') {
if (!cmsCore::isAjax()) {
cmsCore::error404();
}
$comment = $model->getComment(cmsCore::request('comment_id', 'int', 0));
if (!$comment) {
die;
}
// редактировать могут авторы (если время редактирования есть)
// модераторы и администраторы
if (!$model->is_can_moderate && !$inUser->is_admin && !($inUser->id == $comment['user_id'] && $comment['is_editable'])) {
cmsCore::error404();
}
if ($model->is_can_bbcode) {
$content = cmsCore::request('content', 'html', '');
$com_new['content_bbcode'] = $inDB->escape_string($content);
$com_new['content'] = $inDB->escape_string(cmsCore::parseSmiles($content, true));
} else {
$com_new['content'] = cmsCore::request('content', 'str', '');
$com_new['content_bbcode'] = $com_new['content'];
$com_new['content'] = str_replace(array('\\r', '\\n'), '<br>', $com_new['content']);
}
// Текст комментраия отсутствует
if (!$com_new['content']) {
cmsCore::jsonOutput(array('error' => true, 'text' => $_LANG['ERR_COMMENT_TEXT']));
}
if (!cmsUser::checkCsrfToken()) {
cmsCore::error404();
}
//Если ошибок не было,
//обновляем комментарий в базе
$model->updateComment($comment['id'], $com_new);
// Обновляем в ленте активности
$content_short = mb_substr(strip_tags($com_new['content']), 0, 140);
cmsActions::updateLog('add_comment', array('description' => $content_short), $comment['id']);
$com_new['content'] = stripslashes(str_replace(array('\\r', '\\n'), ' ', $com_new['content']));
$com_new = cmsCore::callEvent('GET_COMMENT', $com_new);
cmsCore::jsonOutput(array('error' => false, 'text' => $com_new['content'], 'comment_id' => $comment['id']));
}
//========================================================================================================================//
//========================================================================================================================//
if ($do == 'delete') {
if (!cmsCore::isAjax()) {
cmsCore::error404();
}
$comment = $model->getComment($id);
if (!$comment) {
cmsCore::error404();
}
if (!$inUser->id && !($model->is_can_delete && $inUser->id == $comment['user_id']) && !$model->is_can_moderate && !$inUser->is_admin) {
cmsCore::error404();
}
//узнаем ответственный компонент из cms_comment_targets
$target = $inDB->get_fields('cms_comment_targets', "target='{$comment['target']}'", '*');
if (!$target) {
cmsCore::jsonOutput(array('error' => true, 'text' => $_LANG['ERR_UNKNOWN_TARGET'] . ' #1'));
}
if (!cmsUser::checkCsrfToken()) {
cmsCore::error404();
}
$model->deleteComment($id);
//подключим модель этого компонента
if (cmsCore::loadModel($target['component'])) {
$model_class = 'cms_model_' . $target['component'];
if (class_exists($model_class)) {
$target_model = new $model_class();
// Пересчитываем количество комментариев у цели если нужно
if (method_exists($target_model, 'updateCommentsCount')) {
$target_model->updateCommentsCount($comment['target'], $comment['target_id']);
}
}
}
cmsCore::jsonOutput(array('error' => false, 'target' => $comment['target'], 'target_id' => $comment['target_id']));
}
}
function applet_tree()
{
$inCore = cmsCore::getInstance();
$inUser = cmsUser::getInstance();
$inDB = cmsDatabase::getInstance();
$inPage = cmsPage::getInstance();
cmsCore::loadLib('tags');
global $_LANG;
global $adminAccess;
if (!cmsUser::isAdminCan('admin/content', $adminAccess)) {
cpAccessDenied();
}
$cfg = $inCore->loadComponentConfig('content');
cmsCore::loadModel('content');
$model = new cms_model_content();
$GLOBALS['cp_page_title'] = $_LANG['AD_ARTICLES'];
cpAddPathway($_LANG['AD_ARTICLES'], 'index.php?view=tree');
$GLOBALS['cp_page_head'][] = '<script language="JavaScript" type="text/javascript" src="js/content.js"></script>';
echo '<script>';
echo cmsPage::getLangJS('AD_NO_SELECTED_ARTICLES');
echo cmsPage::getLangJS('AD_DELETE_SELECTED_ARTICLES');
echo cmsPage::getLangJS('AD_PIECES');
echo cmsPage::getLangJS('AD_CATEGORY_DELETE');
echo cmsPage::getLangJS('AD_AND_SUB_CATS');
echo cmsPage::getLangJS('AD_DELETE_SUB_ARTICLES');
echo '</script>';
$do = cmsCore::request('do', 'str', 'tree');
//============================================================================//
//============================================================================//
if ($do == 'tree') {
$toolmenu[] = array('icon' => 'config.gif', 'title' => $_LANG['AD_SETUP_CATEGORY'], 'link' => '?view=components&do=config&link=content');
$toolmenu[] = array('icon' => 'help.gif', 'title' => $_LANG['AD_HELP'], 'link' => '?view=components&do=config&link=content');
cpToolMenu($toolmenu);
$only_hidden = cmsCore::request('only_hidden', 'int', 0);
$category_id = cmsCore::request('cat_id', 'int', 0);
$base_uri = 'index.php?view=tree';
$title_part = cmsCore::request('title', 'str', '');
$def_order = $category_id ? 'con.ordering' : 'pubdate';
$orderby = cmsCore::request('orderby', 'str', $def_order);
$orderto = cmsCore::request('orderto', 'str', 'asc');
$page = cmsCore::request('page', 'int', 1);
$perpage = 20;
$hide_cats = cmsCore::request('hide_cats', 'int', 0);
$cats = $model->getCatsTree();
if ($category_id) {
$model->whereCatIs($category_id);
}
if ($title_part) {
$inDB->where('LOWER(con.title) LIKE \'%' . mb_strtolower($title_part) . '%\'');
}
if ($only_hidden) {
$inDB->where('con.published = 0');
}
$inDB->orderBy($orderby, $orderto);
$inDB->limitPage($page, $perpage);
$total = $model->getArticlesCount(false);
$items = $model->getArticlesList(false);
$pages = ceil($total / $perpage);
$tpl_file = 'admin/content.php';
$tpl_dir = file_exists(TEMPLATE_DIR . $tpl_file) ? TEMPLATE_DIR : DEFAULT_TEMPLATE_DIR;
include $tpl_dir . $tpl_file;
}
}
function photos()
{
$inCore = cmsCore::getInstance();
$inPage = cmsPage::getInstance();
$inDB = cmsDatabase::getInstance();
$inUser = cmsUser::getInstance();
cmsCore::loadClass('photo');
$inPhoto = cmsPhoto::getInstance();
global $_LANG;
$model = new cms_model_photos();
$pagetitle = $inCore->menuTitle();
$root_album_id = $inDB->getNsRootCatId('cms_photo_albums');
$id = cmsCore::request('id', 'int', $root_album_id);
$do = $inCore->do;
$page = cmsCore::request('page', 'int', 1);
$inPage->addPathway($inCore->getComponentTitle(), '/photos');
// только авторизованные пользуются js
if ($inUser->id) {
$inPage->addHeadJS('components/photos/js/photos.js');
$inPage->addHeadJsLang(array('NO_PUBLISH', 'EDIT_PHOTO', 'YOU_REALLY_DELETE_PHOTO', 'MOVE_PHOTO'));
}
$inPage->setDescription($model->config['meta_desc'] ? $model->config['meta_desc'] : $pagetitle);
$inPage->setKeywords($model->config['meta_keys'] ? $model->config['meta_keys'] : $pagetitle);
/////////////////////////////// Просмотр альбома ///////////////////////////////////////////////////////////////////////////////////////////
if ($do == 'view') {
$album = $inDB->getNsCategory('cms_photo_albums', $id, null);
if (!$album && $inCore->menuId() !== 1) {
cmsCore::error404();
}
// Неопубликованные альбомы показываем только админам
if (!$album['published'] && !$inUser->is_admin) {
cmsCore::error404();
}
$album = cmsCore::callEvent('GET_PHOTO_ALBUM', $album);
// если не корневой альбом
if ($album['id'] != $root_album_id) {
$path_list = $inDB->getNsCategoryPath('cms_photo_albums', $album['NSLeft'], $album['NSRight'], 'id, title, NSLevel');
if ($path_list) {
foreach ($path_list as $pcat) {
$inPage->addPathway($pcat['title'], '/photos/' . $pcat['id']);
}
}
$pagetitle = $pagetitle && $inCore->isMenuIdStrict() ? $pagetitle : $album['title'] . ' - ' . $_LANG['PHOTOGALLERY'];
$inPage->setTitle($album['pagetitle'] ? $album['pagetitle'] : $pagetitle);
} else {
$pagetitle = $pagetitle && $inCore->isMenuIdStrict() ? $pagetitle : $_LANG['PHOTOGALLERY'];
$inPage->setTitle($pagetitle);
$album['title'] = $pagetitle;
}
//Формируем подкатегории альбома
$inDB->orderBy('f.' . $model->config['orderby'], $model->config['orderto']);
$subcats = $inPhoto->getAlbums($album['id']);
// Сортировка фотографий
$orderby = cmsCore::getSearchVar('orderby', $album['orderby']);
$orderto = cmsCore::getSearchVar('orderto', $album['orderto']);
if (!in_array($orderby, array('title', 'pubdate', 'rating', 'hits'))) {
$orderby = $album['orderby'];
}
if (!in_array($orderto, array('desc', 'asc'))) {
$orderto = $album['orderto'];
}
// Устанавливаем альбом
$inPhoto->whereAlbumIs($album['id']);
// Общее количество фото по заданным выше условиям
$total = $inPhoto->getPhotosCount($inUser->is_admin);
//устанавливаем сортировку
$inDB->orderBy('f.' . $orderby, $orderto);
//устанавливаем номер текущей страницы и кол-во фото на странице
$inDB->limitPage($page, $album['perpage']);
$photos = $inPhoto->getPhotos($inUser->is_admin, $album['showdate']);
if (!$photos && $page > 1) {
cmsCore::error404();
}
if ($album['id'] != $root_album_id) {
// meta description
if ($album['meta_desc']) {
$meta_desc = $album['meta_desc'];
} elseif (mb_strlen(strip_tags($album['description'])) >= 250) {
$meta_desc = crop($album['description']);
} else {
$meta_desc = $album['title'];
}
$inPage->setDescription($meta_desc);
// meta keywords
if ($album['meta_keys']) {
$meta_keys = $album['meta_keys'];
} elseif ($photos) {
foreach ($photos as $p) {
$k[] = $p['title'];
}
$meta_keys = implode(', ', $k);
} else {
$meta_keys = $album['title'];
}
$inPage->setKeywords($meta_keys);
}
cmsPage::initTemplate('components', 'com_photos_view')->assign('root_album_id', $root_album_id)->assign('cfg', $model->config)->assign('album', $album)->assign('can_add_photo', $album['public'] && $inUser->id || $inUser->is_admin)->assign('subcats', $subcats)->assign('photos', $photos)->assign('pagebar', cmsPage::getPagebar($total, $page, $album['perpage'], '/photos/' . $album['id'] . '-%page%'))->assign('total', $total)->assign('orderby', $orderby)->assign('orderto', $orderto)->display('com_photos_view.tpl');
// если есть фотограйии в альбоме и включены комментарии в альбоме, то показываем их
if ($album['is_comments'] && $photos && $inCore->isComponentInstalled('comments')) {
cmsCore::includeComments();
comments('palbum', $album['id']);
}
}
/////////////////////////////// VIEW PHOTO ///////////////////////////////////////////////////////////////////////////////////////////
if ($do == 'viewphoto') {
// получаем фото
$photo = cmsCore::callEvent('GET_PHOTO', $inPhoto->getPhoto($id));
if (!$photo) {
cmsCore::error404();
}
// Если фото клуба редиректим на новый алрес
if (mb_strstr($photo['NSDiffer'], 'club')) {
cmsCore::redirect('/clubs/photo' . $photo['id'] . '.html', '301');
}
$is_author = $photo['user_id'] == $inUser->id && $inUser->id;
// неопубликованное фото видно админам и автору
if (!$photo['published'] && !$inUser->is_admin && !$is_author) {
cmsCore::error404();
}
$path_list = $inDB->getNsCategoryPath('cms_photo_albums', $photo['NSLeft'], $photo['NSRight'], 'id, title, NSLevel');
if ($path_list) {
foreach ($path_list as $pcat) {
$inPage->addPathway($pcat['title'], '/photos/' . $pcat['id']);
}
}
$inPage->addPathway($photo['title']);
$inPage->setTitle($photo['pagetitle'] ? $photo['pagetitle'] : $photo['title']);
$inPage->setKeywords($photo['meta_keys'] ? $photo['meta_keys'] : $photo['title']);
if (!$photo['meta_desc']) {
if ($photo['description']) {
$inPage->setDescription(crop($photo['description']));
} else {
$inPage->setDescription($photo['title']);
}
} else {
$inPage->setDescription($photo['meta_desc']);
}
// Обновляем количество просмотров фотографии
if (!$is_author) {
$inDB->setFlag('cms_photo_files', $photo['id'], 'hits', $photo['hits'] + 1);
}
//навигация
if ($photo['album_nav']) {
$nextid = $inDB->get_fields('cms_photo_files', 'id<' . $photo['id'] . ' AND album_id = ' . $photo['album_id'] . ' AND published=1', 'id, file', 'id DESC');
$previd = $inDB->get_fields('cms_photo_files', 'id>' . $photo['id'] . ' AND album_id = ' . $photo['album_id'] . ' AND published=1', 'id, file', 'id ASC');
} else {
$previd = false;
$nextid = false;
}
$photo['karma_buttons'] = cmsKarmaButtons('photo', $photo['id'], $photo['rating'], $is_author);
$photo['genderlink'] = cmsUser::getGenderLink($photo['user_id'], $photo['nickname'], $photo['gender'], $photo['login']);
cmsPage::initTemplate('components', 'com_photos_view_photo')->assign('photo', $photo)->assign('bbcode', '[IMG]' . HOST . '/images/photos/medium/' . $photo['file'] . '[/IMG]')->assign('previd', $previd)->assign('nextid', $nextid)->assign('cfg', $model->config)->assign('is_author', $is_author)->assign('is_admin', $inUser->is_admin)->assign('tagbar', $photo['a_tags'] ? cmsTagBar('photo', $photo['id']) : '')->display('com_photos_view_photo.tpl');
//выводим комментарии, если они разрешены и фото опубликовано
if ($photo['comments'] && $inCore->isComponentInstalled('comments')) {
cmsCore::includeComments();
comments('photo', $photo['id'], array(), $is_author);
}
}
/////////////////////////////// PHOTO UPLOAD ////////////////////////////////////////////////////////////////////////////////
if ($do == 'addphoto') {
// Неавторизованных просим авторизоваться
if (!$inUser->id) {
cmsUser::goToLogin();
}
$do_photo = cmsCore::request('do_photo', 'str', 'addphoto');
// получаем альбом
$album = $inDB->getNsCategory('cms_photo_albums', $id);
if (!$album) {
cmsCore::error404();
}
if (!$album['published'] && !$inUser->is_admin) {
cmsCore::error404();
}
$album = cmsCore::callEvent('GET_PHOTO_ALBUM', $album);
// права доступа
// загружаем только в разрешенные альбомы
if (!$album['public'] && !$inUser->is_admin) {
cmsCore::error404();
}
// Смотрим ограничения загрузки в сутки
$today_uploaded = $album['uplimit'] ? $model->loadedByUser24h($inUser->id, $album['id']) : 0;
if (!$inUser->is_admin && $album['uplimit'] && $today_uploaded >= $album['uplimit']) {
cmsCore::addSessionMessage('<strong>' . $_LANG['MAX_UPLOAD_IN_DAY'] . '</strong> ' . $_LANG['CAN_UPLOAD_TOMORROW'], 'error');
cmsCore::redirectBack();
}
// глубиномер
$path_list = $inDB->getNsCategoryPath('cms_photo_albums', $album['NSLeft'], $album['NSRight'], 'id, title, NSLevel');
if ($path_list) {
foreach ($path_list as $pcat) {
$inPage->addPathway($pcat['title'], '/photos/' . $pcat['id']);
}
}
include 'components/photos/add_photo.php';
}
/////////////////////////////// PHOTO EDIT ///////////////////////////////////////////////////////////////////////////////////////////
if ($do == 'editphoto') {
if ($_SERVER['HTTP_X_REQUESTED_WITH'] != 'XMLHttpRequest') {
cmsCore::halt();
}
if (!$inUser->id) {
cmsCore::halt();
}
// получаем фото
$photo = cmsCore::callEvent('GET_PHOTO', $inPhoto->getPhoto($id));
if (!$photo) {
cmsCore::halt();
}
if (mb_strstr($photo['NSDiffer'], 'club')) {
cmsCore::halt();
}
$is_author = $photo['user_id'] == $inUser->id && $inUser->id;
if (!$inUser->is_admin && !$is_author) {
cmsCore::halt();
}
if (cmsCore::inRequest('edit_photo')) {
$mod['title'] = cmsCore::request('title', 'str', '');
$mod['title'] = $mod['title'] ? $mod['title'] : $photo['title'];
$mod['description'] = cmsCore::request('description', 'str', '');
$mod['tags'] = cmsCore::request('tags', 'str', '');
$mod['comments'] = $inUser->is_admin ? cmsCore::request('comments', 'int') : $photo['comments'];
if ($model->config['seo_user_access'] || $inUser->is_admin) {
$mod['pagetitle'] = cmsCore::request('pagetitle', 'str', '');
$mod['meta_keys'] = cmsCore::request('meta_keys', 'str', '');
$mod['meta_desc'] = cmsCore::request('meta_desc', 'str', '');
}
$file = $model->initUploadClass($inDB->getNsCategory('cms_photo_albums', $photo['album_id']))->uploadPhoto($photo['file']);
$mod['file'] = $file['filename'] ? $file['filename'] : $photo['file'];
$inPhoto->updatePhoto($mod, $photo['id']);
$description = '<a href="/photos/photo' . $photo['id'] . '.html" class="act_photo"><img src="/images/photos/small/' . $mod['file'] . '" alt="' . htmlspecialchars(stripslashes($mod['title'])) . '" /></a>';
cmsActions::updateLog('add_photo', array('object' => $mod['title'], 'description' => $description), $photo['id']);
cmsCore::addSessionMessage($_LANG['PHOTO_SAVED'], 'success');
cmsCore::jsonOutput(array('error' => false, 'redirect' => '/photos/photo' . $photo['id'] . '.html'));
} else {
$photo['tags'] = cmsTagLine('photo', $photo['id'], false);
cmsPage::initTemplate('components', 'com_photos_edit')->assign('photo', $photo)->assign('form_action', '/photos/editphoto' . $photo['id'] . '.html')->assign('no_tags', false)->assign('is_admin', $inUser->is_admin)->assign('cfg', $model->config)->display('com_photos_edit.tpl');
cmsCore::jsonOutput(array('error' => false, 'html' => ob_get_clean()));
}
}
/////////////////////////////// PHOTO MOVE /////////////////////////////////////////////////////////////////////////////////////////
if ($do == 'movephoto') {
if ($_SERVER['HTTP_X_REQUESTED_WITH'] != 'XMLHttpRequest') {
cmsCore::halt();
}
if (!$inUser->id) {
cmsCore::halt();
}
$photo = cmsCore::callEvent('GET_PHOTO', $inPhoto->getPhoto($id));
if (!$photo) {
cmsCore::halt();
}
if (mb_strstr($photo['NSDiffer'], 'club')) {
cmsCore::halt();
}
if (!$inUser->is_admin) {
cmsCore::halt();
}
if (!cmsCore::inRequest('move_photo')) {
cmsPage::initTemplate('components', 'com_photos_move')->assign('form_action', '/photos/movephoto' . $photo['id'] . '.html')->assign('html', $inPhoto->getAlbumsOption('', $photo['album_id']))->display('com_photos_move.tpl');
cmsCore::jsonOutput(array('error' => false, 'html' => ob_get_clean()));
} else {
$album = cmsCore::callEvent('GET_PHOTO_ALBUM', $inDB->getNsCategory('cms_photo_albums', cmsCore::request('album_id', 'int')));
if (!$album) {
cmsCore::halt();
}
if (!$album['public'] && !$inUser->is_admin) {
cmsCore::error404();
}
// Смотрим ограничения загрузки в сутки
$today_uploaded = $album['uplimit'] ? $model->loadedByUser24h($inUser->id, $album['id']) : 0;
if (!$inUser->is_admin && $album['uplimit'] && $today_uploaded >= $album['uplimit']) {
cmsCore::jsonOutput(array('error' => true, 'text' => '<strong>' . $_LANG['MAX_UPLOAD_IN_DAY'] . '</strong> ' . $_LANG['CAN_UPLOAD_TOMORROW']));
}
$inDB->query("UPDATE cms_photo_files SET album_id = '{$album['id']}' WHERE id = '{$photo['id']}'");
cmsActions::updateLog('add_photo', array('target' => $album['title'], 'target_url' => '/photos/' . $album['id'], 'target_id' => $album['id']), $photo['id']);
cmsCore::addSessionMessage($_LANG['PHOTO_MOVED'], 'info');
cmsCore::jsonOutput(array('error' => false, 'redirect' => '/photos/' . $album['id']));
}
}
/////////////////////////////// PHOTO DELETE /////////////////////////////////////////////////////////////////////////////////////////
if ($do == 'delphoto') {
if ($_SERVER['HTTP_X_REQUESTED_WITH'] != 'XMLHttpRequest') {
cmsCore::halt();
}
if (!$inUser->id) {
cmsCore::halt();
}
if (!cmsUser::checkCsrfToken()) {
cmsCore::halt();
}
$photo = cmsCore::callEvent('GET_PHOTO', $inPhoto->getPhoto($id));
if (!$photo) {
cmsCore::halt();
}
if (mb_strstr($photo['NSDiffer'], 'club')) {
cmsCore::halt();
}
$is_author = $photo['user_id'] == $inUser->id && $inUser->id;
if (!$inUser->is_admin && !$is_author) {
cmsCore::halt();
}
$inPhoto->deletePhoto($photo, $model->initUploadClass($inDB->getNsCategory('cms_photo_albums', $photo['album_id'])));
cmsCore::addSessionMessage($_LANG['PHOTO_DELETED'], 'success');
cmsUser::clearCsrfToken();
cmsCore::jsonOutput(array('error' => false, 'redirect' => '/photos/' . $photo['album_id']));
}
/////////////////////////////// PHOTO PUBLISH /////////////////////////////////////////////////////////////////////////////////////////
if ($do == 'publish_photo') {
if ($_SERVER['HTTP_X_REQUESTED_WITH'] != 'XMLHttpRequest') {
cmsCore::halt();
}
if (!$inUser->id) {
cmsCore::halt();
}
$photo = cmsCore::callEvent('GET_PHOTO', $inPhoto->getPhoto($id));
if (!$photo) {
cmsCore::halt();
}
if (!$inUser->is_admin) {
cmsCore::halt();
}
$inPhoto->publishPhoto($photo['id']);
cmsCore::callEvent('ADD_PHOTO_DONE', $photo);
$description = '<a href="/photos/photo' . $photo['id'] . '.html" class="act_photo"><img src="/images/photos/small/' . $photo['file'] . '" alt="' . htmlspecialchars(stripslashes($photo['title'])) . '" /></a>';
cmsActions::log('add_photo', array('object' => $photo['title'], 'object_url' => '/photos/photo' . $photo['id'] . '.html', 'object_id' => $photo['id'], 'user_id' => $photo['user_id'], 'target' => $photo['cat_title'], 'target_id' => $photo['album_id'], 'target_url' => '/photos/' . $photo['album_id'], 'description' => $description));
cmsCore::halt('ok');
}
/////////////////////////////// VIEW LATEST/BEST PHOTOS //////////////////////////////////////////////////////////////////////////////
if (in_array($do, array('latest', 'best'))) {
if ($do == 'latest') {
$inDB->orderBy('f.pubdate', 'DESC');
$pagetitle = $pagetitle && $inCore->isMenuIdStrict() ? $pagetitle : $_LANG['NEW_PHOTO_IN_GALLERY'];
} else {
$inDB->orderBy('f.rating', 'DESC');
$pagetitle = $pagetitle && $inCore->isMenuIdStrict() ? $pagetitle : $_LANG['BEST_PHOTOS'];
}
$inDB->limit($model->config['best_latest_perpage']);
// выбираем категории фото
$inDB->addJoin("INNER JOIN cms_photo_albums a ON a.id = f.album_id AND a.published = 1 AND a.NSDiffer = ''");
$inDB->addSelect('a.title as cat_title');
$photos = $inPhoto->getPhotos(false, 'with_comments');
if (!$photos) {
cmsCore::error404();
}
$inPage->addPathway($pagetitle);
$inPage->setTitle($pagetitle);
cmsPage::initTemplate('components', 'com_photos_bl')->assign('maxcols', $model->config['best_latest_maxcols'])->assign('pagetitle', $pagetitle)->assign('photos', $photos)->display('com_photos_bl.tpl');
}
/////////////////////////////// /////////////////////////////// ////////////////
}
public static function initAutoGrowText($element_id)
{
$inPage = cmsPage::getInstance();
$inPage->addHeadJS('includes/jquery/autogrow/jquery.autogrow.js');
$inPage->addHead('<script type="text/javascript">$(document).ready (function() {$(\'' . $element_id . '\').autogrow(); });</script>');
return true;
}
function search() {
$inCore = cmsCore::getInstance();
$inPage = cmsPage::getInstance();
$inDB = cmsDatabase::getInstance();
global $_LANG;
$model = cms_model_search::initModel();
$do = $inCore->do;
$pagetitle = $inCore->getComponentTitle();
$inPage->setTitle($pagetitle);
$inPage->addPathway($pagetitle, '/search');
/* ==================================================================================================== */
/* ==================================================================================================== */
if ($do == 'view') {
if (mb_strlen($model->query) <= 3 && mb_strlen($model->query) >= 1) {
cmsCore::addSessionMessage($_LANG['ERROR'] .': '. $_LANG['SHORT_QUERY'], 'error');
$inCore->redirect('/search');
}
if ($model->query) {
$inPage->addPathway($model->query);
// если параметры запроса изменились
// делаем полный поиск, заполняя кеш
// иначе берем из кеша результаты
if (!$model->isChangedParams()) {
// Удаляем записи поиска от текущей сессии
$model->deleteResultsFromThisSession();
// Готовим поиск
// выполняется поиск по индексу фултекст
if (!$model->prepareSearch()) { cmsCore::error404(); }
// Кладем в сессию текущие параметры запроса
cmsUser::sessionPut('query_params', $model->parametrs_array);
// кладем в сессию слова запроса
cmsUser::sessionPut('searchquery', $model->words);
}
// формируем условия выборки
$model->whereSessionIs(session_id());
$model->wherePeriodIs();
if ($model->order_by_date) {
cmsCore::c('db')->orderBy('pubdate', 'DESC');
} else {
cmsCore::c('db')->orderBy('id', 'ASC');
}
// Получаем общее количество результатов
$total = $model->getCountResults();
// Получаем сами результаты поиска
if ($total) {
$results = $model->getResults();
} else {
cmsCore::c('db')->resetConditions();
}
}
cmsPage::initTemplate('components', 'com_search_text')->
assign('query', $model->query)->
assign('look', $model->look)->
assign('order_by_date', $model->order_by_date)->
assign('from_pubdate', $model->from_pubdate)->
assign('results', $results)->
assign('total', $total)->
assign('enable_components', $model->getEnableComponentsWithSupportSearch())->
assign('from_component', $model->from_component)->
assign('external_link', str_replace('%q%', urlencode($model->query), $_LANG['FIND_EXTERNAL_URL']))->
assign('host', HOST)->
assign('pagebar', cmsPage::getPagebar($total, $model->page, $model->config['perpage'], 'javascript:paginator(%page%)'))->
display();
}
/* ==================================================================================================== */
/* ==================================================================================================== */
if ($do == 'tag') {
if (mb_strlen($model->query) <= 3 && mb_strlen($model->query) >= 1) {
cmsCore::addSessionMessage($_LANG['EMPTY_QUERY'], 'error');
$inCore->redirect('/search');
}
$inPage->setTitle($_LANG['SEARCH_BY_TAG'] .' "'. $model->query .'"');
if ($model->query) {
$inPage->addPathway($_LANG['SEARCH_BY_TAG'] .' "'. $model->query .'"');
}
$inPage->initAutocomplete();
$total = $model->getCountTags();
$results = $model->searchByTag();
cmsPage::initTemplate('components', 'com_search_tag')->
assign('query', $model->query)->
assign('results', $results)->
assign('total', $total)->
assign('autocomplete_js', $inPage->getAutocompleteJS('tagsearch', 'query', false))->
assign('external_link', '/index.php?view=search&query='. urlencode($model->query) .'&look=allwords')->
assign('pagebar', cmsPage::getPagebar($total, $model->page, $model->config['perpage'], '/search/tag/'. urlencode($model->query) .'/page%page%.html'))->
display();
}
return true;
}
function usermaps()
{
$inCore = cmsCore::getInstance();
$inPage = cmsPage::getInstance();
$inUser = cmsUser::getInstance();
$inCore->loadModel('usermaps');
$model = new cms_model_usermaps();
$do = $inCore->request('do', 'str', 'poi_list');
$cfg = $inCore->loadComponentConfig('usermaps');
if ($do == 'mainmap') {
$inPage->setTitle("Карта пользователей");
$cfg['maps_engine'] = strtolower($cfg['maps_engine']);
if ($cfg['maps_engine'] == "pmap") {
$cfg['maps_engine'] = "publicMap";
}
if ($cfg['maps_engine'] == "phybrid") {
$cfg['maps_engine'] = "publicMapHybrid";
}
////Центр карты
$new_center = explode(",", $cfg['maps_center']);
$cfg['maps_center'] = $new_center['1'] . " ," . $new_center['0'];
// Настройки конкретного пользователя
if ($inUser->id != 0) {
if ($place = $model->getUserPlace($inUser->id)) {
//print_r($place);
$cfg['maps_center'] = $place['y'] . " ," . $place['x'];
$cfg['main_zoom'] = $cfg['main_zoom'] + 1;
$have_userplace = 1;
}
}
//Загружаем структуру точек
// $structure = $model->StructureOfPoints();
$smarty = $inCore->initSmarty('modules', 'mod_usermaps_mapview.tpl');
$smarty->assign('cfg', $cfg);
$smarty->assign('user_id', $inUser->id);
$smarty->assign('structure', $structure);
$smarty->assign('have_userplace', $have_userplace);
$smarty->display('mod_usermaps_mapview.tpl');
}
if ($do == 'imagemap') {
$inPage->setTitle("Фото на карте");
$cfg['maps_engine'] = strtolower($cfg['maps_engine']);
if ($cfg['maps_engine'] == "pmap") {
$cfg['maps_engine'] = "publicMap";
}
if ($cfg['maps_engine'] == "phybrid") {
$cfg['maps_engine'] = "publicMapHybrid";
}
////Центр карты
$new_center = explode(",", $cfg['maps_center']);
$cfg['maps_center'] = $new_center['1'] . " ," . $new_center['0'];
$photos = $model->ImagesOnMap();
$smarty = $inCore->initSmarty('modules', 'mod_usermaps_imagesview.tpl');
$smarty->assign('cfg', $cfg);
$smarty->assign('photos', $photos);
$smarty->display('mod_usermaps_imagesview.tpl');
}
if ($do == 'add') {
$inPage->setTitle("Добавить себя");
$is_send = $inCore->inRequest('coord');
$user_id = $inUser->id;
if ($user_id == 0) {
$inCore->redirect('/');
return;
}
$place = $model->getUserPlace($user_id);
if ($place) {
$inCore->redirect('/usermaps/edit' . $place['id'] . '.html');
return;
}
if (!$is_send) {
$smarty = $inCore->initSmarty('components', 'com_places_add.tpl');
$smarty->assign('cfg', $cfg);
$smarty->display('com_places_add.tpl');
return;
}
if ($is_send) {
$coord_raw = $inCore->request('coord', 'str');
$cat_id = $inCore->request('type', 'int');
$coord = explode(",", $coord_raw);
$x = $coord[0];
$y = $coord[1];
if ($cat_id == "") {
$cat_id = 1;
}
$place_id = $model->addPlace($user_id, $x, $y, $cat_id);
if ($place_id) {
if ($cat_id == "1") {
cmsActions::log('add_place', array('object' => 'себя на карту', 'object_url' => '/usermaps/view' . $place_id . '.html', 'object_id' => $place_id, 'target' => '', 'target_url' => '/usermaps/view' . $place_id . '.html', 'target_id' => 0, 'description' => ''));
}
cmsCore::addSessionMessage('Ваше местоположение добавлено!', 'success');
$inCore->redirect('/usermaps/edit' . $place_id . '.html');
return;
} else {
cmsCore::addSessionMessage('Ошибка добавления! ' . $place_id . ' ', 'error');
}
$inCore->redirect('/usermaps/edit' . $place['id'] . '.html');
exit;
}
}
if ($do == 'edit') {
$user_id = $inUser->id;
$place_id = $inCore->request('id', 'int', 0);
$is_send = $inCore->inRequest('coord');
if (!$place_id) {
cmsCore::addSessionMessage('Ошибка запроса! ' . $place_id . ' ', 'error');
} else {
$place = $model->getPlace($place_id);
}
if ($inUser->id == 0) {
cmsCore::addSessionMessage('Ошибка запроса! ' . $place_id . ' ', 'error');
$inCore->redirect('/');
}
if (!$place || $inUser->id != $place['user_id']) {
if (!$inUser->is_admin) {
cmsCore::addSessionMessage('Ошибка запроса! ' . $place_id . ' ', 'error');
$inCore->redirectBack();
exit;
}
}
//Если редактирующий админ и это не его точка сохраняем автора точки
if ($inUser->is_admin and $user_id != $place['user_id']) {
$user_id = $place['user_id'];
}
if ($is_send) {
$coord_raw = $inCore->request('coord', 'str');
$title = $inCore->request('title', 'str');
$body = $inCore->request('body', 'str');
$cat_id = $inCore->request('cat_id', 'str');
if ($cat_id == "") {
$cat_id = 1;
}
$coord = explode(",", $coord_raw);
$x = $coord[0];
$y = $coord[1];
$point = $model->updatePlace($place['id'], $user_id, $x, $y, $cat_id, $title, $body);
if ($point) {
if ($place['type_id'] == "1" and mysql_result(mysql_query("SELECT target_url FROM cms_actions_log ORDER BY id DESC LIMIT 1"), 0) != '/usermaps/view' . $place['id'] . '.html') {
cmsActions::log('edit_place', array('object' => 'своего местоположения', 'object_url' => '/usermaps/view' . $place['id'] . '.html', 'object_id' => $place['id'], 'target' => '', 'target_url' => '/usermaps/view' . $place['id'] . '.html', 'target_id' => 0, 'description' => ''));
}
cmsCore::addSessionMessage('Местоположение вашей точки изменено!', 'success');
} else {
cmsCore::addSessionMessage('Ошибка добавления! ' . $place['id'] . ' ', 'error');
}
$inCore->redirect('/usermaps/edit' . $place['id'] . '.html');
exit;
}
if (!$is_send) {
$poi = $model->getPoi($place['type_id']);
if (!$poi) {
$icon = "unknow";
} else {
$icon = $poi['name'] . "_big";
}
$inPage->setTitle("Редактирование");
$categores = $model->getCategores(NULL);
$smarty = $inCore->initSmarty('components', 'com_places_edit.tpl');
$smarty->assign('cfg', $cfg);
$smarty->assign('place', $place);
$smarty->assign('categores', $categores);
$smarty->assign('icon', $icon);
$smarty->display('com_places_edit.tpl');
return;
}
}
if ($do == "delete") {
$id = $inCore->request('id', 'int', 0);
$place = $model->getPlace($id);
if (!$place) {
$inCore->redirectBack();
return;
}
if ($place['user_id'] == $inUser->id or $inUser->is_admin) {
$delete = $model->deletePlace($place['id']);
if ($delete) {
cmsCore::addSessionMessage('Точка удалена', 'success');
$inCore->redirect('/usermaps/poi.html');
return;
} else {
cmsCore::addSessionMessage('Ошибка при удалении', 'success');
$inCore->redirectBack();
return;
}
} else {
$inCore->redirectBack();
return;
}
}
if ($do == "view") {
$id = $inCore->request('id', 'int', 0);
$user_id = $inUser->id;
$place = $model->getPlace($id);
//Если точки нет отправляем назад
if (!$place) {
$inCore->redirectBack();
return;
}
//Получаем описание категории и стиль иконки
$poi = $model->getPoi($place['type_id']);
if (!$poi) {
$icon = "unknow";
} else {
$icon = $poi['name'] . "_big";
}
//Если нужно чертить треки ищем пользовательскую точку
if ($place['type_id'] != "1" and $user_id != 0) {
$userplace = $model->getUserPlace($user_id);
}
//Если пользовательская точка то заголовком делаем имя пользователя
if ($place['type_id'] == "1") {
$user = $model->getUser($place['user_id']);
$title = $user['nickname'];
} else {
$title = $place['title'];
}
//Назначаем переменные
$author = $model->getUser($place['user_id']);
$category = $model->getCategory($place['type_id']);
$arround = $model->getArround($place["id"]);
//Если валаделец или админ говорим что автор и может редактировать
if ($place['user_id'] == $user_id or $inUser->is_admin) {
$is_author = TRUE;
}
//Проверяем чекины
if ($cfg['maps_chekin']) {
$checkin = $model->getChekin($place['id']);
$usercheck = $model->getUserChekin($place['id'], $inUser->id);
}
/*FOTOLIB*/
include 'fotolib.class.php';
$foto = new FotoLib();
//Проверяем можем ли добавлять фото
$allow_add_foto = $foto->addAcces("usermaps");
if ($_FILES) {
$foto->uploadFoto($_FILES, "usermaps", $place['id']);
}
//Для совместимости с YandexMap API v2
$cfg['maps_engine'] = strtolower($cfg['maps_engine']);
if ($cfg['maps_engine'] == "pmap") {
$cfg['maps_engine'] = "publicMap";
}
if ($cfg['maps_engine'] == "phybrid") {
$cfg['maps_engine'] = "publicMapHybrid";
}
//END
$images = $foto->loadImages("usermaps", $place['id']);
$inPage->setTitle($title);
$smarty = $inCore->initSmarty('components', 'com_places_view.tpl');
$smarty->assign('cfg', $cfg);
$smarty->assign('place', $place);
$smarty->assign('userplace', $userplace);
$smarty->assign('checkin', $checkin);
$smarty->assign('usercheck', $usercheck);
$smarty->assign('icon', $icon);
$smarty->assign('title', $title);
$smarty->assign('author', $author);
$smarty->assign('category', $category);
$smarty->assign('is_author', $is_author);
$smarty->assign('images', $images);
//fotolib
$smarty->assign('allow_add_foto', $allow_add_foto);
//fotolib
$smarty->assign('user', $model->getUser($inUser->id));
$smarty->assign('arround', $arround);
$smarty->display('com_places_view.tpl');
$inCore->includeComments();
comments('point', $id);
return;
}
if ($do == "userpoint") {
$user_id = $inUser->id;
if ($user_id == 0) {
$inCore->redirectBack();
return;
}
$uid = $inCore->request('uid', 'int', 0);
$userplace = $model->getUserPlace($uid);
if (!$userplace) {
$inCore->redirectBack();
return;
}
$inCore->redirect("/usermaps/view" . $userplace['id'] . ".html");
return;
}
// РАБОТА С POI
if ($do == "poi_list") {
$inPage->setTitle("Последние добавленные точки интересов");
$poi = $model->getAllPoi(NULL);
$smarty = $inCore->initSmarty('components', 'com_places_add.tpl');
$smarty->assign('cfg', $cfg);
$smarty->assign('poi', $poi);
$smarty->display('com_places_view_poi.tpl');
return;
}
if ($do == "poi_add") {
$is_send = $inCore->inRequest('coord');
$user_id = $inUser->id;
if ($user_id == 0) {
$inCore->redirect("/");
return;
}
if (!$is_send) {
$categores = $model->getCategores(NULL);
$inPage->setTitle("Добавить POI");
$smarty = $inCore->initSmarty('components', 'com_places_add_poi.tpl');
$smarty->assign('cfg', $cfg);
$smarty->assign('categores', $categores);
$smarty->display('com_places_add_poi.tpl');
return;
}
if ($is_send) {
$coord_raw = $inCore->request('coord', 'str');
$cat_id = $inCore->request('cat_id', 'int');
$coord = explode(",", $coord_raw);
$x = $coord[0];
$y = $coord[1];
$title = $inCore->request('title', 'str');
$body = $inCore->request('body', 'str');
if ($cat_id == "" or $x == "" or $y == "" or $title == "") {
$inCore->redirectBack();
}
$place_id = $model->addPoi($user_id, $x, $y, $cat_id, $title, $body);
if ($place_id) {
if ($place['type_id'] == "1" and mysql_result(mysql_query("SELECT target_url FROM cms_actions_log ORDER BY id DESC LIMIT 1"), 0) != '/usermaps/view' . $place['id'] . '.html') {
cmsActions::log('add_place', array('object' => 'себя на карту', 'object_url' => '/usermaps/view' . $place_id . '.html', 'object_id' => $place_id, 'target' => '', 'target_url' => '/usermaps/view' . $place_id . '.html', 'target_id' => 0, 'description' => ''));
}
cmsCore::addSessionMessage('Ваша точка добавлена!', 'success');
} else {
cmsCore::addSessionMessage('Ошибка добавления! ' . $place_id . ' ', 'error');
}
$inCore->redirect('/usermaps/poi.html');
exit;
}
}
if ($do == "ajax_checkin") {
//INSERT INTO `cms_actions` (`component`, `name`, `title`, `message`, `is_tracked`, `is_visible`) VALUES
//('usermaps', 'chekin', 'Добавление отметки', 'отметился в %s', 1, 1);
$user_id = $inUser->id;
$place_id = $inCore->request('place_id', 'int', 0);
$place = $model->getPlace($place_id);
if ($user_id != 0 and $place and $place['type_id'] != 1) {
if ($model->addChekin($place_id, $user_id, time())) {
//INSERT INTO `cms_actions` (`component` ,`name` ,`title` ,`message` ,`is_tracked` ,`is_visible`)
//VALUES ('usermaps', 'add_checkin', 'Новая отметка', 'отметился в точке %s|', '1', '1');
$category = $model->getCategory($place['type_id']);
cmsActions::log('add_checkin', array('object' => str_replace('""', '"', $category['title'] . ' "' . $place['title'] . '"'), 'object_url' => '/usermaps/view' . $place_id . '.html', 'object_id' => $place_id, 'target' => '', 'target_url' => '/usermaps/view' . $place_id . '.html', 'target_id' => 0, 'description' => ''));
echo 'ok';
} else {
echo 'Ошибка базы данных';
}
}
exit;
}
//Настройки пользователей
if ($do == "usersettings") {
if ($inUser->id == 0) {
$inCore->redirectBack();
return;
}
$maps_user_del = $inCore->request('maps_user_del', 'str');
$maps_chekin_del = $inCore->request('maps_chekin_del', 'str');
if ($maps_user_del == "on") {
$place = $model->getUserPlace($inUser->id);
$model->deletePlace($place['id']);
cmsCore::addSessionMessage('Ваша точка удалена с карты!', 'success');
}
if ($maps_chekin_del == "on") {
$model->deleteUserChekin($inUser->id);
cmsCore::addSessionMessage('Ваши отметки о посещении удалены с карты!', 'success');
}
$inPage->setTitle("Настройки");
$smarty = $inCore->initSmarty('components', 'com_places_usersettings.tpl');
$smarty->assign('cfg', $cfg);
$smarty->display('com_places_usersettings.tpl');
}
//РАБОТА С КАТЕГОРИЯМИ
if ($do == "category_view") {
// $cfg['maps_engine'] = strtolower($cfg['maps_engine']);
// $cfg['maps_center'] = '['.$cfg['maps_center'].']';
$id = $inCore->request('id', 'int', 0);
$category = $model->getCategory($id);
if (!$category and $category != 0) {
$inCore->redirectBack();
}
//Обработка POST
if ($inUser->is_admin) {
$is_send = $inCore->inRequest('title');
if ($is_send) {
$title = $inCore->request('title', 'str');
$name = $inCore->request('name', 'str');
if (!$title || !$name) {
cmsCore::addSessionMessage('Что то было не заполнено!', 'error');
} else {
if ($id == "0") {
$is_root = 1;
}
$root_id = $id;
$add = $model->addCategory($name, $title, $is_root, $root_id);
if ($add) {
cmsCore::addSessionMessage('Категория добавлена!', 'success');
} else {
cmsCore::addSessionMessage('Что то пошло не так!', 'error');
}
}
}
}
if ($category['is_root'] == 0 and $category['root_id'] != 0 or $category['id'] == 1) {
$inPage->setTitle("Точки в категории " . $category['title']);
$categores = $model->getAllCategores();
$pois = $model->getPois($id);
$smarty = $inCore->initSmarty('components', 'com_places_mainmap.tpl');
$smarty->assign('cfg', $cfg);
$smarty->assign('user_id', "-1");
// $smarty->assign('userplace', $userplace);
$smarty->assign('categores', $categores);
$smarty->assign('pois', $pois);
$smarty->display('com_places_mainmap.tpl');
} elseif ($category['id'] != 0) {
$inPage->setTitle("Раздел " . $category['title']);
$subcat = $model->getCategores($category['id']);
$smarty = $inCore->initSmarty('components', 'com_places_view_category.tpl');
$smarty->assign('root', $category);
$smarty->assign('subcat', $subcat);
$smarty->assign('is_admin', $inUser->is_admin);
$smarty->display('com_places_view_category.tpl');
} else {
$inPage->setTitle("Категории");
$subcat = $model->getCategores("0");
$smarty = $inCore->initSmarty('components', 'com_places_view_root.tpl');
$smarty->assign('subcat', $subcat);
$smarty->assign('user_id', $inUser->id);
$smarty->assign('is_admin', $inUser->is_admin);
$smarty->display('com_places_view_root.tpl');
}
return;
}
if ($do == "ajax_eventpoint") {
$id = $inCore->request('event_id', 'int', 0);
$type = $inCore->request('event_type', 'str');
$coord_raw = explode(",", $inCore->request('new_coord', 'str'));
$x = $coord_raw[0];
$y = $coord_raw[1];
if ($type == "photo") {
$photo = mysql_fetch_assoc(mysql_query("SELECT * FROM cms_photo_files WHERE id = {$id}"));
if ($photo['user_id'] == $inUser->id or $inUser->is_admin) {
if (mysql_num_rows(mysql_query("SELECT * FROM cms_places_events WHERE object_id = {$id} AND `object_type` = '{$type}'")) != 0) {
$sql = mysql_query("UPDATE cms_places_events SET x = {$x} , y = {$y} WHERE object_id = {$id} AND `object_type` = '{$type}' LIMIT 1");
} else {
$sql = mysql_query("INSERT INTO cms_places_events (`object_id`, `object_type`, `x`, `y`) VALUES ('{$id}', '{$type}', '{$x}', '{$y}')");
}
if ($sql) {
echo "ok";
} else {
print mysql_error();
}
} else {
echo 'Ошибка доступа';
}
}
exit;
}
if ($do == "geolocation") {
$inPage->setTitle("Геолокация");
$smarty = $inCore->initSmarty('components', 'com_places_geolocation.tpl');
$smarty->assign('cfg', $cfg);
$smarty->display('com_places_geolocation.tpl');
}
if ($do == "ajax_arround") {
$coord_raw = explode(",", $inCore->request('coord', 'str'));
$group = $inCore->request('group', 'int');
$objects = $inCore->request('objects', 'int');
$distance = $inCore->request('distance', 'int');
$x = $coord_raw[0];
$y = $coord_raw[1];
$points = $model->getGeoArround($x, $y, $group, $objects, $distance);
if ($points) {
ob_start();
$smarty = $inCore->initSmarty('components', 'com_places_geo_arround.tpl');
$smarty->assign('points', $points);
$smarty->display('com_places_geo_arround.tpl');
$html = ob_get_clean();
} else {
$html = "ничего не найдено";
}
print $html;
exit;
}
if ($do == "ajax_structure") {
$bound = $coord_raw = explode(",", $inCore->request('bound', 'str'));
$y_max = $bound[0];
$x_max = $bound[1];
$y_min = $bound[2];
$x_min = $bound[3];
print json_encode($model->StructureOfPoints($y_min, $x_min, $y_max, $x_max));
//print_r($bound);
exit;
}
// FOTOLIB
if ($do == "imagerotate") {
$side = $md5 = $inCore->request('side', 'str');
$image_id = $inCore->request('image_id', 'int');
include 'fotolib.class.php';
$foto = new FotoLib();
$foto->Rotate($side, $image_id);
$inCore->redirectBack();
exit;
}
}
function shopFinishOrder($cfg){
$inCore = cmsCore::getInstance();
$inDB = cmsDatabase::getInstance();
$inPage = cmsPage::getInstance();
$inUser = cmsUser::getInstance();
$inConf = cmsConfig::getInstance();
global $_LANG;
if (isset($inUser->id)){ $user_id = $inUser->id; } else { $user_id = 0; }
$sid = session_id();
$inPage->setTitle($_LANG['ORDER_COMPLETE']);
if ($user_id){ $user_sql = "(c.user_id=$user_id OR session_id='$sid')"; } else { $user_sql = "(c.user_id=0 AND c.session_id='$sid')"; }
$sql = "SELECT i.title as title, i.id as id, i.canmany as canmany, i.price as price,
c.id as cid, c.itemscount as itemscount,
cat.id as category_id, cat.title as category
FROM cms_uc_items i, cms_uc_cart c, cms_uc_cats cat
WHERE $user_sql AND c.item_id = i.id AND i.category_id = cat.id
ORDER BY c.pubdate";
$rs = $inDB->query($sql) ;
if ($inDB->num_rows($rs)){
//check user data
$customer = array();
if(!empty($_REQUEST['customer_fio'])) { $customer['fio'] = $inCore->request('customer_fio', 'str'); } else { $error .= $_LANG['EMPTY_NAME'].'<br/>'; }
if(!empty($_REQUEST['customer_phone'])) { $customer['phone'] = $inCore->request('customer_phone', 'str'); } else { $error .= $_LANG['EMPTY_PHONE'].'<br/>'; }
$customer['company'] = $inCore->request('customer_company', 'str');
$customer['email'] = $inCore->request('customer_email', 'str');
$customer['comment'] = $inCore->request('customer_comment', 'str');
if(!cmsCore::checkCaptchaCode()) { $error .= $_LANG['ERR_CAPTCHA'].'<br/>'; }
//BUILD MESSAGE
if($error==''){
// письмо администратору
$a_mail_message = $_LANG['GET_ORDER_FROM_CATALOG']." \"".$inConf->sitename."\".\n\n";
$a_mail_message .= $_LANG['CUSTOMER']."\n-----------------------------\r\n";
$a_mail_message .= $_LANG['FIO'].": " . $customer['fio'] . "\n";
if($customer['company']){
$a_mail_message .= $_LANG['COMPANY'].": " . $customer['company'] . "\n";
}
$a_mail_message .= $_LANG['PHONE'].": " . $customer['phone'] . "\n";
$a_mail_message .= "EMAIL: " . $customer['email'] . "\n";
if($customer['comment']){
$a_mail_message .= $_LANG['ORDER_COMMENT'].": " . @$customer['comment'] . "\n\n";
}
$a_mail_message .= $_LANG['ORDER']."\n---------------------------------\n";
//////////////////////////////////////////////////////////////////////////////////////
// список покупок
$row=0; $total = 0;
$item_mail_message = '';
while($item = $inDB->fetch_assoc($rs)){
$row++;
$item['price'] = shopDiscountPrice($item['id'], $item['category_id'], $item['price']);
$item['totalprice'] = $item['price'] * $item['itemscount'];
$item['price'] = number_format($item['price'], 2, '.', '');
$item['totalprice'] = number_format($item['totalprice'], 2, '.', '');
$total += $item['totalprice'];
$item_mail_message .= $row . '. ' . $item['title'] . ' (' . $item['itemscount'] . ' x ' . $item['price'] . ' '.$_LANG['CURRENCY'].') = ' . $item['totalprice'] . ' '.$_LANG['CURRENCY'] . "\n";
}
ob_start(); shopDiscountsInfo($total); ob_clean();
$total = number_format($total, 2, '.', '');
$item_mail_message .= "\n" . $_LANG['TOTAL_ORDER_PRICE'].': '.$total.' '.$_LANG['CURRENCY'] . "\n";
//////////////////////////////////////////////////////////////////////////////////////
$email_subj = str_replace('{sitename}', $inConf->sitename, $_LANG['EMAIL_SUBJECT']);
$inCore->mailText($cfg['email'], $_LANG['ADMIN_EMAIL_SUBJECT'], $a_mail_message . $item_mail_message);
if ($cfg['notice'] && $customer['email']){
$inCore->mailText($customer['email'], $_LANG['CUSTOMER_EMAIL_SUBJECT'], $item_mail_message);
}
//order completed
echo '<div class="con_heading">'.$_LANG['THANK'].'!</div>';
echo '<p style="clear:both"><b>'.$_LANG['CUSTOMER_EMAIL_SUBJECT'].'.</b><br/>'.$_LANG['CUSTOMER_EMAIL_TEXT'].'</p>';
echo '<p><a href="/">'.$_LANG['CONTINUE'].'</a></p>';
shopClearCart();
} else {
//order failed
echo '<div class="con_heading">'.$_LANG['ERROR'].'!</div>';
echo '<p style="clear:both; color:red">'.$error.'</p>';
echo '<p><a href="/catalog/order.html">'.$_LANG['BACK'].'</a></p>';
}
} else {
//NO ITEMS
echo '<p>'.$_LANG['NOITEMS_IN_CART'].'</p>';
echo '<div id="cart_buttons2">';
echo '<a href="/catalog" title="'.$_LANG['BACK_TO_SHOP'].'">';
echo '<img src="/components/catalog/images/shop/cartback.jpg" border="0" alt="'.$_LANG['BACK_TO_SHOP'].'"/>';
echo '</a> ';
echo '</div>';
}
}
function mod_calendar_mini($module_id)
{
$inCore = cmsCore::getInstance();
$inUser = cmsUser::getInstance();
$inPage = cmsPage::getInstance();
$cfg = $inCore->loadComponentConfig('calendar');
$inPage->addHeadCSS("modules/mod_calendar_mini/css/minicalendar.css");
$inPage->addHeadJS("modules/mod_calendar_mini/js/minicalendar.js");
$inCore->loadModel('calendar');
$model = new cms_model_calendar();
$year = date("Y");
$month = date("m");
$starttime = strtotime(date("Y-m-01"));
$endtime = strtotime(date("Y-m-t"));
$events_raw = $model->getCalendar($starttime, $endtime);
foreach ($events_raw as $item) {
$events[date("j-m-Y", $item['start_time'])][] = $item;
}
$dayofmonth = date('t');
$day_count = 1;
$num = 0;
for ($i = 0; $i < 7; $i++) {
$dayofweek = date('w', mktime(0, 0, 0, date('m'), $day_count, date('Y')));
$dayofweek = $dayofweek - 1;
if ($dayofweek == -1) {
$dayofweek = 6;
}
if ($dayofweek == $i) {
$week[$num][$i] = $day_count;
$day_count++;
} else {
$week[$num][$i] = "";
}
}
while (true) {
$num++;
for ($i = 0; $i < 7; $i++) {
$week[$num][$i] = $day_count;
$day_count++;
if ($day_count > $dayofmonth) {
break;
}
}
if ($day_count > $dayofmonth) {
break;
}
}
setlocale(LC_ALL, 'ru_RU');
switch (date("m", time())) {
case 1:
$month_n = "Январь";
break;
case 2:
$month_n = "Февраль";
break;
case 3:
$month_n = "Март";
break;
case 4:
$month_n = "Апрель";
break;
case 5:
$month_n = "Май";
break;
case 6:
$month_n = "Июнь";
break;
case 7:
$month_n = "Июль";
break;
case 8:
$month_n = "Август";
break;
case 9:
$month_n = "Сентябрь";
break;
case 10:
$month_n = "Октябрь";
break;
case 11:
$month_n = "Ноябрь";
break;
case 12:
$month_n = "Декабрь";
break;
}
echo '<h3 class="module_calendar_mini">' . $month_n . '</h3>';
echo '<table class="module_calendar_mini_table">';
for ($i = 0; $i < count($week); $i++) {
echo "<tr>";
for ($j = 0; $j < 7; $j++) {
if (!empty($week[$i][$j])) {
if (!empty($events[$week[$i][$j] . "-" . $month . "-" . $year])) {
$subclass = "have_event";
$event_text = '<div class="eventlist"><ul>';
foreach ($events[$week[$i][$j] . "-" . $month . "-" . $year] as $event) {
$event_text .= '<li data-event-id="' . $event['id'] . '" style="background-color: ' . $event['bg'] . '; color:' . $event['tx'] . ';"><a style="background-color: ' . $event['bg'] . '; color:' . $event['tx'] . ';" href="/calendar/event' . $event['id'] . '.html">' . $event['title'] . '</a></li>';
}
$event_text .= '</ul></div>';
}
if ($j == 5 || $j == 6) {
echo '<td class="holyday ' . $subclass . '">';
} else {
echo '<td class="' . $subclass . '">';
}
echo '<span class="dayview">' . $week[$i][$j] . '</span>';
echo $event_text;
unset($event_text);
unset($subclass);
echo "</td>";
} else {
echo "<td> </td>";
}
}
echo "</tr>";
}
echo "</table>";
return TRUE;
}
function board()
{
$inCore = cmsCore::getInstance();
$inPage = cmsPage::getInstance();
$inDB = cmsDatabase::getInstance();
$inUser = cmsUser::getInstance();
global $_LANG;
define('IS_BILLING', $inCore->isComponentInstalled('billing'));
if (IS_BILLING) {
cmsCore::loadClass('billing');
}
$model = new cms_model_board();
$do = $inCore->do;
$pagetitle = $inCore->getComponentTitle();
$pagekeys = $pagedesc = '';
$inPage->setTitle($pagetitle);
$inPage->addPathway($pagetitle, '/board');
/////////////////////////////// VIEW CATEGORY ///////////////////////////////////////////////////////////////////////////////////////////
if ($do == 'view') {
//Получаем текущую категорию
$category = $model->getCategory($model->category_id);
if (!$category) {
cmsCore::error404();
}
if ($category['id'] != $model->root_cat['id']) {
$pagetitle = $category['pagetitle'] ? $category['pagetitle'] : $category['title'];
$pagekeys = $category['meta_keys'];
$pagedesc = $category['meta_desc'];
$category_path = $inDB->getNsCategoryPath('cms_board_cats', $category['NSLeft'], $category['NSRight']);
if ($category_path) {
foreach ($category_path as $pcat) {
$inPage->addPathway($pcat['title'], '/board/' . $pcat['id']);
}
}
} else {
$menu_title = $inCore->menuTitle();
$pagetitle = $menu_title ? $menu_title : $pagetitle;
$category['title'] = $pagetitle;
$category['description'] = $model->config['root_description'];
$pagekeys = $model->config['meta_keys'];
$pagedesc = $model->config['meta_desc'];
}
// rss в адресной строке
$rss_cat_id = $category['id'] == $model->root_cat['id'] ? 'all' : $category['id'];
$inPage->addHead('<link rel="alternate" type="application/rss+xml" title="' . $_LANG['BOARD'] . '" href="' . HOST . '/rss/board/' . $rss_cat_id . '/feed.rss">');
//Формируем категории
$cats = $model->getSubCats($category['id']);
// Формируем список объявлений
// Устанавливаем категорию
if ($category['id'] != $model->root_cat['id']) {
$model->whereThisAndNestedCats($category['NSLeft'], $category['NSRight']);
}
//Город
if ($model->city) {
$model->whereCityIs($model->city);
$pagetitle .= ' :: ' . $model->city;
}
// Типы объявлений
if ($model->obtype && mb_stristr(icms_ucfirst($category['obtypes']), $model->obtype)) {
$model->whereTypeIs($model->obtype);
$pagetitle .= ' :: ' . $model->obtype;
}
// модератор или админ
$is_moder = $inUser->is_admin || $model->is_moderator_by_group;
// Общее количество объявлений по заданным выше условиям
$total = $model->getAdvertsCount($is_moder, true);
//устанавливаем сортировку
$orderby = $model->getOrder('orderby', $category['orderby']);
$orderto = $model->getOrder('orderto', $category['orderto']);
$inDB->orderBy('is_vip DESC, ' . $orderby, $orderto);
//устанавливаем номер текущей страницы и кол-во объявлений на странице
$inDB->limitPage($model->page, $category['perpage']);
// Получаем объявления
$items = $model->getAdverts($is_moder, true, false, true);
// Если объявлений на странице большей чем 1 нет, 404
if (!$items && $model->page > 1) {
cmsCore::error404();
}
// если не указаны ключевые слова, формируем их из названий рубрик и типов
if (!$pagekeys && $cats) {
foreach ($cats as $c) {
$keys[] = $c['title'];
foreach (explode("\n", $c['obtypes']) as $obtype) {
$keys[] = trim($obtype);
}
}
$pagekeys = implode(',', $keys);
} elseif (!$cats) {
$pagekeys = $category['title'];
}
// если не указано описание, формируем из текущих объявлений
if (!$pagedesc && $items) {
foreach ($items as $i) {
$desc[] = $i['title'];
}
$pagedesc = implode('. ', $desc);
} elseif (!$items && $category['description']) {
$pagedesc = crop($category['description']);
}
// Проставляем заголовки страницы и описание согласно выборки
$inPage->setDescription(crop($pagedesc));
$inPage->setKeywords($pagekeys);
$inPage->setTitle($pagetitle);
// Отдаем в шаблон категории
cmsPage::initTemplate('components', 'com_board_cats')->assign('cats', $cats)->assign('category', $category)->assign('root_id', $model->root_cat['id'])->assign('is_user', $inUser->id)->assign('maxcols', $model->config['maxcols'])->display('com_board_cats.tpl');
$pagebar = cmsPage::getPagebar($total, $model->page, $category['perpage'], '/board/%catid%-%page%', array('catid' => $category['id']));
$order_form = $category['orderform'] ? $model->orderForm($orderby, $orderto, $category) : '';
// Отдаем в шаблон объявления
cmsPage::initTemplate('components', 'com_board_items')->assign('order_form', $order_form)->assign('cfg', $model->config)->assign('root_id', $model->root_cat['id'])->assign('items', $items)->assign('cat', $category)->assign('maxcols', $category['maxcols'])->assign('colwidth', round(100 / $category['maxcols']))->assign('pagebar', $pagebar)->display('com_board_items.tpl');
}
/////////////////////////////// VIEW USER ADV ///////////////////////////////////////////////////////////////////////////////////////
if ($do == 'by_user') {
// логин пользователя
$login = cmsCore::request('login', 'str', '' . $inUser->login . '');
// получаем данные пользователя
$user = cmsUser::getShortUserData($login);
if (!$user) {
cmsCore::error404();
}
$myprofile = $model->checkAccess($user['id']);
$inPage->addPathway($user['nickname']);
$inPage->setTitle($_LANG['BOARD'] . ' - ' . $user['nickname']);
$inPage->setDescription($_LANG['BOARD'] . ' - ' . $user['nickname']);
// Формируем список объявлений
$model->whereUserIs($user['id']);
// Общее количество объявлений по заданным выше условиям
$total = $model->getAdvertsCount($myprofile);
//устанавливаем сортировку
$inDB->orderBy('pubdate', 'DESC');
//устанавливаем номер текущей страницы и кол-во объявлений на странице
$inDB->limitPage($model->page, 15);
// Получаем объявления
$items = $model->getAdverts($myprofile, true, false, true);
// Если объявлений на странице большей чем 1 нет, 404
if (!$items && $model->page > 1) {
cmsCore::error404();
}
// Пагинация
$pagebar = cmsPage::getPagebar($total, $model->page, 15, '/board/by_user_' . $login . '/page-%page%');
// Показываем даты
$category['showdate'] = 1;
cmsPage::initTemplate('components', 'com_board_items')->assign('cfg', $model->config)->assign('page_title', $_LANG['BOARD'] . ' - ' . $user['nickname'])->assign('root_id', $model->root_cat['id'])->assign('items', $items)->assign('cat', $category)->assign('maxcols', 1)->assign('colwidth', 100)->assign('pagebar', $pagebar)->display('com_board_items.tpl');
}
/////////////////////////////// VIEW ITEM ///////////////////////////////////////////////////////////////////////////////////////////
if ($do == 'read') {
// получаем объявление
$item = $model->getRecord($model->item_id);
if (!$item) {
cmsCore::error404();
}
// неопубликованные показываем админам, модераторам и автору
if (!$item['published'] && !$item['moderator']) {
cmsCore::error404();
}
// для неопубликованного показываем инфо: просрочено/на модерации
if (!$item['published']) {
$info_text = $item['is_overdue'] ? $_LANG['ADV_IS_EXTEND'] : $_LANG['ADV_IS_MODER'];
cmsCore::addSessionMessage($info_text, 'info');
} else {
if ($inUser->id != $item['user_id']) {
// увеличиваем кол-во просмотров
$inDB->setFlag('cms_board_items', $model->item_id, 'hits', $item['hits'] + 1);
}
}
// формируем заголовок и тело сообщения
$item['title'] = $item['obtype'] . ' ' . $item['title'];
$item['content'] = nl2br($item['content']);
$item['content'] = $model->config['auto_link'] ? $inCore->parseSmiles($item['content']) : $item['content'];
$category_path = $inDB->getNsCategoryPath('cms_board_cats', $item['NSLeft'], $item['NSRight']);
if ($category_path) {
foreach ($category_path as $pcat) {
$inPage->addPathway($pcat['title'], '/board/' . $pcat['id']);
}
}
$inPage->addPathway($item['title']);
$pagetitle = $item['pagetitle'] ? $item['pagetitle'] : $item['title'];
$pagekeys = $item['meta_keys'] ? $item['meta_keys'] : $item['title'];
$pagedesc = $item['meta_desc'] ? $item['meta_desc'] : $item['content'];
$inPage->setTitle($pagetitle);
$inPage->setDescription(crop($pagedesc));
$inPage->setKeywords($pagekeys);
cmsPage::initTemplate('components', 'com_board_item')->assign('item', $item)->assign('cfg', $model->config)->assign('user_id', $inUser->id)->assign('is_admin', $inUser->is_admin)->assign('formsdata', cmsForm::getFieldsValues($item['form_id'], $item['form_array']))->assign('is_moder', $model->is_moderator_by_group)->display('com_board_item.tpl');
}
/////////////////////////////// NEW BOARD ITEM /////////////////////////////////////////////////////////////////////////////////////////
if ($do == 'additem') {
// Получаем категории, в которые может загружать пользователь
$catslist = $model->getPublicCats($model->category_id);
if (!$catslist) {
cmsCore::addSessionMessage($_LANG['YOU_CANT_ADD_ADV_ANY'], 'error');
$inCore->redirect('/board');
}
$cat['is_photos'] = 1;
$formsdata = array();
if ($model->category_id && $model->category_id != $model->root_cat['id']) {
$cat = $model->getCategory($model->category_id);
$formsdata = cmsForm::getFieldsHtml($cat['form_id']);
}
$inPage->addPathway($_LANG['ADD_ADV']);
if (!cmsCore::inRequest('submit')) {
if (IS_BILLING) {
cmsBilling::checkBalance('board', 'add_item');
}
$inPage->setTitle($_LANG['ADD_ADV']);
$item = cmsUser::sessionGet('item');
if ($item) {
cmsUser::sessionDel('item');
}
$item['city'] = !empty($item['city']) ? $item['city'] : $inUser->city;
cmsPage::initTemplate('components', 'com_board_edit')->assign('action', "/board/add.html")->assign('form_do', 'add')->assign('cfg', $model->config)->assign('cat', $cat)->assign('item', $item)->assign('pagetitle', $_LANG['ADD_ADV'])->assign('formsdata', $formsdata)->assign('is_admin', $inUser->is_admin)->assign('is_user', $inUser->id)->assign('catslist', $catslist)->assign('is_billing', IS_BILLING)->assign('balance', $inUser->balance)->display('com_board_edit.tpl');
cmsUser::sessionClearAll();
return;
}
if (cmsCore::inRequest('submit')) {
// проверяем на заполненость скрытое поле
$title_fake = cmsCore::request('title_fake', 'str', '');
// если оно заполнено, считаем что это бот, 404
if ($title_fake) {
cmsCore::error404();
}
$errors = false;
// проверяем наличие категории
if (!$cat['id']) {
cmsCore::addSessionMessage($_LANG['NEED_CAT_ADV'], 'error');
$errors = true;
}
// Проверяем количество добавленных за сутки
if (!$model->checkLoadedByUser24h($cat)) {
cmsCore::addSessionMessage($_LANG['MAX_VALUE_OF_ADD_ADV'], 'error');
$errors = true;
}
// Можем ли добавлять в эту рубрику
if (!$model->checkAdd($cat)) {
cmsCore::addSessionMessage($_LANG['YOU_CANT_ADD_ADV'], 'error');
$errors = true;
}
// входные данные
$obtype = icms_ucfirst(cmsCore::request('obtype', 'str', ''));
$title = trim(str_ireplace($obtype, '', cmsCore::request('title', 'str', '')));
$content = cmsCore::request('content', 'str', '');
$city = cmsCore::request('city', 'str', '');
$pagetitle = cmsCore::request('pagetitle', 'str', '');
$meta_keys = cmsCore::request('meta_keys', 'str', '');
$meta_desc = cmsCore::request('meta_desc', 'str', '');
$form_input = cmsForm::getFieldsInputValues($cat['form_id']);
$formsdata = $inDB->escape_string(cmsCore::arrayToYaml($form_input['values']));
$vipdays = cmsCore::request('vipdays', 'int', 0);
$published = $model->checkPublished($cat);
if ($model->config['srok']) {
$pubdays = cmsCore::request('pubdays', 'int') <= 50 ? cmsCore::request('pubdays', 'int') : 50;
}
if (!$model->config['srok']) {
$pubdays = isset($model->config['pubdays']) ? $model->config['pubdays'] : 14;
}
// Проверяем значения
if (!$title) {
cmsCore::addSessionMessage($_LANG['NEED_TITLE'], 'error');
$errors = true;
}
if (!$content) {
cmsCore::addSessionMessage($_LANG['NEED_TEXT_ADV'], 'error');
$errors = true;
}
if (!$city) {
cmsCore::addSessionMessage($_LANG['NEED_CITY'], 'error');
$errors = true;
}
if (!$inUser->id && !cmsPage::checkCaptchaCode()) {
cmsCore::addSessionMessage($_LANG['ERR_CAPTCHA'], 'error');
$errors = true;
}
// Проверяем значения формы
foreach ($form_input['errors'] as $field_error) {
if ($field_error) {
cmsCore::addSessionMessage($field_error, 'error');
$errors = true;
}
}
if ($errors) {
$item['content'] = htmlspecialchars(stripslashes($_REQUEST['content']));
$item['city'] = stripslashes($city);
$item['title'] = stripslashes($title);
$item['obtype'] = $obtype;
cmsUser::sessionPut('item', $item);
cmsCore::redirect('/board/' . $model->category_id . '/add.html');
}
if ($cat['is_photos']) {
// Загружаем фото
$file = $model->uploadPhoto('', $cat);
} else {
$file['filename'] = '';
cmsCore::addSessionMessage($_LANG['INFO_CAT_NO_PHOTO'], 'info');
}
$add = array('category_id' => $model->category_id, 'user_id' => $inUser->id, 'obtype' => $obtype, 'title' => $title, 'content' => $content, 'formsdata' => $formsdata, 'city' => $city, 'pubdays' => $pubdays, 'published' => $published, 'pagetitle' => $model->config['seo_user_access'] && $inUser->id || $inUser->is_admin ? $pagetitle : '', 'meta_keys' => $model->config['seo_user_access'] && $inUser->id || $inUser->is_admin ? $meta_keys : '', 'meta_desc' => $model->config['seo_user_access'] && $inUser->id || $inUser->is_admin ? $meta_desc : '', 'file' => $file['filename']);
$add['id'] = $model->addRecord($add);
if ($inUser->is_admin && $vipdays) {
$model->setVip($add['id'], $vipdays);
}
if (IS_BILLING) {
cmsBilling::process('board', 'add_item');
if ($model->config['vip_enabled'] && $vipdays && $model->config['vip_day_cost']) {
if ($vipdays > $model->config['vip_max_days']) {
$vipdays = $model->config['vip_max_days'];
}
$summ = $vipdays * $model->config['vip_day_cost'];
if ($inUser->balance >= $summ) {
cmsBilling::pay($inUser->id, $summ, $_LANG['VIP_ITEM']);
$model->setVip($add['id'], $vipdays);
}
}
}
cmsUser::sessionClearAll();
if ($published) {
//регистрируем событие
cmsActions::log('add_board', array('object' => $obtype . ' ' . $title, 'object_url' => '/board/read' . $add['id'] . '.html', 'object_id' => $add['id'], 'target' => $cat['title'], 'target_url' => '/board/' . $cat['id'], 'target_id' => $cat['id'], 'description' => ''));
cmsCore::addSessionMessage($_LANG['ADV_IS_ADDED'], 'success');
cmsCore::callEvent('ADD_BOARD_DONE', $add);
cmsCore::redirect('/board/read' . $add['id'] . '.html');
}
if (!$published) {
$link = '<a href="/board/read' . $add['id'] . '.html">' . $obtype . ' ' . $title . '</a>';
if ($inUser->id) {
$user = '******' . cmsUser::getProfileURL($inUser->login) . '">' . $inUser->nickname . '</a>';
} else {
$user = $_LANG['BOARD_GUEST'] . ', ip: ' . $inUser->ip;
}
$message = str_replace('%user%', $user, $_LANG['MSG_ADV_SUBMIT']);
$message = str_replace('%link%', $link, $message);
cmsUser::sendMessage(USER_UPDATER, 1, $message);
cmsCore::addSessionMessage($_LANG['ADV_IS_ADDED'] . '<br>' . $_LANG['ADV_PREMODER_TEXT'], 'success');
cmsCore::redirect('/board/' . $model->category_id);
}
}
}
/////////////////////////////// EDIT BOARD ITEM /////////////////////////////////////////////////////////////////////////////////////////
if ($do == 'edititem') {
$item = $model->getRecord($model->item_id);
$cat = $model->getCategory($item['category_id']);
if (!$cat) {
cmsCore::error404();
}
if (!$item) {
cmsCore::error404();
}
$inPage->setTitle($_LANG['EDIT_ADV']);
$inPage->addPathway($item['category'], '/board/' . $item['cat_id']);
$inPage->addPathway($_LANG['EDIT_ADV']);
if (!$item['moderator']) {
cmsCore::addSessionMessage($_LANG['YOU_HAVENT_ACCESS'], 'error');
cmsCore::redirect('/board/read' . $item['id'] . '.html');
}
$errors = false;
if (!cmsCore::inRequest('submit')) {
cmsPage::initTemplate('components', 'com_board_edit')->assign('action', "/board/edit{$item['id']}.html")->assign('form_do', 'edit')->assign('cfg', $model->config)->assign('cat', $cat)->assign('item', $item)->assign('pagetitle', $_LANG['EDIT_ADV'])->assign('is_admin', $inUser->is_admin)->assign('catslist', $model->getPublicCats($item['category_id'], true))->assign('formsdata', cmsForm::getFieldsHtml($cat['form_id'], $item['form_array']))->assign('is_user', $inUser->id)->assign('is_billing', IS_BILLING)->assign('balance', $inUser->balance)->display('com_board_edit.tpl');
cmsUser::sessionClearAll();
}
if (cmsCore::inRequest('submit')) {
$new_cat_id = cmsCore::request('category_id', 'int', 0);
if ($new_cat_id) {
$item['category_id'] = $new_cat_id;
}
$form_input = cmsForm::getFieldsInputValues($cat['form_id']);
$formsdata = $inDB->escape_string(cmsCore::arrayToYaml($form_input['values']));
if ($item['is_overdue'] && !$item['published']) {
if ($model->config['srok']) {
$pubdays = cmsCore::request('pubdays', 'int') <= 50 ? cmsCore::request('pubdays', 'int') : 50;
}
if (!$model->config['srok']) {
$pubdays = isset($model->config['pubdays']) ? $model->config['pubdays'] : 14;
}
$pubdate = date("Y-m-d H:i:s");
} else {
$pubdays = $item['pubdays'];
$pubdate = $item['fpubdate'];
}
$update['obtype'] = icms_ucfirst(cmsCore::request('obtype', 'str'));
$update['title'] = trim(str_ireplace($update['obtype'], '', cmsCore::request('title', 'str', '')));
$update['category_id'] = $item['category_id'];
$update['content'] = cmsCore::request('content', 'str', '');
$update['formsdata'] = $formsdata;
$update['city'] = cmsCore::request('city', 'str', '');
$update['pubdate'] = $pubdate;
$update['pubdays'] = $pubdays;
$update['published'] = $model->checkPublished($cat, true);
if ($model->config['seo_user_access'] && $inUser->id || $inUser->is_admin) {
$update['pagetitle'] = cmsCore::request('pagetitle', 'str', '');
$update['meta_keys'] = cmsCore::request('meta_keys', 'str', '');
$update['meta_desc'] = cmsCore::request('meta_desc', 'str', '');
}
if (!$update['title']) {
cmsCore::addSessionMessage($_LANG['NEED_TITLE'], 'error');
$errors = true;
}
if (!$update['content']) {
cmsCore::addSessionMessage($_LANG['NEED_TEXT_ADV'], 'error');
$errors = true;
}
if (!$update['city']) {
cmsCore::addSessionMessage($_LANG['NEED_CITY'], 'error');
$errors = true;
}
// Проверяем значения формы
foreach ($form_input['errors'] as $field_error) {
if ($field_error) {
cmsCore::addSessionMessage($field_error, 'error');
$errors = true;
}
}
if ($errors) {
$inCore->redirect('/board/edit' . $item['id'] . '.html');
}
if ($cat['is_photos']) {
// Загружаем фото
$file = $model->uploadPhoto($item['file'], $cat);
}
$update['file'] = $file['filename'] ? $file['filename'] : $item['file'];
// обновляем объявление
$model->updateRecord($item['id'], $update);
// обновляем запись в ленте активности
cmsActions::updateLog('add_board', array('object' => $update['obtype'] . ' ' . $update['title']), $item['id']);
$vipdays = cmsCore::request('vipdays', 'int', 0);
if ($inUser->is_admin) {
if ($vipdays > 0) {
$model->setVip($item['id'], $vipdays);
}
if ($vipdays == -1) {
$model->deleteVip($item['id']);
}
}
if (IS_BILLING) {
if ($model->config['vip_enabled'] && $model->config['vip_prolong'] && $vipdays && $model->config['vip_day_cost']) {
if ($vipdays > $model->config['vip_max_days']) {
$vipdays = $model->config['vip_max_days'];
}
$summ = $vipdays * $model->config['vip_day_cost'];
if ($inUser->balance >= $summ) {
cmsBilling::pay($inUser->id, $summ, $_LANG['VIP_ITEM']);
$model->setVip($item['id'], $vipdays);
}
}
}
cmsUser::sessionClearAll();
if (!$update['published']) {
$link = '<a href="/board/read' . $item['id'] . '.html">' . $update['obtype'] . ' ' . $update['title'] . '</a>';
$user = '******' . cmsUser::getProfileURL($inUser->login) . '">' . $inUser->nickname . '</a>';
$message = str_replace(array('%link%', '%user%'), array($link, $user), $_LANG['MSG_ADV_EDITED']);
cmsUser::sendMessage(USER_UPDATER, 1, $message);
cmsCore::addSessionMessage($_LANG['ADV_EDIT_PREMODER_TEXT'], 'info');
}
cmsCore::addSessionMessage($_LANG['ADV_MODIFIED'], 'success');
cmsCore::redirect('/board/read' . $item['id'] . '.html');
}
}
///////////////////////// PUBLISH BOARD ITEM /////////////////////////////////////////////////////////////////////////////
if ($do == 'publish') {
$item = $model->getRecord($model->item_id);
if (!$item) {
cmsCore::error404();
}
// если уже опубликовано, 404
if ($item['published']) {
cmsCore::error404();
}
// публиковать могут админы и модераторы доски
if (!$inUser->is_admin && !$model->is_moderator_by_group) {
cmsCore::error404();
}
// публикуем
$inDB->setFlag('cms_board_items', $model->item_id, 'published', 1);
cmsCore::callEvent('ADD_BOARD_DONE', $item);
if ($item['user_id']) {
//регистрируем событие
cmsActions::log('add_board', array('object' => $item['obtype'] . ' ' . $item['title'], 'user_id' => $item['user_id'], 'object_url' => '/board/read' . $item['id'] . '.html', 'object_id' => $item['id'], 'target' => $item['category'], 'target_url' => '/board/' . $item['cat_id'], 'target_id' => $item['cat_id'], 'description' => ''));
$link = '<a href="/board/read' . $item['id'] . '.html">' . $item['obtype'] . ' ' . $item['title'] . '</a>';
$message = str_replace('%link%', $link, $_LANG['MSG_ADV_ACCEPTED']);
cmsUser::sendMessage(USER_UPDATER, $item['user_id'], $message);
}
cmsCore::addSessionMessage($_LANG['ADV_IS_ACCEPTED'], 'success');
cmsCore::redirect('/board/read' . $item['id'] . '.html');
}
/////////////////////////////// DELETE BOARD ITEM /////////////////////////////////////////////////////////////////////////////////////////
if ($do == 'delete') {
$item = $model->getRecord($model->item_id);
if (!$item) {
cmsCore::error404();
}
if (!$item['moderator']) {
cmsCore::addSessionMessage($_LANG['YOU_HAVENT_ACCESS'], 'error');
cmsCore::redirect('/board/' . $item['cat_id']);
}
if (!cmsCore::inRequest('godelete')) {
$inPage->setTitle($_LANG['DELETE_ADV']);
$inPage->addPathway($item['category'], '/board/' . $item['cat_id']);
$inPage->addPathway($_LANG['DELETE_ADV']);
$confirm['title'] = $_LANG['DELETING_ADV'];
$confirm['text'] = $_LANG['YOU_SURE_DELETE_ADV'] . ' "' . $item['title'] . '"?';
$confirm['action'] = $_SERVER['REQUEST_URI'];
$confirm['yes_button']['name'] = 'godelete';
cmsPage::initTemplate('components', 'action_confirm')->assign('confirm', $confirm)->display('action_confirm.tpl');
}
if (cmsCore::inRequest('godelete')) {
$model->deleteRecord($model->item_id);
cmsCore::addSessionMessage($_LANG['ADV_IS_DELETED'], 'success');
cmsCore::redirect('/board/' . $item['cat_id']);
}
}
}
function registration()
{
header('X-Frame-Options: DENY');
$inCore = cmsCore::getInstance();
$inPage = cmsPage::getInstance();
$inDB = cmsDatabase::getInstance();
$inUser = cmsUser::getInstance();
$inConf = cmsConfig::getInstance();
$model = new cms_model_registration();
cmsCore::loadModel('users');
$users_model = new cms_model_users();
global $_LANG;
$do = $inCore->do;
//============================================================================//
if ($do == 'sendremind') {
if ($inUser->id) {
cmsCore::error404();
}
$inPage->setTitle($_LANG['REMINDER_PASS']);
$inPage->addPathway($_LANG['REMINDER_PASS']);
if (!cmsCore::inRequest('goremind')) {
cmsPage::initTemplate('components', 'com_registration_sendremind')->display('com_registration_sendremind.tpl');
} else {
if (!cmsUser::checkCsrfToken()) {
cmsCore::error404();
}
$email = cmsCore::request('email', 'email', '');
if (!$email) {
cmsCore::addSessionMessage($_LANG['ERR_EMAIL'], 'error');
cmsCore::redirectBack();
}
$usr = cmsUser::getShortUserData($email);
if (!$usr || $usr['is_locked'] || $usr['is_deleted']) {
cmsCore::addSessionMessage($_LANG['ADRESS'] . ' "' . $email . '" ' . $_LANG['NOT_IN_OUR_BASE'], 'error');
cmsCore::redirectBack();
}
if (cmsUser::userIsAdmin($usr['id'])) {
cmsCore::addSessionMessage($_LANG['NOT_ADMIN_SENDREMIND'], 'error');
cmsCore::redirectBack();
}
$usercode = md5($usr['id'] . '-' . uniqid() . '-' . microtime() . '-' . PATH);
$sql = "INSERT cms_users_activate (pubdate, user_id, code)\n VALUES (NOW(), '{$usr['id']}', '{$usercode}')";
$inDB->query($sql);
$newpass_link = HOST . '/registration/remind/' . $usercode;
$mail_message = $_LANG['HELLO'] . ', ' . $usr['nickname'] . '!' . "\n\n";
$mail_message .= $_LANG['REMINDER_TEXT'] . ' "' . $inConf->sitename . '".' . "\n\n";
$mail_message .= $_LANG['YOUR_LOGIN'] . ': ' . $usr['login'] . "\n\n";
$mail_message .= $_LANG['NEW_PASS_LINK'] . ":\n" . $newpass_link . "\n\n";
$mail_message .= $_LANG['LINK_EXPIRES'] . "\n\n";
$mail_message .= $_LANG['SIGNATURE'] . ', ' . $inConf->sitename . ' (' . HOST . ').' . "\n";
$mail_message .= date('d-m-Y (H:i)');
$inCore->mailText($email, $inConf->sitename . ' - ' . $_LANG['REMINDER_PASS'], $mail_message);
cmsCore::addSessionMessage($_LANG['NEW_PAS_SENDED'], 'info');
cmsCore::redirect('/login');
}
}
//============================================================================//
if ($do == 'remind') {
if ($inUser->id) {
cmsCore::error404();
}
$usercode = cmsCore::request('code', 'str', '');
//проверяем формат кода
if (!preg_match('/^[0-9a-f]{32}$/i', $usercode)) {
cmsCore::error404();
}
// проверяем код
$user_id = $inDB->get_field('cms_users_activate', "code = '{$usercode}'", 'user_id');
if (!$user_id) {
cmsCore::error404();
}
//получаем пользователя
$user = $inDB->get_fields('cms_users', "id = '{$user_id}'", '*');
if (!$user) {
cmsCore::error404();
}
if (cmsUser::userIsAdmin($user['id'])) {
cmsCore::error404();
}
if (cmsCore::inRequest('submit')) {
if (!cmsUser::checkCsrfToken()) {
cmsCore::error404();
}
$errors = false;
$pass = cmsCore::request('pass', 'str', '');
$pass2 = cmsCore::request('pass2', 'str', '');
if (!$pass) {
cmsCore::addSessionMessage($_LANG['TYPE_PASS'], 'error');
$errors = true;
}
if ($pass && !$pass2) {
cmsCore::addSessionMessage($_LANG['TYPE_PASS_TWICE'], 'error');
$errors = true;
}
if ($pass && $pass2 && mb_strlen($pass) < 6) {
cmsCore::addSessionMessage($_LANG['PASS_SHORT'], 'error');
$errors = true;
}
if ($pass && $pass2 && $pass != $pass2) {
cmsCore::addSessionMessage($_LANG['WRONG_PASS'], 'error');
$errors = true;
}
if ($errors) {
cmsCore::redirectBack();
}
$md5_pass = md5($pass);
$inDB->query("UPDATE cms_users SET password = '******', logdate = NOW() WHERE id = '{$user['id']}'");
$inDB->query("DELETE FROM cms_users_activate WHERE code = '{$usercode}'");
cmsCore::addSessionMessage($_LANG['CHANGE_PASS_COMPLETED'], 'info');
$inUser->signInUser($user['login'], $pass, true);
cmsCore::redirect(cmsUser::getProfileURL($user['login']));
}
$inPage->setTitle($_LANG['RECOVER_PASS']);
$inPage->addPathway($_LANG['RECOVER_PASS']);
cmsPage::initTemplate('components', 'com_registration_remind')->assign('cfg', $model->config)->assign('user', $user)->display('com_registration_remind.tpl');
}
//============================================================================//
if ($do == 'register') {
if (!cmsUser::checkCsrfToken()) {
cmsCore::error404();
}
if ($inUser->id && !$inUser->is_admin) {
if ($inCore->menuId() == 1) {
return;
} else {
cmsCore::error404();
}
}
// регистрация закрыта
if (!$model->config['is_on']) {
cmsCore::error404();
}
// регистрация по инвайтам
if ($model->config['reg_type'] == 'invite') {
if (!$users_model->checkInvite(cmsUser::sessionGet('invite_code'))) {
cmsCore::error404();
}
}
$errors = false;
// получаем данные
$item['login'] = cmsCore::request('login', 'str', '');
$item['email'] = cmsCore::request('email', 'email');
$item['icq'] = cmsCore::request('icq', 'str', '');
$item['city'] = cmsCore::request('city', 'str', '');
$item['nickname'] = cmsCore::request('nickname', 'str', '');
$item['realname1'] = cmsCore::request('realname1', 'str', '');
$item['realname2'] = cmsCore::request('realname2', 'str', '');
$pass = cmsCore::request('pass', 'str', '');
$pass2 = cmsCore::request('pass2', 'str', '');
// проверяем логин
if (mb_strlen($item['login']) < 2 || mb_strlen($item['login']) > 15 || is_numeric($item['login']) || !preg_match("/^([a-z0-9])+\$/ui", $item['login'])) {
cmsCore::addSessionMessage($_LANG['ERR_LOGIN'], 'error');
$errors = true;
}
// проверяем пароль
if (!$pass) {
cmsCore::addSessionMessage($_LANG['TYPE_PASS'], 'error');
$errors = true;
}
if ($pass && !$pass2) {
cmsCore::addSessionMessage($_LANG['TYPE_PASS_TWICE'], 'error');
$errors = true;
}
if ($pass && $pass2 && mb_strlen($pass) < 6) {
cmsCore::addSessionMessage($_LANG['PASS_SHORT'], 'error');
$errors = true;
}
if ($pass && $pass2 && $pass != $pass2) {
cmsCore::addSessionMessage($_LANG['WRONG_PASS'], 'error');
$errors = true;
}
// Проверяем nickname или имя и фамилию
if ($model->config['name_mode'] == 'nickname') {
if (!$item['nickname']) {
cmsCore::addSessionMessage($_LANG['TYPE_NICKNAME'], 'error');
$errors = true;
}
} else {
if (!$item['realname1']) {
cmsCore::addSessionMessage($_LANG['TYPE_NAME'], 'error');
$errors = true;
}
if (!$item['realname2']) {
cmsCore::addSessionMessage($_LANG['TYPE_SONAME'], 'error');
$errors = true;
}
$item['nickname'] = trim($item['realname1']) . ' ' . trim($item['realname2']);
}
if (mb_strlen($item['nickname']) < 2) {
cmsCore::addSessionMessage($_LANG['SHORT_NICKNAME'], 'error');
$errors = true;
}
if ($model->getBadNickname($item['nickname'])) {
cmsCore::addSessionMessage($_LANG['ERR_NICK_EXISTS'], 'error');
$errors = true;
}
// Проверяем email
if (!$item['email']) {
cmsCore::addSessionMessage($_LANG['ERR_EMAIL'], 'error');
$errors = true;
}
// День рождения
list($item['bday'], $item['bmonth'], $item['byear']) = array_values(cmsCore::request('birthdate', 'array_int', array()));
$item['birthdate'] = sprintf('%04d-%02d-%02d', $item['byear'], $item['bmonth'], $item['bday']);
// получаем данные конструктора форм
$item['formsdata'] = '';
if (isset($users_model->config['privforms'])) {
if (is_array($users_model->config['privforms'])) {
foreach ($users_model->config['privforms'] as $form_id) {
$form_input = cmsForm::getFieldsInputValues($form_id);
$item['formsdata'] .= $inDB->escape_string(cmsCore::arrayToYaml($form_input['values']));
// Проверяем значения формы
foreach ($form_input['errors'] as $field_error) {
if ($field_error) {
cmsCore::addSessionMessage($field_error, 'error');
$errors = true;
}
}
}
}
}
// Проверяем каптчу
if (!cmsPage::checkCaptchaCode()) {
cmsCore::addSessionMessage($_LANG['ERR_CAPTCHA'], 'error');
$errors = true;
}
// проверяем есть ли такой пользователь
$user_exist = $inDB->get_fields('cms_users', "(login LIKE '{$item['login']}' OR email LIKE '{$item['email']}') AND is_deleted = 0", 'id, login, email');
if ($user_exist) {
if ($user_exist['login'] == $item['login']) {
cmsCore::addSessionMessage($_LANG['LOGIN'] . ' "' . $item['login'] . '" ' . $_LANG['IS_BUSY'], 'error');
$errors = true;
} else {
cmsCore::addSessionMessage($_LANG['EMAIL_IS_BUSY'], 'error');
$errors = true;
}
}
// В случае ошибок, возвращаемся в форму
if ($errors) {
cmsUser::sessionPut('item', $item);
cmsCore::redirect('/registration');
}
//////////////////////////////////////////////
//////////// РЕГИСТРАЦИЯ /////////////////////
//////////////////////////////////////////////
$item['is_locked'] = $model->config['act'];
$item['password'] = md5($pass);
$item['orig_password'] = $pass;
$item['group_id'] = $model->config['default_gid'];
$item['regdate'] = date('Y-m-d H:i:s');
$item['logdate'] = date('Y-m-d H:i:s');
if (cmsUser::sessionGet('invite_code')) {
$invite_code = cmsUser::sessionGet('invite_code');
$item['invited_by'] = (int) $users_model->getInviteOwner($invite_code);
if ($item['invited_by']) {
$users_model->closeInvite($invite_code);
}
cmsUser::sessionDel('invite_code');
} else {
$item['invited_by'] = 0;
}
$item = cmsCore::callEvent('USER_BEFORE_REGISTER', $item);
$item['id'] = $item['user_id'] = $inDB->insert('cms_users', $item);
if (!$item['id']) {
cmsCore::error404();
}
$inDB->insert('cms_user_profiles', $item);
cmsCore::callEvent('USER_REGISTER', $item);
if ($item['is_locked']) {
$model->sendActivationNotice($pass, $item['id']);
cmsPage::includeTemplateFile('special/regactivate.php');
cmsCore::halt();
} else {
cmsActions::log('add_user', array('object' => '', 'user_id' => $item['id'], 'object_url' => '', 'object_id' => $item['id'], 'target' => '', 'target_url' => '', 'target_id' => 0, 'description' => ''));
if ($model->config['send_greetmsg']) {
$model->sendGreetsMessage($item['id']);
}
$model->sendRegistrationNotice($pass, $item['id']);
$back_url = $inUser->signInUser($item['login'], $pass, true);
cmsCore::redirect($back_url);
}
}
//============================================================================//
if ($do == 'view') {
$pagetitle = $inCore->getComponentTitle();
$inPage->setTitle($pagetitle);
$inPage->addPathway($pagetitle);
$inPage->addHeadJsLang(array('WRONG_PASS'));
// Если пользователь авторизован, то не показываем форму регистрации, редирект в профиль.
if ($inUser->id && !$inUser->is_admin) {
if ($inCore->menuId() == 1) {
return;
} else {
cmsCore::redirect(cmsUser::getProfileURL($inUser->login));
}
}
$correct_invite = cmsUser::sessionGet('invite_code') ? true : false;
if ($model->config['reg_type'] == 'invite' && cmsCore::inRequest('invite_code')) {
$invite_code = cmsCore::request('invite_code', 'str', '');
$correct_invite = $users_model->checkInvite($invite_code);
if ($correct_invite) {
cmsUser::sessionPut('invite_code', $invite_code);
} else {
cmsCore::addSessionMessage($_LANG['INCORRECT_INVITE'], 'error');
}
}
$item = cmsUser::sessionGet('item');
if ($item) {
cmsUser::sessionDel('item');
}
if (empty($item['birthdate'])) {
$item['birthdate'] = date('Y-m-d');
}
$private_forms = array();
if (isset($users_model->config['privforms'])) {
if (is_array($users_model->config['privforms'])) {
foreach ($users_model->config['privforms'] as $form_id) {
$private_forms = array_merge($private_forms, cmsForm::getFieldsHtml($form_id, array(), true));
}
}
}
cmsPage::initTemplate('components', 'com_registration')->assign('cfg', $model->config)->assign('item', $item)->assign('pagetitle', $pagetitle)->assign('correct_invite', $correct_invite)->assign('private_forms', $private_forms)->display('com_registration.tpl');
}
//============================================================================//
if ($do == 'activate') {
$code = cmsCore::request('code', 'str', '');
if (!$code) {
cmsCore::error404();
}
$user_id = $inDB->get_field('cms_users_activate', "code = '{$code}'", 'user_id');
if (!$user_id) {
cmsCore::error404();
}
$inDB->query("UPDATE cms_users SET is_locked = 0 WHERE id = '{$user_id}'");
$inDB->query("DELETE FROM cms_users_activate WHERE code = '{$code}'");
cmsCore::callEvent('USER_ACTIVATED', $user_id);
if ($model->config['send_greetmsg']) {
$model->sendGreetsMessage($user_id);
}
// Регистрируем событие
cmsActions::log('add_user', array('object' => '', 'user_id' => $user_id, 'object_url' => '', 'object_id' => $user_id, 'target' => '', 'target_url' => '', 'target_id' => 0, 'description' => ''));
cmsCore::addSessionMessage($_LANG['ACTIVATION_COMPLETE'], 'info');
cmsUser::goToLogin();
}
//============================================================================//
if ($do == 'auth') {
//====================//
//== разлогивание ==//
if (cmsCore::inRequest('logout')) {
$inUser->logout();
cmsCore::redirect('/');
}
//====================//
//== авторизация ==//
if (!cmsCore::inRequest('logout')) {
// флаг неуспешных авторизаций
$anti_brute_force = cmsUser::sessionGet('anti_brute_force');
$login = cmsCore::request('login', 'str', '');
$passw = cmsCore::request('pass', 'str', '');
$remember_pass = cmsCore::inRequest('remember');
// если нет логина или пароля, показываем форму входа
if (!$login || !$passw) {
if ($inUser->id && !$inUser->is_admin) {
cmsCore::redirect('/');
}
$inPage->setTitle($_LANG['SITE_LOGIN']);
$inPage->addPathway($_LANG['SITE_LOGIN']);
cmsPage::initTemplate('components', 'com_registration_login')->assign('cfg', $model->config)->assign('anti_brute_force', $anti_brute_force)->assign('is_sess_back', cmsUser::sessionGet('auth_back_url'))->display('com_registration_login.tpl');
if (!mb_strstr(cmsCore::getBackURL(), 'login')) {
cmsUser::sessionPut('auth_back_url', cmsCore::getBackURL());
}
return;
}
if (!cmsUser::checkCsrfToken()) {
cmsCore::error404();
}
// Проверяем каптчу
if ($anti_brute_force && !cmsPage::checkCaptchaCode()) {
cmsCore::addSessionMessage($_LANG['ERR_CAPTCHA'], 'error');
cmsCore::redirect('/login');
}
cmsUser::sessionDel('anti_brute_force');
$back_url = $inUser->signInUser($login, $passw, $remember_pass);
cmsCore::redirect($back_url);
}
}
//============================================================================//
if ($do == 'autherror') {
cmsUser::sessionPut('anti_brute_force', 1);
cmsPage::includeTemplateFile('special/autherror.php');
cmsCore::halt();
}
//============================================================================//
}
function applet_config()
{
// получаем оригинальный конфиг
$config = cmsConfig::getDefaultConfig();
$inPage = cmsPage::getInstance();
$inDB = cmsDatabase::getInstance();
global $_LANG;
global $adminAccess;
if (!cmsUser::isAdminCan('admin/config', $adminAccess)) {
cpAccessDenied();
}
$GLOBALS['cp_page_title'] = $_LANG['AD_SITE_SETTING'];
cpAddPathway($_LANG['AD_SITE_SETTING'], 'index.php?view=config');
$do = cmsCore::request('do', 'str', 'list');
if ($do == 'save') {
if (!cmsCore::validateForm()) {
cmsCore::error404();
}
$newCFG = array();
$newCFG['sitename'] = stripslashes(cmsCore::request('sitename', 'str', ''));
$newCFG['title_and_sitename'] = cmsCore::request('title_and_sitename', 'int', 0);
$newCFG['title_and_page'] = cmsCore::request('title_and_page', 'int', 0);
$newCFG['hometitle'] = stripslashes(cmsCore::request('hometitle', 'str', ''));
$newCFG['homecom'] = cmsCore::request('homecom', 'str', '');
$newCFG['siteoff'] = cmsCore::request('siteoff', 'int', 0);
$newCFG['debug'] = cmsCore::request('debug', 'int', 0);
$newCFG['offtext'] = htmlspecialchars(cmsCore::request('offtext', 'str', ''), ENT_QUOTES);
$newCFG['keywords'] = cmsCore::request('keywords', 'str', '');
$newCFG['metadesc'] = cmsCore::request('metadesc', 'str', '');
$newCFG['seourl'] = cmsCore::request('seourl', 'int', 0);
$newCFG['lang'] = cmsCore::request('lang', 'str', 'ru');
$newCFG['is_change_lang'] = cmsCore::request('is_change_lang', 'int', 0);
$newCFG['sitemail'] = cmsCore::request('sitemail', 'str', '');
$newCFG['sitemail_name'] = cmsCore::request('sitemail_name', 'str', '');
$newCFG['wmark'] = cmsCore::request('wmark', 'str', '');
$newCFG['template'] = cmsCore::request('template', 'str', '');
$newCFG['splash'] = cmsCore::request('splash', 'int', 0);
$newCFG['slight'] = cmsCore::request('slight', 'int', 0);
$newCFG['db_host'] = $config['db_host'];
$newCFG['db_base'] = $config['db_base'];
$newCFG['db_user'] = $config['db_user'];
$newCFG['db_pass'] = $config['db_pass'];
$newCFG['db_prefix'] = $config['db_prefix'];
$newCFG['show_pw'] = cmsCore::request('show_pw', 'int', 0);
$newCFG['last_item_pw'] = cmsCore::request('last_item_pw', 'int', 0);
$newCFG['index_pw'] = cmsCore::request('index_pw', 'int', 0);
$newCFG['fastcfg'] = cmsCore::request('fastcfg', 'int', 0);
$newCFG['mailer'] = cmsCore::request('mailer', 'str', '');
$newCFG['smtpsecure'] = cmsCore::request('smtpsecure', 'str', '');
$newCFG['smtpauth'] = cmsCore::request('smtpauth', 'int', 0);
$newCFG['smtpuser'] = cmsCore::inRequest('smtpuser') ? cmsCore::request('smtpuser', 'str', '') : $config['smtpuser'];
$newCFG['smtppass'] = cmsCore::inRequest('smtppass') ? cmsCore::request('smtppass', 'str', '') : $config['smtppass'];
$newCFG['smtphost'] = cmsCore::request('smtphost', 'str', '');
$newCFG['smtpport'] = cmsCore::request('smtpport', 'int', '25');
$newCFG['timezone'] = cmsCore::request('timezone', 'str', '');
$newCFG['timediff'] = cmsCore::request('timediff', 'str', '');
$newCFG['user_stats'] = cmsCore::request('user_stats', 'int', 0);
$newCFG['allow_ip'] = cmsCore::request('allow_ip', 'str', '');
if (cmsConfig::saveToFile($newCFG)) {
cmsCore::addSessionMessage($_LANG['AD_CONFIG_SAVE_SUCCESS'], 'success');
} else {
cmsCore::addSessionMessage($_LANG['AD_CONFIG_SITE_ERROR'], 'error');
}
cmsCore::clearCache();
cmsCore::redirect('index.php?view=config');
}
?>
<div>
<?php
cpCheckWritable('/includes/config.inc.php');
?>
<div id="config_tabs" class="uitabs">
<ul id="tabs">
<li><a href="#basic"><span><?php
echo $_LANG['AD_SITE'];
?>
</span></a></li>
<li><a href="#home"><span><?php
echo $_LANG['AD_MAIN'];
?>
</span></a></li>
<li><a href="#design"><span><?php
echo $_LANG['AD_DESIGN'];
?>
</span></a></li>
<li><a href="#time"><span><?php
echo $_LANG['AD_TIME'];
?>
</span></a></li>
<li><a href="#database"><span><?php
echo $_LANG['AD_DB'];
?>
</span></a></li>
<li><a href="#mail"><span><?php
echo $_LANG['AD_POST'];
?>
</span></a></li>
<li><a href="#other"><span><?php
echo $_LANG['AD_PATHWAY'];
?>
</span></a></li>
<li><a href="#seq"><span><?php
echo $_LANG['AD_SECURITY'];
?>
</span></a></li>
</ul>
<form action="/admin/index.php?view=config" method="post" name="CFGform" target="_self" id="CFGform" style="margin-bottom:30px">
<input type="hidden" name="csrf_token" value="<?php
echo cmsUser::getCsrfToken();
?>
" />
<div id="basic">
<table width="720" border="0" cellpadding="5">
<tr>
<td>
<strong><?php
echo $_LANG['AD_SITENAME'];
?>
</strong><br/>
<span class="hinttext"><?php
echo $_LANG['AD_USE_HEADER'];
?>
</span>
</td>
<td width="350" valign="top">
<input name="sitename" type="text" id="sitename" value="<?php
echo htmlspecialchars($config['sitename']);
?>
" style="width:358px" />
</td>
</tr>
<tr>
<td>
<strong><?php
echo $_LANG['AD_TAGE_ADD'];
?>
</strong>
</td>
<td valign="top">
<label><input name="title_and_sitename" type="radio" value="1" <?php
if ($config['title_and_sitename']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['YES'];
?>
</label>
<label><input name="title_and_sitename" type="radio" value="0" <?php
if (!$config['title_and_sitename']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['NO'];
?>
</label>
</td>
</tr>
<tr>
<td>
<strong><?php
echo $_LANG['AD_TAGE_ADD_PAGINATION'];
?>
</strong>
</td>
<td valign="top">
<label><input name="title_and_page" type="radio" value="1" <?php
if ($config['title_and_page']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['YES'];
?>
</label>
<label><input name="title_and_page" type="radio" value="0" <?php
if (!$config['title_and_page']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['NO'];
?>
</label>
</td>
</tr>
<tr>
<td>
<strong><?php
echo $_LANG['TEMPLATE_INTERFACE_LANG'];
?>
:</strong>
</td>
<td width="350" valign="top">
<select name="lang" id="lang" style="width:364px">
<?php
$langs = cmsCore::getDirsList('/languages');
foreach ($langs as $lng) {
echo '<option value="' . $lng . '" ' . ($config['lang'] == $lng ? 'selected="selected"' : '') . '>' . $lng . '</option>';
}
?>
</select>
</td>
</tr>
<tr>
<td>
<strong><?php
echo $_LANG['AD_SITE_LANGUAGE_CHANGE'];
?>
</strong><br/>
<span class="hinttext"><?php
echo $_LANG['AD_VIEW_FORM_LANGUAGE_CHANGE'];
?>
</span>
</td>
<td valign="top">
<label><input name="is_change_lang" type="radio" value="1" <?php
if ($config['is_change_lang']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['YES'];
?>
</label>
<label><input name="is_change_lang" type="radio" value="0" <?php
if (!$config['is_change_lang']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['NO'];
?>
</label>
</td>
</tr>
<tr>
<td>
<strong><?php
echo $_LANG['AD_SITE_ON'];
?>
</strong><br/>
<span class="hinttext"><?php
echo $_LANG['AD_ONLY_ADMINS'];
?>
</span>
</td>
<td valign="top">
<label><input name="siteoff" type="radio" value="0" <?php
if (!$config['siteoff']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['YES'];
?>
</label>
<label><input name="siteoff" type="radio" value="1" <?php
if ($config['siteoff']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['NO'];
?>
</label>
</td>
</tr>
<tr>
<td>
<strong><?php
echo $_LANG['AD_DEBUG_ON'];
?>
</strong><br/>
<span class="hinttext"><?php
echo $_LANG['AD_WIEW_DB_ERRORS'];
?>
</span>
</td>
<td valign="top">
<label><input name="debug" type="radio" value="1" <?php
if ($config['debug']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['YES'];
?>
</label>
<label><input name="debug" type="radio" value="0" <?php
if (!$config['debug']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['NO'];
?>
</label>
</td>
</tr>
<tr>
<td valign="middle">
<strong><?php
echo $_LANG['AD_WHY_STOP'];
?>
</strong><br />
<span class="hinttext"><?php
echo $_LANG['AD_VIEW_WHY_STOP'];
?>
</span>
</td>
<td valign="top"><input name="offtext" type="text" id="offtext" value="<?php
echo htmlspecialchars($config['offtext']);
?>
" style="width:358px" /></td>
</tr>
<tr>
<td>
<strong><?php
echo $_LANG['AD_WATERMARK'];
?>
</strong><br/>
<span class="hinttext"><?php
echo $_LANG['AD_WATERMARK_NAME'];
?>
</span>
</td>
<td>
<input name="wmark" type="text" id="wmark" value="<?php
echo $config['wmark'];
?>
" style="width:358px" />
</td>
</tr>
<tr>
<td>
<strong><?php
echo $_LANG['AD_QUICK_CONFIG'];
?>
</strong> <br />
<span class="hinttext"><?php
echo $_LANG['AD_MODULE_CONFIG'];
?>
</span>
</td>
<td valign="top">
<label><input name="fastcfg" type="radio" value="1" <?php
if ($config['fastcfg']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['YES'];
?>
</label>
<label><input name="fastcfg" type="radio" value="0" <?php
if (!$config['fastcfg']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['NO'];
?>
</label>
</td>
</tr>
<tr>
<td>
<strong><?php
echo $_LANG['AD_ONLINESTATS'];
?>
</strong>
</td>
<td valign="top">
<label><input name="user_stats" type="radio" value="0" <?php
if (!$config['user_stats']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['AD_NO_ONLINESTATS'];
?>
</label><br>
<label><input name="user_stats" type="radio" value="1" <?php
if ($config['user_stats'] == 1) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['AD_YES_ONLINESTATS'];
?>
</label><br>
<label><input name="user_stats" type="radio" value="2" <?php
if ($config['user_stats'] == 2) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['AD_CRON_ONLINESTATS'];
?>
</label>
</td>
</tr>
</table>
</div>
<div id="home">
<table width="720" border="0" cellpadding="5">
<tr>
<td>
<strong><?php
echo $_LANG['AD_MAIN_PAGE'];
?>
</strong><br />
<span class="hinttext"><?php
echo $_LANG['AD_MAIN_SITENAME'];
?>
</span><br/>
<span class="hinttext"><?php
echo $_LANG['AD_BROWSER_TITLE'];
?>
</span>
</td>
<td width="350" valign="top">
<input name="hometitle" type="text" id="hometitle" value="<?php
echo htmlspecialchars($config['hometitle']);
?>
" style="width:358px" />
</td>
</tr>
<tr>
<td valign="top">
<strong><?php
echo $_LANG['AD_KEY_WORDS'];
?>
</strong><br />
<span class="hinttext"><?php
echo $_LANG['AD_FROM_COMMA'];
?>
</span>
<div class="hinttext" style="margin-top:4px"><a style="color:#09C" href="http://tutorial.semonitor.ru/#5" target="_blank"><?php
echo $_LANG['AD_WHAT_KEY_WORDS'];
?>
</a></div>
</td>
<td>
<textarea name="keywords" style="width:350px" rows="3" id="keywords"><?php
echo $config['keywords'];
?>
</textarea> </td>
</tr>
<tr>
<td valign="top">
<strong><?php
echo $_LANG['AD_DESCRIPTION'];
?>
</strong><br />
<span class="hinttext"><?php
echo $_LANG['AD_LESS_THAN'];
?>
</span>
<div class="hinttext" style="margin-top:4px"><a style="color:#09C" href="http://tutorial.semonitor.ru/#219" target="_blank"><?php
echo $_LANG['AD_WHAT_DESCRIPTION'];
?>
</a></div>
</td>
<td>
<textarea name="metadesc" style="width:350px" rows="3" id="metadesc"><?php
echo $config['metadesc'];
?>
</textarea>
</td>
</tr>
<tr>
<td>
<strong><?php
echo $_LANG['AD_MAIN_PAGE_COMPONENT'];
?>
</strong>
</td>
<td width="350" valign="top">
<select name="homecom" style="width:358px">
<option value="" <?php
if (!$config['homecom']) {
?>
selected="selected"<?php
}
?>
><?php
echo $_LANG['AD_ONLY_MODULES'];
?>
</option>
<?php
echo cmsCore::getListItems('cms_components', $config['homecom'], 'title', 'ASC', 'internal=0', 'link');
?>
</select>
</td>
</tr>
<tr>
<td>
<strong><?php
echo $_LANG['AD_GATE_PAGE'];
?>
</strong> <br/>
<span class="hinttext"><?php
echo $_LANG['AD_FIRST_VISIT'];
?>
</span> <br/>
<span class="hinttext"><?php
echo $_LANG['AD_FIRST_VISIT_TEMPLATE'];
?>
</strong></span>
</td>
<td valign="top">
<label><input name="splash" type="radio" value="0" <?php
if (!$config['splash']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['HIDE'];
?>
</label>
<label><input name="splash" type="radio" value="1" <?php
if ($config['splash']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['SHOW'];
?>
</label>
</td>
</tr>
</table>
</div>
<div id="design">
<table width="720" border="0" cellpadding="5">
<tr>
<td valign="top">
<div style="margin-top:2px">
<strong><?php
echo $_LANG['TEMPLATE'];
?>
:</strong><br />
<span class="hinttext"><?php
echo $_LANG['AD_TEMPLATE_FOLDER'];
?>
</span>
</div>
</td>
<td>
<select name="template" id="template" style="width:350px" onchange="document.CFGform.submit();">
<?php
$templates = cmsCore::getDirsList('/templates');
foreach ($templates as $template) {
echo '<option value="' . $template . '" ' . ($config['template'] == $template ? 'selected="selected"' : '') . '>' . $template . '</option>';
}
$tpl_info = $inPage->getCurrentTplInfo();
?>
</select>
<?php
if (file_exists(PATH . '/templates/' . TEMPLATE . '/positions.jpg')) {
?>
<script>
$(function() {
$('#pos').dialog({modal: true, autoOpen: false, closeText: LANG_CLOSE, width: 'auto'});
});
</script>
<a onclick="$('#pos').dialog('open');return false;" href="#" class="ajaxlink"><?php
echo $_LANG['AD_TPL_POS'];
?>
</a>
<div id="pos" title="<?php
echo $_LANG['AD_TPL_POS'];
?>
"><img src="/templates/<?php
echo TEMPLATE;
?>
/positions.jpg" alt="<?php
echo $_LANG['AD_TPL_POS'];
?>
" /></div>
<?php
}
?>
<div style="margin-top:5px" class="hinttext">
<?php
echo sprintf($_LANG['AD_TEMPLATE_INFO'], $tpl_info['author'], $tpl_info['renderer'], $tpl_info['ext']);
?>
</div>
</td>
</tr>
<tr>
<td><strong><?php
echo $_LANG['AD_SEARCH_RESULT'];
?>
</strong></td>
<td valign="top">
<label><input name="slight" type="radio" value="1" <?php
if ($config['slight']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['YES'];
?>
</label>
<label><input name="slight" type="radio" value="0" <?php
if (!$config['slight']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['NO'];
?>
</label>
</td>
</tr>
</table>
</div>
<div id="time">
<table width="720" border="0" cellpadding="5">
<tr>
<td valign="top" width="100">
<div style="margin-top:2px">
<strong><?php
echo $_LANG['AD_TIME_ARREA'];
?>
</strong>
</div>
</td>
<td>
<select name="timezone" id="timezone" style="width:350px">
<?php
include PATH . '/admin/includes/timezones.php';
?>
<?php
foreach ($timezones as $tz) {
?>
<option value="<?php
echo $tz;
?>
" <?php
if ($tz == $config['timezone']) {
?>
selected="selected"<?php
}
?>
><?php
echo $tz;
?>
</option>
<?php
}
?>
</select>
</td>
</tr>
<tr>
<td>
<strong><?php
echo $_LANG['AD_TIME_SLIP'];
?>
</strong>
</td>
<td width="350">
<select name="timediff" id="timediff" style="width:60px">
<?php
for ($h = -12; $h <= 12; $h++) {
?>
<option value="<?php
echo $h;
?>
" <?php
if ($h == $config['timediff']) {
?>
selected="selected"<?php
}
?>
><?php
echo $h > 0 ? '+' . $h : $h;
?>
</option>
<?php
}
?>
</select>
</td>
</tr>
</table>
</div>
<div id="database">
<table width="720" border="0" cellpadding="5" style="margin-top:15px;">
<tr>
<td>
<strong><?php
echo $_LANG['AD_DB_SIZE'];
?>
</strong>
</td>
<td width="350">
<?php
$result = $inDB->query("SELECT (sum(data_length)+sum(index_length))/1024/1024 as size FROM INFORMATION_SCHEMA.TABLES WHERE table_schema = '{$config['db_base']}'", true);
if (!$inDB->error()) {
$s = $inDB->fetch_assoc($result);
echo round($s['size'], 2) . ' ' . $_LANG['SIZE_MB'];
} else {
echo $_LANG['AD_DB_SIZE_ERROR'];
}
?>
</td>
</tr>
<tr>
<td colspan="2"><span class="hinttext"><?php
echo $_LANG['AD_MYSQL_CONFIG'];
?>
</span></td>
</tr>
</table>
</div>
<div id="mail">
<table width="720" border="0" cellpadding="5" style="margin-top:15px;">
<tr>
<td width="250">
<strong><?php
echo $_LANG['AD_SITE_EMAIL'];
?>
</strong><br/>
<span class="hinttext"><?php
echo $_LANG['AD_SITE_EMAIL_POST'];
?>
</span>
</td>
<td>
<input name="sitemail" type="text" id="sitemail" value="<?php
echo $config['sitemail'];
?>
" style="width:358px" />
</td>
</tr>
<tr>
<td width="250">
<strong><?php
echo $_LANG['AD_SENDER_EMAIL'];
?>
</strong><br/>
<span class="hinttext"><?php
echo $_LANG['AD_IF_NOT_HANDLER'];
?>
</span>
</td>
<td>
<input name="sitemail_name" type="text" id="sitemail_name" value="<?php
echo $config['sitemail_name'];
?>
" style="width:358px" />
</td>
</tr>
<tr>
<td>
<strong><?php
echo $_LANG['AD_SEND_METHOD'];
?>
</strong>
</td>
<td>
<select name="mailer" style="width:354px">
<option value="mail" <?php
if ($config['mailer'] == 'mail') {
echo 'selected="selected"';
}
?>
><?php
echo $_LANG['AD_PHP_MAILER'];
?>
</option>
<option value="sendmail" <?php
if ($config['mailer'] == 'sendmail') {
echo 'selected="selected"';
}
?>
><?php
echo $_LANG['AD_SEND_MAILER'];
?>
</option>
<option value="smtp" <?php
if ($config['mailer'] == 'smtp') {
echo 'selected="selected"';
}
?>
><?php
echo $_LANG['AD_SMTP_MAILER'];
?>
</option>
</select>
</td>
</tr>
<tr>
<td>
<strong><?php
echo $_LANG['AD_ENCRYPTING'];
?>
</strong>
</td>
<td>
<label><input name="smtpsecure" type="radio" value="" <?php
if (!$config['smtpsecure']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['NO'];
?>
</label>
<label><input name="smtpsecure" type="radio" value="tls" <?php
if ($config['smtpsecure'] == 'tls') {
echo 'checked="checked"';
}
?>
/> tls</label>
<label><input name="smtpsecure" type="radio" value="ssl" <?php
if ($config['smtpsecure'] == 'ssl') {
echo 'checked="checked"';
}
?>
/> ssl</label>
</td>
</tr>
<tr>
<td>
<strong><?php
echo $_LANG['AD_SMTP_LOGIN'];
?>
</strong>
</td>
<td>
<label><input name="smtpauth" type="radio" value="1" <?php
if ($config['smtpauth']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['YES'];
?>
</label>
<label><input name="smtpauth" type="radio" value="0" <?php
if (!$config['smtpauth']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['NO'];
?>
</label>
</td>
</tr>
<tr>
<td>
<strong><?php
echo $_LANG['AD_SMTP_USER'];
?>
</strong>
</td>
<td>
<?php
if (!$config['smtpuser']) {
?>
<input name="smtpuser" type="text" id="smtpuser" value="<?php
echo $config['smtpuser'];
?>
" style="width:350px" />
<?php
} else {
?>
<span class="hinttext"><?php
echo $_LANG['AD_IF_CHANGE_USER'];
?>
</span>
<?php
}
?>
</td>
</tr>
<tr>
<td>
<strong><?php
echo $_LANG['AD_SMTP_PASS'];
?>
</strong>
</td>
<td>
<?php
if (!$config['smtppass']) {
?>
<input name="smtppass" type="password" id="smtppass" value="<?php
echo $config['smtppass'];
?>
" style="width:350px" />
<?php
} else {
?>
<span class="hinttext"><?php
echo $_LANG['AD_IF_CHANGE_PASS'];
?>
</span>
<?php
}
?>
</td>
</tr>
<tr>
<td>
<strong><?php
echo $_LANG['AD_SMTP_HOST'];
?>
</strong><br>
<span class="hinttext"><?php
echo $_LANG['AD_SOME_HOST'];
?>
</span>
</td>
<td>
<input name="smtphost" type="text" id="smtphost" value="<?php
echo $config['smtphost'];
?>
" style="width:350px" />
</td>
</tr>
<tr>
<td>
<strong><?php
echo $_LANG['AD_SMTP_PORT'];
?>
</strong>
</td>
<td>
<input name="smtpport" type="text" id="smtpport" value="<?php
echo $config['smtpport'];
?>
" style="width:350px" />
</td>
</tr>
</table>
</div>
<div id="other">
<table width="720" border="0" cellpadding="5">
<tr>
<td>
<strong><?php
echo $_LANG['AD_VIEW_PATHWAY'];
?>
</strong><br />
<span class="hinttext">
<?php
echo $_LANG['AD_PATH_TO_CATEGORY'];
?>
</span>
</td>
<td>
<label><input name="show_pw" type="radio" value="1" <?php
if ($config['show_pw']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['YES'];
?>
</label>
<label><input name="show_pw" type="radio" value="0" <?php
if (!$config['show_pw']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['NO'];
?>
</label>
</td>
</tr>
<tr>
<td><strong><?php
echo $_LANG['AD_MAINPAGE_PATHWAY'];
?>
</strong></td>
<td>
<label><input name="index_pw" type="radio" value="1" <?php
if ($config['index_pw']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['YES'];
?>
</label>
<label><input name="index_pw" type="radio" value="0" <?php
if (!$config['index_pw']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['NO'];
?>
</label>
</td>
</tr>
<tr>
<td><strong><?php
echo $_LANG['AD_PAGE_PATHWAY'];
?>
</strong></td>
<td>
<label><input name="last_item_pw" type="radio" value="0" <?php
if (!$config['last_item_pw']) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['HIDE'];
?>
</label>
<label><input name="last_item_pw" type="radio" value="1" <?php
if ($config['last_item_pw'] == 1) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['AD_PAGE_PATHWAY_LINK'];
?>
</label>
<label><input name="last_item_pw" type="radio" value="2" <?php
if ($config['last_item_pw'] == 2) {
echo 'checked="checked"';
}
?>
/><?php
echo $_LANG['AD_PAGE_PATHWAY_TEXT'];
?>
</label>
</td>
</tr>
</table>
</div>
<div id="seq">
<table width="720" border="0" cellpadding="5">
<tr>
<td>
<strong><?php
echo $_LANG['AD_IP_ADMIN'];
?>
</strong> <br />
<span class="hinttext"><?php
echo $_LANG['AD_IP_COMMA'];
?>
</span></td>
<td valign="top">
<input name="allow_ip" type="text" id="allow_ip" value="<?php
echo htmlspecialchars($config['allow_ip']);
?>
" style="width:358px" /></td>
</tr>
</table>
<p style="color:#900"><?php
echo $_LANG['AD_ATTENTION'];
?>
</p>
</div>
<div align="left">
<input name="do" type="hidden" id="do" value="save" />
<input name="save" type="submit" id="save" value="<?php
echo $_LANG['SAVE'];
?>
" />
<input name="back" type="button" id="back" value="<?php
echo $_LANG['CANCEL'];
?>
" onclick="window.history.back();" />
</div>
</form>
</div></div>
<?php
}
define('PATH', $_SERVER['DOCUMENT_ROOT']);
if (!defined('PATH')) {
die('ACCESS DENIED');
}
Error_Reporting(E_ALL & ~E_NOTICE & ~E_WARNING);
header('Content-Type: text/html; charset=utf-8');
session_start();
define("VALID_CMS", 1);
include PATH . '/core/cms.php';
$inCore = cmsCore::getInstance();
cmsCore::loadClass('page');
cmsCore::loadClass('user');
$inDB = cmsDatabase::getInstance();
$inConf = cmsConfig::getInstance();
$inUser = cmsUser::getInstance();
$inPage = cmsPage::getInstance();
if (!$inUser->update()) {
cmsCore::halt();
}
if (!$inUser->is_admin) {
cmsCore::halt();
}
@set_time_limit(0);
$sql = "SELECT id, content FROM cms_user_wall LIMIT 1250";
$result = $inDB->query($sql);
if ($inDB->num_rows($result)) {
$items = array();
while ($item = $inDB->fetch_assoc($result)) {
$items[] = $item;
}
} else {
function actions()
{
$inCore = cmsCore::getInstance();
$inUser = cmsUser::getInstance();
$inPage = cmsPage::getInstance();
$inDB = cmsDatabase::getInstance();
$inActions = cmsActions::getInstance();
$model = new cms_model_actions();
global $_LANG;
$do = $inCore->do;
$page = cmsCore::request('page', 'int', 1);
$user_id = cmsCore::request('user_id', 'int', 0);
$perpage = 6;
$pagetitle = $inCore->getComponentTitle();
$inPage->setTitle($pagetitle);
$inPage->addPathway($pagetitle, '/actions');
$inPage->setDescription($model->config['meta_desc'] ? $model->config['meta_desc'] : $pagetitle);
$inPage->setKeywords($model->config['meta_keys'] ? $model->config['meta_keys'] : $pagetitle);
//============================================================================//
if ($do == 'delete') {
if (!$inUser->is_admin) {
cmsCore::error404();
}
$id = cmsCore::request('id', 'int', 0);
if (!$id) {
cmsCore::error404();
}
$model->deleteAction($id);
cmsCore::redirectBack();
}
//============================================================================//
if ($do == 'view') {
$inActions->showTargets($model->config['show_target']);
if ($model->config['act_type'] && !$model->config['is_all']) {
$inActions->onlySelectedTypes($model->config['act_type']);
}
$total = $inActions->getCountActions();
$inDB->limitPage($page, $model->config['perpage']);
$actions = $inActions->getActionsLog();
if (!$actions && $page > 1) {
cmsCore::error404();
}
cmsPage::initTemplate('components', 'com_actions_view')->assign('actions', $actions)->assign('pagetitle', $pagetitle)->assign('total', $total)->assign('user_id', $inUser->id)->assign('pagebar', cmsPage::getPagebar($total, $page, $model->config['perpage'], '/actions/page-%page%'))->display('com_actions_view.tpl');
}
//============================================================================//
if ($do == 'view_user_feed') {
if (!$inUser->id) {
cmsCore::error404();
}
if (!cmsCore::isAjax()) {
cmsCore::error404();
}
// Получаем друзей
$friends = cmsUser::getFriends($inUser->id);
$friends_total = count($friends);
// нам нужно только определенное количество друзей
$friends = array_slice($friends, ($page - 1) * $perpage, $perpage, true);
if ($friends) {
$inActions->onlyMyFriends();
$inActions->showTargets($model->config['show_target']);
$inDB->limitIs($model->config['perpage_tab']);
$actions = $inActions->getActionsLog();
} else {
$actions = array();
}
cmsPage::initTemplate('components', 'com_actions_view_tab')->assign('actions', $actions)->assign('friends', $friends)->assign('user_id', $user_id)->assign('page', $page)->assign('cfg', $model->config)->assign('total_pages', ceil($friends_total / $perpage))->assign('friends_total', $friends_total)->display('com_actions_view_tab.tpl');
}
//============================================================================//
if ($do == 'view_user_feed_only') {
if (!$inUser->id) {
cmsCore::error404();
}
if (!cmsCore::isAjax()) {
cmsCore::error404();
}
if ($user_id) {
if (!cmsUser::isFriend($user_id)) {
cmsCore::error404();
}
$inActions->whereUserIs($user_id);
} else {
$inActions->onlyMyFriends();
}
$inActions->showTargets($model->config['show_target']);
$inDB->limitIs($model->config['perpage_tab']);
$actions = $inActions->getActionsLog();
// получаем последний элемент массива для выборки имя пользователя и ссылки на профиль.
if ($actions) {
$user = end($actions);
} else {
$user = cmsUser::getShortUserData($user_id);
}
cmsPage::initTemplate('components', 'com_actions_tab')->assign('actions', $actions)->assign('user_id', $user_id)->assign('user', $user)->assign('cfg', $model->config)->display('com_actions_tab.tpl');
}
//============================================================================//
if ($do == 'view_user_friends_only') {
if (!$inUser->id) {
cmsCore::error404();
}
if (!cmsCore::isAjax()) {
cmsCore::error404();
}
// Получаем друзей
$friends = cmsUser::getFriends($inUser->id);
$friends_total = count($friends);
// нам нужно только определенное количество друзей
$friends = array_slice($friends, ($page - 1) * $perpage, $perpage, true);
cmsPage::initTemplate('components', 'com_actions_friends')->assign('friends', $friends)->assign('page', $page)->assign('user_id', $user_id)->assign('total_pages', ceil($friends_total / $perpage))->assign('friends_total', $friends_total)->display('com_actions_friends.tpl');
}
}
function battleways()
{
$inCore = cmsCore::getInstance();
$inPage = cmsPage::getInstance();
$inDB = cmsDatabase::getInstance();
$inUser = cmsUser::getInstance();
global $_LANG;
$inCore->loadModel('battleways');
$model = new cms_model_battleways();
$usr = cmsCore::request('id', 'int', 0);
$cfg = $inCore->loadComponentConfig('battleways');
// Проверяем включени ли компонент
if (!$cfg['component_enabled']) {
cmsCore::error404();
}
$id = $inCore->request('id', 'int', 0);
$do = $inCore->request('do', 'str', 'view');
$tag = $inCore->request('tag', 'str', '');
$color = $inCore->request('color', 'str', '');
$page = $inCore->request('page', 'int', 1);
$select_tag = 0;
$t = urldecode($tag);
if (!empty($t)) {
$sql = "SELECT * \nFROM `cms_battleways` \nWHERE `type` LIKE '%" . $t . "%'";
if ($inDB->query($sql)) {
$select_tag = 1;
}
}
if (!isset($cfg['perpage'])) {
$cfg['perpage'] = 10;
}
if (!isset($cfg['images'])) {
$cfg['images'] = 0;
}
if ($_SESSION['user']['id'] == 0) {
echo "Гостям запрещено просматривать данный раздел";
} else {
if ($do == 'view_battleway') {
//if($model->authorBattleway($id))
//{
$battleway = $model->getBattleway($id);
$smarty = $inCore->initSmarty('components', 'com_battleways_view.tpl');
$smarty->assign('is_posts_view', (bool) sizeof($battleway));
$smarty->assign('pagetitle', $battleway['title']);
$smarty->assign('content', $battleway['content']);
$smarty->display('com_battleways_view.tpl');
// }
// else
// {
// cmsCore::error404();
// }
}
if ($do == 'del') {
$del = $model->delBattleway($id);
$inCore->redirect('/battleways/');
}
if ($do == 'view') {
if ($select_tag == 0) {
$total_battleways = $model->totalPosts();
$pagination = cmsPage::getPagebar($total_battleways, $page, $cfg['perpage'], '/battleways/page%page%.html');
}
$user_id = $inUser->id;
//GET ENTRIES
$posts_list = $model->getAllPosts($page, $cfg['perpage'], $select_tag, $t, $color, $user_id);
if ($posts_list) {
foreach ($posts_list as $post) {
$post['datetime'] = $inCore->dateFormat($post['datetime'], 1, 0, 1);
/* if(!empty($post['type']))
{
$sql="select * from `cms_battleways_color` where `id`='".$post['color']."';";
$result = $inDB->query($sql);
if ($inDB->num_rows($result)){
$color = $inDB->fetch_assoc($result);
$post['status'] = "<a href='/battleways/".$post['type']."/".$post['color']."/' style='background: ".$color['color'].";border-radius: 3px;color: ".$color['font_color'].";display: inline-block;height: 19px;margin: 5px 3px 2px 2px;outline: #FFFFFF 0px;padding: 1px 4px;text-decoration: none;text-indent: 0px;vertical-align: middle;white-space: nowrap;'>".$post['type']."</a>";
}
else
{
$post['status'] = "<a href='/battleways/".$post['type']."/' style='background: #E6E6E6;border:1px solid #e1e1e1;padding:5px;border-radius: 8px;border-radius: 3px;color:#333333;text-shadow: #FFFFFF 1px 1px 0px;display: inline-block;height: 19px;margin: 5px 3px 2px 2px;outline: #FFFFFF 0px;padding: 1px 4px;text-decoration: none;text-indent: 0px;vertical-align: middle;white-space: nowrap;cursor:pointer;'>".$post['type']."</a>";
}
} */
$posts[] = $post;
}
}
$smarty = $inCore->initSmarty('components', 'com_battleways_view.tpl');
$smarty->assign('is_posts', (bool) sizeof($posts_list));
if ($select_tag == 0) {
$smarty->assign('pagination', $pagination);
}
$smarty->assign('mark', $model->getMarks());
$smarty->assign('pagetitle', "Ваши минизаписки");
if ($posts) {
$smarty->assign('posts', $posts);
}
$smarty->display('com_battleways_view.tpl');
}
if ($do == 'add_battleway') {
$user_id = $inUser->id;
$title = $inCore->request('title', 'str', '');
$type = $inCore->request('type', 'str', '');
$color = $inCore->request('color', 'int', '');
if (!empty($title)) {
$describe_full = $inCore->request('full', 'html', '');
//парсим bb-код перед записью в базу
$describe_full_html = $inCore->parseSmiles($describe_full, true);
// Экранируем специальные символы
$describe_full_html = $inDB->escape_string($describe_full_html);
$sql = "INSERT INTO `cms_battleways` (\n`id` ,\n`datetime` ,\n`title` ,\n`content` ,\n`user` ,\n`type` ,\n`color` \n)\nVALUES (\nNULL , NOW(), '" . $title . "', '" . $describe_full_html . "', '" . $user_id . "', '" . $type . "', '" . $color . "'\n);";
$result = $inDB->query($sql);
$inCore->redirect('/battleways/');
}
$inPage->addHeadJS('components/battleways/js/battleways.js');
$bb_toolbar = cmsPage::getBBCodeToolbar('message', $cfg['images'], 'battleways');
$smilies = cmsPage::getSmilesPanel('message');
$smarty = $inCore->initSmarty('components', 'com_battleways_add.tpl');
$smarty->assign('mark_insert', $model->getAutoMark());
$smarty->assign('select_color', $model->getColors());
$smarty->assign('title', "Добавление записки");
$smarty->assign('bb_toolbar', $bb_toolbar);
$smarty->assign('smilies', $smilies);
$smarty->display('com_battleways_add.tpl');
}
if ($do == 'edit_battleway') {
$battleway = $model->getBattleway($id);
$smarty = $inCore->initSmarty('components', 'com_battleways_edit.tpl');
$smarty->assign('is_posts_view', (bool) sizeof($battleway));
$smarty->assign('pagetitle', $battleway['title']);
$smarty->assign('content', $battleway['content']);
$user_id = $inUser->id;
$title = $inCore->request('title', 'str', '');
$type = $inCore->request('type', 'str', '');
$color = $inCore->request('color', 'int', '');
if (!empty($title)) {
$describe_full = $inCore->request('full', 'html', '');
//парсим bb-код перед записью в базу
$describe_full_html = $inCore->parseSmiles($describe_full, true);
// Экранируем специальные символы
$describe_full_html = $inDB->escape_string($describe_full_html);
$sql = "INSERT INTO `cms_battleways` (\n\t\t\t\t\t`id` ,\n\t\t\t\t\t`datetime` ,\n\t\t\t\t\t`title` ,\n\t\t\t\t\t`content` ,\n\t\t\t\t\t`user` ,\n\t\t\t\t\t`type` ,\n\t\t\t\t\t`color` \n\t\t\t\t\t)\n\t\t\t\t\tVALUES (\n\t\t\t\t\tNULL , NOW(), '" . $title . "', '" . $describe_full_html . "', '" . $user_id . "', '" . $type . "', '" . $color . "'\n\t\t\t\t\t);";
$result = $inDB->query($sql);
$inCore->redirect('/battleways/');
}
$inPage->addHeadJS('components/battleways/js/battleways.js');
$bb_toolbar = cmsPage::getBBCodeToolbar('message', $cfg['images'], 'battleways');
$smilies = cmsPage::getSmilesPanel('message');
$smarty = $inCore->initSmarty('components', 'com_battleways_edit.tpl');
$smarty->assign('mark_insert', $model->getAutoMark());
$smarty->assign('select_color', $model->getColors());
$smarty->assign('title', "Добавление записки");
$smarty->assign('bb_toolbar', $bb_toolbar);
$smarty->assign('smilies', $smilies);
$smarty->display('com_battleways_edit.tpl');
}
}
/////////////////////////////////////////////////
}
function clubs() {
$inCore = cmsCore::getInstance();
$inPage = cmsPage::getInstance();
$inDB = cmsDatabase::getInstance();
$inUser = cmsUser::getInstance();
global $_LANG;
$model = new cms_model_clubs();
$inPhoto = $model->initPhoto();
define('IS_BILLING', $inCore->isComponentInstalled('billing'));
if (IS_BILLING) { cmsCore::loadClass('billing'); }
// js только авторизованным
if($inUser->id){
$inPage->addHeadJS('components/clubs/js/clubs.js');
}
$pagetitle = $inCore->getComponentTitle();
$id = cmsCore::request('id', 'int', 0);
$do = $inCore->do;
$page = cmsCore::request('page', 'int', 1);
$inPage->setTitle($pagetitle);
$inPage->setDescription($model->config['meta_desc'] ? $model->config['meta_desc'] : $pagetitle);
$inPage->setKeywords($model->config['meta_keys'] ? $model->config['meta_keys'] : $pagetitle);
$inPage->addPathway($pagetitle, '/clubs');
$inPage->addHeadJsLang(array('NO_PUBLISH','EDIT_PHOTO','YOU_REALLY_DELETE_PHOTO','YOU_REALLY_DELETE_ALBUM','RENAME_ALBUM','ALBUM_TITLE','ADD_PHOTOALBUM','REALY_EXIT_FROM_CLUB','JOINING_CLUB','SEND_MESSAGE','CREATE','CREATE_CLUB','SEND_INVITE_CLUB','YOU_NO_SELECT_USER'));
//////////////////////// КЛУБЫ ПОЛЬЗОВАТЕЛЯ/////////////////////////////////////
if ($do == 'user_clubs') {
if (!cmsCore::isAjax()) { return false; }
$inPage->displayLangJS(array('CREATE','CREATE_CLUB'));
$user_id = cmsCore::request('user_id', 'int', $inUser->id);
$user = cmsUser::getShortUserData($user_id);
if (!$user) { return false; }
// получаем клубы, в которых пользователь админ
$model->whereAdminIs($user['id']);
$inDB->orderBy('c.pubdate', 'DESC');
$clubs = $model->getClubs();
// получаем клубы, в которых состоит пользователь
$inDB->addSelect('uc.role');
$inDB->addJoin("INNER JOIN cms_user_clubs uc ON uc.club_id = c.id AND uc.user_id = '{$user['id']}'");
$inDB->orderBy('uc.role', 'DESC, uc.pubdate DESC');
$inclubs = $model->getClubs();
cmsPage::initTemplate('components', 'com_clubs_user')->
assign('can_create', (($inUser->id == $user['id']) && ($model->config['cancreate'] || $inUser->is_admin)))->
assign('clubs', array_merge($clubs, $inclubs))->
assign('user', $user)->
assign('my_profile', $user['id'] == $inUser->id)->
display();
}
//////////////////////// ВСЕ КЛУБЫ /////////////////////////////////////////////
if ($do=='view'){
$inDB->orderBy('is_vip', 'DESC, rating DESC');
$inDB->limitPage($page, $model->config['perpage']);
$total = $model->getClubsCount();
$clubs = $model->getClubs();
if (!$clubs && $page > 1) { return false; }
if ($page > 1) {
foreach ($clubs as $c) {
$keys[] = $c['title'];
}
$inPage->setKeywords(implode(',', $keys));
}
cmsPage::initTemplate('components', 'com_clubs_view')->
assign('pagetitle', $pagetitle)->
assign('can_create', ($inUser->id && $model->config['cancreate'] || $inUser->is_admin))->
assign('clubs', $clubs)->
assign('total', $total)->
assign('pagination', cmsPage::getPagebar($total, $page, $model->config['perpage'], '/clubs/page-%page%'))->
display();
}
/////////////////////// ПРОСМОТР КЛУБА /////////////////////////////////////////
if ($do=='club'){
$club = $model->getClub($id);
if (!$club) { return false; }
if (!$club['published'] && !$inUser->is_admin) { return false; }
$inPage->setTitle($club['pagetitle'] ? $club['pagetitle'] : $club['title']);
$inPage->setKeywords($club['meta_keys'] ? $club['meta_keys'] : $club['title']);
if (!$club['meta_desc']) {
if ($club['description']) {
$inPage->setDescription(crop($club['description']));
} else {
$inPage->setDescription($club['title']);
}
} else {
$inPage->setDescription($club['meta_desc']);
}
$inPage->addPathway($club['title']);
$inPage->addHeadJsLang(array('NEW_POST_ON_WALL','CONFIRM_DEL_POST_ON_WALL'));
// Инициализируем участников клуба
$model->initClubMembers($club['id']);
// права доступа
$is_admin = $inUser->is_admin || ($inUser->id == $club['admin_id']);
$is_moder = $model->checkUserRightsInClub('moderator');
$is_member = $model->checkUserRightsInClub('member');
// Приватный или публичный клуб
$is_access = true;
if ($club['clubtype']=='private' && (!$is_admin && !$is_moder && !$is_member)){
$is_access = false;
}
// Общее количество участников
$club['members'] = $model->club_total_members;
// Общее количество участников
$club['moderators'] = $model->club_total_moderators;
// Массив членов клуба
if($club['members']){
$inDB->limit($model->config['club_perpage']);
$club['members_list'] = $model->getClubMembers($club['id'], 'member');
} else { $club['members_list'] = array(); }
// Массив модераторов клуба
if($club['moderators']){
$club['moderators_list'] = $model->getClubMembers($club['id'], 'moderator');
}
// Стена клуба
// количество записей на стене берем из настроек
$inDB->limitPage(1, $model->config['wall_perpage']);
$club['wall_html'] = cmsUser::getUserWall($club['id'], 'clubs', ($is_moder || $is_admin), ($is_moder || $is_admin));
/////////////////////////////////////////////
//////////// ПОСТЫ БЛОГА КЛУБА //////////////
/////////////////////////////////////////////
if ($club['enabled_blogs']){
$inBlog = $model->initBlog();
$inBlog->whereBlogUserIs($club['id']);
$club['total_posts'] = $inBlog->getPostsCount($is_admin || $is_moder);
$inDB->addSelect('b.user_id as bloglink');
$inDB->orderBy('p.pubdate', 'DESC');
$inDB->limit($model->config['club_posts_perpage']);
$club['blog_posts'] = $inBlog->getPosts(($is_admin || $is_moder), $model, true);
}
/////////////////////////////////////////////
//////////// ФОТОАЛЬБОМЫ КЛУБА //////////////
/////////////////////////////////////////////
if ($club['enabled_photos']){
// Общее количество альбомов
$club['all_albums'] = $inDB->rows_count('cms_photo_albums', "NSDiffer = 'club{$club['id']}' AND user_id = '{$club['id']}' AND parent_id > 0");
// получаем альбомы
if($club['all_albums']){
$inDB->limit($model->config['club_album_perpage']);
$inDB->orderBy('f.pubdate', 'DESC');
$club['photo_albums'] = $inPhoto->getAlbums(0, 'club'.$club['id']);
} else {
$club['photo_albums'] = array();
}
}
// Получаем плагины
$plugins = cmsCore::callTabEventPlugins('GET_SINGLE_CLUB', $club);
cmsPage::initTemplate('components', 'com_clubs_view_club')->
assign('club', $club)->
assign('is_access', $is_access)->
assign('user_id', $inUser->id)->
assign('is_admin', $is_admin)->
assign('is_moder', $is_moder)->
assign('plugins', $plugins)->
assign('is_member', $is_member)->
assign('is_photo_karma_enabled', ((($inUser->karma >= $club['photo_min_karma']) && $is_member) ? true : false))->
assign('is_blog_karma_enabled', ((($inUser->karma >= $club['blog_min_karma']) && $is_member) ? true : false))->
assign('cfg', $model->config)->
display();
}
///////////////////////// СОЗДАНИЕ КЛУБА ///////////////////////////////////////
if ($do == 'create'){
if(!cmsCore::isAjax()) { return false; }
if(!$inUser->id){ return false; }
$can_create = $model->canCreate();
// показываем форму
if (!cmsCore::inRequest('create') ){
cmsPage::initTemplate('components', 'com_clubs_create')->
assign('can_create', $can_create)->
assign('last_message', $model->last_message)->
display();
cmsCore::jsonOutput(array('error' => false,
'can_create' => (bool)$can_create,
'html' => ob_get_clean()));
}
if (cmsCore::inRequest('create')){
if (!$can_create){ return false; }
$title = $inCore->request('title', 'str');
$clubtype = $inCore->request('clubtype', 'str');
if (!$title || !in_array($clubtype, array('public','private'))){
cmsCore::jsonOutput(array('error' => true, 'text' => $_LANG['CLUB_REQ_TITLE']));
}
if ($inDB->get_field('cms_clubs', "LOWER(title) = '".mb_strtolower($title)."'", 'id')){
cmsCore::jsonOutput(array('error' => true, 'text' => $_LANG['CLUB_EXISTS']));
}
if(!cmsUser::checkCsrfToken()) { return false; }
$club_id = $model->addClub(array('admin_id'=>$inUser->id,
'title'=>$title,
'clubtype'=>$clubtype,
'create_karma'=>$inUser->karma,
'enabled_blogs'=>$model->config['enabled_blogs'],
'enabled_photos'=>$model->config['enabled_photos']));
if($club_id){
//регистрируем событие
cmsActions::log('add_club', array(
'object' => $title,
'object_url' => '/clubs/'.$club_id,
'object_id' => $club_id,
'target' => '',
'target_url' => '',
'target_id' => 0,
'description' => ''
));
}
cmsCore::addSessionMessage($_LANG['CLUB_IS_CREATED'], 'success');
cmsCore::jsonOutput(array('error' => false,
'club_id' => $club_id));
}
}
///////////////////////// НАСТРОЙКИ КЛУБА //////////////////////////////////////
if ($do == 'config'){
if (!$inUser->id){ return false; }
$club = $model->getClub($id);
if (!$club){ return false; }
// Инициализируем участников клуба
$model->initClubMembers($club['id']);
// настраивать клуб могут только администраторы
$is_admin = $inUser->is_admin || ($inUser->id == $club['admin_id']);
if (!$is_admin){ return false; }
if (cmsCore::inRequest('save')){
if (!cmsUser::checkCsrfToken()) { return false; }
$description = cmsCore::badTagClear(cmsCore::request('description', 'html', ''));
$new_club['description'] = $inDB->escape_string($description);
$new_club['title'] = cmsCore::request('title', 'str', $club['title']);
$new_club['clubtype'] = cmsCore::request('clubtype', 'str', 'public');
$new_club['maxsize'] = cmsCore::request('maxsize', 'int', 0);
$new_club['blog_min_karma'] = cmsCore::request('blog_min_karma', 'int', 0);
$new_club['photo_min_karma'] = cmsCore::request('photo_min_karma', 'int', 0);
$new_club['album_min_karma'] = cmsCore::request('album_min_karma', 'int', 0);
$new_club['blog_premod'] = cmsCore::request('blog_premod', 'int', 0);
$new_club['photo_premod'] = cmsCore::request('photo_premod', 'int', 0);
$new_club['join_karma_limit'] = cmsCore::request('join_karma_limit', 'int', 0);
$new_club['join_min_karma'] = cmsCore::request('join_min_karma', 'int', 0);
if ($model->config['seo_user_access'] || $inUser->is_admin) {
$new_club['pagetitle'] = cmsCore::request('pagetitle', 'str', '');
$new_club['meta_keys'] = cmsCore::request('meta_keys', 'str', '');
$new_club['meta_desc'] = cmsCore::request('meta_desc', 'str', '');
}
// загружаем изображение клуба
$new_imageurl = $model->uploadClubImage($club['imageurl']);
$new_club['imageurl'] = @$new_imageurl['filename'] ? $new_imageurl['filename'] : $club['imageurl'];
// Сохраняем
$model->updateClub($club['id'], $new_club);
// Обновляем ленту активности
cmsActions::updateLog('add_club', array('object' => $new_club['title']), $club['id']);
cmsActions::updateLog('add_club_user', array('object' => $new_club['title']), $club['id']);
if ($inUser->is_admin && IS_BILLING){
$is_vip = cmsCore::request('is_vip', 'int', 0);
$join_cost = cmsCore::request('join_cost', 'int', 0);
$model->setVip($club['id'], $is_vip, $join_cost);
}
$moders = cmsCore::request('moderslist', 'array_int', array());
$members = cmsCore::request('memberslist', 'array_int', array());
$all_users = array_merge($members, $moders);
// Сохраняем пользователей
$model->clubSaveUsers($club['id'], $all_users);
$model->clubSetRole($club['id'], $moders, 'moderator');
// Кешируем количество
$model->setClubMembersCount($club['id']);
cmsCore::addSessionMessage($_LANG['CONFIG_SAVE_OK'], 'info');
cmsCore::redirect('/clubs/'.$club['id']);
}
if (!cmsCore::inRequest('save')){
// Заголовки и пафвей
$inPage->addPathway($club['title'], '/clubs/'.$club['id']);
$inPage->addPathway($_LANG['CONFIG_CLUB']);
$inPage->setTitle($_LANG['CONFIG_CLUB']);
// Список друзей, отсутствующих в клубе
$friends_list = '';
// массив id друзей не в клубе
$friends_ids = array();
// Получаем список друзей
$friends = cmsUser::getFriends($inUser->id);
// Получаем список участников
$members = $model->getClubMembersIds();
// Формируем список друзей, которые еще не в клубе
foreach($friends as $key=>$friend){
if (!in_array($friend['id'], $members) && $friend['id'] != $club['admin_id']){
$friends_list .= '<option value="'.$friend['id'].'">'.$friend['nickname'].'</option>';
$friends_ids[] = $friend['id'];
}
}
// Получаем модераторов клуба
$moderators = $model->getClubMembersIds('moderator');
// формируем список друзья не в клубе + участники клуба кроме модераторов
$fr_plus_members = $members ? array_merge($friends_ids, $members) : $friends_ids;
// Убираем модераторов если они есть
$fr_plus_members = $moderators ? array_diff($fr_plus_members, $moderators) : $fr_plus_members;
// Формируем список option друзей (которые еще не в этом клубе) и участников
if ($fr_plus_members) { $fr_members_list = cmsUser::getAuthorsList($fr_plus_members); } else { $fr_members_list = ''; }
// Формируем список option участников клуба
if ($moderators) { $moders_list = cmsUser::getAuthorsList($moderators); } else { $moders_list = ''; }
if ($members) { $members_list = cmsUser::getAuthorsList($members); } else { $members_list = ''; }
cmsPage::initTemplate('components', 'com_clubs_config')->
assign('club', $club)->
assign('moders_list', $moders_list)->
assign('members_list', $members_list)->
assign('friends_list', $friends_list)->
assign('fr_members_list', $fr_members_list)->
assign('is_billing', IS_BILLING)->
assign('is_admin', $inUser->is_admin)->
assign('cfg', $model->config)->
display();
}
}
///////////////////////// ВЫХОД ИЗ КЛУБА ///////////////////////////////////////////
if ($do == 'leave'){
if(!$inUser->id) { return false; }
if(!cmsCore::isAjax()) { return false; }
$club = $model->getClub($id);
if(!$club){ cmsCore::halt(); }
// Инициализируем участников клуба
$model->initClubMembers($club['id']);
// Выйти из клуба могут только его участники
$is_admin = $inUser->id == $club['admin_id'];
$is_member = $model->checkUserRightsInClub();
if ($is_admin || !$is_member){ cmsCore::halt(); }
if (cmsCore::inRequest('confirm')){
if(!cmsUser::checkCsrfToken()) { cmsCore::halt(); }
cmsCore::callEvent('LEAVE_CLUB', $club);
$model->removeUserFromClub($club['id'], $inUser->id);
// Пересчитываем рейтинг
$model->setClubRating($club['id']);
// Кешируем (пересчитываем) количество участников
$model->setClubMembersCount($club['id']);
// Добавляем событие в ленте активности
cmsActions::removeObjectLog('add_club_user', $club['id'], $inUser->id);
cmsCore::addSessionMessage($_LANG['YOU_LEAVE_CLUB'].'"'.$club['title'].'"', 'success');
cmsCore::jsonOutput(array('error' => false, 'redirect' => '/clubs/'.$club['id']));
}
}
///////////////////////// ВСТУПЛЕНИЕ В КЛУБ ////////////////////////////////////
if ($do == 'join'){
if (!$inUser->id){ cmsCore::halt(); }
$club = $model->getClub($id);
if(!$club){ cmsCore::halt(); }
// В приватный клуб участников добавляет администратор
if ($club['clubtype']=='private'){ cmsCore::halt(); }
// Инициализируем участников клуба
$model->initClubMembers($club['id']);
// проверяем наличие пользователя в клубе
$is_admin = $inUser->id == $club['admin_id'];
$is_member = $model->checkUserRightsInClub();
if ($is_admin || $is_member){ cmsCore::halt(); }
// Проверяем ограничения на количество участников
if ($club['maxsize'] && ($model->club_total_members >= $club['maxsize']) && !$inUser->is_admin){
cmsCore::jsonOutput(array('error' => true, 'text' => $_LANG['CLUB_SIZE_LIMIT']));
}
// Проверяем ограничения по карме на вступление
if($club['join_karma_limit'] && ($inUser->karma < $club['join_min_karma']) && !$inUser->is_admin){
cmsCore::jsonOutput(array('error' => true, 'text' => '<p><strong>'.$_LANG['NEED_KARMA_TEXT'].'</strong></p><p>'.$_LANG['NEEDED'].' '.$club['join_min_karma'].', '.$_LANG['HAVE_ONLY'].' '.$inUser->karma.'.</p><p>'.$_LANG['WANT_SEE'].' <a href="/users/'.$inUser->id.'/karma.html">'.$_LANG['HISTORY_YOUR_KARMA'].'</a>?</p>'));
}
//
// Обработка заявки
//
if (cmsCore::inRequest('confirm')){
cmsCore::callEvent('JOIN_CLUB', $club);
//списываем оплату если клуб платный
if (IS_BILLING && $club['is_vip'] && $club['join_cost'] && !$inUser->is_admin){
if ($inUser->balance >= $club['join_cost']){
//если средств на балансе хватает
cmsBilling::pay($inUser->id, $club['join_cost'], sprintf($_LANG['VIP_CLUB_BUY_JOIN'], $club['title']));
} else {
//недостаточно средств, создаем тикет
//и отправляем оплачивать
$billing_ticket = array(
'action' => sprintf($_LANG['VIP_CLUB_BUY_JOIN'], $club['title']),
'cost' => $club['join_cost'],
'amount' => $club['join_cost'] - $inUser->balance,
'url' => $_SERVER['REQUEST_URI'].'?confirm=1'
);
cmsUser::sessionPut('billing_ticket', $billing_ticket);
cmsCore::jsonOutput(array('error' => false, 'redirect' => '/billing/pay'));
}
}
//добавляем пользователя в клуб
$model->addUserToClub($club['id'], $inUser->id);
// Пересчитываем рейтинг клуба
$model->setClubRating($club['id']);
// Кешируем (пересчитываем) количество участников
$model->setClubMembersCount($club['id']);
//регистрируем событие
cmsActions::log('add_club_user', array(
'object' => $club['title'],
'object_url' => '/clubs/'.$club['id'],
'object_id' => $club['id'],
'target' => '',
'target_url' => '',
'target_id' => 0,
'description' => ''
));
cmsCore::addSessionMessage($_LANG['YOU_JOIN_CLUB'].'"'.$club['title'].'"', 'success');
if($_SERVER['REQUEST_URI'] != '/clubs/'.$club['id'].'/join.html'){
cmsCore::redirect('/clubs/'.$club['id']);
} else {
cmsCore::jsonOutput(array('error' => false, 'redirect' => '/clubs/'.$club['id']));
}
}
//
// Форма подтверждения заявки
//
if (!cmsCore::inRequest('confirm')){
$text = '<p>'.$_LANG['YOU_REALY_JOIN_TO'].' <strong>"'.$club['title'].'"</strong>?</p>';
if ($club['is_vip'] && $club['join_cost'] && !$inUser->is_admin){
$text .= '<p>'.$_LANG['VIP_CLUB_JOIN_COST'].' — <strong>'.$club['join_cost'].' '.$_LANG['BILLING_POINT10'].'</strong></p>';
}
cmsCore::jsonOutput(array('error' => false, 'text' => $text));
}
}
///////////////////// РАССЫЛКА СООБЩЕНИЯ УЧАСТНИКАМ ////////////////////////////
if ($do == 'send_message'){
if(!$inUser->id) { return false; }
if(!cmsCore::isAjax()) { return false; }
$club = $model->getClub($id);
if(!$club){ cmsCore::halt(); }
// Инициализируем участников клуба
$model->initClubMembers($club['id']);
// Расылать могут только участники и администраторы
$is_admin = $inUser->is_admin || ($inUser->id == $club['admin_id']);
if (!$is_admin){ cmsCore::halt(); }
if (!cmsCore::inRequest('gosend')){
$inPage->setRequestIsAjax();
cmsPage::initTemplate('components', 'com_clubs_messages_member')->
assign('club', $club)->
assign('bbcodetoolbar', cmsPage::getBBCodeToolbar('message'))->
assign('smilestoolbar', cmsPage::getSmilesPanel('message'))->
display();
cmsCore::jsonOutput(array('error' => false,'html' => ob_get_clean()));
} else {
// Здесь не эскейпим, в методе sendMessage эскейпится
$message = cmsCore::parseSmiles(cmsCore::request('content', 'html', ''), true);
$moderators_list = $model->getClubMembersIds('moderator');
$members_list = $model->getClubMembersIds();
$result_list = cmsCore::inRequest('only_mod') ? $moderators_list : $members_list;
if (mb_strlen($message)<3){
cmsCore::jsonOutput(array('error' => true, 'text' => $_LANG['ERR_SEND_MESS']));
}
if (!$result_list){
cmsCore::jsonOutput(array('error' => true, 'text' => $_LANG['ERR_SEND_MESS_NO_MEMBERS']));
}
if (!cmsUser::checkCsrfToken()) { return false; }
$message = str_replace('%club%', '<a href="/clubs/'.$club['id'].'">'.$club['title'].'</a>', $_LANG['MESSAGE_FROM ADMIN']).$message;
cmsUser::sendMessages(USER_UPDATER, $result_list, $message);
$info = cmsCore::inRequest('only_mod') ? $_LANG['SEND_MESS_TO_MODERS_OK'] : $_LANG['SEND_MESS_TO_MEMBERS_OK'];
cmsCore::jsonOutput(array('error' => false, 'text' => $info));
}
}
///////////////////////// ПРИГЛАСИТЬ ДРУЗЕЙ В КЛУБ /////////////////////////////
if ($do == 'join_member'){
if (!$inUser->id) { return false; }
if (!cmsCore::isAjax()) { return false; }
$club = $model->getClub($id);
if(!$club){ cmsCore::halt(); }
if (!$club['published'] && !$inUser->is_admin) { cmsCore::halt(); }
// Инициализируем участников клуба
$model->initClubMembers($club['id']);
// Расылать могут только участники и администраторы
$is_admin = $inUser->is_admin || ($inUser->id == $club['admin_id']);
$is_member = $model->checkUserRightsInClub();
if (!$is_admin && !$is_member){ cmsCore::halt(); }
// В приватный клуб приглашения не рассылаем
if ($club['clubtype']=='private'){ cmsCore::halt(); }
// Получаем список друзей
$friends = cmsUser::getFriends($inUser->id);
// Получаем список участников
$members = $model->getClubMembersIds();
// Проверяем наличие друга в списке участников клуба или является ли он администратором
foreach($friends as $key=>$friend){
if (in_array($friend['id'], $members) || $friend['id'] == $club['admin_id']) { unset($friends[$key]); }
}
// Если нет друзей или все друзья уже в этом клубе, то выводим ошибку и возвращаемся назад
if (!$friends){
cmsCore::jsonOutput(array('error' => true, 'text' => $_LANG['SEND_INVITE_ERROR']));
}
// показываем форму для приглашения
if (!cmsCore::inRequest('join')){
// Выводим шаблон
cmsPage::initTemplate('components', 'com_clubs_join_member')->
assign('club', $club)->
assign('friends', $friends)->
display();
cmsCore::jsonOutput(array('error' => false,'html' => ob_get_clean()));
} else { // Приглашаем
$users = cmsCore::request('users', 'array_int', array());
if ($users){
$club_link = '<a href="/clubs/'.$club['id'].'">'.$club['title'].'</a>';
$user_link = cmsUser::getProfileLink($inUser->login, $inUser->nickname);
$link_join = '<a href="/clubs/'.$club['id'].'">'.$_LANG['JOIN_CLUB'] .'</a>';
$message = str_replace(array('%user%','%club%','%link_join%'),
array($user_link,$club_link,$link_join), $_LANG['INVITE_CLUB_TEXT']);
cmsUser::sendMessages(USER_UPDATER, $users, $message);
}
cmsCore::jsonOutput(array('error' => false, 'text' => $_LANG['SEND_INVITE_OK']));
}
}
///////////////////////// ПРОСМОТР УЧАСТНИКОВ //////////////////////////////////
if ($do=='members'){
$club = $model->getClub($id);
if(!$club){ return false; }
if (!$club['published'] && !$inUser->is_admin) { return false; }
$inPage->setTitle($_LANG['CLUB_MEMBERS'].' - '.$club['title']);
$inPage->setDescription($_LANG['CLUB_MEMBERS'].' - '.$club['title']);
$inPage->addPathway($club['title'], '/clubs/'.$club['id']);
$inPage->addPathway($_LANG['CLUB_MEMBERS'].' - '.$club['title']);
// Инициализируем участников клуба
$model->initClubMembers($club['id']);
// права доступа
$is_admin = $inUser->is_admin || ($inUser->id == $club['admin_id']);
$is_moder = $model->checkUserRightsInClub('moderator');
$is_member = $model->checkUserRightsInClub();
// Приватный или публичный клуб
if ($club['clubtype']=='private' && (!$is_admin && !$is_moder && !$is_member)){
return false;
}
// Общее количество участников
$total_members = $model->club_total_members;
// Массив членов клуба
if($total_members){
$inDB->limitPage($page, $model->config['member_perpage']);
$members = $model->getClubMembers($club['id']);
if(!$members) { return false; }
} else { return false; }
$pagebar = cmsPage::getPagebar($total_members, $page, $model->config['member_perpage'], '/clubs/%id%/members-%page%', array('id'=>$club['id']));
cmsPage::initTemplate('components', 'com_clubs_view_member')->
assign('pagebar', $pagebar)->
assign('page', $page)->
assign('members', $members)->
assign('club', $club)->
assign('total_members', $total_members)->
display();
}
////////////////////////////// ВСЕ АЛЬБОМЫ КЛУБА //////////////////////////////
if ($do=='view_albums'){
$club = $model->getClub($id);
if(!$club){ return false; }
if (!$club['published'] && !$inUser->is_admin) { return false; }
$pagetitle = $_LANG['PHOTOALBUMS'].' - '.$club['title'];
$inPage->setTitle($pagetitle);
$inPage->addPathway($club['title'], '/clubs/'.$club['id']);
$inPage->addPathway($_LANG['PHOTOALBUMS']);
// Инициализируем участников клуба
$model->initClubMembers($club['id']);
// права доступа
$is_admin = $inUser->is_admin || ($inUser->id == $club['admin_id']);
$is_moder = $model->checkUserRightsInClub('moderator');
$is_member = $model->checkUserRightsInClub('member');
$is_karma_enabled = (($inUser->karma >= $club['photo_min_karma']) && $is_member) ? true : false;
// Приватный или публичный клуб
if ($club['clubtype']=='private' && (!$is_admin && !$is_moder && !$is_member)){
return false;
}
$inDB->orderBy('f.pubdate', 'DESC');
$club['photo_albums'] = $inPhoto->getAlbums(0, 'club'.$club['id']);
if(!$club['photo_albums']) { return false; }
// SEO
$inPage->setDescription($pagetitle);
$keys = array($club['title'], $_LANG['PHOTOALBUMS']);
foreach ($club['photo_albums'] as $p) {
$keys[] = $p['title'];
}
$inPage->setKeywords(implode(',', $keys));
cmsPage::initTemplate('components', 'com_clubs_albums')->
assign('club', $club)->
assign('is_admin', $is_admin)->
assign('is_moder', $is_moder)->
assign('is_karma_enabled', $is_karma_enabled)->
assign('show_title', true)->
assign('pagetitle', $pagetitle)->
display();
}
///////////////////////// ПРОСМОТР АЛЬБОМА КЛУБА ///////////////////////////////
if ($do=='view_album'){
// Получаем альбом
$album = $inDB->getNsCategory('cms_photo_albums', cmsCore::request('album_id', 'int', 0), null);
if (!$album) { return false; }
// Неопубликованные альбомы показываем только админам
if (!$album['published'] && !$inUser->is_admin) { return false; }
if ($album['NSDiffer'] != 'club'. $album['user_id']) { return false; }
// получаем клуб
$club = $model->getClub($album['user_id']);
if(!$club) { return false; }
if (!$club['published'] && !$inUser->is_admin) { return false; }
// Инициализируем участников клуба
$model->initClubMembers($club['id']);
// права доступа
$is_admin = $inUser->is_admin || ($inUser->id == $club['admin_id']);
$is_moder = $model->checkUserRightsInClub('moderator');
$is_member = $model->checkUserRightsInClub();
// Приватный или публичный клуб
if ($club['clubtype']=='private' && (!$is_admin && !$is_moder && !$is_member)){
return false;
}
$hidden = (bool)($is_admin || $is_moder);
// Устанавливаем альбом
$inPhoto->whereAlbumIs($album['id']);
// Общее количество фото по заданным выше условиям
$total = $inPhoto->getPhotosCount($hidden);
//устанавливаем сортировку
$inDB->orderBy('f.id', 'DESC');
//устанавливаем номер текущей страницы и кол-во фото на странице
$inDB->limitPage($page, $model->config['photo_perpage']);
$photos = $inPhoto->getPhotos($hidden);
if (!$photos && $page > 1) { cmsCore::error404(); }
$inPage->addPathway($club['title'], '/clubs/'.$club['id']);
$inPage->addPathway($album['title'], '/clubs/photoalbum'.$album['id']);
$inPage->setTitle($album['title']);
$inPage->setDescription($album['title'].' - '.$_LANG['CLUB_PHOTO_ALBUM'].' "'.$club['title'].'"');
$keys = array($album['title'], $club['title']);
if ($photos) {
foreach ($photos as $p) {
$keys[] = $p['title'];
}
}
$inPage->setKeywords(implode(',', $keys));
cmsPage::initTemplate('components', 'com_clubs_view_album')->
assign('club', $club)->
assign('total', $total)->
assign('album', $album)->
assign('photos', $photos)->
assign('is_admin', $is_admin)->
assign('is_moder', $is_moder)->
assign('is_member', $is_member)->
assign('cfg', $model->config)->
assign('pagebar', cmsPage::getPagebar($total, $page, $model->config['photo_perpage'], '/clubs/photoalbum'.$album['id'].'/page-%page%'))->
display();
}
///////////////////////// УДАЛЕНИЕ АЛЬБОМА /////////////////////////////////////
if ($do=='delete_album'){
if(!$inUser->id) { return false; }
if(!cmsCore::isAjax()) { return false; }
if(!cmsUser::checkCsrfToken()) { return false; }
$album = $inDB->getNsCategory('cms_photo_albums', cmsCore::request('album_id', 'int', 0), null);
if (!$album) { cmsCore::halt(); }
$club = $model->getClub($album['user_id']);
if(!$club) { cmsCore::halt(); }
$model->initClubMembers($club['id']);
$is_admin = $inUser->is_admin || ($inUser->id == $club['admin_id']);
$is_moder = $model->checkUserRightsInClub('moderator');
if(!$is_admin && !$is_moder) { cmsCore::halt(); }
$inPhoto->deleteAlbum($album['id'], 'club'.$club['id'], $model->initUploadClass());
cmsCore::addSessionMessage($_LANG['ALBUM_DELETED'], 'success');
cmsCore::jsonOutput(array('error' => false, 'redirect' => '/clubs/'.$club['id']));
}
//////////////////////////////// ПРОСМОТР ФОТО /////////////////////////////////
if ($do=='view_photo'){
// Получаем фото
$photo = $inPhoto->getPhoto(cmsCore::request('photo_id', 'int', 0));
if (!$photo) { return false; }
$photo = cmsCore::callEvent('VIEW_CLUB_PHOTO', $photo);
// получаем клуб
$club = $model->getClub($photo['auser_id']);
if(!$club) { return false; }
if (!$club['published'] && !$inUser->is_admin) { return false; }
// Инициализируем участников клуба
$model->initClubMembers($club['id']);
// права доступа
$is_admin = $inUser->is_admin || ($inUser->id == $club['admin_id']);
$is_moder = $model->checkUserRightsInClub('moderator');
$is_member = $model->checkUserRightsInClub();
$is_author = $photo['user_id'] == $inUser->id;
if (!$photo['published'] && !$is_admin && !$is_moder) { return false; }
// Фото приватного клуба показываем только участникам
if ($club['clubtype']=='private' && !$is_member && !$is_admin){ return false; }
$inPage->addPathway($club['title'], '/clubs/'. $club['id']);
$inPage->addPathway($photo['cat_title'], '/clubs/photoalbum'.$photo['album_id']);
$inPage->addPathway($photo['title']);
$inPage->setTitle($photo['pagetitle'] ? $photo['pagetitle'] : $photo['title']);
$inPage->setKeywords($photo['meta_keys'] ? $photo['meta_keys'] : $photo['title']);
if (!$photo['meta_desc']) {
if ($photo['description']) {
$inPage->setDescription(crop($photo['description']));
} else {
$inPage->setDescription($photo['title']);
}
} else {
$inPage->setDescription($photo['meta_desc']);
}
// ссылки вперед назад
$photo['nextid'] = $inDB->get_fields('cms_photo_files', 'id<'.$photo['id'].' AND album_id = '.$photo['album_id'], 'id, file, title', 'id DESC');
$photo['previd'] = $inDB->get_fields('cms_photo_files', 'id>'.$photo['id'].' AND album_id = '.$photo['album_id'], 'id, file, title', 'id ASC');
// кнопки голосования
$photo['karma_buttons'] = cmsKarmaButtons('club_photo', $photo['id'], $photo['rating'], $is_author);
// Обновляем кол-во просмотров
if(!$is_author){
$inDB->setFlag('cms_photo_files', $photo['id'], 'hits', $photo['hits']+1);
}
// выводим в шаблон
cmsPage::initTemplate('components', 'com_clubs_view_photo')->
assign('club', $club)->
assign('photo', $photo)->
assign('is_admin', $is_admin)->
assign('is_moder', $is_moder)->
assign('is_exists_original', (file_exists(PATH.'/images/photos/'. $photo['file'])))->
assign('is_author', $is_author)->
display();
//если есть, выводим комментарии
if ($photo['comments'] && $inCore->isComponentEnable('comments')) {
cmsCore::includeComments();
comments('club_photo', $photo['id'], array(), $is_author);
}
}
////////////////////////////// УДАЛИТЬ ФОТО ////////////////////////////////////
if ($do=='delete_photo'){
if(!$inUser->id) { return false; }
if(!cmsCore::isAjax()) { return false; }
if(!cmsUser::checkCsrfToken()) { return false; }
$photo = $inPhoto->getPhoto(cmsCore::request('photo_id', 'int', 0));
if (!$photo) { cmsCore::halt(); }
// получаем клуб
$club = $model->getClub($photo['auser_id']);
if(!$club) { cmsCore::halt(); }
// Инициализируем участников клуба
$model->initClubMembers($club['id']);
// права доступа
$is_admin = $inUser->is_admin || ($inUser->id == $club['admin_id']);
$is_moder = $model->checkUserRightsInClub('moderator');
// удалять могут только модераторы и администраторы
if(!$is_admin && !$is_moder) { cmsCore::halt(); }
$inPhoto->deletePhoto($photo, $model->initUploadClass());
cmsCore::addSessionMessage($_LANG['PHOTO_DELETED'], 'success');
cmsCore::jsonOutput(array('error' => false, 'redirect' => '/clubs/photoalbum'.$photo['album_id']));
}
///////////////////////// РЕДАКТИРОВАТЬ ФОТО ///////////////////////////////////
if ($do=='edit_photo'){
if(!$inUser->id) { return false; }
if(!cmsCore::isAjax()) { return false; }
$photo = $inPhoto->getPhoto(cmsCore::request('photo_id', 'int', 0));
if (!$photo) { cmsCore::halt(); }
// получаем клуб
$club = $model->getClub($photo['auser_id']);
if(!$club) { cmsCore::halt(); }
if (!$club['published'] && !$inUser->is_admin) { return false; }
// Инициализируем участников клуба
$model->initClubMembers($club['id']);
// права доступа
$is_admin = $inUser->is_admin || ($inUser->id == $club['admin_id']);
$is_moder = $model->checkUserRightsInClub('moderator');
$is_author = $photo['user_id'] == $inUser->id;
if(!$is_admin && !$is_moder && !$is_author) { cmsCore::halt(); }
if (!cmsCore::inRequest('edit_photo')){
cmsPage::initTemplate('components', 'com_photos_edit')->
assign('photo', $photo)->
assign('form_action', '/clubs/editphoto'.$photo['id'].'.html')->
assign('no_tags', true)->
assign('is_admin', ($is_admin || $is_moder))->
display();
cmsCore::jsonOutput(array('error' => false, 'html' => ob_get_clean()));
} else {
$mod['title'] = cmsCore::request('title', 'str', '');
$mod['title'] = $mod['title'] ? $mod['title'] : $photo['title'];
$mod['description'] = cmsCore::request('description', 'str', '');
$mod['comments'] = ($is_admin || $is_moder) ? cmsCore::request('comments', 'int') : $photo['comments'];
if ($model->config['seo_user_access'] || $inUser->is_admin) {
$mod['pagetitle'] = cmsCore::request('pagetitle', 'str', '');
$mod['meta_keys'] = cmsCore::request('meta_keys', 'str', '');
$mod['meta_desc'] = cmsCore::request('meta_desc', 'str', '');
}
$file = $model->initUploadClass()->uploadPhoto($photo['file']);
$mod['file'] = $file['filename'] ? $file['filename'] : $photo['file'];
$inPhoto->updatePhoto($mod, $photo['id']);
$description = '<a href="/clubs/photo'.$photo['id'].'.html" class="act_photo"><img border="0" src="/images/photos/small/'.$mod['file'].'" /></a>';
cmsActions::updateLog('add_photo_club', array('object' => $mod['title'], 'description' => $description), $photo['id']);
cmsCore::addSessionMessage($_LANG['PHOTO_SAVED'], 'success');
cmsCore::jsonOutput(array('error' => false, 'redirect' => '/clubs/photo'.$photo['id'].'.html'));
}
}
/////////////////////////////// PHOTO PUBLISH //////////////////////////////////
if ($do=='publish_photo'){
if(!$inUser->id) { return false; }
if(!cmsCore::isAjax()) { return false; }
$photo = $inPhoto->getPhoto(cmsCore::request('photo_id', 'int', 0));
if (!$photo) { cmsCore::halt(); }
// получаем клуб
$club = $model->getClub($photo['auser_id']);
if(!$club) { cmsCore::halt(); }
if (!$club['published'] && !$inUser->is_admin) { return false; }
// Инициализируем участников клуба
$model->initClubMembers($club['id']);
// права доступа
$is_admin = $inUser->is_admin || ($inUser->id == $club['admin_id']);
$is_moder = $model->checkUserRightsInClub('moderator');
if(!$is_admin && !$is_moder) { cmsCore::halt(); }
$inPhoto->publishPhoto($photo['id']);
$description = $club['clubtype']=='private' ? '' :
'<a href="/clubs/photo'.$photo['id'].'.html" class="act_photo"><img border="0" src="/images/photos/small/'.$photo['file'].'" /></a>';
cmsActions::log('add_photo_club', array(
'object' => $photo['title'],
'object_url' => '/clubs/photo'.$photo['id'].'.html',
'object_id' => $photo['id'],
'user_id' => $photo['user_id'],
'target' => $club['title'],
'target_id' => $photo['album_id'],
'target_url' => '/clubs/'.$club['id'],
'description' => $description
));
cmsCore::halt('ok');
}
///////////////////////// ЗАГРУЗКА ФОТО ////////////////////////////////////////
if ($do=='add_photo'){
// Неавторизованных просим авторизоваться
if (!$inUser->id) { cmsUser::goToLogin(); }
$do_photo = cmsCore::request('do_photo', 'str', 'addphoto');
$album = $inDB->getNsCategory('cms_photo_albums', cmsCore::request('album_id', 'int', 0), null);
if (!$album) { return false; }
if (!$album['published'] && !$inUser->is_admin) { return false; }
$club = $model->getClub($album['user_id']);
if(!$club) { return false; }
// если фотоальбомы запрещены
if(!$club['enabled_photos']){ return false; }
// Инициализируем участников клуба
$model->initClubMembers($club['id']);
// права доступа
$is_admin = $inUser->is_admin || ($inUser->id == $club['admin_id']);
$is_moder = $model->checkUserRightsInClub('moderator');
$is_member = $model->checkUserRightsInClub('member');
$is_karma_enabled = (($inUser->karma >= $club['photo_min_karma']) && $is_member) ? true : false;
if(!$is_karma_enabled && !$is_admin && !$is_moder) {
cmsCore::addSessionMessage('<p><strong>'.$_LANG['NEED_KARMA_PHOTO'].'</strong></p><p>'.$_LANG['NEEDED'].' '.$club['photo_min_karma'].', '.$_LANG['HAVE_ONLY'].' '.$inUser->karma.'.</p><p>'.$_LANG['WANT_SEE'].' <a href="/users/'.$inUser->id.'/karma.html">'.$_LANG['HISTORY_YOUR_KARMA'].'</a>?</p>', 'error');
cmsCore::redirectBack();
}
$inPage->addPathway($club['title'], '/clubs/'.$club['id']);
$inPage->addPathway($album['title'], '/clubs/photoalbum'.$album['id']);
return include 'components/clubs/add_photo.php';
}
///////////////////////// БЛОГИ КЛУБОВ /////////////////////////////////////////
if ($do == 'club_blogs') {
$bdo = cmsCore::request('bdo', 'str', 'view_clubs_posts');
$post_id = cmsCore::request('post_id', 'int', 0);
$cat_id = cmsCore::request('cat_id', 'int', 0);
$seolink = cmsCore::request('seolink', 'str', '');
$on_moderate = cmsCore::request('on_moderate', 'int', 0);
$inBlog = $model->initBlog();
$inPage->addHeadJsLang(array('NEW_CAT','RENAME_CAT','YOU_REALY_DELETE_CAT','YOU_REALY_DELETE_POST','NO_PUBLISHED'));
return include 'components/clubs/club_blogs.php';
}
}
function content()
{
$inCore = cmsCore::getInstance();
$inPage = cmsPage::getInstance();
$inDB = cmsDatabase::getInstance();
$inUser = cmsUser::getInstance();
$model = new cms_model_content();
define('IS_BILLING', $inCore->isComponentInstalled('billing'));
if (IS_BILLING) {
cmsCore::loadClass('billing');
}
global $_LANG;
$id = cmsCore::request('id', 'int', 0);
$do = $inCore->do;
$seolink = cmsCore::strClear(urldecode(cmsCore::request('seolink', 'html', '')));
if (is_numeric($seolink)) {
cmsCore::error404();
}
$page = cmsCore::request('page', 'int', 1);
///////////////////////////////////// VIEW CATEGORY ////////////////////////////////////////////////////////////////////////////////
if ($do == 'view') {
$cat = $inDB->getNsCategory('cms_category', $seolink);
// если не найдена категория и мы не на главной, 404
if (!$cat && $inCore->menuId() !== 1) {
cmsCore::error404();
}
// языки
$cat = translations::process(cmsConfig::getConfig('lang'), 'content_category', $cat);
// Плагины
$cat = cmsCore::callEvent('GET_CONTENT_CAT', $cat);
// Неопубликованные показываем только админам
if (!$cat['published'] && !$inUser->is_admin) {
cmsCore::error404();
}
// Проверяем доступ к категории
if (!$inCore->checkUserAccess('category', $cat['id'])) {
cmsCore::addSessionMessage($_LANG['NO_PERM_FOR_VIEW_TEXT'] . '<br>' . $_LANG['NO_PERM_FOR_VIEW_RULES'], 'error');
cmsCore::redirect('/content');
}
// если не корень категорий
if ($cat['NSLevel'] > 0) {
$inPage->setTitle($cat['pagetitle'] ? $cat['pagetitle'] : $cat['title']);
$pagetitle = $cat['title'];
$showdate = $cat['showdate'];
$showcomm = $cat['showcomm'];
$inPage->addHead('<link rel="alternate" type="application/rss+xml" title="' . htmlspecialchars($cat['title']) . '" href="' . HOST . '/rss/content/' . $cat['id'] . '/feed.rss">');
}
// Если корневая категория
if ($cat['NSLevel'] == 0) {
if ($model->config['hide_root']) {
cmsCore::error404();
}
$inPage->setTitle($_LANG['CATALOG_ARTICLES']);
$pagetitle = $_LANG['CATALOG_ARTICLES'];
$showdate = 1;
$showcomm = 1;
}
// Получаем дерево категорий
$path_list = $inDB->getNsCategoryPath('cms_category', $cat['NSLeft'], $cat['NSRight'], 'id, title, NSLevel, seolink, url');
if ($path_list) {
$path_list = translations::process(cmsConfig::getConfig('lang'), 'content_category', $path_list);
foreach ($path_list as $pcat) {
if (!$inCore->checkUserAccess('category', $pcat['id'])) {
cmsCore::addSessionMessage($_LANG['NO_PERM_FOR_VIEW_TEXT'] . '<br>' . $_LANG['NO_PERM_FOR_VIEW_RULES'], 'error');
cmsCore::redirect('/content');
}
$inPage->addPathway($pcat['title'], $model->getCategoryURL(null, $pcat['seolink']));
}
}
// Получаем подкатегории
$subcats_list = $model->getSubCats($cat['id']);
// Привязанный фотоальбом
$cat_photos = $model->getCatPhotoAlbum($cat['photoalbum']);
// Получаем статьи
// Редактор/администратор
$is_editor = $cat['modgrp_id'] == $inUser->group_id && cmsUser::isUserCan('content/autoadd') || $inUser->is_admin;
// Условия
$model->whereCatIs($cat['id']);
// Общее количество статей
$total = $model->getArticlesCount($is_editor);
// Сортировка и разбивка на страницы
$inDB->orderBy($cat['orderby'], $cat['orderto']);
$inDB->limitPage($page, $model->config['perpage']);
// Получаем статьи
$content_list = $total ? $model->getArticlesList(!$is_editor) : array();
$inDB->resetConditions();
if (!$content_list && $page > 1) {
cmsCore::error404();
}
$pagebar = cmsPage::getPagebar($total, $page, $model->config['perpage'], $model->getCategoryURL(null, $cat['seolink'], 0, true));
$template = $cat['tpl'] ? $cat['tpl'] : 'com_content_view.tpl';
if ($cat['NSLevel'] > 0) {
// meta description
if ($cat['meta_desc']) {
$meta_desc = $cat['meta_desc'];
} elseif (mb_strlen(strip_tags($cat['description'])) >= 250) {
$meta_desc = crop($cat['description']);
} else {
$meta_desc = $cat['title'];
}
$inPage->setDescription($meta_desc);
// meta keywords
if ($cat['meta_keys']) {
$meta_keys = $cat['meta_keys'];
} elseif ($content_list) {
foreach ($content_list as $c) {
$k[] = $c['title'];
}
$meta_keys = implode(', ', $k);
} else {
$meta_keys = $cat['title'];
}
$inPage->setKeywords($meta_keys);
}
cmsPage::initTemplate('components', $template)->assign('cat', $cat)->assign('is_homepage', (bool) ($inCore->menuId() == 1))->assign('showdate', $showdate)->assign('showcomm', $showcomm)->assign('pagetitle', $pagetitle)->assign('subcats', $subcats_list)->assign('cat_photos', $cat_photos)->assign('articles', $content_list)->assign('pagebar', $pagebar)->display($template);
}
///////////////////////////////////// READ ARTICLE ////////////////////////////////////////////////////////////////////////////////
if ($do == 'read') {
// Получаем статью
$article = $model->getArticle($seolink);
if (!$article) {
cmsCore::error404();
}
$article = translations::process(cmsConfig::getConfig('lang'), 'content_content', $article);
$article = cmsCore::callEvent('GET_ARTICLE', $article);
$is_admin = $inUser->is_admin;
$is_author = $inUser->id == $article['user_id'];
$is_author_del = cmsUser::isUserCan('content/delete');
$is_editor = $article['modgrp_id'] == $inUser->group_id && cmsUser::isUserCan('content/autoadd');
// если статья не опубликована или дата публикации позже, 404
if ((!$article['published'] || strtotime($article['pubdate']) > time()) && !$is_admin && !$is_editor && !$is_author) {
cmsCore::error404();
}
if (!$inCore->checkUserAccess('material', $article['id'])) {
cmsCore::addSessionMessage($_LANG['NO_PERM_FOR_VIEW_TEXT'] . '<br>' . $_LANG['NO_PERM_FOR_VIEW_RULES'], 'error');
cmsCore::redirect($model->getCategoryURL(null, $article['catseolink']));
}
// увеличиваем кол-во просмотров
if (@(!$is_author)) {
$inDB->setFlag('cms_content', $article['id'], 'hits', $article['hits'] + 1);
}
// Картинка статьи
$article['image'] = file_exists(PATH . '/images/photos/medium/article' . $article['id'] . '.jpg') ? 'article' . $article['id'] . '.jpg' : '';
// Заголовок страницы
$article['pagetitle'] = $article['pagetitle'] ? $article['pagetitle'] : $article['title'];
// Тело статьи в зависимости от настроек
$article['content'] = $model->config['readdesc'] ? $article['description'] . $article['content'] : $article['content'];
// Дата публикации
$article['pubdate'] = cmsCore::dateFormat($article['pubdate']);
// Шаблон статьи
$article['tpl'] = $article['tpl'] ? $article['tpl'] : 'com_content_read.tpl';
$inPage->setTitle($article['pagetitle']);
// Получаем дерево категорий
$path_list = $article['showpath'] ? $inDB->getNsCategoryPath('cms_category', $article['leftkey'], $article['rightkey'], 'id, title, NSLevel, seolink, url') : array();
if ($path_list) {
$path_list = translations::process(cmsConfig::getConfig('lang'), 'content_category', $path_list);
foreach ($path_list as $pcat) {
if (!$inCore->checkUserAccess('category', $pcat['id'])) {
cmsCore::addSessionMessage($_LANG['NO_PERM_FOR_VIEW_TEXT'] . '<br>' . $_LANG['NO_PERM_FOR_VIEW_RULES'], 'error');
cmsCore::redirect('/content');
}
$inPage->addPathway($pcat['title'], $model->getCategoryURL(null, $pcat['seolink']));
}
}
$inPage->addPathway($article['title']);
// Мета теги KEYWORDS и DESCRIPTION
if ($article['meta_keys']) {
$inPage->setKeywords($article['meta_keys']);
} else {
if (mb_strlen($article['content']) > 30) {
$inPage->setKeywords(cmsCore::getKeywords(cmsCore::strClear($article['content'])));
}
}
if (mb_strlen($article['meta_desc'])) {
$inPage->setDescription($article['meta_desc']);
}
// Выполняем фильтры
$article['content'] = cmsCore::processFilters($article['content']);
// Разбивка статей на страницы
$pt_pages = array();
if (!empty($GLOBALS['pt'])) {
foreach ($GLOBALS['pt'] as $num => $page_title) {
$pt_pages[$num]['title'] = $page_title;
$pt_pages[$num]['url'] = $model->getArticleURL(null, $article['seolink'], $num + 1);
}
}
// Рейтинг статьи
if ($model->config['rating'] && $article['canrate']) {
$karma = cmsKarma('content', $article['id']);
$karma_points = cmsKarmaFormatSmall($karma['points']);
$btns = cmsKarmaButtonsText('content', $article['id'], $karma['points'], $is_author);
}
cmsPage::initTemplate('components', $article['tpl'])->assign('article', $article)->assign('cfg', $model->config)->assign('page', $page)->assign('is_pages', !empty($GLOBALS['pt']))->assign('pt_pages', $pt_pages)->assign('is_admin', $is_admin)->assign('is_editor', $is_editor)->assign('is_author', $is_author)->assign('is_author_del', $is_author_del)->assign('tagbar', cmsTagBar('content', $article['id']))->assign('karma_points', @$karma_points)->assign('karma_votes', @$karma['votes'])->assign('karma_buttons', @$btns)->display($article['tpl']);
// Комментарии статьи
if ($article['published'] && $article['comments'] && $inCore->isComponentInstalled('comments')) {
cmsCore::includeComments();
comments('article', $article['id'], array(), $is_author);
}
}
///////////////////////////////////// ADD ARTICLE //////////////////////////////////////////////////////////////////////////////////
if ($do == 'addarticle' || $do == 'editarticle') {
$is_add = cmsUser::isUserCan('content/add');
// может добавлять статьи
$is_auto_add = cmsUser::isUserCan('content/autoadd');
// добавлять статьи без модерации
if (!$is_add && !$is_auto_add) {
cmsCore::error404();
}
// Для редактирования получаем статью и проверяем доступ
if ($do == 'editarticle') {
// Получаем статью
$item = $model->getArticle($id);
if (!$item) {
cmsCore::error404();
}
$pubcats = array();
// доступ к редактированию админам, авторам и редакторам
if (!$inUser->is_admin && $item['user_id'] != $inUser->id && !($item['modgrp_id'] == $inUser->group_id && cmsUser::isUserCan('content/autoadd'))) {
cmsCore::error404();
}
}
// Для добавления проверяем не вводили ли мы данные ранее
if ($do == 'addarticle') {
$item = cmsUser::sessionGet('article');
if ($item) {
cmsUser::sessionDel('article');
}
// Категории, в которые разрешено публиковать
$pubcats = $model->getPublicCats();
if (!$pubcats) {
cmsCore::addSessionMessage($_LANG['ADD_ARTICLE_ERR_CAT'], 'error');
cmsCore::redirectBack();
}
}
// не было запроса на сохранение, показываем форму
if (!cmsCore::inRequest('add_mod')) {
$dynamic_cost = false;
// Если добавляем статью
if ($do == 'addarticle') {
$pagetitle = $_LANG['ADD_ARTICLE'];
$inPage->setTitle($pagetitle);
$inPage->addPathway($_LANG['USERS'], '/' . str_replace('/', '', cmsUser::PROFILE_LINK_PREFIX));
$inPage->addPathway($inUser->nickname, cmsUser::getProfileURL($inUser->login));
$inPage->addPathway($_LANG['MY_ARTICLES'], '/content/my.html');
$inPage->addPathway($pagetitle);
// поддержка биллинга
if (IS_BILLING) {
$action = cmsBilling::getAction('content', 'add_content');
foreach ($pubcats as $p => $pubcat) {
if ($pubcat['cost']) {
$dynamic_cost = true;
} else {
$pubcats[$p]['cost'] = $action['point_cost'][$inUser->group_id];
}
}
cmsBilling::checkBalance('content', 'add_content', $dynamic_cost);
}
}
// Если редактируем статью
if ($do == 'editarticle') {
$pagetitle = $_LANG['EDIT_ARTICLE'];
$inPage->setTitle($pagetitle);
$inPage->addPathway($_LANG['USERS'], '/' . str_replace('/', '', cmsUser::PROFILE_LINK_PREFIX));
if ($item['user_id'] != $inUser->id) {
$user = $inDB->get_fields('cms_users', "id='{$item['user_id']}'", 'login, nickname');
$inPage->addPathway($user['nickname'], cmsUser::getProfileURL($user['login']));
} else {
$inPage->addPathway($inUser->nickname, cmsUser::getProfileURL($inUser->login));
}
$inPage->addPathway($_LANG['MY_ARTICLES'], '/content/my.html');
$inPage->addPathway($pagetitle);
$item['tags'] = cmsTagLine('content', $item['id'], false);
$item['image'] = file_exists(PATH . '/images/photos/small/article' . $item['id'] . '.jpg') ? 'article' . $item['id'] . '.jpg' : '';
if (!$is_auto_add) {
cmsCore::addSessionMessage($_LANG['ATTENTION'] . ': ' . $_LANG['EDIT_ARTICLE_PREMODER'], 'info');
}
}
$inPage->initAutocomplete();
$autocomplete_js = $inPage->getAutocompleteJS('tagsearch', 'tags');
$item = cmsCore::callEvent('PRE_EDIT_ARTICLE', @$item ? $item : array());
cmsPage::initTemplate('components', 'com_content_edit')->assign('mod', $item)->assign('do', $do)->assign('cfg', $model->config)->assign('pubcats', $pubcats)->assign('pagetitle', $pagetitle)->assign('is_admin', $inUser->is_admin)->assign('is_billing', IS_BILLING)->assign('dynamic_cost', $dynamic_cost)->assign('autocomplete_js', $autocomplete_js)->display('com_content_edit.tpl');
}
// Пришел запрос на сохранение статьи
if (cmsCore::inRequest('add_mod')) {
$errors = false;
$article['category_id'] = cmsCore::request('category_id', 'int', 1);
$article['user_id'] = $item['user_id'] ? $item['user_id'] : $inUser->id;
$article['title'] = cmsCore::request('title', 'str', '');
$article['tags'] = cmsCore::request('tags', 'str', '');
$article['description'] = cmsCore::request('description', 'html', '');
$article['content'] = cmsCore::request('content', 'html', '');
$article['description'] = cmsCore::badTagClear($article['description']);
$article['content'] = cmsCore::badTagClear($article['content']);
$article['published'] = $is_auto_add ? 1 : 0;
if ($do == 'editarticle') {
$article['published'] = $item['published'] == 0 ? $item['published'] : $article['published'];
}
$article['pubdate'] = $do == 'editarticle' ? $item['pubdate'] : date('Y-m-d H:i');
$article['enddate'] = $do == 'editarticle' ? $item['enddate'] : $article['pubdate'];
$article['is_end'] = $do == 'editarticle' ? $item['is_end'] : 0;
$article['showtitle'] = $do == 'editarticle' ? $item['showtitle'] : 1;
$article['meta_desc'] = $do == 'addarticle' ? mb_strtolower($article['title']) : $inDB->escape_string($item['meta_desc']);
$article['meta_keys'] = $do == 'addarticle' ? $inCore->getKeywords($article['content']) : $inDB->escape_string($item['meta_keys']);
$article['showdate'] = $do == 'editarticle' ? $item['showdate'] : 1;
$article['showlatest'] = $do == 'editarticle' ? $item['showlatest'] : 1;
$article['showpath'] = $do == 'editarticle' ? $item['showpath'] : 1;
$article['comments'] = $do == 'editarticle' ? $item['comments'] : 1;
$article['canrate'] = $do == 'editarticle' ? $item['canrate'] : 1;
$article['pagetitle'] = '';
if ($do == 'editarticle') {
$article['tpl'] = $item['tpl'];
}
if (mb_strlen($article['title']) < 2) {
cmsCore::addSessionMessage($_LANG['REQ_TITLE'], 'error');
$errors = true;
}
if (mb_strlen($article['content']) < 10) {
cmsCore::addSessionMessage($_LANG['REQ_CONTENT'], 'error');
$errors = true;
}
if ($errors) {
// При добавлении статьи при ошибках сохраняем введенные поля
if ($do == 'addarticle') {
cmsUser::sessionPut('article', $article);
}
cmsCore::redirectBack();
}
$article['description'] = $inDB->escape_string($article['description']);
$article['content'] = $inDB->escape_string($article['content']);
$article = cmsCore::callEvent('AFTER_EDIT_ARTICLE', $article);
// добавление статьи
if ($do == 'addarticle') {
$article_id = $model->addArticle($article);
}
// загрузка фото
$file = 'article' . (@$article_id ? $article_id : $item['id']) . '.jpg';
if (cmsCore::request('delete_image', 'int', 0)) {
@unlink(PATH . "/images/photos/small/{$file}");
@unlink(PATH . "/images/photos/medium/{$file}");
}
// Загружаем класс загрузки фото
cmsCore::loadClass('upload_photo');
$inUploadPhoto = cmsUploadPhoto::getInstance();
// Выставляем конфигурационные параметры
$inUploadPhoto->upload_dir = PATH . '/images/photos/';
$inUploadPhoto->small_size_w = $model->config['img_small_w'];
$inUploadPhoto->medium_size_w = $model->config['img_big_w'];
$inUploadPhoto->thumbsqr = $model->config['img_sqr'];
$inUploadPhoto->is_watermark = $model->config['watermark'];
$inUploadPhoto->input_name = 'picture';
$inUploadPhoto->filename = $file;
// Процесс загрузки фото
$inUploadPhoto->uploadPhoto();
// операции после добавления/редактирования статьи
// добавление статьи
if ($do == 'addarticle') {
// Получаем добавленную статью
$article = $model->getArticle($article_id);
if (!$article['published']) {
cmsCore::addSessionMessage($_LANG['ARTICLE_PREMODER_TEXT'], 'info');
// отсылаем уведомление администраторам
$link = '<a href="' . $model->getArticleURL(null, $article['seolink']) . '">' . $article['title'] . '</a>';
$message = str_replace('%user%', cmsUser::getProfileLink($inUser->login, $inUser->nickname), $_LANG['MSG_ARTICLE_SUBMIT']);
$message = str_replace('%link%', $link, $message);
cmsUser::sendMessageToGroup(USER_UPDATER, cmsUser::getAdminGroups(), $message);
} else {
//регистрируем событие
cmsActions::log('add_article', array('object' => $article['title'], 'object_url' => $model->getArticleURL(null, $article['seolink']), 'object_id' => $article['id'], 'target' => $article['cat_title'], 'target_url' => $model->getCategoryURL(null, $article['catseolink']), 'target_id' => $article['category_id'], 'description' => ''));
if (IS_BILLING) {
$category_cost = $article['cost'] === '' ? false : (int) $article['cost'];
cmsBilling::process('content', 'add_content', $category_cost);
}
cmsUser::checkAwards($inUser->id);
}
cmsCore::addSessionMessage($_LANG['ARTICLE_SAVE'], 'info');
cmsCore::redirect('/my.html');
}
// Редактирование статьи
if ($do == 'editarticle') {
$model->updateArticle($item['id'], $article, true);
cmsActions::updateLog('add_article', array('object' => $article['title']), $item['id']);
if (!$article['published']) {
$link = '<a href="' . $model->getArticleURL(null, $item['seolink']) . '">' . $article['title'] . '</a>';
$message = str_replace('%user%', cmsUser::getProfileLink($inUser->login, $inUser->nickname), $_LANG['MSG_ARTICLE_EDITED']);
$message = str_replace('%link%', $link, $message);
cmsUser::sendMessageToGroup(USER_UPDATER, cmsUser::getAdminGroups(), $message);
}
$mess = $article['published'] ? $_LANG['ARTICLE_SAVE'] : $_LANG['ARTICLE_SAVE'] . ' ' . $_LANG['ARTICLE_PREMODER_TEXT'];
cmsCore::addSessionMessage($mess, 'info');
cmsCore::redirect($model->getArticleURL(null, $item['seolink']));
}
}
}
///////////////////////// PUBLISH ARTICLE /////////////////////////////////////////////////////////////////////////////
if ($do == 'publisharticle') {
if (!$inUser->id) {
cmsCore::error404();
}
$article = $model->getArticle($id);
if (!$article) {
cmsCore::error404();
}
// Редактор с правами на добавление без модерации или администраторы могут публиковать
if (!($article['modgrp_id'] == $inUser->group_id && cmsUser::isUserCan('content/autoadd')) && !$inUser->is_admin) {
cmsCore::error404();
}
$inDB->setFlag('cms_content', $article['id'], 'published', 1);
cmsCore::callEvent('ADD_ARTICLE_DONE', $article);
if (IS_BILLING) {
$author = $inDB->get_fields('cms_users', "id='{$article['user_id']}'", '*');
$category_cost = $article['cost'] === '' ? false : (int) $article['cost'];
cmsBilling::process('content', 'add_content', $category_cost, $author);
}
//регистрируем событие
cmsActions::log('add_article', array('object' => $article['title'], 'user_id' => $article['user_id'], 'object_url' => $model->getArticleURL(null, $article['seolink']), 'object_id' => $article['id'], 'target' => $article['cat_title'], 'target_url' => $model->getCategoryURL(null, $article['catseolink']), 'target_id' => $article['cat_id'], 'description' => ''));
$link = '<a href="' . $model->getArticleURL(null, $article['seolink']) . '">' . $article['title'] . '</a>';
$message = str_replace('%link%', $link, $_LANG['MSG_ARTICLE_ACCEPTED']);
cmsUser::sendMessage(USER_UPDATER, $article['user_id'], $message);
cmsUser::checkAwards($article['user_id']);
cmsCore::redirectBack();
}
///////////////////////////////////// DELETE ARTICLE ///////////////////////////////////////////////////////////////////////////////////
if ($do == 'deletearticle') {
if (!$inUser->id) {
cmsCore::error404();
}
$article = $model->getArticle($id);
if (!$article) {
cmsCore::error404();
}
// права доступа
$is_author = cmsUser::isUserCan('content/delete') && $article['user_id'] == $inUser->id;
$is_editor = $article['modgrp_id'] == $inUser->group_id && cmsUser::isUserCan('content/autoadd');
if (!$is_author && !$is_editor && !$inUser->is_admin) {
cmsCore::error404();
}
if (!cmsCore::inRequest('goadd')) {
$inPage->setTitle($_LANG['ARTICLE_REMOVAL']);
$inPage->addPathway($_LANG['ARTICLE_REMOVAL']);
$confirm['title'] = $_LANG['ARTICLE_REMOVAL'];
$confirm['text'] = $_LANG['ARTICLE_REMOVAL_TEXT'] . ' <a href="' . $model->getArticleURL(null, $article['seolink']) . '">' . $article['title'] . '</a>?';
$confirm['action'] = $_SERVER['REQUEST_URI'];
$confirm['yes_button'] = array();
$confirm['yes_button']['type'] = 'submit';
$confirm['yes_button']['name'] = 'goadd';
cmsPage::initTemplate('components', 'action_confirm')->assign('confirm', $confirm)->display('action_confirm.tpl');
} else {
$model->deleteArticle($article['id']);
if ($_SERVER['HTTP_REFERER'] == '/my.html') {
cmsCore::addSessionMessage($_LANG['ARTICLE_DELETED'], 'info');
cmsCore::redirectBack();
} else {
// если удалили как администратор или редактор и мы не авторы статьи, отсылаем сообщение автору
if (($is_editor || $inUser->is_admin) && $article['user_id'] != $inUser->id) {
$link = '<a href="' . $model->getArticleURL(null, $article['seolink']) . '">' . $article['title'] . '</a>';
$message = str_replace('%link%', $link, $article['published'] ? $_LANG['MSG_ARTICLE_DELETED'] : $_LANG['MSG_ARTICLE_REJECTED']);
cmsUser::sendMessage(USER_UPDATER, $article['user_id'], $message);
} else {
cmsCore::addSessionMessage($_LANG['ARTICLE_DELETED'], 'info');
}
cmsCore::redirect($model->getCategoryURL(null, $article['catseolink']));
}
}
}
///////////////////////////////////// MY ARTICLES ///////////////////////////////////////////////////////////////////////////////////
if ($do == 'my') {
if (!cmsUser::isUserCan('content/add')) {
cmsCore::error404();
}
$inPage->setTitle($_LANG['MY_ARTICLES']);
$inPage->addPathway($_LANG['USERS'], '/' . str_replace('/', '', cmsUser::PROFILE_LINK_PREFIX));
$inPage->addPathway($inUser->nickname, cmsUser::getProfileURL($inUser->login));
$inPage->addPathway($_LANG['MY_ARTICLES']);
$perpage = 15;
// Условия
$model->whereUserIs($inUser->id);
// Общее количество статей
$total = $model->getArticlesCount(false);
// Сортировка и разбивка на страницы
$inDB->orderBy('con.pubdate', 'DESC');
$inDB->limitPage($page, $perpage);
// Получаем статьи
$content_list = $total ? $model->getArticlesList(false) : array();
$inDB->resetConditions();
cmsPage::initTemplate('components', 'com_content_my')->assign('articles', $content_list)->assign('total', $total)->assign('user_can_delete', cmsUser::isUserCan('content/delete'))->assign('pagebar', cmsPage::getPagebar($total, $page, $perpage, '/content/my%page%.html'))->display('com_content_my.tpl');
}
///////////////////////////////////// BEST ARTICLES ///////////////////////////////////////////////////////////////////////////////////
if ($do == 'best') {
$inPage->setTitle($_LANG['ARTICLES_RATING']);
$inPage->addPathway($_LANG['ARTICLES_RATING']);
// Только статьи, за которые можно голосовать
$inDB->where("con.canrate = 1");
// Сортировка и разбивка на страницы
$inDB->orderBy('con.rating', 'DESC');
$inDB->limitPage(1, 30);
// Получаем статьи
$content_list = $model->getArticlesList();
cmsPage::initTemplate('components', 'com_content_rating')->assign('articles', $content_list)->display('com_content_rating.tpl');
}
}
function fenom_function_printJS($params)
{
cmsPage::getInstance()->printHeadJS();
}
