Example #1
function saveVote($option)
    global $rsgConfig, $mainframe;
    $database = JFactory::getDBO();
    $my = JFactory::getUser();
    if ($rsgConfig->get('voting') < 1) {
        $mainframe->redirect(JRoute::_("index.php?option=com_rsgallery2"), JText::_('Voting is disabled!'));
    } else {
        $rating = rsgInstance::getInt('rating', '');
        $id = rsgInstance::getInt('id', '');
        $vote = new rsgVoting();
        //Check if user can vote
        if (!$vote->voteAllowed()) {
            $mainframe->redirect(JRoute::_("index.php?option=com_rsgallery2&page=inline&id={$id}"), JText::_('You are not authorized to vote!'));
        //Check if user has already voted for this image
        if ($vote->alreadyVoted($id)) {
            $mainframe->redirect(JRoute::_("index.php?option=com_rsgallery2&page=inline&id={$id}"), JText::_('You already voted for this item!'));
        //All checks OK, store vote in DB
        $total = $vote->getTotal($id) + $rating;
        $votecount = $vote->getVoteCount($id) + 1;
        $sql = "UPDATE #__rsgallery2_files SET rating = '{$total}', votes = '{$votecount}' WHERE id = '{$id}'";
        if (!$database->query()) {
            $msg = JText::_('Vote could not be added to the database!');
        } else {
            $msg = JText::_('Vote added to database!');
            //Store cookie on system
            setcookie($rsgConfig->get('cookie_prefix') . $id, $my->id, time() + 60 * 60 * 24 * 365, "/");
        $mainframe->redirect(JRoute::_("index.php?option=com_rsgallery2&page=inline&id={$id}"), $msg);
  * returns a gallery
  * @param id of the gallery
  * @todo move published check to rsgAccess
 function get($id = null)
     global $rsgAccess, $rsgConfig;
     $my =& JFactory::getUser();
     if ($id === null) {
         $id = rsgInstance::getInt('catid', 0);
         $id = rsgInstance::getInt('gid', $id);
         if (!$id) {
             // check if an item id is set and if so return the gallery for that item id
             if (rsgInstance::getInt('id', 0)) {
                 return rsgGalleryManager::getGalleryByItemID();
     // since the user will never be offered the chance to view a gallery they can't, unauthorized attempts at viewing are a hacking attempt, so it is ok to print an unfriendly error.
     $rsgAccess->checkGallery('view', $id) or die("RSGallery2: Access denied to gallery {$id}");
     $gallery = rsgGalleryManager::_get($id);
     // if gallery is unpublished don't show it unless ACL is enabled and users has permissions to modify (owners can view their unpublished galleries).
     if ($gallery->get('published') < 1) {
         // if user is admin or superadmin then always return the gallery
         if ($my->gid > 23) {
             return $gallery;
         if ($rsgConfig->get('acl_enabled')) {
             if (!$rsgAccess->checkGallery('create_mod_gal', $id)) {
                 die("RSGallery2: Access denied to gallery {$id}");
         } else {
             die("RSGallery2: Access denied to gallery {$id}");
     return $gallery;
Example #3
* Deletes a comment
* @param array An array of unique comment id numbers
* @param string The current url option
function deleteComments($option)
    global $mainframe;
    $database =& JFactory::getDBO();
    // Get the current JUser object
    $user =& JFactory::getUser();
    if ($user->get('gid') < 23) {
        die('Only admins can delete comments.');
    //Get parameters
    $id = rsgInstance::getInt('id', '');
    $item_id = rsgInstance::getInt('item_id', '');
    $catid = rsgInstance::getInt('catid', '');
    if (!empty($id)) {
        $query = "DELETE FROM #__rsgallery2_comments WHERE id = '{$id}'";
        if (!$database->query()) {
            echo "<script> alert('" . $database->getErrorMsg() . "'); window.history.go(-1); </script>\n";
    $mainframe->redirect(JRoute::_("index.php?option=" . $option . "&page=inline&id=" . $item_id . "&catid=" . $catid), JText::_('Comment deleted succesfully'));
Example #4
* Publishes or Unpublishes one or more records
* @param array An array of unique category id numbers
* @param integer 0 if unpublishing, 1 if publishing
* @param string The current url option
function publish($cid = null, $publish = 1, $option)
    global $rsgOption, $mainframe;
    $database =& JFactory::getDBO();
    $my =& JFactory::getUser();
    $catid = rsgInstance::getInt('catid', array(0));
    if (!is_array($cid) || count($cid) < 1) {
        $action = $publish ? 'publish' : 'unpublish';
        echo "<script> alert('Select an item to {$action}'); window.history.go(-1);</script>\n";
    $cids = implode(',', $cid);
    $query = "UPDATE #__rsgallery2_galleries" . "\n SET published = " . intval($publish) . "\n WHERE id IN ( {$cids} )" . "\n AND ( checked_out = 0 OR ( checked_out = {$my->id} ) )";
    if (!$database->query()) {
        echo "<script> alert('" . $database->getErrorMsg() . "'); window.history.go(-1); </script>\n";
    if (count($cid) == 1) {
        $row = new rsgGalleriesItem($database);
Example #5
 * Used in the consolidate database function
 * Creates images based on an image id or an image name
function regenerateImage()
    global $mainframe;
    global $rsgConfig;
    $database =& JFactory::getDBO();
    //Check if id or name is set
    if (isset($_REQUEST['id'])) {
        $id = rsgInstance::getInt('id', null);
        $name = galleryUtils::getFileNameFromId($id);
    } elseif (isset($_REQUEST['name'])) {
        $name = rsgInstance::getVar('name', null);
    } else {
        $mainframe->redirect("index2.php?option=com_rsgallery2&task=batchupload", JText::_('No fileinformation found. This should never happen!'));
    //Just for readability of code
    $original = JPATH_ORIGINAL . '/' . $name;
    $display = JPATH_DISPLAY . '/' . imgUtils::getImgNameDisplay($name);
    $thumb = JPATH_THUMB . '/' . imgUtils::getImgNameThumb($name);
    if (file_exists($original)) {
        //Check if display image exists, if not make it.
        if (!file_exists($display)) {
            imgUtils::makeDisplayImage($original, NULL, $rsgConfig->get('image_width'));
        if (!file_exists($thumb)) {
    } else {
        if (file_exists($display)) {
            copy($display, $original);
        if (!file_exists($thumb)) {
     * asks user to choose what files to upload
    function showUploadStep3()
        $catid = rsgInstance::getInt('catid', null);
        $uploadstep = rsgInstance::getInt('uploadstep', null);
        $numberOfUploads = rsgInstance::getInt('numberOfUploads', null);
        <script language="javascript" type="text/javascript">
        function submitbutton(pressbutton) {
        var form = document.form3;
        <form name="form3" action="index2.php?option=com_rsgallery2&task=upload" method="post" enctype="multipart/form-data">
        <input type="hidden" name="uploadStep" value="4" />
        <input type="hidden" name="catid" value="<?php 
        echo $catid;
" />
        <input type="hidden" name="numberOfUploads" value="<?php 
        echo $numberOfUploads;
" />
        <table width="100%">
            <td width="300">&nbsp;</td>
            <table class="adminform">
                <th colspan="2"><font size="4"><?php 
        echo JText::_('Step 3');
        for ($t = 1; $t < $numberOfUploads + 1; $t++) {
                <td colspan="2">
                    <table width="100%" cellpadding="1" cellspacing="1">
                        <td colspan="2"><strong><?php 
            echo JText::_('Image');
            echo "&nbsp;" . $t;
            echo JText::_('Gallery name');
            echo galleryUtils::getCatnameFromId($catid);
                        <td valign="top" width="100"><?php 
            echo JText::_('Title') . " " . $t;
                        <input name="imgTitle[]" type="text" class="inputbox" size="40" />
                        <td valign="top"><?php 
            echo JText::_('File') . " " . $t;
                        <input class="inputbox" name="images[]" type="file" size="30" />
                        <td valign="top"><?php 
            echo JText::_('Description') . " " . $t;
                        <textarea class="inputbox" cols="35" rows="3" name="descr[]"></textarea>
                    <tr class="row1">
                    <th colspan="2">&nbsp;</th>
                <td width="300">&nbsp;</td>
Example #7
function save_batchupload()
    global $rsgConfig, $mainframe;
    $database = JFactory::getDBO();
    //Try to bypass max_execution_time as set in php.ini
    $FTP_path = $rsgConfig->get('ftp_path');
    $teller = rsgInstance::getInt('teller', null);
    $delete = rsgInstance::getVar('delete', null);
    $filename = rsgInstance::getVar('filename', null);
    $ptitle = rsgInstance::getVar('ptitle', null);
    $descr = rsgInstance::getVar('descr', array(0));
    $extractdir = rsgInstance::getVar('extractdir', null);
    //Check if all categories are chosen
    if (isset($_REQUEST['category'])) {
        $category = rsgInstance::getVar('category', array(0));
    } else {
        $category = array(0);
    if (in_array('0', $category) || in_array('-1', $category)) {
        $mainframe->redirect("index2.php?option=com_rsgallery2&task=batchupload", JText::_('_RSGALLERY_ALERT_NOCATSELECTED'));
    for ($i = 0; $i < $teller; $i++) {
        //If image is marked for deletion, delete and continue with next iteration
        if (isset($delete[$i]) and $delete[$i] == 'true') {
            //Delete file from server
            unlink(JPATH_ROOT . "/media/" . $extractdir . '/' . $filename[$i]);
        } else {
            //Setting variables for importImage()
            $imgTmpName = JPATH_ROOT . "/media/" . $extractdir . '/' . $filename[$i];
            $imgName = $filename[$i];
            $imgCat = $category[$i];
            $imgTitle = $ptitle[$i];
            $imgDesc = $descr[$i];
            //Import image
            $e = imgUtils::importImage($imgTmpName, $imgName, $imgCat, $imgTitle, $imgDesc);
            //Check for errors
            if ($e !== true) {
                $errors[] = $e;
    //Clean up mediadir
    // Error handling
    if (isset($errors)) {
        if (count($errors) == 0) {
            echo JText::_('Item uploaded succesfully!');
        } else {
            foreach ($errors as $err) {
                echo $err->toString();
    } else {
        //Everything went smoothly, back to Control Panel
        global $mainframe;
        $mainframe->redirect("index2.php?option=com_rsgallery2", JText::_('Item uploaded succesfully!'));
Example #8
  * Method to get a pagination object for the the gallery items
  * @access public
  * @return integer
 function getPagination()
     // Lets load the content if it doesn't already exist
     if (empty($this->_pagination)) {
         $this->_pagination = new JPagination($this->itemCount(), rsgInstance::getInt('limitstart', 0), rsgInstance::getInt('limit', 1));
     return $this->_pagination;
Example #9
    function batchupload_2($ziplist, $extractDir)
        /* Info for javascript on input element names and values:
        		Step 2
        		Button: Upload --> 	task=save_batchupload
        		Delete checkbox name: 	delete[1]
        		Item title field name:	ptitle[]
        		Gallery select name:	category[]
        		Description area name:	descr[]
        global $rsgOption;
        $database = JFactory::getDBO();
        //Get variables from form
        $selcat = rsgInstance::getInt('selcat', null);
        $ftppath = rsgInstance::getVar('ftppath', null);
        $xcat = rsgInstance::getInt('xcat', null);
        $batchmethod = rsgInstance::getVar('batchmethod', null);
		<script language="javascript" type="text/javascript">
        function submitbutton(pressbutton) {
            var form = document.adminForm,
				missingCat = false,
				categories = $$('#adminForm input[name^=category]', '#adminForm select[name^=category]');
            for (i=0 ; i<categories.length ; i++) {
				if (categories[i].value <= 0) {
        echo JText::_('All images must be part of a galery');
"+' (#'+i+')');
					missingCat = true;

			if (pressbutton == 'save_batchupload'){
				if (missingCat == true) {
        echo JText::_('All images must be part of a galery');
				else {

        <form action="index2.php" method="post" name="adminForm" id="adminForm">
        <table class="adminform">
            <th colspan="5" class="sectionname"><font size="4"><?php 
        echo JText::_('Step 2');
        // Initialize k (the column reference) to zero.
        $k = 0;
        $i = 0;
        foreach ($ziplist as $filename) {
            //Check if filename is dir
            if (is_dir(JPATH_ROOT . '/media/' . $extractDir . '/' . $filename)) {
            } else {
                //Check if file is allowed
                $allowed_ext = array('gif', 'jpg', 'png');
                $allowedVideo_ext = array('flv', 'avi', 'mov');
                $ext = fileHandler::getImageType(JPATH_ROOT . '/media/' . $extractDir . '/' . $filename);
                if (in_array($ext, $allowedVideo_ext)) {
                    // build preview image
                    $basePath = JPATH_SITE . '/media/' . $extractDir . '/';
                    require_once JPATH_RSGALLERY2_ADMIN . 'includes/video.utils.php';
                    Ffmpeg::capturePreviewImage($basePath . $filename, $basePath . $filename . '.png');
                    $displayImage = $filename . '.png';
                } else {
                    if (!in_array($ext, $allowed_ext)) {
                    } else {
                        $displayImage = $filename;
            <td align="center" valign="top" bgcolor="#CCCCCC">
                <table class="adminform" border="0" cellspacing="1" cellpadding="1">
                        <th colspan="2">&nbsp;</th>
                        <td colspan="2" align="right"><?php 
            echo JText::_('Delete');
            echo $i - 1;
: <input type="checkbox" name="delete[<?php 
            echo $i - 1;
]" value="true" /></td>
                        <td align="center" colspan="2"><img src="<?php 
            echo JURI_SITE . "/media/" . $extractDir . "/" . $displayImage;
" alt="" border="1" width="100" align="center" /></td>
                    <input type="hidden" value="<?php 
            echo $filename;
" name="filename[]" />
            echo JText::_('Title');
                            <input type="text" name="ptitle[]" size="15" />
            echo JText::_('Gallery');
            if ($selcat == 1 && $xcat !== '0') {
                                <input type="text" name="cat_text" value="<?php 
                echo htmlspecialchars(stripslashes(galleryUtils::getCatnameFromId($xcat)));
" readonly />
                                <input type="hidden" name="category[]" value="<?php 
                echo $xcat;
" />
            } else {
                echo galleryUtils::galleriesSelectList(null, 'category[]', false);
            echo JText::_('Description');
                        <td><textarea cols="15" rows="2" name="descr[]"></textarea></td>
            if ($k == 5) {
                echo "</tr><tr>";
                $k = 0;

			<input type="hidden" name="teller" value="<?php 
        echo $i;
" />
			<input type="hidden" name="extractdir" value="<?php 
        echo $extractDir;
" />
			<input type="hidden" name="option" value="com_rsgallery2" />
        	<input type="hidden" name="rsgOption" value="<?php 
        echo $rsgOption;
" />
			<input type="hidden" name="task" value="save_batchupload" />

Example #10
 		insert meta data into head
 function metadata()
     global $mainframe, $option;
     // if rsg2 isn't the component being displayed, do not append meta data
     if ($option != 'com_rsgallery2') {
     // check if an image is displayed
     $isImage = rsgInstance::getInt('id', 0);
     $isImage = rsgInstance::getInt('limit', $isImage);
     if ($isImage) {
         $item = rsgInstance::getItem();
         $title = $item->title;
         $description = htmlspecialchars(stripslashes(strip_tags($item->descr)), ENT_QUOTES);
     } else {
         if ($this->gallery->id == 0) {
             $title = $mainframe->getPageTitle();
         } else {
             $title = $this->gallery->get('name');
         $description = htmlspecialchars(stripslashes(strip_tags($this->gallery->get('description'))), ENT_QUOTES);
     $mainframe->setPageTitle(' ' . $title);
     $mainframe->appendMetaTag('description', $description);
Example #11
     * Show page navigation for Display image
    function showDisplayPageNav()
        //MK this is where the images are shown with limit=1
        $gallery = rsgGalleryManager::get();
        $itemId = rsgInstance::getInt('id', 0);
        if ($itemId != 0) {
            // if the item id is set then we need to set the gid instead
            // having the id variable set in the querystring breaks the page navigation
            // i have not found any other way to remove a query variable from the router
            // JPagination uses the router to build the current route, so removing it from the
            // request variables only does not work.
            $app =& JFactory::getApplication();
            $router =& $app->getRouter();
            $router->_vars['gid'] = $gallery->id;
            // set the limitstart so the pagination knows what page to start from
            $itemIndex = $gallery->indexOfItem($itemId);
            $router->setVar("limitstart", $itemIndex);
            rsgInstance::setVar('limitstart', $itemIndex);
        $pageNav = $gallery->getPagination();
        $pageLinks = $pageNav->getPagesLinks();
		<div align="center">
        echo $pageLinks;
     * Shows the form for the 
    function editComment($item_id)
        global $rsgConfig, $mainframe;
        $my =& JFactory::getUser();
        /* JPATH_SITE is only there to accomodate SecurityImages for now*/
        $doc =& JFactory::getDocument();
        $doc->addScript(JURI_SITE . "/components/com_rsgallery2/lib/rsgcomments/js/client.js");
        $doc->addStyleSheet(JURI_SITE . "/components/com_rsgallery2/lib/rsgcomments/rsgcomments.css");
        if (!$rsgConfig->get('comment_allowed_public')) {
            if (!$my->id) {
	<script type="text/javascript">
        function submitbutton(pressbutton) {
            var form = document.rsgcommentform;
            if (pressbutton == 'cancel') {
        // do field validation
        if (form.tname.value == "") {
            alert( '<?php 
        echo JText::_('You should enter your name');
' );
        else if (form.tcomment.value == ""){
            alert( '<?php 
        echo JText::_('No comment entered');
' );
	<form name="rsgcommentform" method="post" action="<?php 
        echo JRoute::_("index.php?option=com_rsgallery2&rsgOption=rsgComments&task=save");
	<table border="0" width="100%" class="adminForm">
		<td colspan="2"><h2><?php 
        echo JText::_('Add Comment');
        echo JText::_('Your Name');
		<td><input name='tname' type='text' class='inputbox' size='40' value='<?php 
        if (!$my->username == '') {
            echo $my->username;
' /></td>
        echo JText::_('Title');
		<td><input name='ttitle' type='text' class='inputbox' size='40'/></td>
        echo JText::_('Comment text');
		<td><div class='buttoncontainer'><?php 
		<td><textarea name='tcomment' class='inputbox' cols='40' rows='10'></textarea></td>
        //Implement security images only for
        if ($rsgConfig->get('comment_security') == 1) {
			<img src="<?php 
            echo JRoute::_("index.php?option=com_securityimages&task=displayCaptcha");
			<br />  
            echo JText::_('Enter what you see in the image above:');
<input type="text" name="securityImageRSGallery2" />  
		<td align="center">
			<input type="button" class="button" value="<?php 
        echo JText::_('COM_RSGALLERY2_POST');
" onclick="submitbutton('save')" />
	<input type="hidden" name="item_id" value="<?php 
        echo $item_id;
" />
	<input type="hidden" name="rsgOption" value="rsgComments" />
	<input type="hidden" name="catid" value="<?php 
        echo rsgInstance::getInt('catid', null);
" />
	<a name="comment2"></a>
Example #13
* Must have debug enabled to use this template.  Lists all galleries and items.
* @package RSGallery2
* @copyright (C) 2003 - 2006 RSGallery2
* @license http://www.gnu.org/copyleft/gpl.html GNU/GPL
* RSGallery is Free Software
defined('_JEXEC') or die('Restricted Access');
// bring in display code
$templatePath = JPATH_RSGALLERY2_SITE . '/templates/debug_listeverything';
require_once $templatePath . '/display.class.php';
global $mainframe;
$template_dir = "JURI_SITE/components/com_rsgallery2/templates/debug_listeverything";
<link href="<?php 
echo $template_dir;
/css/template.css" rel="stylesheet" type="text/css" />
$gid = rsgInstance::getInt('gid', 0);
echo "Listing contents of Gallery #{$gid}";
switch (rsgInstance::getCmd('task', 'listEverything')) {
    case 'dumpGallery':
    case 'listEverything':
Example #14
function deleteCat()
    global $rsgConfig, $mainframe;
    $my = JFactory::getUser();
    $database = JFactory::getDBO();
    //Get values from URL
    $catid = rsgInstance::getInt('gid', null);
    //Mirjam: catid is gid as of v1.14
    //Set redirect URL
    $redirect = JRoute::_("index.php?option=com_rsgallery2&rsgOption=myGalleries", false);
    //Get category details
    $database->setQuery("SELECT * FROM #__rsgallery2_galleries WHERE id = '{$catid}'");
    $rows = $database->LoadObjectList();
    foreach ($rows as $row) {
        $uid = $row->uid;
        $parent = $row->parent;
    //Check if gallery has children
    $database->setQuery("SELECT COUNT(1) FROM #__rsgallery2_galleries WHERE parent = '{$catid}'");
    $count = $database->loadResult();
    if ($count > 0) {
        $mainframe->redirect($redirect, JText::_('USERCAT_SUBCATS'));
    //No children from here, so lets continue
    if ($uid == $my->id or $my->usertype == 'Super Administrator') {
        //Delete images
        $database->setQuery("SELECT name FROM #__rsgallery2_files WHERE gallery_id = '{$catid}'");
        $result = $database->loadResultArray();
        $error = 0;
        foreach ($result as $filename) {
            if (!imgUtils::deleteImage($filename)) {
        //Error checking
        if ($error == 0) {
            //Gallery can be deleted
            $database->setQuery("DELETE FROM #__rsgallery2_galleries WHERE id = '{$catid}'");
            if (!$database->query()) {
                //Error message, gallery could not be deleted
                $mainframe->redirect($redirect, JText::_('Gallery could not be deleted!'));
            } else {
                //Ok, goto mainpage
                $mainframe->redirect($redirect, JText::_('Gallery deleted!'));
        } else {
            //There were errors. Gallery will not be deleted
            $mainframe->redirect($redirect, JText::_('Gallery could not be deleted!'));
    } else {
        //Abort and return to mainscreen
        $mainframe->redirect($redirect, JText::_('USER_CAT_NOTOWNER'));
 * This function is called when you select batchupload from the backend. It
 * detects whether you choose ZIP or FTP and acts accordingly.
 * When you choose ZIP it unzips the file you upload to "/media" for further
 * handling, if you choose FTP it reads the files from the directory you uploaded
 * the files to and copies them to "/media".(this dir must be on the local server).
 * @todo Better error trapping
 * @todo Check FTP handling bit
function batch_uploadX($option)
    global $mainframe, $rsgConfig;
    $database = JFactory::getDBO();
    $FTP_path = $rsgConfig->get('ftp_path');
    //Retrieve data from submit form
    $batchmethod = rsgInstance::getVar('batchmethod', null);
    $uploaded = rsgInstance::getVar('uploaded', null);
    $selcat = rsgInstance::getInt('selcat', null);
    $zip_file = rsgInstance::getVar('zip_file', null, 'FILES');
    $ftppath = rsgInstance::getVar('ftppath', null);
    $xcat = rsgInstance::getInt('xcat', null);
    //Check if a gallery exists, if not link to gallery creation
    $database->setQuery("SELECT id FROM #__rsgallery2_galleries");
    if ($database->getNumRows() == 0) {
    //New instance of fileHandler
    $uploadfile = new fileHandler();
    if (isset($uploaded)) {
        if ($batchmethod == "zip") {
            //Check if file is really a ZIP-file
            if (!eregi('.zip$', $zip_file['name'])) {
                $mainframe->redirect("index2.php?option=com_rsgallery2&task=batchupload", $zip_file['name'] . ' ' . JText::_('NO_VALID_ARCHIVE_ONLY_ZIP_ALLOWED'));
            } else {
                //Valid ZIP-file, continue
                if ($uploadfile->checkSize($zip_file) == 1) {
                    $ziplist = $uploadfile->handleZIP($zip_file);
                } else {
                    //Error message
                    $mainframe->redirect("index2.php?option=com_rsgallery2&task=batchupload", JText::_('ZIP-file is too big!'));
        } else {
            $ziplist = $uploadfile->handleFTP($ftppath);
        HTML_RSGALLERY::batch_upload_2($ziplist, $uploadfile->extractDir);
    } else {