/**
* Disables or deletes a set of products (does not run any uninstall code.
*/
public function removeProducts($products, $versions = array(), $echo = false, $disable_only = false, $reason = '')
{
if (!$products or !$this->hasPermission()) {
return false;
}
if (!$versions) {
$versions = array();
}
if ($disable_only) {
$this->assertor->assertQuery('disableProducts', array('reason' => $reason, 'products' => $products, vB_dB_Query::TYPE_KEY => vB_dB_Query::QUERY_METHOD));
} else {
$first = true;
foreach ($products as $pid) {
$result = delete_product($pid);
if ($result and $echo) {
if ($first) {
$first = false;
$msg = new vB_Phrase('hooks', 'products_removed');
$this->message($msg, 1);
}
if ($versions[$pid]) {
$this->message($versions[$pid]['title'] . ' - ' . $versions[$pid]['version'], 1);
} else {
$this->message($versions[$pid]['title'], 1);
}
}
}
}
}
function step_3()
{
if ($existingprod = $this->db->query_first("\n\t\t\tSELECT *\n\t\t\tFROM " . TABLE_PREFIX . "product\n\t\t\tWHERE productid = 'vbapi'")) {
$this->show_message($this->phrase['version']['4110a1']['remove_vbapi_product']);
require_once DIR . '/includes/adminfunctions_plugin.php';
delete_product('vbapi');
} else {
$this->skip_message();
}
}
<?php
require __DIR__ . '/../src/bootstrap_admin.php';
if (array_key_exists('product_id', $_GET)) {
delete_product($_GET['product_id']);
}
header('Location: /admin/index.php');
// #############################################################################
// welcome step
if ($vbulletin->GPC['step'] == 'welcome') {
if ($vbulletin->options['templateversion'] == PREV_VERSION) {
echo "<blockquote><p> </p>";
echo "{$vbphrase['upgrade_start_message']}";
echo "<p> </p></blockquote>";
} else {
echo "<blockquote><p> </p>";
echo "{$vbphrase['upgrade_wrong_version']}";
echo "<p> </p></blockquote>";
print_upgrade_footer();
}
}
// #############################################################################
// FINAL step (notice the SCRIPTCOMPLETE define)
if ($vbulletin->GPC['step'] == 1) {
require_once DIR . '/includes/adminfunctions_plugin.php';
delete_product('vb_calendar366_xss_fix', true);
// tell log_upgrade_step() that the script is done
define('SCRIPTCOMPLETE', true);
}
// #############################################################################
print_next_step();
print_upgrade_footer();
/*======================================================================*\
|| ####################################################################
|| # Downloaded: 12:39, Wed May 30th 2012
|| # CVS: $RCSfile$ - $Revision: 39862 $
|| ####################################################################
\*======================================================================*/
// Packages, routes, actions, contenttypes
$db->query_write("\r\n\t\tDELETE package, route, action, contenttype\r\n\t\tFROM " . TABLE_PREFIX . "package AS package\r\n\t\tLEFT JOIN " . TABLE_PREFIX . "route AS route\r\n\t\t\tON route.packageid = package.packageid\r\n\t\tLEFT JOIN " . TABLE_PREFIX . "action AS action\r\n\t\t\tON action.routeid = route.routeid\r\n\t\tLEFT JOIN " . TABLE_PREFIX . "contenttype AS contenttype\r\n\t\t\tON contenttype.packageid = package.packageid\r\n\t\tWHERE productid = '{$safe_productid}'\r\n\t");
// Clear routes from datastore
build_datastore('routes', serialize(array()), 1);
//clear the type cache.
vB_Cache::instance()->purge('vb_types.types');
// need to remove the language columns for this product as well
require_once DIR . '/includes/class_dbalter.php';
$db_alter = new vB_Database_Alter_MySQL($db);
if ($db_alter->fetch_table_info('language')) {
$phrasetypes = $db->query_read("\r\n\t\t\tSELECT fieldname\r\n\t\t\tFROM " . TABLE_PREFIX . "phrasetype\r\n\t\t\tWHERE product = '" . $db->escape_string($vbulletin->GPC['productid']) . "'\r\n\t\t");
while ($phrasetype = $db->fetch_array($phrasetypes)) {
$db_alter->drop_field("phrasegroup_{$phrasetype['fieldname']}");
}
}
delete_product($vbulletin->GPC['productid']);
build_all_styles();
vBulletinHook::build_datastore($db);
require_once DIR . '/includes/adminfunctions_language.php';
build_language();
build_options();
require_once DIR . '/includes/functions_cron.php';
build_cron_next_run();
build_product_datastore();
// build bitfields to remove/add this products bitfields
require_once DIR . '/includes/class_bitfield_builder.php';
vB_Bitfield_Builder::save($db);
// reload block types
$blockmanager = vB_BlockManager::create($vbulletin);
$blockmanager->reloadBlockTypes(true);
if (!defined('DISABLE_PRODUCT_REDIRECT')) {
if ($category_id == NULL || $category_id == FALSE) {
$category_id = 1;
}
$category_name = get_category_name($category_id);
$categories = get_categories();
$products = get_products_by_category($category_id);
include 'product_list.php';
} else {
if ($action == 'delete_product') {
$product_id = filter_input(INPUT_POST, 'product_id', FILTER_VALIDATE_INT);
$category_id = filter_input(INPUT_POST, 'category_id', FILTER_VALIDATE_INT);
if ($category_id == NULL || $category_id == FALSE || $product_id == NULL || $product_id == FALSE) {
$error = "Missing or incorrect product id or category id.";
include '../errors/error.php';
} else {
delete_product($product_id);
header("Location: .?category_id={$category_id}");
}
} else {
if ($action == 'show_add_form') {
$categories = get_categories();
include 'product_add.php';
} else {
if ($action == 'add_product') {
$category_id = filter_input(INPUT_POST, 'category_id', FILTER_VALIDATE_INT);
$code = filter_input(INPUT_POST, 'code');
$name = filter_input(INPUT_POST, 'name');
$price = filter_input(INPUT_POST, 'price');
if ($category_id == NULL || $category_id == FALSE || $code == NULL || $name == NULL || $price == NULL || $price == FALSE) {
$error = "Invalid product data. Check all fields and try again.";
include '../errors/error.php';
if (!isset($codes[0])) {
$codes = array($codes);
}
// run each of the codes
foreach ($codes as $code) {
// Run if: code version is * (meaning always run), no version
// previously installed, or if the code is for a newer version
// than is currently installed
if ($code['version'] == '*' or $installed_version === null or is_newer_version($code['version'], $installed_version)) {
eval($code['installcode']);
}
}
}
// dependencies checked, install code run. Now clear out the old product info;
// settings should be retained in memory already
delete_product($info['productid']);
if (is_array($codes)) {
// we've now run all the codes, if execution is still going
// then it's going to complete fully, so insert the codes
foreach ($codes as $code) {
/* insert query */
$db->query_write("\n\t\t\t\tINSERT INTO " . TABLE_PREFIX . "productcode\n\t\t\t\t\t(productid, version, installcode, uninstallcode)\n\t\t\t\tVALUES\n\t\t\t\t\t('" . $db->escape_string($info['productid']) . "',\n\t\t\t\t\t'" . $db->escape_string($code['version']) . "',\n\t\t\t\t\t'" . $db->escape_string($code['installcode']) . "',\n\t\t\t\t\t'" . $db->escape_string($code['uninstallcode']) . "')\n\t\t\t");
}
}
if (is_array($dependencies)) {
// dependencies met, codes run -- now we can insert the dependencies into the DB
foreach ($dependencies as $dependency) {
/* insert query */
$db->query_write("\n\t\t\t\tINSERT INTO " . TABLE_PREFIX . "productdependency\n\t\t\t\t\t(productid, dependencytype, parentproductid, minversion, maxversion)\n\t\t\t\tVALUES\n\t\t\t\t\t('" . $db->escape_string($info['productid']) . "',\n\t\t\t\t\t'" . $db->escape_string($dependency['dependencytype']) . "',\n\t\t\t\t\t'" . $db->escape_string($dependency['parentproductid']) . "',\n\t\t\t\t\t'" . $db->escape_string($dependency['minversion']) . "',\n\t\t\t\t\t'" . $db->escape_string($dependency['maxversion']) . "')\n\t\t\t");
}
}
<?php
//type of request
//1: get description of product
//2: delete product
//3: edit price
$cmd = $_REQUEST['cmd'];
switch ($cmd) {
case 1:
get_products($_REQUEST['id']);
break;
case 2:
delete_product($_REQUEST['id']);
break;
default:
}
function get_products($id)
{
include "products.php";
$obj = new products();
$row = $obj->get_product($id);
//return a JSON string to browser when request comes to get description
echo '{"result":1,"desc":"' . $row['description'] . '"}';
}
function delete_product($id)
{
include "products.php";
$obj = new products();
if ($obj->delete($id)) {
echo '{"result":1,"message": "deleted"}';
} else {
require '../model/database.php';
require '../model/product_db.php';
$action = filter_input(INPUT_POST, 'action');
if ($action === NULL) {
$action = filter_input(INPUT_GET, 'action');
if ($action === NULL) {
$action = 'list_products';
}
}
if ($action == 'list_products') {
$products = get_products();
include 'product_list.php';
} else {
if ($action == 'delete_product') {
$product_code = filter_input(INPUT_POST, 'product_code');
delete_product($product_code);
header("Location: .");
// redirect request returns to the same page
} else {
if ($action == 'show_add_form') {
include 'product_add.php';
} else {
if ($action == 'add_product') {
$code = filter_input(INPUT_POST, 'code');
$name = filter_input(INPUT_POST, 'name');
$version = filter_input(INPUT_POST, 'version', FILTER_VALIDATE_FLOAT);
$release_date = filter_input(INPUT_POST, 'release_date');
// Validate the inputs
if ($code === NULL || $name === FALSE || $version === NULL || $version === FALSE || $release_date === NULL) {
$error = "Invalid product data. Check all fields and try again.";
include '../errors/error.php';
<div class="container">
<div class="row">
<?php
if (isset($_GET['del'])) {
$message = delete_product($_GET['del']);
echo '<div style="border:1px solid #000; padding: 5px; background-color:orange">' . $message . '</div>';
}
?>
<section class="content">
<h2>My products</h2>
<div class="col-md-8 col-md-offset-2">
<div class="panel panel-default">
<div class="panel-body">
<div class="table-container">
<table class="table table-filter">
<tbody>
<?php
$items = show_my_items();
if (!empty($items)) {
foreach ($items as $key => $value) {
echo '<tr>
<td>
<div class="media">
<img class="pull-left" src="' . $value[5] . '" alt="pic" width="100">
<div class="media-body">
<h4 class="title">' . $value[1] . '</h4>
<p class="description">Description: ' . $value[8] . '</p>
</div>
</div>
$add_product = add_product($_POST['product_name'], $product_image_url, $_POST['category_id'], $_POST['unit_price']);
if ($add_product == 1) {
$message = "Product has been added.";
} else {
$errormessage = "Something wrong. Please Try Again!!";
}
} else {
$errormessage = "Product Image is invalid. Please Try Again!!";
}
}
$all_category = all_category();
//for select box
$all_product = all_product();
/*******************************delete product********************************************/
if (!empty($_GET['delete'])) {
$delete_product = delete_product($_GET['delete']);
if ($delete_product == 1) {
header('Location:product.php');
} else {
$errormessage = "Something wrong. Please try again!!.";
}
}
/*******************************end delete product****************************************/
?>
<div id="page-wrapper">
<div class="row">
<div class="col-lg-12">
<h1 class="page-header">Manage Product</h1>
/********************************************* * Select some products **********************************************/ // Sample data $product_name = 'Fender Telecaster'; // Sample data $cat_id = 1; // Get the products $products = get_products_by_category($cat_id); // Get a product by name $product_by_name = get_product_by_name($product_name); /*************************************** * Delete a product ****************************************/ //print_r($product_by_name); delete_product($product_by_name['productID']); // Delete the product and display an appropriate messge $delete_message = "No rows were deleted."; /*************************************** * Insert a product ****************************************/ // Sample data $category_id = 1; $code = 'hgjh'; $name = 'Blahblah'; $description = 'NA'; $price = '949.99'; // Insert the data add_product($category_id, $code, $name, $description, $price, 0.1); // Display an appropriate message $insert_message = "No rows were inserted.";
* Select some products
**********************************************/
// Sample data
$cat_id = 1;
// Get the products
$products = get_products_by_category($cat_id);
/***************************************
* Delete a product
****************************************/
// Sample data
$product_name = 'Fender Telecaster';
// Delete the product and display an appropriate messge
$product = get_product_by_name($product_name);
if ($product) {
$product_id = $product['productID'];
$row_count = delete_product($product_id);
if ($row_count > 0) {
$delete_message = "{$row_count} row was deleted.";
} else {
$delete_message = "No rows were deleted.";
}
} else {
$delete_message = "There is no product with that name.";
}
/***************************************
* Insert a product
****************************************/
// Sample data
$category_id = 1;
$code = 'tele';
$name = 'Fender Telecaster';
function remove_products($products, $versions = array(), $echo = true, $disable_only = false, $reason = '')
{
global $db, $vbphrase;
if (!$versions) {
$versions = array();
}
if ($disable_only) {
$reason = $db->escape_string($reason);
$products = array_map(array($db, 'escape_string'), $products);
$list = "'" . implode("','", $products) . "'";
$db->query_write("\n\t\t\tUPDATE " . TABLE_PREFIX . "product\n\t\t\tSET active = 0, description = CONCAT('{$reason}', description)\n\t\t\tWHERE productid IN ({$list}) AND active = 1\n\t\t");
} else {
$first = true;
foreach ($products as $pid) {
$result = delete_product($pid);
if ($result and $echo) {
if ($first) {
$first = false;
plugin_message($vbphrase['products_removed'], 1, 1, 1);
}
if ($versions[$pid]) {
plugin_message($versions[$pid]['title'] . ' - ' . $versions[$pid]['version'], 1, 1, 1);
} else {
plugin_message($versions[$pid]['title'], 1, 1, 1);
}
}
}
}
}
/**
* Installs a product from the xml text
*
* This function depends on the vb class loader, which requires that the
* framework init is called.
*
* @return bool True if the product requires a template merge, false otherwise
*/
function install_product($xml, $allow_overwrite = false, $verbose = true)
{
global $vbphrase;
global $vbulletin;
$assertor = vB::getDbAssertor();
require_once DIR . '/includes/class_bitfield_builder.php';
require_once DIR . '/includes/class_xml.php';
//share some code with the main xml style import
require_once DIR . '/includes/adminfunctions_template.php';
if ($verbose) {
print_dots_start('<b>' . $vbphrase['importing_product'] . "</b>, {$vbphrase['please_wait']}", ':', 'dspan');
}
$xmlobj = new vB_XML_Parser($xml);
if ($xmlobj->error_no() == 1) {
if ($verbose) {
print_dots_stop();
}
throw new vB_Exception_AdminStopMessage('no_xml_and_no_path');
}
if (!($arr = $xmlobj->parse())) {
if ($verbose) {
print_dots_stop();
}
throw new vB_Exception_AdminStopMessage(array('xml_error_x_at_line_y', $xmlobj->error_string(), $xmlobj->error_line()));
}
// ############## general product information
$info = array('productid' => substr(preg_replace('#[^a-z0-9_]#', '', strtolower($arr['productid'])), 0, 25), 'title' => $arr['title'], 'description' => $arr['description'], 'version' => $arr['version'], 'active' => $arr['active'], 'url' => $arr['url'], 'versioncheckurl' => $arr['versioncheckurl']);
if (!$info['productid']) {
if ($verbose) {
print_dots_stop();
}
throw new vB_Exception_AdminStopMessage('invalid_file_specified');
}
if (strtolower($info['productid']) == 'vbulletin') {
if ($verbose) {
print_dots_stop();
}
throw new vB_Exception_AdminStopMessage(array('product_x_installed_no_overwrite', 'vBulletin'));
}
// check for bitfield conflicts on install
$bitfields = vB_Bitfield_Builder::return_data();
if (!$bitfields) {
$bfobj =& vB_Bitfield_Builder::init();
if ($bfobj->errors) {
if ($verbose) {
print_dots_stop();
}
throw new vB_Exception_AdminStopMessage(array('bitfield_conflicts_x', '<li>' . implode('</li><li>', $bfobj->errors) . '</li>'));
}
}
// get system version info
$system_versions = array('php' => PHP_VERSION, 'vbulletin' => $vbulletin->options['templateversion'], 'products' => fetch_product_list(true));
$mysql_version = $assertor->getRow('mysqlVersion');
$system_versions['mysql'] = $mysql_version['version'];
// ############## import dependencies
if (isset($arr['dependencies']['dependency']) and is_array($arr['dependencies']['dependency'])) {
$dependencies =& $arr['dependencies']['dependency'];
if (!isset($dependencies[0])) {
$dependencies = array($dependencies);
}
$dependency_errors = array();
$ignore_dependency_errors = array();
// let's check the dependencies
foreach ($dependencies as $dependency) {
// if we get an error, we haven't met this dependency
// if we go through without a problem, we have automatically met
// all dependencies for this "class" (mysql, php, vb, a specific product, etc)
$this_dependency_met = true;
// build a phrase for the version compats -- will look like (minver / maxver)
if ($dependency['minversion']) {
$compatible_phrase = construct_phrase($vbphrase['compatible_starting_with_x'], htmlspecialchars_uni($dependency['minversion']));
} else {
$compatible_phrase = '';
}
if ($dependency['maxversion']) {
$incompatible_phrase = construct_phrase($vbphrase['incompatible_with_x_and_greater'], htmlspecialchars_uni($dependency['maxversion']));
} else {
$incompatible_phrase = '';
}
if ($compatible_phrase or $incompatible_phrase) {
$required_version_info = "({$compatible_phrase}";
if ($compatible_phrase and $incompatible_phrase) {
$required_version_info .= ' / ';
}
$required_version_info .= "{$incompatible_phrase})";
}
// grab the appropriate installed version string
if ($dependency['dependencytype'] == 'product') {
// group dependencies into types -- individual products get their own group
$dependency_type_key = "product-{$dependency['parentproductid']}";
// undocumented feature -- you can put a producttitle attribute in a dependency so the id isn't displayed
$parent_product_title = !empty($dependency['producttitle']) ? $dependency['producttitle'] : $dependency['parentproductid'];
$parent_product = $system_versions['products']["{$dependency['parentproductid']}"];
if (!$parent_product) {
// required product is not installed
$dependency_errors["{$dependency_type_key}"] = construct_phrase($vbphrase['product_x_must_be_installed'], htmlspecialchars_uni($parent_product_title), $required_version_info);
continue;
// can't do version checks if the product isn't installed
} else {
if ($parent_product['active'] == 0) {
// product is installed, but inactive
$dependency_errors["{$dependency_type_key}-inactive"] = construct_phrase($vbphrase['product_x_must_be_activated'], htmlspecialchars_uni($parent_product_title));
$this_dependency_met = false;
// allow version checks to continue
}
}
$sys_version_str = $parent_product['version'];
$version_incompatible_phrase = 'product_incompatible_version_x_product_y';
} else {
$dependency_type_key = $dependency['dependencytype'];
$parent_product_title = '';
$sys_version_str = $system_versions["{$dependency['dependencytype']}"];
$version_incompatible_phrase = 'product_incompatible_version_x_' . $dependency['dependencytype'];
}
// if no version string, we are trying to do an unsupported dep check
if ($sys_version_str == '') {
continue;
}
$sys_version = fetch_version_array($sys_version_str);
// error if installed version < minversion
if ($dependency['minversion']) {
$dep_version = fetch_version_array($dependency['minversion']);
for ($i = 0; $i <= 5; $i++) {
if ($sys_version["{$i}"] < $dep_version["{$i}"]) {
// installed version is too old
$dependency_errors["{$dependency_type_key}"] = construct_phrase($vbphrase["{$version_incompatible_phrase}"], htmlspecialchars_uni($sys_version_str), $required_version_info, $parent_product_title);
$this_dependency_met = false;
break;
} else {
if ($sys_version["{$i}"] > $dep_version["{$i}"]) {
break;
}
}
}
}
// error if installed version >= maxversion
if ($dependency['maxversion']) {
$dep_version = fetch_version_array($dependency['maxversion']);
$all_equal = true;
for ($i = 0; $i <= 5; $i++) {
if ($sys_version["{$i}"] > $dep_version["{$i}"]) {
// installed version is newer than the maxversion
$dependency_errors["{$dependency_type_key}"] = construct_phrase($vbphrase["{$version_incompatible_phrase}"], htmlspecialchars_uni($sys_version_str), $required_version_info, $parent_product_title);
$this_dependency_met = false;
break;
} else {
if ($sys_version["{$i}"] < $dep_version["{$i}"]) {
// not every part is the same and since we've got less we can exit
$all_equal = false;
break;
} else {
if ($sys_version["{$i}"] != $dep_version["{$i}"]) {
// not every part is the same
$all_equal = false;
}
}
}
}
if ($all_equal == true) {
// installed version is same as the max version, which is the first incompat version
$dependency_errors["{$dependency_type_key}"] = construct_phrase($vbphrase["{$version_incompatible_phrase}"], htmlspecialchars_uni($sys_version_str), $required_version_info, $parent_product_title);
$this_dependency_met = false;
}
}
if ($this_dependency_met) {
// we met 1 dependency for this type -- this emulates or'ing together groups
$ignore_dependency_errors["{$dependency_type_key}"] = true;
}
}
// for any group we met a dependency for, ignore any errors we might
// have gotten for the group
foreach ($ignore_dependency_errors as $dependency_type_key => $devnull) {
unset($dependency_errors["{$dependency_type_key}"]);
}
if ($dependency_errors) {
$dependency_errors = array_unique($dependency_errors);
$dependency_errors = '<ol><li>' . implode('</li><li>', $dependency_errors) . '</li></ol>';
if ($verbose) {
print_dots_stop();
}
throw new vB_Exception_AdminStopMessage(array('dependencies_not_met_x', $dependency_errors));
}
}
// look to see if we already have this product installed
if ($existingprod = $assertor->getRow('product', array('productid' => $info['productid']))) {
if (!$allow_overwrite) {
if ($verbose) {
print_dots_stop();
}
throw new vB_Exception_AdminStopMessage(array('product_x_installed_no_overwrite', $info['title']));
}
$active = $existingprod['active'];
// not sure what we're deleting, so rebuild everything
$rebuild = array('templates' => true, 'hooks' => true, 'phrases' => true, 'options' => true, 'cron' => true);
$installed_version = $existingprod['version'];
} else {
$active = $info['active'] ? 1 : 0;
$rebuild = array('templates' => false, 'hooks' => false, 'phrases' => false, 'options' => false, 'cron' => false);
$installed_version = null;
}
// ############## import install/uninstall code
if (isset($arr['codes']['code']) and is_array($arr['codes']['code'])) {
$codes =& $arr['codes']['code'];
if (!isset($codes[0])) {
$codes = array($codes);
}
// run each of the codes
foreach ($codes as $code) {
// Run if: code version is * (meaning always run), no version
// previously installed, or if the code is for a newer version
// than is currently installed
if ($code['version'] == '*' or $installed_version === null or is_newer_version($code['version'], $installed_version)) {
eval($code['installcode']);
}
}
// Clear routes from datastore
build_datastore('routes', serialize(array()), 1);
//assume that the product may have installed content types and purge the content type cache
vB_Cache::instance()->purge('vb_types.types');
}
// dependencies checked, install code run. Now clear out the old product info;
// settings should be retained in memory already
delete_product($info['productid'], false, true);
if (is_array($codes)) {
// we've now run all the codes, if execution is still going
// then it's going to complete fully, so insert the codes
$productCodes = array();
foreach ($codes as $code) {
/* insert query */
$productCodes[] = array('productid' => $info['productid'], 'version' => $code['version'], 'installcode' => $code['installcode'], 'uninstallcode' => $code['uninstallcode']);
}
$assertor->insertMultiple('productcode', array('productid', 'version', 'installcode', 'uninstallcode'), $productCodes);
}
if (is_array($dependencies)) {
// dependencies met, codes run -- now we can insert the dependencies into the DB
$productDependencies = array();
foreach ($dependencies as $dependency) {
/* insert query */
$productDependencies[] = array('productid' => $info['productid'], 'dependencytype' => $dependency['dependencytype'], 'parentproductid' => $dependency['parentproductid'], 'minversion' => $dependency['minversion'], 'maxversion' => $dependency['maxversion']);
}
$assertor->insertMultiple('productdependency', array('productid', 'dependencytype', 'parentproductid', 'minversion', 'maxversion'), $productDependencies);
}
/* insert query */
$assertor->insert('product', array('productid' => $info['productid'], 'title' => $info['title'], 'description' => $info['description'], 'version' => $info['version'], 'active' => intval($active), 'url' => $info['url'], 'versioncheckurl' => $info['versioncheckurl']));
// ############## import templates
if (isset($arr['templates']['template']) and is_array($arr['templates']['template'])) {
$querybits = array();
$querytemplates = 0;
$templates =& $arr['templates']['template'];
if (!isset($templates[0])) {
$templates = array($templates);
}
foreach ($templates as $template) {
$title = $template['name'];
$template['template'] = $template['value'];
$template['username'] = $template['username'];
$template['templatetype'] = $template['templatetype'];
$template['date'] = intval($template['date']);
if ($template['templatetype'] != 'template') {
// template is a special template
$querybits[] = array('styleid' => -1, 'templatetype' => $template['templatetype'], 'title' => $title, 'template' => $template['template'], 'template_un' => '', 'dateline' => $template['date'], 'username' => $template['username'], 'version' => $template['version'], 'product' => $info['productid']);
} else {
// template is a standard template
$querybits[] = array('styleid' => -1, 'templatetype' => $template['templatetype'], 'title' => $title, 'template' => compile_template($template['value']), 'template_un' => $template['template'], 'dateline' => $template['date'], 'username' => $template['username'], 'version' => $template['version'], 'product' => $info['productid']);
}
if (++$querytemplates % 20 == 0) {
/*insert query*/
$assertor->assertQuery('replaceValues', array('values' => $querybits, 'table' => 'template'));
$querybits = array();
}
// Send some output to the browser inside this loop so certain hosts
// don't artificially kill the script. See bug #34585
if (VB_AREA != 'Upgrade' and VB_AREA != 'Install') {
echo ' ';
vbflush();
}
}
// insert any remaining templates
if (!empty($querybits)) {
/*insert query*/
$assertor->assertQuery('replaceValues', array('values' => $querybits, 'table' => 'template'));
}
unset($querybits);
$rebuild['templates'] = true;
}
// ############## import stylevars
if (isset($arr['stylevardfns']['stylevargroup']) and is_array($arr['stylevardfns']['stylevargroup'])) {
xml_import_stylevar_definitions($arr['stylevardfns'], $info['productid']);
}
if (!empty($arr['stylevars']) and is_array($arr['stylevars']) and is_array($arr['stylevars']['stylevar'])) {
xml_import_stylevars($arr['stylevars'], -1);
}
// ############## import hooks
if (isset($arr['hooks']['hook']) and is_array($arr['hooks']['hook'])) {
$hooks =& $arr['hooks']['hook'];
if (!isset($hooks[0])) {
$hooks = array($hooks);
}
foreach ($hooks as $hook) {
$hook['product'] = $info['productid'];
$assertor->insert('hook', $hook);
}
$rebuild['hooks'] = true;
}
// ############## import phrases
if (isset($arr['phrases']['phrasetype']) and is_array($arr['phrases']['phrasetype'])) {
require_once DIR . '/includes/adminfunctions_language.php';
$master_phrasetypes = array();
$master_phrasefields = array();
foreach (vB_Api::instanceInternal('phrase')->fetch_phrasetypes(false) as $phrasetype) {
$master_phrasefields["{$phrasetype['fieldname']}"] = true;
}
$phrasetypes =& $arr['phrases']['phrasetype'];
if (!isset($phrasetypes[0])) {
$phrasetypes = array($phrasetypes);
}
foreach ($phrasetypes as $phrasetype) {
if (empty($phrasetype['phrase'])) {
continue;
}
if ($phrasetype['fieldname'] == '' or !preg_match('#^[a-z0-9_]+$#i', $phrasetype['fieldname'])) {
continue;
}
$fieldname = $master_phrasefields["{$phrasetype['fieldname']}"];
if (!$fieldname) {
$assertor->assertQuery('installProductPhraseTypeInsert', array('fieldname' => $phrasetype['fieldname'], 'title' => $phrasetype['name'], 'editrows' => 3, 'product' => $info['productid']));
// need to add the column to the language table as well
$assertor->assertQuery('addLanguageFromPackage', array('fieldname' => $phrasetype['fieldname']));
}
$phrases =& $phrasetype['phrase'];
if (!isset($phrases[0])) {
$phrases = array($phrases);
}
$sql = array();
foreach ($phrases as $phrase) {
$sql[] = array('languageid' => -1, 'fieldname' => $phrasetype['fieldname'], 'varname' => $phrase['name'], 'text' => $phrase['value'], 'product' => $info['productid'], 'username' => $phrase['username'], 'dateline' => $phrase['date'], 'version' => $phrase['version']);
}
/*insert query*/
$assertor->assertQuery('replaceValues', array('values' => $sql, 'table' => 'phrase'));
}
$rebuild['phrases'] = true;
}
// ############## import settings
if (isset($arr['options']['settinggroup']) and is_array($arr['options']['settinggroup'])) {
$settinggroups =& $arr['options']['settinggroup'];
if (!isset($settinggroups[0])) {
$settinggroups = array($settinggroups);
}
foreach ($settinggroups as $group) {
if (empty($group['setting'])) {
continue;
}
// create the setting group if it doesn't already exist
$check = $assertor->assertQuery('settinggroup', array(vB_dB_Query::TYPE_KEY => vB_dB_Query::QUERY_SELECT, 'grouptitle' => $group['name']));
if ($check->valid()) {
$current = $check->current();
if ($group['adminperm'] != $current['adminperm'] or $group['displayorder'] != $current['displayorder']) {
$assertor->assertQuery('settinggroup', array(vB_dB_Query::TYPE_KEY => vB_dB_Query::QUERY_UPDATE, 'grouptitle' => $group['name'], 'displayorder' => $group['displayorder'], 'adminperm' => $group['adminperm']));
}
} else {
/*insert query*/
$assertor->assertQuery('settinggroup', array(vB_dB_Query::TYPE_KEY => vB_dB_Query::QUERY_INSERTIGNORE, 'grouptitle' => $group['name'], 'displayorder' => $group['displayorder'], 'volatile' => 1, 'product' => $info['productid'], 'adminperm' => $group['adminperm']));
}
$settings =& $group['setting'];
if (!isset($settings[0])) {
$settings = array($settings);
}
$setting_bits = array();
foreach ($settings as $setting) {
if (isset($vbulletin->options["{$setting['varname']}"])) {
$newvalue = $vbulletin->options["{$setting['varname']}"];
} else {
$newvalue = $setting['defaultvalue'];
}
$setting_bits[] = array('varname' => $setting['varname'], 'grouptitle' => $group['name'], 'value' => trim($newvalue), 'defaultvalue' => trim($setting['defaultvalue']), 'datatype' => trim($setting['datatype']), 'optioncode' => $setting['optioncode'], 'displayorder' => $setting['displayorder'], 'advanced' => intval($setting['advanced']), 'volatile' => 1, 'validationcode' => $setting['validationcode'], 'blacklist' => $setting['blacklist'], 'ispublic' => intval($setting['public']), 'product' => $info['productid'], 'adminperm' => empty($setting['adminperm']) ? '' : $setting['adminperm']);
}
/*insert query*/
$assertor->assertQuery('replaceValues', array('values' => $setting_bits, 'table' => 'setting'));
}
$rebuild['options'] = true;
}
// ############## import admin help
if (isset($arr['helptopics']['helpscript']) and is_array($arr['helptopics']['helpscript'])) {
$help_scripts =& $arr['helptopics']['helpscript'];
if (!isset($help_scripts[0])) {
$help_scripts = array($help_scripts);
}
foreach ($help_scripts as $help_script) {
// Deal with single entry
if (!is_array($help_script['helptopic'][0])) {
$help_script['helptopic'] = array($help_script['helptopic']);
}
$help_sql = array();
foreach ($help_script['helptopic'] as $topic) {
$helpsql[] = array('script' => $help_script['name'], 'action' => $topic['act'], 'optionname' => $topic['opt'], 'displayorder' => intval($topic['disp']), 'volatile' => 1, 'product' => $info['productid']);
}
if (!empty($helpsql)) {
/*insert query*/
$assertor->assertQuery('replaceValues', array('values' => $helpsql, 'table' => 'adminhelp'));
}
}
}
// ############## import cron
if (isset($arr['cronentries']['cron']) and is_array($arr['cronentries']['cron'])) {
require_once DIR . '/includes/functions_cron.php';
$cron_entries =& $arr['cronentries']['cron'];
if (!isset($cron_entries[0])) {
$cron_entries = array($cron_entries);
}
foreach ($cron_entries as $cron) {
$cron['varname'] = preg_replace('#[^a-z0-9_]#i', '', $cron['varname']);
if (!$cron['varname']) {
continue;
}
$cron['active'] = $cron['active'] ? 1 : 0;
$cron['loglevel'] = $cron['loglevel'] ? 1 : 0;
$scheduling = $cron['scheduling'];
$scheduling['weekday'] = intval($scheduling['weekday']);
$scheduling['day'] = intval($scheduling['day']);
$scheduling['hour'] = intval($scheduling['hour']);
$scheduling['minute'] = explode(',', preg_replace('#[^0-9,-]#i', '', $scheduling['minute']));
if (count($scheduling['minute']) == 0) {
$scheduling['minute'] = array(0);
} else {
$scheduling['minute'] = array_map('intval', $scheduling['minute']);
}
/*insert query*/
$cronSql[] = array('weekday' => $scheduling['weekday'], 'day' => $scheduling['day'], 'hour' => $scheduling['hour'], 'minute' => serialize($scheduling['minute']), 'filename' => $cron['filename'], 'loglevel' => $cron['loglevel'], 'active' => $cron['active'], 'varname' => $cron['varname'], 'volatile' => 1, 'product' => $info['productid']);
$cronid = $assertor->assertQuery('replaceValues', array('values' => $cronSql, 'table' => 'cron', 'returnId' => true));
if ($cronid) {
build_cron_item($cronid);
}
$rebuild['cron'] = true;
}
}
// ############## import faq
if (isset($arr['faqentries']['faq']) and is_array($arr['faqentries']['faq'])) {
$faq_entries =& $arr['faqentries']['faq'];
if (!isset($faq_entries[0])) {
$faq_entries = array($faq_entries);
}
$sql = array();
foreach ($faq_entries as $faq) {
$sql[] = array('faqname' => $faq['faqname'], 'faqparent' => $faq['faqparent'], 'displayorder' => intval($faq['displayorder']), 'volatile' => 1, 'product' => $info['productid']);
}
if ($sql) {
/*insert query*/
$assertor->assertQuery('replaceValues', array('values' => $sql, 'table' => 'faq'));
}
}
// ############## import widgets
if (isset($arr['widgets']['widget']) and is_array($arr['widgets']['widget'])) {
$widgetImporter = new vB_Xml_Import_Widget($info['productid']);
$widgetImporter->importFromParsedXML($arr['widgets']);
}
// ############## import pagetemplates
if (isset($arr['pagetemplates']['pagetemplate']) and is_array($arr['pagetemplates']['pagetemplate'])) {
$pageTemplateImporter = new vB_Xml_Import_PageTemplate($info['productid']);
$pageTemplateImporter->importFromParsedXML($arr['pagetemplates']);
}
// ############## import page
if (isset($arr['pages']['page']) and is_array($arr['pages']['page'])) {
$pageImporter = new vB_Xml_Import_Page($info['productid']);
$pageImporter->importFromParsedXML($arr['pages']);
}
// ############## import channels
if (isset($arr['channels']['channel']) and is_array($arr['channels']['channel'])) {
$channelImporter = new vB_Xml_Import_Channel($info['productid']);
$channelImporter->importFromParsedXML($arr['channels']);
}
// ############## import routes
if (isset($arr['routes']['route']) and is_array($arr['routes']['route'])) {
$routeImporter = new vB_Xml_Import_Route($info['productid']);
$routeImporter->importFromParsedXML($arr['routes']);
}
if (isset($routeImporter)) {
// update pages and channels with new route ids
if (isset($pageImporter)) {
$pageImporter->updatePageRoutes();
}
if (isset($channelImporter)) {
$channelImporter->updateChannelRoutes();
}
}
// Check if the hook system is disabled. If it is, enable it.
if (!$vbulletin->options['enablehooks']) {
$assertor->update('setting', array('value' => 1), array('varname' => 'enablehooks'));
$rebuild['options'] = true;
}
// Now rebuild everything we need...
if ($rebuild['hooks']) {
vB_Api::instanceInternal("Hook")->buildHookDatastore();
}
if ($rebuild['templates']) {
if ($error = build_all_styles(0, 0, '', false, $verbose)) {
return $error;
}
}
if ($rebuild['phrases']) {
require_once DIR . '/includes/adminfunctions_language.php';
build_language();
}
if ($rebuild['options']) {
vB::getDatastore()->build_options();
}
if ($rebuild['cron']) {
require_once DIR . '/includes/functions_cron.php';
build_cron_next_run();
}
build_product_datastore();
// build bitfields to remove/add this products bitfields
vB_Bitfield_Builder::save();
if ($verbose) {
print_dots_stop();
}
$info['need_merge'] = ($rebuild['templates'] and $installed_version);
return $info;
}
/**
* Manages products - adds, edits, deletes products.
*
* @return void
*/
function ribcage_manage_products()
{
global $wpdb;
global $products, $product;
global $releases, $release;
global $artist;
// Security check
if (isset($_REQUEST['_wpnonce'])) {
if (wp_verify_nonce($nonce, 'ribcage_manage_releases')) {
die("Security check failed.");
}
}
$nonce = wp_create_nonce('ribcage_manage_products');
if (isset($_REQUEST['ribcage_action']) && $_REQUEST['ribcage_action']) {
array_pop($_POST);
$post_keys = array_keys($_POST);
$post_vals = array_values($_POST);
$string_keys = implode($post_keys, ",");
$string_vals = "'" . implode($post_vals, "','") . "'";
$wpdb->show_errors();
switch ($_REQUEST['ribcage_action']) {
case 'add':
// Do we have all the fields we need to add something?
if ($_POST['product_name'] == null) {
$product = $_POST;
ribcage_edit_product_form('Sorry you missed the name of your product.');
return;
} elseif ($_POST['product_cost'] == null) {
$product = $_POST;
ribcage_edit_product_form("Sorry you didn't set a cost for your product.");
return;
} elseif ($_POST['product_description'] == null) {
$product = $_POST;
ribcage_edit_product_form("Sorry you didn't write a description for your product.");
return;
} elseif (!is_numeric($_POST['product_cost'])) {
$product = $_POST;
ribcage_edit_product_form("Sorry but that isn't a number for the cost of the product.");
return;
}
// Do we already have a physical product for this release?
if ($_POST['product_related_release']) {
$sql = "SELECT release_physical FROM " . $wpdb->releases . " WHERE release_id = " . $_POST['product_related_release'];
$check = $wpdb->get_row($sql, ARRAY_A);
if ($check['release_physical'] == 1) {
$product = $_POST;
ribcage_edit_product_form("Sorry but that release already has a physical product associated with it.");
return;
}
}
$sql = "INSERT INTO " . $wpdb->products . "\n\t\t\t\t\t\t({$string_keys})\n\t\t\t\t\t\tVALUES\n\t\t\t\t\t\t({$string_vals})";
$results = $wpdb->query($sql);
$wpdb->hide_errors();
// Update our _ribcage_releases data with the correct details if we are relating this to a release.
if ($_POST['product_related_release']) {
$sql = "SELECT product_id FROM " . $wpdb->products . " ORDER BY product_id DESC LIMIT 0,1";
$product = $wpdb->get_row($sql, ARRAY_A);
$sql = "UPDATE " . $wpdb->releases . " SET release_physical = 1, release_physical_cat_no ='" . $product['product_id'] . "' WHERE release_id = " . $_POST['product_related_release'];
$results = $wpdb->query($sql);
}
$message = ' added';
break;
case 'edit':
ribcage_edit_product_form();
return;
break;
case 'edited':
// Do we have all the fields we need to add something?
if ($_POST['product_name'] == null) {
$product = $_POST;
ribcage_edit_product_form('Sorry you missed the name of your product.');
return;
} elseif ($_POST['product_cost'] == null) {
$product = $_POST;
ribcage_edit_product_form("Sorry you didn't set a price for your product.");
return;
} elseif ($_POST['product_description'] == null) {
$product = $_POST;
ribcage_edit_product_form("Sorry you didn't set a price for your product.");
return;
} elseif (!is_numeric($_POST['product_cost'])) {
$product = $_POST;
ribcage_edit_product_form("Sorry but that isn't a number for the cost of the product.");
return;
}
$product_before = get_product($_REQUEST['product']);
$sql = "UPDATE " . $wpdb->prefix . "ribcage_products\n\t\t\t\t\t\tSET ";
$i = 0;
foreach ($post_keys as $field) {
$sql .= $field . "='" . $post_vals[$i] . "', ";
$i++;
}
$sql .= " product_id = " . $_REQUEST['product'] . " \n\t\t\t\t\t\tWHERE product_id = " . $_REQUEST['product'];
$results = $wpdb->query($sql);
$wpdb->hide_errors();
// Update our _ribcage_releases data if we have changed the associated product.
if ($product_before['product_related_release'] != $_REQUEST['product_related_release']) {
// Delete it from our previous holder of the release.
$sql = "UPDATE " . $wpdb->prefix . "ribcage_releases SET release_physical = 0, release_physical_cat_no = 0 WHERE release_id = " . $product_before['product_related_release'];
$results = $wpdb->query($sql);
// Add it to the current holder of the release.
$sql = "UPDATE " . $wpdb->prefix . "ribcage_releases SET release_physical = 1, release_physical_cat_no ='" . $_REQUEST['product'] . "' WHERE release_id = " . $_POST['product_related_release'];
$results = $wpdb->query($sql);
}
$message = ' updated';
break;
case 'delete':
$product_before = get_product($_REQUEST['product']);
delete_product($_REQUEST['product']);
$sql = "UPDATE " . $wpdb->prefix . "ribcage_releases SET release_physical = 0, release_physical_cat_no = 0 WHERE release_id = " . $product_before['product_related_release'];
$results = $wpdb->query($sql);
$message = " deleted";
break;
}
if (isset($message)) {
echo '<div id="message" class="updated fade"><p><strong>Product ' . $message . '.</strong></p></div>';
}
}
register_column_headers('ribcage-manage-products', array('cb' => '<input type="checkbox" />', 'product_name' => 'Product', 'local_downloads' => 'Related To Release'));
$products = list_products();
?>
<div class="wrap">
<div id="icon-plugins" class="icon32"><br /></div>
<h2>Manage Products</h2>
<form action="<?php
echo str_replace('%7E', '~', $_SERVER['REQUEST_URI']);
?>
" method="post" id="ribcage_manage_products" name="manage_artists">
<table class="widefat post fixed" cellspacing="0">
<thead>
<tr>
<?php
print_column_headers('ribcage-manage-products');
?>
</tr>
</thead>
<tfoot>
<tr>
<?php
print_column_headers('ribcage-manage-products', FALSE);
?>
</tr>
</tfoot>
<tbody>
<?php
while (have_products()) {
the_product();
?>
<?php
$release = get_release($product['product_related_release']);
?>
<?php
$artist['artist_name'] = get_artistname_by_id($release['release_artist']);
?>
<?php
echo $alt % 2 ? '<tr valign="top" class="">' : '<tr valign="top" class="alternate">';
++$alt;
?>
<th scope="row" class="check-column"><input type="checkbox" name="productcheck[]" value="2" /></th>
<td class="column-name"><strong><a class="row-title" href="?page=manage_products&ribcage_action=edit&product=<?php
product_id();
?>
&_wpnonce=<?php
echo $nonce;
?>
" title="<?php
product_name();
?>
" ><?php
product_name();
?>
</strong></a><br /><div class="row-actions"><span class='edit'><a href="?page=manage_products&ribcage_action=edit&product=<?php
product_id();
?>
&_wpnonce=<?php
echo $nonce;
?>
">Edit</a> | </span><span class='delete'><a class='submitdelete' href="?page=manage_products&ribcage_action=delete&product=<?php
product_id();
?>
&_wpnonce=<?php
echo $nonce;
?>
" onclick="if ( confirm('You are about to delete the product \'<?php
product_name();
?>
\'\n \'Cancel\' to stop, \'OK\' to delete.') ) { return true;}return false;">Delete</a></span></div></td>
<?php
if ($product['product_related_release']) {
?>
<td class="column-name"><?php
artist_name();
?>
- <?php
release_title();
?>
</td>
<?php
} else {
?>
<td class="column-name">None.</td>
<?php
}
?>
</tr>
<?php
}
?>
</tbody>
</table>
</form>
</div>
<?php
}
if (count($prod_id) - $x != 0) {
}
?>
<div class="show-products">
<div class="show-top">
<ul class="top">
<li class="name"><input type="button" value="Products Name"></li>
<li class="category"><input type="button" value="Category"></li>
<li class="Quantity"><input type="button" value="Quantity"></li>
<li class="price"><input type="button" value="Price"></li>
<li class="clicks"><input type="button" value="Clicks"></li></ul></br></br>
<?php
if (isset($_POST['hidden'])) {
$hidden_id = $_POST['hidden'];
if (delete_product($mysqli, $hidden_id)) {
}
}
if (isset($_POST['edit'])) {
if (!$_POST['edit'] == "") {
$_SESSION['get_product_id'] = $_POST['edit'];
header("Location: ?edit product-" . $_POST['edit'] . "-admin");
}
}
$products = get_all_products_from_db($mysqli, 0, 25);
while (count($prod_id) > $p) {
if ($_SERVER['QUERY_STRING'] == "show-products-" . $p) {
$k = $p;
$products = get_all_products_from_db($mysqli, 2, $k * 2);
break;
}
/**
* Installs a product from the xml text
*
* This function depends on the vb class loader, which requires that the
* framework init is called.
*
* @return bool True if the product requires a template merge, false otherwise
*/
function install_product($xml, $allow_overwrite)
{
global $vbphrase;
global $vbulletin;
global $db;
require_once(DIR . '/includes/class_bitfield_builder.php');
require_once(DIR . '/includes/class_xml.php');
require_once(DIR . '/includes/class_block.php');
//share some code with the main xml style import
require_once(DIR . '/includes/adminfunctions_template.php');
print_dots_start('<b>' . $vbphrase['importing_product'] . "</b>, $vbphrase[please_wait]", ':', 'dspan');
$xmlobj = new vB_XML_Parser($xml);
if ($xmlobj->error_no == 1)
{
print_dots_stop();
throw new vB_Exception_AdminStopMessage('no_xml_and_no_path');
}
if(!$arr = $xmlobj->parse())
{
print_dots_stop();
throw new vB_Exception_AdminStopMessage(
array('xml_error_x_at_line_y', $xmlobj->error_string(), $xmlobj->error_line()));
}
// ############## general product information
$info = array(
'productid' => substr(preg_replace('#[^a-z0-9_]#', '', strtolower($arr['productid'])), 0, 25),
'title' => $arr['title'],
'description' => $arr['description'],
'version' => $arr['version'],
'active' => $arr['active'],
'url' => $arr['url'],
'versioncheckurl' => $arr['versioncheckurl']
);
if (!$info['productid'])
{
print_dots_stop();
if (!empty($arr['plugin']))
{
throw new vB_Exception_AdminStopMessage('this_file_appears_to_be_a_plugin');
}
else
{
throw new vB_Exception_AdminStopMessage('invalid_file_specified');
}
}
if (strtolower($info['productid']) == 'vbulletin')
{
print_dots_stop();
throw new vB_Exception_AdminStopMessage(array('product_x_installed_no_overwrite', 'vBulletin'));
}
// check for bitfield conflicts on install
$bitfields = vB_Bitfield_Builder::return_data();
if (!$bitfields)
{
$bfobj =& vB_Bitfield_Builder::init();
if ($bfobj->errors)
{
print_dots_stop();
throw new vB_Exception_AdminStopMessage(array(
'bitfield_conflicts_x',
'<li>' . implode('</li><li>', $bfobj->errors) . '</li>'
));
}
}
// get system version info
$system_versions = array(
'php' => PHP_VERSION,
'vbulletin' => $vbulletin->options['templateversion'],
'products' => fetch_product_list(true)
);
$mysql_version = $db->query_first("SELECT VERSION() AS version");
$system_versions['mysql'] = $mysql_version['version'];
// ############## import dependencies
if (is_array($arr['dependencies']['dependency']))
{
$dependencies =& $arr['dependencies']['dependency'];
if (!isset($dependencies[0]))
{
$dependencies = array($dependencies);
}
$dependency_errors = array();
$ignore_dependency_errors = array();
// let's check the dependencies
foreach ($dependencies AS $dependency)
{
// if we get an error, we haven't met this dependency
// if we go through without a problem, we have automatically met
// all dependencies for this "class" (mysql, php, vb, a specific product, etc)
$this_dependency_met = true;
// build a phrase for the version compats -- will look like (minver / maxver)
if ($dependency['minversion'])
{
$compatible_phrase = construct_phrase(
$vbphrase['compatible_starting_with_x'],
htmlspecialchars_uni($dependency['minversion'])
);
}
else
{
$compatible_phrase = '';
}
if ($dependency['maxversion'])
{
$incompatible_phrase = construct_phrase(
$vbphrase['incompatible_with_x_and_greater'],
htmlspecialchars_uni($dependency['maxversion'])
);
}
else
{
$incompatible_phrase = '';
}
if ($compatible_phrase OR $incompatible_phrase)
{
$required_version_info = "($compatible_phrase";
if ($compatible_phrase AND $incompatible_phrase)
{
$required_version_info .= ' / ';
}
$required_version_info .= "$incompatible_phrase)";
}
// grab the appropriate installed version string
if ($dependency['dependencytype'] == 'product')
{
// group dependencies into types -- individual products get their own group
$dependency_type_key = "product-$dependency[parentproductid]";
// undocumented feature -- you can put a producttitle attribute in a dependency so the id isn't displayed
$parent_product_title = (!empty($dependency['producttitle']) ? $dependency['producttitle'] : $dependency['parentproductid']);
$parent_product = $system_versions['products']["$dependency[parentproductid]"];
if (!$parent_product)
{
// required product is not installed
$dependency_errors["$dependency_type_key"] = construct_phrase(
$vbphrase['product_x_must_be_installed'],
htmlspecialchars_uni($parent_product_title),
$required_version_info
);
continue; // can't do version checks if the product isn't installed
}
else if ($parent_product['active'] == 0)
{
// product is installed, but inactive
$dependency_errors["{$dependency_type_key}-inactive"] = construct_phrase(
$vbphrase['product_x_must_be_activated'],
htmlspecialchars_uni($parent_product_title)
);
$this_dependency_met = false;
// allow version checks to continue
}
$sys_version_str = $parent_product['version'];
$version_incompatible_phrase = 'product_incompatible_version_x_product_y';
}
else
{
$dependency_type_key = $dependency['dependencytype'];
$parent_product_title = '';
$sys_version_str = $system_versions["$dependency[dependencytype]"];
$version_incompatible_phrase = 'product_incompatible_version_x_' . $dependency['dependencytype'];
}
// if no version string, we are trying to do an unsupported dep check
if ($sys_version_str == '')
{
continue;
}
$sys_version = fetch_version_array($sys_version_str);
// error if installed version < minversion
if ($dependency['minversion'])
{
$dep_version = fetch_version_array($dependency['minversion']);
for ($i = 0; $i <= 5; $i++)
{
if ($sys_version["$i"] < $dep_version["$i"])
{
// installed version is too old
$dependency_errors["$dependency_type_key"] = construct_phrase(
$vbphrase["$version_incompatible_phrase"],
htmlspecialchars_uni($sys_version_str),
$required_version_info,
$parent_product_title
);
$this_dependency_met = false;
break;
}
else if ($sys_version["$i"] > $dep_version["$i"])
{
break;
}
}
}
// error if installed version >= maxversion
if ($dependency['maxversion'])
{
$dep_version = fetch_version_array($dependency['maxversion']);
$all_equal = true;
for ($i = 0; $i <= 5; $i++)
{
if ($sys_version["$i"] > $dep_version["$i"])
{
// installed version is newer than the maxversion
$dependency_errors["$dependency_type_key"] = construct_phrase(
$vbphrase["$version_incompatible_phrase"],
htmlspecialchars_uni($sys_version_str),
$required_version_info,
$parent_product_title
);
$this_dependency_met = false;
break;
}
else if ($sys_version["$i"] < $dep_version["$i"])
{
// not every part is the same and since we've got less we can exit
$all_equal = false;
break;
}
else if ($sys_version["$i"] != $dep_version["$i"])
{
// not every part is the same
$all_equal = false;
}
}
if ($all_equal == true)
{
// installed version is same as the max version, which is the first incompat version
$dependency_errors["$dependency_type_key"] = construct_phrase(
$vbphrase["$version_incompatible_phrase"],
htmlspecialchars_uni($sys_version_str),
$required_version_info,
$parent_product_title
);
$this_dependency_met = false;
}
}
if ($this_dependency_met)
{
// we met 1 dependency for this type -- this emulates or'ing together groups
$ignore_dependency_errors["$dependency_type_key"] = true;
}
}
// for any group we met a dependency for, ignore any errors we might
// have gotten for the group
foreach ($ignore_dependency_errors AS $dependency_type_key => $devnull)
{
unset($dependency_errors["$dependency_type_key"]);
}
if ($dependency_errors)
{
$dependency_errors = array_unique($dependency_errors);
$dependency_errors = '<ol><li>' . implode('</li><li>', $dependency_errors) . '</li></ol>';
print_dots_stop();
throw new vB_Exception_AdminStopMessage(
array('dependencies_not_met_x', $dependency_errors));
}
}
// look to see if we already have this product installed
if ($existingprod = $db->query_first("
SELECT *
FROM " . TABLE_PREFIX . "product
WHERE productid = '" . $db->escape_string($info['productid']) . "'"
))
{
if (!$allow_overwrite)
{
print_dots_stop();
throw new vB_Exception_AdminStopMessage(
array('product_x_installed_no_overwrite', $info['title']));
}
$active = $existingprod['active'];
// not sure what we're deleting, so rebuild everything
$rebuild = array(
'templates' => true,
'plugins' => true,
'phrases' => true,
'options' => true,
'cron' => true
);
$installed_version = $existingprod['version'];
}
else
{
$active = ($info['active'] ? 1 : 0);
$rebuild = array(
'templates' => false,
'plugins' => false,
'phrases' => false,
'options' => false,
'cron' => false
);
$installed_version = null;
}
// ############## import install/uninstall code
if (is_array($arr['codes']['code']))
{
$codes =& $arr['codes']['code'];
if (!isset($codes[0]))
{
$codes = array($codes);
}
// run each of the codes
foreach ($codes AS $code)
{
// Run if: code version is * (meaning always run), no version
// previously installed, or if the code is for a newer version
// than is currently installed
if ($code['version'] == '*' OR $installed_version === null OR is_newer_version($code['version'], $installed_version))
{
eval($code['installcode']);
}
}
// Clear routes from datastore
build_datastore('routes', serialize(array()), 1);
//assume that the product may have installed content types and purge the content type cache
vB_Cache::instance()->purge('vb_types.types');
}
// dependencies checked, install code run. Now clear out the old product info;
// settings should be retained in memory already
delete_product($info['productid'], false, true);
if (is_array($codes))
{
// we've now run all the codes, if execution is still going
// then it's going to complete fully, so insert the codes
foreach ($codes AS $code)
{
/* insert query */
$db->query_write("
INSERT INTO " . TABLE_PREFIX . "productcode
(productid, version, installcode, uninstallcode)
VALUES
('" . $db->escape_string($info['productid']) . "',
'" . $db->escape_string($code['version']) . "',
'" . $db->escape_string($code['installcode']) . "',
'" . $db->escape_string($code['uninstallcode']) . "')
");
}
}
if (is_array($dependencies))
{
// dependencies met, codes run -- now we can insert the dependencies into the DB
foreach ($dependencies AS $dependency)
{
/* insert query */
$db->query_write("
INSERT INTO " . TABLE_PREFIX . "productdependency
(productid, dependencytype, parentproductid, minversion, maxversion)
VALUES
('" . $db->escape_string($info['productid']) . "',
'" . $db->escape_string($dependency['dependencytype']) . "',
'" . $db->escape_string($dependency['parentproductid']) . "',
'" . $db->escape_string($dependency['minversion']) . "',
'" . $db->escape_string($dependency['maxversion']) . "')
");
}
}
/* insert query */
$db->query_write("
INSERT INTO " . TABLE_PREFIX . "product
(productid, title, description, version, active, url, versioncheckurl)
VALUES
('" . $db->escape_string($info['productid']) . "',
'" . $db->escape_string($info['title']) . "',
'" . $db->escape_string($info['description']) . "',
'" . $db->escape_string($info['version']) . "',
" . intval($active) . ",
'" . $db->escape_string($info['url']) . "',
'" . $db->escape_string($info['versioncheckurl']) . "')
");
// ############## import templates
if (is_array($arr['templates']['template']))
{
$querybits = array();
$querytemplates = 0;
$templates =& $arr['templates']['template'];
if (!isset($templates[0]))
{
$templates = array($templates);
}
foreach ($templates AS $template)
{
$title = $db->escape_string($template['name']);
$template['template'] = $db->escape_string($template['value']);
$template['username'] = $db->escape_string($template['username']);
$template['templatetype'] = $db->escape_string($template['templatetype']);
$template['date'] = intval($template['date']);
if ($template['templatetype'] != 'template')
{
// template is a special template
$querybits[] = "(-1, '$template[templatetype]', '$title', '$template[template]', '', $template[date], '$template[username]', '" . $db->escape_string($template['version']) . "', '" . $db->escape_string($info['productid']) . "')";
}
else
{
// template is a standard template
$querybits[] = "(-1, '$template[templatetype]', '$title', '" . $db->escape_string(compile_template($template['value'])) . "', '$template[template]', $template[date], '$template[username]', '" . $db->escape_string($template['version']) . "', '" . $db->escape_string($info['productid']) . "')";
}
if (++$querytemplates % 20 == 0)
{
/*insert query*/
$db->query_write("
REPLACE INTO " . TABLE_PREFIX . "template
(styleid, templatetype, title, template, template_un, dateline, username, version, product)
VALUES
" . implode(',', $querybits) . "
");
$querybits = array();
}
// Send some output to the browser inside this loop so certain hosts
// don't artificially kill the script. See bug #34585
echo ' ';
vbflush();
}
// insert any remaining templates
if (!empty($querybits))
{
/*insert query*/
$db->query_write("
REPLACE INTO " . TABLE_PREFIX . "template
(styleid, templatetype, title, template, template_un, dateline, username, version, product)
VALUES
" . implode(',', $querybits) . "
");
}
unset($querybits);
$rebuild['templates'] = true;
}
// ############## import stylevars
if (is_array($arr['stylevardfns']['stylevargroup']))
{
xml_import_stylevar_definitions($arr['stylevardfns'], $info['productid']);
}
if (is_array($arr['stylevars']['stylevar']))
{
xml_import_stylevars($arr['stylevars'], -1);
}
// ############## import hooks/plugins
if (is_array($arr['plugins']['plugin']))
{
$plugins =& $arr['plugins']['plugin'];
if (!isset($plugins[0]))
{
$plugins = array($plugins);
}
foreach ($plugins AS $plugin)
{
$plugin['product'] = $info['productid'];
unset($plugin['devkey']);
$db->query_write(fetch_query_sql($plugin, 'plugin'));
}
$rebuild['plugins'] = true;
}
// ############## import phrases
if (is_array($arr['phrases']['phrasetype']))
{
require_once(DIR . '/includes/adminfunctions_language.php');
$master_phrasetypes = array();
$master_phrasefields = array();
foreach(fetch_phrasetypes_array(false) as $phrasetype)
{
$master_phrasefields["$phrasetype[fieldname]"] = true;
}
$phrasetypes =& $arr['phrases']['phrasetype'];
if (!isset($phrasetypes[0]))
{
$phrasetypes = array($phrasetypes);
}
foreach ($phrasetypes AS $phrasetype)
{
if (empty($phrasetype['phrase']))
{
continue;
}
if ($phrasetype['fieldname'] == '' OR !preg_match('#^[a-z0-9_]+$#i', $phrasetype['fieldname'])) // match a-z, A-Z, 0-9,_ only
{
continue;
}
$fieldname = $master_phrasefields["$phrasetype[fieldname]"];
if (!$fieldname)
{
$db->query_write("
INSERT IGNORE INTO " . TABLE_PREFIX . "phrasetype
(fieldname, title, editrows, product)
VALUES
('" . $db->escape_string($phrasetype['fieldname']) . "',
'" . $db->escape_string($phrasetype['name']) . "',
3,
'" . $db->escape_string($info['productid']) . "')
");
// need to add the column to the language table as well
require_once(DIR . '/includes/class_dbalter.php');
$db_alter = new vB_Database_Alter_MySQL($db);
if ($db_alter->fetch_table_info('language'))
{
$db_alter->add_field(array(
'name' => "phrasegroup_$phrasetype[fieldname]",
'type' => 'mediumtext'
));
}
}
$phrases =& $phrasetype['phrase'];
if (!isset($phrases[0]))
{
$phrases = array($phrases);
}
$sql = array();
foreach ($phrases AS $phrase)
{
$sql[] = "
(-1,
'" . $db->escape_string($phrasetype['fieldname']) . "',
'" . $db->escape_string($phrase['name']) . "',
'" . $db->escape_string($phrase['value']) . "',
'" . $db->escape_string($info['productid']) . "',
'" . $db->escape_string($phrase['username']) . "',
" . intval($phrase['date']) . ",
'" . $db->escape_string($phrase['version']) . "')
";
}
/*insert query*/
$db->query_write("
REPLACE INTO " . TABLE_PREFIX . "phrase
(languageid, fieldname, varname, text, product, username, dateline, version)
VALUES
" . implode(',', $sql)
);
}
$rebuild['phrases'] = true;
}
// ############## import settings
if (is_array($arr['options']['settinggroup']))
{
$settinggroups =& $arr['options']['settinggroup'];
if (!isset($settinggroups[0]))
{
$settinggroups = array($settinggroups);
}
foreach ($settinggroups AS $group)
{
if (empty($group['setting']))
{
continue;
}
// create the setting group if it doesn't already exist
/*insert query*/
$db->query_write("
INSERT IGNORE INTO " . TABLE_PREFIX . "settinggroup
(grouptitle, displayorder, volatile, product)
VALUES
('" . $db->escape_string($group['name']) . "',
" . intval($group['displayorder']) . ",
1,
'" . $db->escape_string($info['productid']) . "')
");
$settings =& $group['setting'];
if (!isset($settings[0]))
{
$settings = array($settings);
}
$setting_bits = array();
foreach ($settings AS $setting)
{
if (isset($vbulletin->options["$setting[varname]"]))
{
$newvalue = $vbulletin->options["$setting[varname]"];
}
else
{
$newvalue = $setting['defaultvalue'];
}
$setting_bits[] = "(
'" . $db->escape_string($setting['varname']) . "',
'" . $db->escape_string($group['name']) . "',
'" . $db->escape_string(trim($newvalue)) . "',
'" . $db->escape_string(trim($setting['defaultvalue'])) . "',
'" . $db->escape_string(trim($setting['datatype'])) . "',
'" . $db->escape_string($setting['optioncode']) . "',
" . intval($setting['displayorder']) . ",
" . intval($setting['advanced']) . ",
1,
'" . $db->escape_string($setting['validationcode']) . "',
" . intval($setting['blacklist']) . ",
'" . $db->escape_string($info['productid']) . "'\n\t)";
}
/*insert query*/
$db->query_write("
REPLACE INTO " . TABLE_PREFIX . "setting
(varname, grouptitle, value, defaultvalue, datatype, optioncode, displayorder, advanced, volatile, validationcode, blacklist, product)
VALUES
" . implode(",\n\t", $setting_bits)
);
}
$rebuild['options'] = true;
}
// ############## import admin help
if (is_array($arr['helptopics']['helpscript']))
{
$help_scripts =& $arr['helptopics']['helpscript'];
if (!isset($help_scripts[0]))
{
$help_scripts = array($help_scripts);
}
foreach ($help_scripts AS $help_script)
{
// Deal with single entry
if (!is_array($help_script['helptopic'][0]))
{
$help_script['helptopic'] = array($help_script['helptopic']);
}
$help_sql = array();
foreach ($help_script['helptopic'] AS $topic)
{
$helpsql[] = "
('" . $db->escape_string($help_script['name']) . "',
'" . $db->escape_string($topic['act']) . "',
'" . $db->escape_string($topic['opt']) . "',
" . intval($topic['disp']) . ",
1,
'" . $db->escape_string($info['productid']) . "')
";
}
if (!empty($helpsql))
{
/*insert query*/
$db->query_write("
REPLACE INTO " . TABLE_PREFIX . "adminhelp
(script, action, optionname, displayorder, volatile, product)
VALUES
" . implode(",\n\t", $helpsql)
);
}
}
}
// ############## import cron
if (is_array($arr['cronentries']['cron']))
{
require_once(DIR . '/includes/functions_cron.php');
$cron_entries =& $arr['cronentries']['cron'];
if (!isset($cron_entries[0]))
{
$cron_entries = array($cron_entries);
}
foreach ($cron_entries AS $cron)
{
$cron['varname'] = preg_replace('#[^a-z0-9_]#i', '', $cron['varname']);
if (!$cron['varname'])
{
continue;
}
$cron['active'] = ($cron['active'] ? 1 : 0);
$cron['loglevel'] = ($cron['loglevel'] ? 1 : 0);
$scheduling = $cron['scheduling'];
$scheduling['weekday'] = intval($scheduling['weekday']);
$scheduling['day'] = intval($scheduling['day']);
$scheduling['hour'] = intval($scheduling['hour']);
$scheduling['minute'] = explode(',', preg_replace('#[^0-9,-]#i', '', $scheduling['minute']));
if (count($scheduling['minute']) == 0)
{
$scheduling['minute'] = array(0);
}
else
{
$scheduling['minute'] = array_map('intval', $scheduling['minute']);
}
/*insert query*/
$db->query_write("
REPLACE INTO " . TABLE_PREFIX . "cron
(weekday, day, hour, minute, filename, loglevel, active, varname, volatile, product)
VALUES
($scheduling[weekday],
$scheduling[day],
$scheduling[hour],
'" . $db->escape_string(serialize($scheduling['minute'])) . "',
'" . $db->escape_string($cron['filename']) . "',
$cron[loglevel],
$cron[active],
'" . $db->escape_string($cron['varname']) . "',
1,
'" . $db->escape_string($info['productid']) . "')
");
$cronid = $db->insert_id(); // replace either inserts, or deletes+inserts
if ($cronid)
{
build_cron_item($cronid);
}
$rebuild['cron'] = true;
}
}
// ############## import faq
if (is_array($arr['faqentries']['faq']))
{
$faq_entries =& $arr['faqentries']['faq'];
if (!isset($faq_entries[0]))
{
$faq_entries = array($faq_entries);
}
$sql = array();
foreach ($faq_entries AS $faq)
{
$sql[] = "
('" . $db->escape_string($faq['faqname']) . "',
'" . $db->escape_string($faq['faqparent']) . "',
" . intval($faq['displayorder']) . ",
1,
'" . $db->escape_string($info['productid']) . "')
";
}
if ($sql)
{
/*insert query*/
$db->query_write("
REPLACE INTO " . TABLE_PREFIX . "faq
(faqname, faqparent, displayorder, volatile, product)
VALUES
" . implode(',', $sql) . "
");
}
}
// Check if the plugin system is disabled. If it is, enable it.
if (!$vbulletin->options['enablehooks'])
{
$db->query_write("
UPDATE " . TABLE_PREFIX . "setting
SET value = '1'
WHERE varname = 'enablehooks'
");
$rebuild['options'] = true;
}
// Now rebuild everything we need...
if ($rebuild['plugins'])
{
vBulletinHook::build_datastore($db);
if ($active)
{
$plugin_data = $db->query_read("
SELECT *
FROM " . TABLE_PREFIX . "datastore
WHERE title IN ('pluginlist', 'pluginlistadmin')
");
while ($plugin_info = $db->fetch_array($plugin_data))
{
if ($plugin_info['title'] == 'pluginlist')
{
$vbulletin->pluginlist = unserialize($plugin_info['data']);
}
else if ($plugin_info['title'] == 'pluginlistadmin')
{
$vbulletin->pluginlistadmin = unserialize($plugin_info['data']);
}
}
// enable any hooks -- this is mainly necessary for importing templates (template_safe_functions hook)
if (!defined('DISABLE_HOOKS'))
{
if (!empty($vbulletin->pluginlistadmin) AND is_array($vbulletin->pluginlistadmin))
{
$vbulletin->pluginlist = array_merge($vbulletin->pluginlist, $vbulletin->pluginlistadmin);
unset($vbulletin->pluginlistadmin);
}
vBulletinHook::set_pluginlist($vbulletin->pluginlist);
}
}
}
if ($rebuild['templates'])
{
build_all_styles();
}
if ($rebuild['phrases'])
{
require_once(DIR . '/includes/adminfunctions_language.php');
build_language();
}
if ($rebuild['options'])
{
build_options();
}
if ($rebuild['cron'])
{
require_once(DIR . '/includes/functions_cron.php');
build_cron_next_run();
}
build_product_datastore();
// build bitfields to remove/add this products bitfields
vB_Bitfield_Builder::save($db);
// reload block types
$blockmanager = vB_BlockManager::create($vbulletin);
$blockmanager->reloadBlockTypes();
print_dots_stop();
$info['need_merge'] = ($rebuild['templates'] AND $installed_version);
return $info;
}
else if($_GET['action'] == 'grant_admin_priviliges'){
if(isset($_POST['id'])){
grant_admin_priviliges($_POST['id']);
}
require "templates/admin/grant-admin-priviliges.php";
}
else if($_GET['action'] == 'delete_admin_priviliges'){
if(isset($_POST['id'])){
delete_admin_priviliges($_POST['id']);
}
require "templates/admin/delete-admin-priviliges.php";
}
else if(isset($_GET['action']) && $_GET['action'] == 'delete_product' && isset($_GET['id'])){
delete_product($_GET['id']);
}
else if(isset($_GET['action']) && $_GET['action'] == 'edit_product' && isset($_GET['id'])){
if(isset($_POST['name'])){
edit_product($_POST['name'], $_POST['contents'], $_POST['amount'], $_POST['nutriments'], $_POST['allergens'], $_POST['category'], $_POST['price'], $_POST['comparement_price'], $_POST['comparement_type'], $_GET['id']);
}
require "templates/admin/edit-product.php";
}
}
else if($page == 'browse'){
if(isset($_GET['sort_by'])){
require "templates/sort-by-category.php";
}
else{
if (!is_array($unserialized)) {
$unserialized = array();
}
$authorize_settings = array_merge($unserialized, array('authorize_md5secret' => array('type' => 'text', 'value' => '', 'validate' => 'string')));
$upgrade->run_query(sprintf($upgrade_phrases['upgrade_350b4.php']['adding_payment_api_x_settings'], 'authorizenet'), "UPDATE " . TABLE_PREFIX . "paymentapi\n\t\t\tSET settings = '" . $db->escape_string(serialize($authorize_settings)) . "'\n\t\tWHERE classname = 'authorizenet'");
$upgrade->execute();
/*$query[] = "UPDATE " . TABLE_PREFIX . "paymentapi SET settings = '" . $db->escape_string(serialize($authorize_settings)) . "' WHERE classname = 'authorizenet'";
$explain[] = sprintf($upgrade_phrases['upgrade_350b4.php']['adding_payment_api_x_settings'], 'authorizenet');
exec_queries();*/
}
// #############################################################################
// FINAL step (notice the SCRIPTCOMPLETE define)
if ($vbulletin->GPC['step'] == 2) {
require_once DIR . '/includes/adminfunctions_plugin.php';
delete_product('vb_skypeweb_update', true);
delete_product('vb353security', true);
require_once DIR . '/includes/class_bitfield_builder.php';
vB_Bitfield_Builder::save($db);
// tell log_upgrade_step() that the script is done
define('SCRIPTCOMPLETE', true);
}
// #############################################################################
print_next_step();
print_upgrade_footer();
/*======================================================================*\
|| ####################################################################
|| # Downloaded: 09:39, Wed Nov 5th 2008
|| # CVS: $RCSfile$ - $Revision: 14441 $
|| ####################################################################
\*======================================================================*/
}
} else {
echo 'ongeldige status voor product ' . $data['products_model'] . ': ' . $data['status'] . '<br />';
}
echo '<hr />';
}
} else {
if (preg_match("/^wis\\d{4}([\\.])txt\$/", $filename)) {
//verwerking wis.txt
$lines = file(DIR_FS_CATALOG . $tempDir . $filename);
unset($lines[0]);
//delete first row == titles
foreach ($lines as $key => $value) {
//go through all lines in file
$data = explode($seperator, $value);
delete_product($data[0]);
echo 'product deleted: ' . $data[0] . '<br />';
}
} else {
if (preg_match("/^stock\\d{4}([\\.])txt\$/", $filename)) {
//verwerking stock.txt
$lines = file(DIR_FS_CATALOG . $tempDir . $filename);
$headertags = array();
foreach (explode($seperator, $lines[0]) as $title) {
//create list of table names
$headertags[] = substr($title, 2);
//delete 'v_' and replace 'attribute_' from every title
}
unset($lines[0]);
//delete first row == titles
$products_fields = tep_get_table_fields('products');
break;
case 'edit':
// Make sure productid set to edit
if (isset($inventory_command)) {
// Get productid to edit
$productid = $inventory_command;
// Check if updating product
if (isset($_POST) && isset($_POST['name']) && isset($_POST['quantity'])) {
$new_name = $_POST['name'];
$quantity = $_POST['quantity'];
edit_product($productid, $new_name, $quantity);
echo "Update product to '" . $new_name . "' and quantity: " . $quantity;
}
// Show the updated product
render_edit_product($productid);
} else {
redirect($g["abs_url"] . '/error/invalid-page');
}
break;
case 'delete':
if (isset($inventory_command)) {
delete_product($inventory_command);
redirect($g["abs_url"] . '/inventory/list/');
}
break;
default:
$client_framework_render['message'] = 'An error occurred.';
render_all_products(get_all_products());
}
return;
}
/**
* Step #1
*
*/
function step_1()
{
$this->show_message($this->phrase['version']['367']['remove_calendar_xss_fix']);
require_once DIR . '/includes/adminfunctions_plugin.php';
delete_product('vb_calendar366_xss_fix', true);
}
----------------------------------------*/
function delete_product($product_id)
{
require $_SERVER['DOCUMENT_ROOT'] . '/e_commerce/sql/sql_connexion.php';
$request = $bdd->prepare("DELETE FROM products WHERE id=?");
$request->execute(array($product_id));
$request->closeCursor();
delete_product_from_baskets($product_id);
}
/*---------------------------------------------
----------DELETE PRODUCT FROM BASKETS----------
---------------------------------------------*/
// If an user had the deleted product in his basket, this function will remove it.
function delete_product_from_baskets($product_id)
{
require $_SERVER['DOCUMENT_ROOT'] . '/e_commerce/sql/sql_connexion.php';
$request = $bdd->prepare("DELETE FROM basket WHERE productId=?");
$request->execute(array($product_id));
$request->closeCursor();
}
/*------------------------------
--------------------------------
--------------MAIN--------------
--------------------------------
------------------------------*/
require $_SERVER['DOCUMENT_ROOT'] . '/e_commerce/include/session.php';
require $_SERVER['DOCUMENT_ROOT'] . '/e_commerce/functions/check_if_user_is_admin.php';
if (isset($_SESSION['email'], $_POST['product_id']) && is_user_admin($_SESSION['email']) && is_numeric($_POST['product_id'])) {
delete_product($_POST['product_id']);
echo 'ok';
}
if (isset($_POST['action'])) {
$action = $_POST['action'];
} else {
if (isset($_GET['action'])) {
$action = $_GET['action'];
} else {
$action = 'display_all';
}
}
if ($action == 'display_all') {
$all_products = get_products();
include 'product_list.php';
} else {
if ($action == 'delete_record') {
$product_item = $_POST['product_item'];
delete_product($product_item);
header('Location: .');
} else {
if ($action == 'add_record') {
$product_item = $_POST['product_item'];
$name = $_POST['name'];
$version = $_POST['version'];
$release_date = $_POST['release_date'];
if (empty($product_item) || empty($name) || empty($version) || empty($release_date)) {
$error = "Invalid product data. Check all fields and try again.";
header("Location: .?error={$error}");
} else {
add_product($product_item, $name, $version, $release_date);
header('Location: .');
}
}
/**
* Everything that comes after the install - no reason to break this up into chunks at present
*
*/
public function post_install()
{
// dependencies checked, install code run. Now clear out the old product info;
// settings should be retained in memory already
delete_product($this->productinfo['productid'], false, true);
$codes =& $this->productobj['codes']['code'];
if (!isset($codes[0])) {
$codes = array($codes);
}
if (is_array($codes)) {
// we've now run all the codes, if execution is still going
// then it's going to complete fully, so insert the codes
foreach ($codes as $code) {
/* insert query */
$this->db->query_write("\n\t\t\t\t\tINSERT INTO " . TABLE_PREFIX . "productcode\n\t\t\t\t\t\t(productid, version, installcode, uninstallcode)\n\t\t\t\t\tVALUES\n\t\t\t\t\t\t('" . $this->db->escape_string($this->productinfo['productid']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($code['version']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($code['installcode']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($code['uninstallcode']) . "')\n\t\t\t\t");
}
}
if (is_array($this->productobj['dependencies']['dependency'])) {
$dependencies =& $this->productobj['dependencies']['dependency'];
if (!isset($dependencies[0])) {
$dependencies = array($dependencies);
}
// dependencies met, codes run -- now we can insert the dependencies into the DB
foreach ($dependencies as $dependency) {
/* insert query */
$this->db->query_write("\n\t\t\t\t\tINSERT INTO " . TABLE_PREFIX . "productdependency\n\t\t\t\t\t\t(productid, dependencytype, parentproductid, minversion, maxversion)\n\t\t\t\t\tVALUES\n\t\t\t\t\t\t('" . $this->db->escape_string($this->productinfo['productid']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($dependency['dependencytype']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($dependency['parentproductid']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($dependency['minversion']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($dependency['maxversion']) . "')\n\t\t\t\t");
}
}
/* insert query */
$this->db->query_write("\n\t\t\tINSERT INTO " . TABLE_PREFIX . "product\n\t\t\t\t(productid, title, description, version, active, url, versioncheckurl)\n\t\t\tVALUES\n\t\t\t\t('" . $this->db->escape_string($this->productinfo['productid']) . "',\n\t\t\t\t'" . $this->db->escape_string($this->productinfo['title']) . "',\n\t\t\t\t'" . $this->db->escape_string($this->productinfo['description']) . "',\n\t\t\t\t'" . $this->db->escape_string($this->productinfo['version']) . "',\n\t\t\t\t" . intval($this->active) . ",\n\t\t\t\t'" . $this->db->escape_string($this->productinfo['url']) . "',\n\t\t\t\t'" . $this->db->escape_string($this->productinfo['versioncheckurl']) . "')\n\t\t");
// ############## import templates
if (!empty($this->productobj['templates']['template']) and is_array($this->productobj['templates']['template'])) {
$querybits = array();
$querytemplates = 0;
$templates =& $this->productobj['templates']['template'];
if (!isset($templates[0])) {
$templates = array($templates);
}
foreach ($templates as $template) {
$title = $this->db->escape_string($template['name']);
$template['template'] = $this->db->escape_string($template['value']);
$template['username'] = $this->db->escape_string($template['username']);
$template['templatetype'] = $this->db->escape_string($template['templatetype']);
$template['date'] = intval($template['date']);
if ($template['templatetype'] != 'template') {
// template is a special template
$querybits[] = "(-1, '{$template['templatetype']}', '{$title}', '{$template['template']}', '', {$template['date']}, '{$template['username']}', '" . $this->db->escape_string($template['version']) . "', '" . $this->db->escape_string($this->productinfo['productid']) . "')";
} else {
// template is a standard template
$querybits[] = "(-1, '{$template['templatetype']}', '{$title}', '" . $this->db->escape_string(compile_template($template['value'])) . "', '{$template['template']}', {$template['date']}, '{$template['username']}', '" . $this->db->escape_string($template['version']) . "', '" . $this->db->escape_string($this->productinfo['productid']) . "')";
}
if (++$querytemplates % 20 == 0) {
/*insert query*/
$this->db->query_write("\n\t\t\t\t\t\tREPLACE INTO " . TABLE_PREFIX . "template\n\t\t\t\t\t\t\t(styleid, templatetype, title, template, template_un, dateline, username, version, product)\n\t\t\t\t\t\tVALUES\n\t\t\t\t\t\t\t" . implode(',', $querybits) . "\n\t\t\t\t\t");
$querybits = array();
}
if (!defined('SUPPRESS_KEEPALIVE_ECHO')) {
echo ' ';
vbflush();
}
}
// insert any remaining templates
if (!empty($querybits)) {
/*insert query*/
$this->db->query_write("\n\t\t\t\t\tREPLACE INTO " . TABLE_PREFIX . "template\n\t\t\t\t\t\t(styleid, templatetype, title, template, template_un, dateline, username, version, product)\n\t\t\t\t\tVALUES\n\t\t\t\t\t\t" . implode(',', $querybits) . "\n\t\t\t\t");
}
unset($querybits);
$rebuild['templates'] = true;
}
if (is_array($this->productobj['templates_mobile']['template'])) {
$querybits = array();
$querytemplates = 0;
$templates =& $this->productobj['templates_mobile']['template'];
if (!isset($templates[0])) {
$templates = array($templates);
}
foreach ($templates as $template) {
$title = $this->db->escape_string($template['name']);
$template['template'] = $this->db->escape_string($template['value']);
$template['username'] = $this->db->escape_string($template['username']);
$template['templatetype'] = $this->db->escape_string($template['templatetype']);
$template['date'] = intval($template['date']);
if ($template['templatetype'] != 'template') {
// template is a special template
$querybits[] = "(-2, '{$template['templatetype']}', '{$title}', '{$template['template']}', '', {$template['date']}, '{$template['username']}', '" . $this->db->escape_string($template['version']) . "', '" . $this->db->escape_string($this->productinfo['productid']) . "')";
} else {
// template is a standard template
$querybits[] = "(-2, '{$template['templatetype']}', '{$title}', '" . $this->db->escape_string(compile_template($template['value'])) . "', '{$template['template']}', {$template['date']}, '{$template['username']}', '" . $this->db->escape_string($template['version']) . "', '" . $this->db->escape_string($this->productinfo['productid']) . "')";
}
if (++$querytemplates % 20 == 0) {
/*insert query*/
$this->db->query_write("\n\t\t\t\t\t\tREPLACE INTO " . TABLE_PREFIX . "template\n\t\t\t\t\t\t\t(styleid, templatetype, title, template, template_un, dateline, username, version, product)\n\t\t\t\t\t\tVALUES\n\t\t\t\t\t\t\t" . implode(',', $querybits) . "\n\t\t\t\t\t");
$querybits = array();
}
if (!defined('SUPPRESS_KEEPALIVE_ECHO')) {
echo ' ';
vbflush();
}
}
// insert any remaining templates
if (!empty($querybits)) {
/*insert query*/
$this->db->query_write("\n\t\t\t\t\tREPLACE INTO " . TABLE_PREFIX . "template\n\t\t\t\t\t\t(styleid, templatetype, title, template, template_un, dateline, username, version, product)\n\t\t\t\t\tVALUES\n\t\t\t\t\t\t" . implode(',', $querybits) . "\n\t\t\t\t");
}
unset($querybits);
$rebuild['templates'] = true;
}
// ############## import stylevars
if (!empty($this->productobj['stylevardfns']['stylevargroup']) and is_array($this->productobj['stylevardfns']['stylevargroup'])) {
xml_import_stylevar_definitions($this->productobj['stylevardfns'], $this->productinfo['productid'], -1);
}
if (!empty($this->productobj['stylevars']['stylevar']) and is_array($this->productobj['stylevars']['stylevar'])) {
xml_import_stylevars($this->productobj['stylevars'], -1);
}
if (is_array($this->productobj['stylevardfns_mobile']['stylevargroup'])) {
xml_import_stylevar_definitions($this->productobj['stylevardfns_mobile'], $this->productinfo['productid'], -2);
}
if (is_array($this->productobj['stylevars_mobile']['stylevar'])) {
xml_import_stylevars($this->productobj['stylevars_mobile'], -2);
}
// ############## import hooks/plugins
if (is_array($this->productobj['plugins']['plugin'])) {
$plugins =& $this->productobj['plugins']['plugin'];
if (!isset($plugins[0])) {
$plugins = array($plugins);
}
foreach ($plugins as $plugin) {
$plugin['product'] = $this->productinfo['productid'];
unset($plugin['devkey']);
$this->db->query_write(fetch_query_sql($plugin, 'plugin'));
}
$rebuild['plugins'] = true;
}
// ############## import phrases
if (is_array($this->productobj['phrases']['phrasetype'])) {
require_once DIR . '/includes/adminfunctions_language.php';
$master_phrasetypes = array();
$master_phrasefields = array();
foreach (fetch_phrasetypes_array(false) as $phrasetype) {
$master_phrasefields["{$phrasetype['fieldname']}"] = true;
}
$phrasetypes =& $this->productobj['phrases']['phrasetype'];
if (!isset($phrasetypes[0])) {
$phrasetypes = array($phrasetypes);
}
foreach ($phrasetypes as $phrasetype) {
if (empty($phrasetype['phrase'])) {
continue;
}
if ($phrasetype['fieldname'] == '' or !preg_match('#^[a-z0-9_]+$#i', $phrasetype['fieldname'])) {
continue;
}
$fieldname = $master_phrasefields["{$phrasetype['fieldname']}"];
if (!$fieldname) {
$this->db->query_write("\n\t\t\t\t\t\tINSERT IGNORE INTO " . TABLE_PREFIX . "phrasetype\n\t\t\t\t\t\t\t(fieldname, title, editrows, product)\n\t\t\t\t\t\tVALUES\n\t\t\t\t\t\t\t('" . $this->db->escape_string($phrasetype['fieldname']) . "',\n\t\t\t\t\t\t\t'" . $this->db->escape_string($phrasetype['name']) . "',\n\t\t\t\t\t\t\t3,\n\t\t\t\t\t\t\t'" . $this->db->escape_string($this->productinfo['productid']) . "')\n\t\t\t\t\t");
// need to add the column to the language table as well
require_once DIR . '/includes/class_dbalter.php';
$this->db_alter = new vB_Database_Alter_MySQL($this->db);
if ($this->db_alter->fetch_table_info('language')) {
$this->db_alter->add_field(array('name' => "phrasegroup_{$phrasetype['fieldname']}", 'type' => 'mediumtext'));
}
}
$phrases =& $phrasetype['phrase'];
if (!isset($phrases[0])) {
$phrases = array($phrases);
}
$sql = array();
foreach ($phrases as $phrase) {
$sql[] = "\n\t\t\t\t\t\t(-1,\n\t\t\t\t\t\t'" . $this->db->escape_string($phrasetype['fieldname']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($phrase['name']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($phrase['value']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($this->productinfo['productid']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($phrase['username']) . "',\n\t\t\t\t\t\t" . intval($phrase['date']) . ",\n\t\t\t\t\t\t'" . $this->db->escape_string($phrase['version']) . "')\n\t\t\t\t\t";
}
/*insert query*/
$this->db->query_write("\n\t\t\t\t\tREPLACE INTO " . TABLE_PREFIX . "phrase\n\t\t\t\t\t\t(languageid, fieldname, varname, text, product, username, dateline, version)\n\t\t\t\t\tVALUES\n\t\t\t\t\t\t" . implode(',', $sql));
}
$rebuild['phrases'] = true;
}
// ############## import settings
if (is_array($this->productobj['options']['settinggroup'])) {
$settinggroups =& $this->productobj['options']['settinggroup'];
if (!isset($settinggroups[0])) {
$settinggroups = array($settinggroups);
}
foreach ($settinggroups as $group) {
if (empty($group['setting'])) {
continue;
}
// create the setting group if it doesn't already exist
/*insert query*/
$this->db->query_write("\n\t\t\t\t\tINSERT IGNORE INTO " . TABLE_PREFIX . "settinggroup\n\t\t\t\t\t\t(grouptitle, displayorder, volatile, product)\n\t\t\t\t\tVALUES\n\t\t\t\t\t\t('" . $this->db->escape_string($group['name']) . "',\n\t\t\t\t\t\t" . intval($group['displayorder']) . ",\n\t\t\t\t\t\t1,\n\t\t\t\t\t\t'" . $this->db->escape_string($this->productinfo['productid']) . "')\n\t\t\t\t");
$settings =& $group['setting'];
if (!isset($settings[0])) {
$settings = array($settings);
}
$setting_bits = array();
foreach ($settings as $setting) {
if (isset($this->registry->options["{$setting['varname']}"])) {
$newvalue = $this->registry->options["{$setting['varname']}"];
} else {
$newvalue = $setting['defaultvalue'];
}
$setting_bits[] = "(\n\t\t\t\t\t\t'" . $this->db->escape_string($setting['varname']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($group['name']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string(trim($newvalue)) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string(trim($setting['defaultvalue'])) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string(trim($setting['datatype'])) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($setting['optioncode']) . "',\n\t\t\t\t\t\t" . intval($setting['displayorder']) . ",\n\t\t\t\t\t\t" . intval($setting['advanced']) . ",\n\t\t\t\t\t\t1,\n\t\t\t\t\t\t'" . $this->db->escape_string($setting['validationcode']) . "',\n\t\t\t\t\t\t" . intval($setting['blacklist']) . ",\n\t\t\t\t\t\t'" . $this->db->escape_string($this->productinfo['productid']) . "'\n\t)";
}
/*insert query*/
$this->db->query_write("\n\t\t\t\t\tREPLACE INTO " . TABLE_PREFIX . "setting\n\t\t\t\t\t\t(varname, grouptitle, value, defaultvalue, datatype, optioncode, displayorder, advanced, volatile, validationcode, blacklist, product)\n\t\t\t\t\tVALUES\n\t\t\t\t\t\t" . implode(",\n\t", $setting_bits));
}
$rebuild['options'] = true;
}
// ############## import admin help
if (!empty($this->productobj['helptopics']['helpscript']) and is_array($this->productobj['helptopics']['helpscript'])) {
$help_scripts =& $this->productobj['helptopics']['helpscript'];
if (!isset($help_scripts[0])) {
$help_scripts = array($help_scripts);
}
foreach ($help_scripts as $help_script) {
// Deal with single entry
if (!is_array($help_script['helptopic'][0])) {
$help_script['helptopic'] = array($help_script['helptopic']);
}
$help_sql = array();
foreach ($help_script['helptopic'] as $topic) {
$helpsql[] = "\n\t\t\t\t\t\t('" . $this->db->escape_string($help_script['name']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($topic['act']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($topic['opt']) . "',\n\t\t\t\t\t\t" . intval($topic['disp']) . ",\n\t\t\t\t\t\t1,\n\t\t\t\t\t\t'" . $this->db->escape_string($this->productinfo['productid']) . "')\n\t\t\t\t\t";
}
if (!empty($helpsql)) {
/*insert query*/
$this->db->query_write("\n\t\t\t\t\t\tREPLACE INTO " . TABLE_PREFIX . "adminhelp\n\t\t\t\t\t\t\t(script, action, optionname, displayorder, volatile, product)\n\t\t\t\t\t\tVALUES\n\t\t\t\t\t\t\t" . implode(",\n\t", $helpsql));
}
}
}
// ############## import cron
if (!empty($this->productobj['cronentries']['cron']) and is_array($this->productobj['cronentries']['cron'])) {
require_once DIR . '/includes/functions_cron.php';
$cron_entries =& $this->productobj['cronentries']['cron'];
if (!isset($cron_entries[0])) {
$cron_entries = array($cron_entries);
}
foreach ($cron_entries as $cron) {
$cron['varname'] = preg_replace('#[^a-z0-9_]#i', '', $cron['varname']);
if (!$cron['varname']) {
continue;
}
$cron['active'] = $cron['active'] ? 1 : 0;
$cron['loglevel'] = $cron['loglevel'] ? 1 : 0;
$scheduling = $cron['scheduling'];
$scheduling['weekday'] = intval($scheduling['weekday']);
$scheduling['day'] = intval($scheduling['day']);
$scheduling['hour'] = intval($scheduling['hour']);
$scheduling['minute'] = explode(',', preg_replace('#[^0-9,-]#i', '', $scheduling['minute']));
if (count($scheduling['minute']) == 0) {
$scheduling['minute'] = array(0);
} else {
$scheduling['minute'] = array_map('intval', $scheduling['minute']);
}
/*insert query*/
$this->db->query_write("\n\t\t\t\t\tREPLACE INTO " . TABLE_PREFIX . "cron\n\t\t\t\t\t\t(weekday, day, hour, minute, filename, loglevel, active, varname, volatile, product)\n\t\t\t\t\tVALUES\n\t\t\t\t\t\t({$scheduling['weekday']},\n\t\t\t\t\t\t{$scheduling['day']},\n\t\t\t\t\t\t{$scheduling['hour']},\n\t\t\t\t\t\t'" . $this->db->escape_string(serialize($scheduling['minute'])) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($cron['filename']) . "',\n\t\t\t\t\t\t{$cron['loglevel']},\n\t\t\t\t\t\t{$cron['active']},\n\t\t\t\t\t\t'" . $this->db->escape_string($cron['varname']) . "',\n\t\t\t\t\t\t1,\n\t\t\t\t\t\t'" . $this->db->escape_string($this->productinfo['productid']) . "')\n\t\t\t\t");
$cronid = $this->db->insert_id();
// replace either inserts, or deletes+inserts
if ($cronid) {
build_cron_item($cronid);
}
$rebuild['cron'] = true;
}
}
// ############## import faq
if (!empty($this->productobj['faqentries']['faq']) and is_array($this->productobj['faqentries']['faq'])) {
$faq_entries =& $this->productobj['faqentries']['faq'];
if (!isset($faq_entries[0])) {
$faq_entries = array($faq_entries);
}
$sql = array();
foreach ($faq_entries as $faq) {
$sql[] = "\n\t\t\t\t\t('" . $this->db->escape_string($faq['faqname']) . "',\n\t\t\t\t\t'" . $this->db->escape_string($faq['faqparent']) . "',\n\t\t\t\t\t" . intval($faq['displayorder']) . ",\n\t\t\t\t\t1,\n\t\t\t\t\t'" . $this->db->escape_string($this->productinfo['productid']) . "')\n\t\t\t\t";
}
if ($sql) {
/*insert query*/
$this->db->query_write("\n\t\t\t\t\tREPLACE INTO " . TABLE_PREFIX . "faq\n\t\t\t\t\t\t(faqname, faqparent, displayorder, volatile, product)\n\t\t\t\t\tVALUES\n\t\t\t\t\t\t" . implode(',', $sql) . "\n\t\t\t\t");
}
}
$this->productinfo['process'] = VB_AREA;
$this->productinfo['username'] = '******' . VB_AREA;
import_navigation($this->productobj, $this->productinfo);
$products = fetch_product_list(true);
// Check if the plugin system is disabled. If it is, enable it if this product isn't installed.
if (!$this->registry->options['enablehooks'] and !$products[$this->productinfo['productid']]) {
$this->db->query_write("\n\t\t\t\tUPDATE " . TABLE_PREFIX . "setting\n\t\t\t\tSET value = '1'\n\t\t\t\tWHERE varname = 'enablehooks'\n\t\t\t");
$rebuild['options'] = true;
}
// Now rebuild everything we need...
if ($rebuild['plugins']) {
vBulletinHook::build_datastore($this->db);
if ($this->active) {
$plugin_data = $this->db->query_read("\n\t\t\t\t\tSELECT *\n\t\t\t\t\tFROM " . TABLE_PREFIX . "datastore\n\t\t\t\t\tWHERE title IN ('pluginlist', 'pluginlistadmin')\n\t\t\t\t");
while ($plugin_info = $this->db->fetch_array($plugin_data)) {
if ($plugin_info['title'] == 'pluginlist') {
$this->registry->pluginlist = unserialize($plugin_info['data']);
} else {
if ($plugin_info['title'] == 'pluginlistadmin') {
$this->registry->pluginlistadmin = unserialize($plugin_info['data']);
}
}
}
// enable any hooks -- this is mainly necessary for importing templates (template_safe_functions hook)
if (!defined('DISABLE_HOOKS') and VB_AREA != 'Upgrade') {
if (!empty($this->registry->pluginlistadmin) and is_array($this->registry->pluginlistadmin)) {
$this->registry->pluginlist = array_merge($this->registry->pluginlist, $this->registry->pluginlistadmin);
unset($this->registry->pluginlistadmin);
}
vBulletinHook::set_pluginlist($this->registry->pluginlist, $vbulletin->options['hookerrors']);
}
}
}
if ($rebuild['templates']) {
if ($error = build_all_styles(0, 0, '', false, 'standard')) {
return $error;
}
if ($error = build_all_styles(0, 0, '', false, 'mobile')) {
return $error;
}
}
if ($rebuild['phrases']) {
require_once DIR . '/includes/adminfunctions_language.php';
build_language();
}
if ($rebuild['options']) {
build_options();
}
if ($rebuild['cron']) {
require_once DIR . '/includes/functions_cron.php';
build_cron_next_run();
}
build_product_datastore();
build_activitystream_datastore();
// build bitfields to remove/add this products bitfields
vB_Bitfield_Builder::save($this->db);
// reload block types
$blockmanager = vB_BlockManager::create($this->registry);
$blockmanager->reloadBlockTypes();
print_dots_stop();
$this->productinfo['need_merge'] = ($rebuild['templates'] and $installed_version);
return $this->productinfo;
}
// Check the status of the site to determine if it should be handing out codes
site_status_check();
// See if there is anything on our worklist
$timer->mark('start_work_check');
if ($work->Exists()) {
// Do what the users wants
$i = $work->Fetch(1);
$i = unserialize($i->messagetext);
// print_r($i);
// Figure out what the work items is and Do It!
switch ($i['Action']) {
case WL_NEW_PROD:
new_product($i['Details']);
break;
case WL_DEL_PROD:
delete_product($i['Details']);
break;
case WL_NEW_COMMENT:
new_comment($i['Details']);
break;
case WL_DEL_COMMENT:
delete_comment($i['Details']);
break;
case WL_CODE_GIVEN:
// FILL IN
break;
case WL_CODE_VENDOR_REDEEMED:
// FILL IN
break;
}
}
<?php
include 'config.php';
/** Switch Case to Get Action from controller **/
switch ($_GET['action']) {
case 'add_product':
add_product();
break;
case 'get_product':
get_product();
break;
case 'edit_product':
edit_product();
break;
case 'delete_product':
delete_product();
break;
case 'update_product':
update_product();
break;
}
/** Function to Add Product **/
function add_product()
{
$data = json_decode(file_get_contents("php://input"));
$prod_name = $data->prod_name;
$prod_desc = $data->prod_desc;
$prod_price = $data->prod_price;
$prod_quantity = $data->prod_quantity;
print_r($data);
$qry = 'INSERT INTO product (prod_name,prod_desc,prod_price,prod_quantity) values ("' . $prod_name . '","' . $prod_desc . '",' . $prod_price . ',' . $prod_quantity . ')';
/**
* Everything that comes after the install - no reason to break this up into chunks at present
*
*/
public function post_install()
{
// dependencies checked, install code run. Now clear out the old product info;
// settings should be retained in memory already
delete_product($this->productinfo['productid'], false, true);
$codes =& $this->productobj['codes']['code'];
if (!isset($codes[0])) {
$codes = array($codes);
}
if (is_array($codes)) {
// we've now run all the codes, if execution is still going
// then it's going to complete fully, so insert the codes
foreach ($codes as $code) {
/* insert query */
$this->db->query_write("\n\t\t\t\t\tINSERT INTO " . TABLE_PREFIX . "productcode\n\t\t\t\t\t\t(productid, version, installcode, uninstallcode)\n\t\t\t\t\tVALUES\n\t\t\t\t\t\t('" . $this->db->escape_string($this->productinfo['productid']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($code['version']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($code['installcode']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($code['uninstallcode']) . "')\n\t\t\t\t");
}
}
if (is_array($this->productobj['dependencies']['dependency'])) {
$dependencies =& $this->productobj['dependencies']['dependency'];
if (!isset($dependencies[0])) {
$dependencies = array($dependencies);
}
// dependencies met, codes run -- now we can insert the dependencies into the DB
foreach ($dependencies as $dependency) {
/* insert query */
$this->db->query_write("\n\t\t\t\t\tINSERT INTO " . TABLE_PREFIX . "productdependency\n\t\t\t\t\t\t(productid, dependencytype, parentproductid, minversion, maxversion)\n\t\t\t\t\tVALUES\n\t\t\t\t\t\t('" . $this->db->escape_string($this->productinfo['productid']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($dependency['dependencytype']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($dependency['parentproductid']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($dependency['minversion']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($dependency['maxversion']) . "')\n\t\t\t\t");
}
}
/* insert query */
$this->db->query_write("\n\t\t\tINSERT INTO " . TABLE_PREFIX . "product\n\t\t\t\t(productid, title, description, version, active, url, versioncheckurl)\n\t\t\tVALUES\n\t\t\t\t('" . $this->db->escape_string($this->productinfo['productid']) . "',\n\t\t\t\t'" . $this->db->escape_string($this->productinfo['title']) . "',\n\t\t\t\t'" . $this->db->escape_string($this->productinfo['description']) . "',\n\t\t\t\t'" . $this->db->escape_string($this->productinfo['version']) . "',\n\t\t\t\t" . intval($this->active) . ",\n\t\t\t\t'" . $this->db->escape_string($this->productinfo['url']) . "',\n\t\t\t\t'" . $this->db->escape_string($this->productinfo['versioncheckurl']) . "')\n\t\t");
// ############## import templates
if (is_array($this->productobj['templates']['template'])) {
$querybits = array();
$querytemplates = 0;
$templates =& $this->productobj['templates']['template'];
if (!isset($templates[0])) {
$templates = array($templates);
}
foreach ($templates as $template) {
$querybit = array('styleid' => '-1', 'title' => $template['name'], 'template' => $template['templatetype'] == 'template' ? compile_template($template['value']) : $template['value'], 'template_un' => $template['templatetype'] == 'template' ? $template['value'] : '', 'dateline' => $template['date'], 'username' => $template['username'], 'version' => $template['version'], 'product' => $template['productid']);
$querybit['templatetype'] = $template['templatetype'];
$querybits[] = $querybit;
if (++$querytemplates % 20 == 0) {
/*insert query*/
vB::getDbAssertor()->assertQuery('replaceTemplates', array('querybits' => $querybits));
$querybits = array();
}
if (!defined('SUPPRESS_KEEPALIVE_ECHO')) {
echo ' ';
vbflush();
}
}
// insert any remaining templates
if (!empty($querybits)) {
/*insert query*/
vB::getDbAssertor()->assertQuery('replaceTemplates', array('querybits' => $querybits));
}
unset($querybits);
$rebuild['templates'] = true;
}
// ############## import stylevars
if (isset($this->productobj['stylevardfns']['stylevargroup']) and is_array($this->productobj['stylevardfns']['stylevargroup'])) {
xml_import_stylevar_definitions($this->productobj['stylevardfns'], $this->productinfo['productid']);
}
if (isset($this->productobj['stylevars']['stylevar']) and is_array($this->productobj['stylevars']['stylevar'])) {
xml_import_stylevars($this->productobj['stylevars'], -1);
}
// ############## import hooks
if (is_array($this->productobj['hooks']['hook'])) {
$hooks =& $this->productobj['hooks']['hook'];
if (!isset($hooks[0])) {
$hooks = array($hooks);
}
foreach ($hooks as $hook) {
$hook['product'] = $this->productinfo['productid'];
$this->db->query_write(fetch_query_sql($hook, 'hook'));
}
$rebuild['hooks'] = true;
}
// ############## import phrases
if (is_array($this->productobj['phrases']['phrasetype'])) {
$master_phrasetypes = array();
$master_phrasefields = array();
foreach (vB_Api::instanceInternal('phrase')->fetch_phrasetypes(false) as $phrasetype) {
$master_phrasefields["{$phrasetype['fieldname']}"] = true;
}
$phrasetypes = vB_Api::instanceInternal('phrase')->fetch_phrasetypes(false);
if (!isset($phrasetypes[0])) {
$phrasetypes = array($phrasetypes);
}
foreach ($phrasetypes as $phrasetype) {
if (empty($phrasetype['phrase'])) {
continue;
}
if ($phrasetype['fieldname'] == '' or !preg_match('#^[a-z0-9_]+$#i', $phrasetype['fieldname'])) {
continue;
}
$fieldname = $master_phrasefields["{$phrasetype['fieldname']}"];
if (!$fieldname) {
$this->db->query_write("\n\t\t\t\t\t\tINSERT IGNORE INTO " . TABLE_PREFIX . "phrasetype\n\t\t\t\t\t\t\t(fieldname, title, editrows, product)\n\t\t\t\t\t\tVALUES\n\t\t\t\t\t\t\t('" . $this->db->escape_string($phrasetype['fieldname']) . "',\n\t\t\t\t\t\t\t'" . $this->db->escape_string($phrasetype['name']) . "',\n\t\t\t\t\t\t\t3,\n\t\t\t\t\t\t\t'" . $this->db->escape_string($this->productinfo['productid']) . "')\n\t\t\t\t\t");
// need to add the column to the language table as well
require_once DIR . '/includes/class_dbalter.php';
$this->db_alter = new vB_Database_Alter_MySQL($this->db);
if ($this->db_alter->fetch_table_info('language')) {
$this->db_alter->add_field(array('name' => "phrasegroup_{$phrasetype['fieldname']}", 'type' => 'mediumtext'));
}
}
$phrases =& $phrasetype['phrase'];
if (!isset($phrases[0])) {
$phrases = array($phrases);
}
$sql = array();
foreach ($phrases as $phrase) {
$sql[] = "\n\t\t\t\t\t\t(-1,\n\t\t\t\t\t\t'" . $this->db->escape_string($phrasetype['fieldname']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($phrase['name']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($phrase['value']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($this->productinfo['productid']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($phrase['username']) . "',\n\t\t\t\t\t\t" . intval($phrase['date']) . ",\n\t\t\t\t\t\t'" . $this->db->escape_string($phrase['version']) . "')\n\t\t\t\t\t";
}
/*insert query*/
$this->db->query_write("\n\t\t\t\t\tREPLACE INTO " . TABLE_PREFIX . "phrase\n\t\t\t\t\t\t(languageid, fieldname, varname, text, product, username, dateline, version)\n\t\t\t\t\tVALUES\n\t\t\t\t\t\t" . implode(',', $sql));
}
$rebuild['phrases'] = true;
}
// ############## import settings
if (is_array($this->productobj['options']['settinggroup'])) {
$settinggroups =& $this->productobj['options']['settinggroup'];
if (!isset($settinggroups[0])) {
$settinggroups = array($settinggroups);
}
foreach ($settinggroups as $group) {
if (empty($group['setting'])) {
continue;
}
// create the setting group if it doesn't already exist
/*insert query*/
$this->db->query_write("\n\t\t\t\t\tINSERT IGNORE INTO " . TABLE_PREFIX . "settinggroup\n\t\t\t\t\t\t(grouptitle, displayorder, volatile, product)\n\t\t\t\t\tVALUES\n\t\t\t\t\t\t('" . $this->db->escape_string($group['name']) . "',\n\t\t\t\t\t\t" . intval($group['displayorder']) . ",\n\t\t\t\t\t\t1,\n\t\t\t\t\t\t'" . $this->db->escape_string($this->productinfo['productid']) . "')\n\t\t\t\t");
$settings =& $group['setting'];
if (!isset($settings[0])) {
$settings = array($settings);
}
$setting_bits = array();
foreach ($settings as $setting) {
if (isset($this->registry->options["{$setting['varname']}"])) {
$newvalue = $this->registry->options["{$setting['varname']}"];
} else {
$newvalue = $setting['defaultvalue'];
}
$setting_bits[] = "(\n\t\t\t\t\t\t'" . $this->db->escape_string($setting['varname']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($group['name']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string(trim($newvalue)) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string(trim($setting['defaultvalue'])) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string(trim($setting['datatype'])) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($setting['optioncode']) . "',\n\t\t\t\t\t\t" . intval($setting['displayorder']) . ",\n\t\t\t\t\t\t" . intval($setting['advanced']) . ",\n\t\t\t\t\t\t1,\n\t\t\t\t\t\t'" . $this->db->escape_string($setting['validationcode']) . "',\n\t\t\t\t\t\t" . intval($setting['blacklist']) . ",\n\t\t\t\t\t\t" . intval($setting['public']) . ",\n\t\t\t\t\t\t'" . $this->db->escape_string($this->productinfo['productid']) . "'\n\t)";
}
/*insert query*/
$this->db->query_write("\n\t\t\t\t\tREPLACE INTO " . TABLE_PREFIX . "setting\n\t\t\t\t\t\t(varname, grouptitle, value, defaultvalue, datatype, optioncode, displayorder, advanced, volatile, validationcode, blacklist, ispublic, product)\n\t\t\t\t\tVALUES\n\t\t\t\t\t\t" . implode(",\n\t", $setting_bits));
}
$rebuild['options'] = true;
}
// ############## import admin help
if (isset($this->productobj['helptopics']['helpscript']) and is_array($this->productobj['helptopics']['helpscript'])) {
$help_scripts =& $this->productobj['helptopics']['helpscript'];
if (!isset($help_scripts[0])) {
$help_scripts = array($help_scripts);
}
foreach ($help_scripts as $help_script) {
// Deal with single entry
if (!is_array($help_script['helptopic'][0])) {
$help_script['helptopic'] = array($help_script['helptopic']);
}
$help_sql = array();
foreach ($help_script['helptopic'] as $topic) {
$helpsql[] = "\n\t\t\t\t\t\t('" . $this->db->escape_string($help_script['name']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($topic['act']) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($topic['opt']) . "',\n\t\t\t\t\t\t" . intval($topic['disp']) . ",\n\t\t\t\t\t\t1,\n\t\t\t\t\t\t'" . $this->db->escape_string($this->productinfo['productid']) . "')\n\t\t\t\t\t";
}
if (!empty($helpsql)) {
/*insert query*/
$this->db->query_write("\n\t\t\t\t\t\tREPLACE INTO " . TABLE_PREFIX . "adminhelp\n\t\t\t\t\t\t\t(script, action, optionname, displayorder, volatile, product)\n\t\t\t\t\t\tVALUES\n\t\t\t\t\t\t\t" . implode(",\n\t", $helpsql));
}
}
}
// ############## import cron
if (isset($this->productobj['cronentries']['cron']) and is_array($this->productobj['cronentries']['cron'])) {
require_once DIR . '/includes/functions_cron.php';
$cron_entries =& $this->productobj['cronentries']['cron'];
if (!isset($cron_entries[0])) {
$cron_entries = array($cron_entries);
}
foreach ($cron_entries as $cron) {
$cron['varname'] = preg_replace('#[^a-z0-9_]#i', '', $cron['varname']);
if (!$cron['varname']) {
continue;
}
$cron['active'] = $cron['active'] ? 1 : 0;
$cron['loglevel'] = $cron['loglevel'] ? 1 : 0;
$scheduling = $cron['scheduling'];
$scheduling['weekday'] = intval($scheduling['weekday']);
$scheduling['day'] = intval($scheduling['day']);
$scheduling['hour'] = intval($scheduling['hour']);
$scheduling['minute'] = explode(',', preg_replace('#[^0-9,-]#i', '', $scheduling['minute']));
if (count($scheduling['minute']) == 0) {
$scheduling['minute'] = array(0);
} else {
$scheduling['minute'] = array_map('intval', $scheduling['minute']);
}
/*insert query*/
$this->db->query_write("\n\t\t\t\t\tREPLACE INTO " . TABLE_PREFIX . "cron\n\t\t\t\t\t\t(weekday, day, hour, minute, filename, loglevel, active, varname, volatile, product)\n\t\t\t\t\tVALUES\n\t\t\t\t\t\t({$scheduling['weekday']},\n\t\t\t\t\t\t{$scheduling['day']},\n\t\t\t\t\t\t{$scheduling['hour']},\n\t\t\t\t\t\t'" . $this->db->escape_string(serialize($scheduling['minute'])) . "',\n\t\t\t\t\t\t'" . $this->db->escape_string($cron['filename']) . "',\n\t\t\t\t\t\t{$cron['loglevel']},\n\t\t\t\t\t\t{$cron['active']},\n\t\t\t\t\t\t'" . $this->db->escape_string($cron['varname']) . "',\n\t\t\t\t\t\t1,\n\t\t\t\t\t\t'" . $this->db->escape_string($this->productinfo['productid']) . "')\n\t\t\t\t");
$cronid = $this->db->insert_id();
// replace either inserts, or deletes+inserts
if ($cronid) {
build_cron_item($cronid);
}
$rebuild['cron'] = true;
}
}
// ############## import faq
if (isset($this->productobj['faqentries']['faq']) and is_array($this->productobj['faqentries']['faq'])) {
$faq_entries =& $this->productobj['faqentries']['faq'];
if (!isset($faq_entries[0])) {
$faq_entries = array($faq_entries);
}
$sql = array();
foreach ($faq_entries as $faq) {
$sql[] = "\n\t\t\t\t\t('" . $this->db->escape_string($faq['faqname']) . "',\n\t\t\t\t\t'" . $this->db->escape_string($faq['faqparent']) . "',\n\t\t\t\t\t" . intval($faq['displayorder']) . ",\n\t\t\t\t\t1,\n\t\t\t\t\t'" . $this->db->escape_string($this->productinfo['productid']) . "')\n\t\t\t\t";
}
if ($sql) {
/*insert query*/
$this->db->query_write("\n\t\t\t\t\tREPLACE INTO " . TABLE_PREFIX . "faq\n\t\t\t\t\t\t(faqname, faqparent, displayorder, volatile, product)\n\t\t\t\t\tVALUES\n\t\t\t\t\t\t" . implode(',', $sql) . "\n\t\t\t\t");
}
}
// ############## import widgets
/* Copied from adminfinctions_product.php
At some point we need to get rid of this product install duplication */
if (isset($this->productobj['widgets']['widget']) and is_array($this->productobj['widgets']['widget'])) {
$widgets =& $this->productobj['widgets']['widget'];
if (!isset($widgets[0])) {
$widgets = array($widgets);
}
$assertor = vB::getDbAssertor();
foreach ($widgets as $widget) {
$existing = $assertor->getRow('widget', array('guid' => $widget['guid'], 'product' => $info['productid']));
if ($existing['widgetid']) {
$data = $widget + $existing;
unset($data['definitions']);
$data['isthirdparty'] = 1;
$data['product'] = $info['productid'];
$result = $assertor->update('widget', $data, array('widgetid' => $existing['widgetid']));
$wdfs_old = $assertor->getRows('widgetdefinition', array('widgetid' => $existing['widgetid']));
$assertor->delete('widgetdefinition', array('widgetid' => $existing['widgetid']));
$index_old = array();
foreach ($wdfs_old as $key => $definition) {
$index_old[$key] = $definition['name'];
}
$wdfs_new =& $widget['definitions']['definition'];
if (!isset($wdfs_new[0])) {
$wdfs_new = array($wdfs_new);
}
foreach ($wdfs_new as &$definition) {
if ($key_old = array_search($definition['name'], $index_old)) {
$definition = $definition + $wdfs_old[$key_old];
}
$data = $definition;
$data['product'] = $info['productid'];
$data['widgetid'] = $existing['widgetid'];
$assertor->insert('widgetdefinition', $data);
}
} else {
$data = $widget;
$data['isthirdparty'] = 1;
$data['product'] = $info['productid'];
unset($data['definitions']);
$result = $assertor->insert('widget', $data);
$widgetid = is_array($result) ? array_pop($result) : $result;
if ($widgetid and is_array($widget['definitions']['definition'])) {
$definitions =& $widget['definitions']['definition'];
if (!isset($definitions[0])) {
$definitions = array($definitions);
}
foreach ($definitions as $definition) {
$data = $definition;
$data['widgetid'] = $widgetid;
$data['product'] = $info['productid'];
$assertor->insert('widgetdefinition', $data);
}
}
}
}
}
$products = fetch_product_list(true);
// Check if the plugin system is disabled. If it is, enable it if this product isn't installed.
if (!$this->registry->options['enablehooks'] and !$products[$this->productinfo['productid']]) {
$this->db->query_write("\n\t\t\t\tUPDATE " . TABLE_PREFIX . "setting\n\t\t\t\tSET value = '1'\n\t\t\t\tWHERE varname = 'enablehooks'\n\t\t\t");
$rebuild['options'] = true;
}
// Now rebuild everything we need...
if ($rebuild['hooks']) {
vB_Api::instanceInternal("Hook")->buildHookDatastore();
}
if ($rebuild['templates']) {
if ($error = build_all_styles(0, 0, '')) {
return $error;
}
}
if ($rebuild['phrases']) {
require_once DIR . '/includes/adminfunctions_language.php';
build_language();
}
if ($rebuild['options']) {
vB::getDatastore()->build_options();
}
if ($rebuild['cron']) {
require_once DIR . '/includes/functions_cron.php';
build_cron_next_run();
}
build_product_datastore();
// build bitfields to remove/add this products bitfields
vB_Bitfield_Builder::save($this->db);
print_dots_stop();
$this->productinfo['need_merge'] = ($rebuild['templates'] and $installed_version);
return $this->productinfo;
}