public function get() { $this->loadContact(); switch ($_GET['cop']) { case 'logout': unset($_SESSION['Contact_User']); \PHPWS_Core::home(); break; case 'edit_property': $this->checkPermission(); $this->loadProperty($this->contact->id); $this->editProperty($this->contact->id); break; case 'view_properties': $this->checkPermission(); $this->title = "Properties list"; $this->propertiesList($this->contact->id); break; case 'photo_form': $photo = new Photo(); echo $photo->form(); exit; break; case 'activate_property': $this->checkPermission(); $this->loadProperty(); $this->property->setActive(true); $this->property->save(); \PHPWS_Core::goBack(); break; case 'deactivate_property': $this->checkPermission(); $this->loadProperty(); $this->property->setActive(false); $this->property->save(); \PHPWS_Core::goBack(); break; case 'edit_contact': $this->checkPermission(); $this->editContact(); break; case 'delete_photo': // called via ajax $this->checkPermission(); ob_start(); $photo = new Photo($_GET['id']); $photo->delete(); echo Photo::getThumbs($photo->pid); exit; break; case 'delete_property': $this->checkPermission(); $this->loadProperty(); // double security if ($this->property->contact_id == $this->contact->id) { $this->property->delete(); } \PHPWS_Core::goBack(); break; case 'make_main': $photo = new Photo($_GET['id']); $photo->makeMain(); exit; break; case 'update': $this->checkPermission(); $this->loadProperty(); $this->property->update(); \PHPWS_Core::goBack(); break; } $this->display(); }
public function form() { $form = new \PHPWS_Form('photo-form'); $form->addHidden('module', 'properties'); if (isset($_SESSION['Contact_User'])) { $form->addHidden('cop', 'post_photo'); $form->addHidden('k', $_SESSION['Contact_User']->getKey()); } else { $form->addHidden('aop', 'post_photo'); } if (isset($_GET['v'])) { $form->addHidden('v', 1); } $form->addHidden('pid', $_GET['pid']); $form->addText('title'); $form->setLabel('title', 'Title'); $form->addFile('photo'); $form->addSubmit('submit', 'Upload photo'); $tpl = $form->getTemplate(); $tpl['WIDTH'] = PROP_THUMBNAIL_WIDTH; $tpl['HEIGHT'] = PROP_THUMBNAIL_HEIGHT; $tpl['AUTH'] = \Current_User::getAuthKey(); $tpl['THUMBNAILS'] = Photo::getThumbs($_GET['pid']); if (isset($_SESSION['Contact_User'])) { $tpl['CMD'] = 'k=' . $_SESSION['Contact_User']->getKey() . '&cop'; } else { $tpl['CMD'] = 'aop'; } return \PHPWS_Template::process($tpl, 'properties', 'photo_form.tpl'); }
public function get() { if (!\Current_User::allow('properties')) { \Current_User::disallow('Action not allowed.'); } switch ($_GET['aop']) { case 'delete_contact': if (!\Current_User::authorized('properties')) { \Current_User::disallow(); } else { $this->loadContact(); try { $this->contact->delete(); } catch (\Exception $e) { \PHPWS_Error::log($e->getMessage()); $this->message = 'An error occurred when trying to delete a contact.'; } } case 'update': $this->loadProperty(); $this->property->update(); \PHPWS_Core::goBack(); break; case 'show_properties': $this->panel->setCurrentTab('properties'); $this->loadContact(); $this->contactPropertiesList($_GET['cid']); break; case 'contacts': $this->title = 'Contacts list'; $this->contactList(); break; case 'photo_form': $photo = new Photo(); echo $photo->form(); exit; break; case 'edit_contact': $this->loadContact(); $this->editContact(); break; case 'edit_property': $this->loadProperty(); if (isset($_GET['cid'])) { $this->property->contact_id = $_GET['cid']; } $this->editProperty(); break; case 'email_contacts': $this->emailContacts(); break; case 'activate_contact': if (!\Current_User::authorized('properties')) { \Current_User::disallow(); } $this->loadContact(); $this->contact->setActive(true); $this->contact->save(); \PHPWS_Core::goBack(); break; case 'show_blocked': $_SESSION['prop_show_blocked'] = 1; $this->viewReported(); break; case 'hide_blocked': unset($_SESSION['prop_show_blocked']); $this->viewReported(); break; case 'deactivate_contact': if (!\Current_User::authorized('properties')) { \Current_User::disallow(); } $this->loadContact(); $this->contact->setActive(false); $this->contact->save(); \PHPWS_Core::goBack(); break; case 'activate_property': if (!\Current_User::authorized('properties')) { \Current_User::disallow(); } $this->loadProperty(); $this->property->setActive(true); $this->property->save(); \PHPWS_Core::goBack(); break; case 'reported': $this->viewReported(); break; case 'deactivate_property': if (!\Current_User::authorized('properties')) { \Current_User::disallow(); } $this->loadProperty(); $this->property->setActive(false); $this->property->save(); \PHPWS_Core::goBack(); break; case 'delete_photo': // called via ajax if (!\Current_User::authorized('properties')) { \Current_User::disallow(); } ob_start(); $photo = new Photo($_GET['id']); $photo->delete(); echo Photo::getThumbs($photo->pid); exit; break; case 'make_main': $photo = new Photo($_GET['id']); $photo->makeMain(); exit; break; case 'delete_property': if (!\Current_User::authorized('properties')) { \Current_User::disallow(); } $this->loadProperty(); $this->property->delete(); \PHPWS_Core::goBack(); break; case 'settings': $this->settingsForm(); break; case 'report_view': $this->reportView($_GET['id']); break; case 'block_report': $this->blockReport($_GET['id']); break; case 'ignore_report': $this->ignoreReport($_GET['id']); \PHPWS_Core::goBack(); break; case 'properties': default: $this->panel->setCurrentTab('properties'); $this->title = "Properties list"; $this->propertiesList(); break; } $this->display(); }
public function get() { $this->loadContact(); switch ($_GET['cop']) { case 'logout': unset($_SESSION['Contact_User']); \PHPWS_Core::home(); break; case 'manager_sign_up': if (!self::allowNewUserSignup()) { $this->title = 'Sorry'; $this->content = '<p>New manager sign ups are not permitted at this time.</p>'; } else { $this->newManagerSetup(); } break; case 'edit_property': $this->checkPermission(); $this->loadProperty($this->contact->id); $this->editProperty($this->contact->id); break; case 'view_properties': $this->checkPermission(); $this->title = "Properties list"; $this->propertiesList($this->contact->id); break; case 'photo_form': $photo = new Photo(); echo $photo->form(); exit; break; case 'activate_property': $this->checkPermission(); $this->loadProperty(); $this->property->setActive(true); $this->property->save(); \PHPWS_Core::goBack(); break; case 'deactivate_property': $this->checkPermission(); $this->loadProperty(); $this->property->setActive(false); $this->property->save(); \PHPWS_Core::goBack(); break; case 'edit_contact': $this->checkPermission(); $this->editContact(); break; case 'delete_photo': // called via ajax $this->checkPermission(); ob_start(); $photo = new Photo($_GET['id']); $photo->delete(); echo Photo::getThumbs($photo->pid); exit; break; case 'delete_property': $this->checkPermission(); $this->loadProperty(); // double security if ($this->property->contact_id == $this->contact->id) { $this->property->delete(); } \PHPWS_Core::goBack(); break; case 'make_main': $photo = new Photo($_GET['id']); $photo->makeMain(); exit; break; case 'update': $this->checkPermission(); $this->loadProperty(); $this->property->update(); \PHPWS_Core::goBack(); break; case 'checkUsername': $this->checkUsername(); exit; case 'checkEmail': $this->checkEmail(); exit; } $this->display(); }