/** * We want to allow html so we need to overwrite some request data * * @author Max Milbers */ function save($data = 0) { $data = vRequest::getRequest(); $data['currency_positive_style'] = vRequest::getHtml('currency_positive_style', ''); $data['currency_negative_style'] = vRequest::getHtml('currency_negative_style', ''); parent::save($data); }
function save($data = 0){ $fileModel = VmModel::getModel('media'); //Now we try to determine to which this media should be long to $data = vRequest::getRequest(); //$data['file_title'] = vRequest::getVar('file_title','','post','STRING',JREQUEST_ALLOWHTML); $data['file_description'] = vRequest::getHtml('file_description',''); $data['media_attributes'] = vRequest::getCmd('media_attributes'); $data['file_type'] = vRequest::getCmd('file_type'); if(empty($data['file_type'])){ $data['file_type'] = $data['media_attributes']; } $msg = ''; if ($id = $fileModel->store($data)) { $msg = vmText::_('COM_VIRTUEMART_FILE_SAVED_SUCCESS'); } $cmd = vRequest::getCmd('task'); if($cmd == 'apply'){ $redirection = 'index.php?option=com_virtuemart&view=media&task=edit&virtuemart_media_id='.$id; } else { $redirection = 'index.php?option=com_virtuemart&view=media'; } $this->setRedirect($redirection, $msg); }
/** * We want to allow html so we need to overwrite some request data * * @author Max Milbers */ function save($data = 0) { $data = vRequest::getRequest(); $data['calc_name'] = vRequest::getHtml('calc_name', ''); $data['calc_descr'] = vRequest::getHtml('calc_descr', ''); parent::save($data); }
/** * Handle the save task * Checks already in the controller the rights and sets the data by filtering the post * * @author Max Milbers */ function save($data = 0) { /* Load the data */ $data = vRequest::getRequest(); /* add the mf desc as html code */ $data['mf_desc'] = vRequest::getHtml('mf_desc', ''); parent::save($data); }
function save($data = 0) { $data = vRequest::getRequest(); // TODO disallow html in paym_name ? $data['payment_name'] = vRequest::getHtml('payment_name', ''); $data['payment_desc'] = vRequest::getHtml('payment_desc', ''); parent::save($data); }
/** * We want to allow html in the descriptions. * * @author Max Milbers */ function save($data = 0) { $data = vRequest::getRequest(); // TODO disallow shipment_name as HTML $data['shipment_name'] = vRequest::getHtml('shipment_name', ''); $data['shipment_desc'] = vRequest::getHtml('shipment_desc', ''); parent::save($data); }
/** * We want to allow html so we need to overwrite some request data * * @author Max Milbers */ function save($data = 0) { $data = vRequest::getRequest(); $data['calc_name'] = vRequest::getHtml('calc_name', ''); $data['calc_descr'] = vRequest::getHtml('calc_descr', ''); if (isset($data['params'])) { $data['params'] = vRequest::getHtml('params', ''); } parent::save($data); }
/** * We want to allow html so we need to overwrite some request data * * @author Max Milbers */ function save($data = 0) { //ACL if (!JFactory::getUser()->authorise('vm.category.edit', 'com_virtuemart')) { JFactory::getApplication()->redirect('index.php?option=com_virtuemart', vmText::_('JERROR_ALERTNOAUTHOR'), 'error'); } $data = vRequest::getRequest(); $data['category_name'] = vRequest::getHtml('category_name', ''); $data['category_description'] = vRequest::getHtml('category_description', ''); parent::save($data); }
/** * We want to allow html so we need to overwrite some request data * * @author Max Milbers */ function save($data = 0) { //ACL if (!vmAccess::manager('category.edit')) { JFactory::getApplication()->redirect('index.php?option=com_tsmart', tsmText::_('JERROR_ALERTNOAUTHOR'), 'error'); } $data = vRequest::getRequest(); $data['category_name'] = vRequest::getHtml('category_name', ''); $data['category_description'] = vRequest::getHtml('category_description', ''); parent::save($data); }
function save($data = 0) { if($data===0)$data = vRequest::getPost(); $data['custom_desc'] = vRequest::getHtml('custom_desc'); $data['custom_value'] = vRequest::getHtml('custom_value'); $data['layout_pos'] = vRequest::getCmd('layout_pos'); if(isset($data['params'])){ $data['params'] = vRequest::getHtml('params',''); } // onSaveCustom plugin; parent::save($data); }
/** * We want to allow html so we need to overwrite some request data * * @author Max Milbers */ function save($data = 0) { if ($data === 0) { $data = vRequest::getRequest(); } $user = JFactory::getUser(); if ($user->authorise('core.admin', 'com_virtuemart') or $user->authorise('core.manage', 'com_virtuemart') or $user->authorise('vm.raw', 'com_virtuemart')) { $data['product_desc'] = vRequest::get('product_desc', ''); $data['product_s_desc'] = vRequest::get('product_s_desc', ''); $data['customtitle'] = vRequest::get('customtitle', ''); if (isset($data['field'])) { $data['field'] = vRequest::get('field'); } if (isset($data['childs'])) { foreach ($data['childs'] as $k => $v) { if ($n = vRequest::get('product_name', false, FILTER_UNSAFE_RAW, FILTER_FLAG_NO_ENCODE, $data['childs'][$k])) { $data['childs'][$k]['product_name'] = $n; } } } } else { if ($user->authorise('vm.html', 'com_virtuemart')) { $data['product_desc'] = vRequest::getHtml('product_desc', ''); $data['product_s_desc'] = vRequest::getHtml('product_s_desc', ''); $data['customtitle'] = vRequest::getHtml('customtitle', ''); if (isset($data['field'])) { $data['field'] = vRequest::getHtml('field'); } } else { $data['product_desc'] = vRequest::getString('product_desc', ''); $data['product_s_desc'] = vRequest::getString('product_s_desc', ''); $data['customtitle'] = vRequest::getString('customtitle', ''); if (isset($data['field'])) { $data['field'] = vRequest::getString('field'); } } //Why we have this? $multix = Vmconfig::get('multix', 'none'); if ($multix != 'none') { //in fact this shoudl be used, when the mode is administrated and the system is so that //every product must be approved by an admin. unset($data['published']); //unset($data['childs']); } } parent::save($data); }
function save($data = 0) { $data = vRequest::getPost(); if (vmAccess::manager('raw')) { $data['payment_name'] = vRequest::get('payment_name', ''); $data['payment_desc'] = vRequest::get('payment_desc', ''); if (isset($data['params'])) { $data['params'] = vRequest::get('params', ''); } } else { $data['payment_name'] = vRequest::getHtml('payment_name', ''); $data['payment_desc'] = vRequest::getHtml('payment_desc', ''); if (isset($data['params'])) { $data['params'] = vRequest::getHtml('params', ''); } } parent::save($data); }
function save($data = 0) { $data = vRequest::getPost(); $user = JFactory::getUser(); if ($user->authorise('core.admin', 'com_virtuemart') or $user->authorise('core.manage', 'com_virtuemart')) { $data['payment_name'] = vRequest::get('payment_name', ''); $data['payment_desc'] = vRequest::get('payment_desc', ''); if (isset($data['params'])) { $data['params'] = vRequest::get('params', ''); } } else { $data['payment_name'] = vRequest::getHtml('payment_name', ''); $data['payment_desc'] = vRequest::getHtml('payment_desc', ''); if (isset($data['params'])) { $data['params'] = vRequest::getHtml('params', ''); } } parent::save($data); }
function save($data = 0) { if($data===0) $data = vRequest::getPost(); $user = JFactory::getUser(); if($user->authorise('core.admin','com_virtuemart') or $user->authorise('core.manage','com_virtuemart')){ $data['description'] = vRequest::get('description',''); if(isset($data['params'])){ $data['params'] = vRequest::get('params',''); } } else { $data['description'] = vRequest::getHtml('description',''); if(isset($data['params'])){ $data['params'] = vRequest::getHtml('params',''); } } $data['name'] = vRequest::getCmd('name'); // onSaveCustom plugin; parent::save($data); }
function save($data = 0) { if ($data === 0) { $data = vRequest::getPost(); } if (vmAccess::manager('raw')) { $data['description'] = vRequest::get('description', ''); if (isset($data['params'])) { $data['params'] = vRequest::get('params', ''); } } else { $data['description'] = vRequest::getHtml('description', ''); if (isset($data['params'])) { $data['params'] = vRequest::getHtml('params', ''); } } $data['name'] = vRequest::getCmd('name'); // onSaveCustom plugin; parent::save($data); }
/** * We want to allow html so we need to overwrite some request data * * @author Max Milbers */ function save($data = 0) { $data = vRequest::getRequest(); $user = JFactory::getUser(); if (!($user->authorise('core.admin', 'com_virtuemart') or $user->authorise('core.manage', 'com_virtuemart'))) { $data['product_desc'] = vRequest::get('product_desc', ''); $data['product_s_desc'] = vRequest::get('product_s_desc', ''); $data['customtitle'] = vRequest::get('customtitle', ''); } else { $data['product_desc'] = vRequest::getHtml('product_desc', ''); //Why we have this? $multix = Vmconfig::get('multix', 'none'); if ($multix != 'none') { //in fact this shoudl be used, when the mode is administrated and the system is so that //every product must be approved by an admin. unset($data['published']); //unset($data['childs']); } } parent::save($data); }
/** * We want to allow html so we need to overwrite some request data * * @author Max Milbers */ function save($data = 0) { if ($data === 0) { $data = vRequest::getRequest(); } if (vmAccess::manager('raw')) { $data['product_desc'] = vRequest::get('product_desc', ''); $data['product_s_desc'] = vRequest::get('product_s_desc', ''); $data['customtitle'] = vRequest::get('customtitle', ''); if (isset($data['field'])) { $data['field'] = vRequest::get('field'); } if (isset($data['childs'])) { foreach ($data['childs'] as $k => $v) { if ($n = vRequest::get('product_name', false, FILTER_UNSAFE_RAW, FILTER_FLAG_NO_ENCODE, $data['childs'][$k])) { $data['childs'][$k]['product_name'] = $n; } } } } else { if (vmAccess::manager('html')) { $data['product_desc'] = vRequest::getHtml('product_desc', ''); $data['product_s_desc'] = vRequest::getHtml('product_s_desc', ''); $data['customtitle'] = vRequest::getHtml('customtitle', ''); if (isset($data['field'])) { $data['field'] = vRequest::getHtml('field'); } } else { $data['product_desc'] = vRequest::getString('product_desc', ''); $data['product_s_desc'] = vRequest::getString('product_s_desc', ''); $data['customtitle'] = vRequest::getString('customtitle', ''); if (isset($data['field'])) { $data['field'] = vRequest::getString('field'); } } } parent::save($data); }
/** * Handle the save task * Checks already in the controller the rights todo so and sets the data by filtering the post * * @author Max Milbers */ function save($data = 0) { $document = JFactory::getDocument(); $viewType = $document->getType(); $view = $this->getView('user', $viewType); $_currentUser = JFactory::getUser(); // TODO sortout which check is correctt..... // if (!$_currentUser->authorise('administration', 'manage', 'components', 'com_users')) { if (!$_currentUser->authorise('core.edit', 'com_users')) { $msg = vmText::_(_NOT_AUTH); } else { $model = VmModel::getModel('user'); $data = vRequest::getRequest(); // Store multiple selectlist entries as a ; separated string if (array_key_exists('vendor_accepted_currencies', $data) && is_array($data['vendor_accepted_currencies'])) { $data['vendor_accepted_currencies'] = implode(',', $data['vendor_accepted_currencies']); } // TODO disallow vendor_store_name as HTML ? $data['vendor_store_name'] = vRequest::getHtml('vendor_store_name'); $data['vendor_store_desc'] = vRequest::getHtml('vendor_store_desc'); $data['vendor_terms_of_service'] = vRequest::getHtml('vendor_terms_of_service'); $data['vendor_legal_info'] = vRequest::getHtml('vendor_legal_info'); $data['vendor_letter_css'] = vRequest::getHtml('vendor_letter_css'); $data['vendor_letter_header_html'] = vRequest::getHtml('vendor_letter_header_html'); $data['vendor_letter_footer_html'] = vRequest::getHtml('vendor_letter_footer_html'); $ret = $model->store($data); if (!$ret) { $msg = ''; } else { $msg = $ret['message']; } } $cmd = vRequest::getCmd('task'); $lastTask = vRequest::getCmd('last_task'); if ($cmd == 'apply') { if ($lastTask == 'editshop') { $redirection = 'index.php?option=com_virtuemart&view=user&task=editshop'; } else { $redirection = 'index.php?option=com_virtuemart&view=user&task=edit&virtuemart_user_id[]=' . $ret['newId']; } } else { if ($lastTask == 'editshop') { $redirection = 'index.php?option=com_virtuemart'; } else { $redirection = 'index.php?option=com_virtuemart&view=user'; } } // $this->setRedirect($redirection, $ret['message']); $this->setRedirect($redirection); }
/** * Save the user info. The saveData function don't use the userModel store function for anonymous shoppers, because it would register them. * We make this function private, so we can do the tests in the tasks. * * @author Max Milbers * @author Valérie Isaksen * * @param boolean Defaults to false, the param is for the userModel->store function, which needs it to determine how to handle the data. * @return String it gives back the messages. */ private function saveData($cartObj) { $mainframe = JFactory::getApplication(); $msg = ''; $data = vRequest::getPost(FILTER_SANITIZE_STRING); $register = isset($_REQUEST['register']); $userModel = VmModel::getModel('user'); $currentUser = JFactory::getUser(); if ($cartObj) { if ($cartObj->_fromCart or $cartObj->getInCheckOut()) { if (!class_exists('VirtueMartCart')) { require VMPATH_SITE . DS . 'helpers' . DS . 'cart.php'; } $cart = VirtueMartCart::getCart(); $prefix = ''; if ($data['address_type'] == 'STaddress' || $data['address_type'] == 'ST') { $prefix = 'shipto_'; vmdebug('Storing user ST prefix ' . $prefix); } $cart->saveAddressInCart($data, $data['address_type'], true, $prefix); if (!empty($cart->vendorId) and $cart->vendorId != 1) { $data['vendorId'] = $cart->vendorId; } } } if (empty($data['address_type'])) { $data['address_type'] = vRequest::getCmd('addrtype', 'BT'); } if (isset($data['vendor_accepted_currencies'])) { // Store multiple selectlist entries as a ; separated string if (array_key_exists('vendor_accepted_currencies', $data) && is_array($data['vendor_accepted_currencies'])) { $data['vendor_accepted_currencies'] = implode(',', $data['vendor_accepted_currencies']); } $data['vendor_store_name'] = vRequest::getHtml('vendor_store_name'); $data['vendor_store_desc'] = vRequest::getHtml('vendor_store_desc'); $data['vendor_terms_of_service'] = vRequest::getHtml('vendor_terms_of_service'); $data['vendor_letter_css'] = vRequest::getHtml('vendor_letter_css'); $data['vendor_letter_header_html'] = vRequest::getHtml('vendor_letter_header_html'); $data['vendor_letter_footer_html'] = vRequest::getHtml('vendor_letter_footer_html'); } if ($data['address_type'] == 'ST' and !$currentUser->guest) { $ret = $userModel->storeAddress($data); if ($cartObj and !empty($ret)) { $cartObj->selected_shipto = $ret; $cartObj->setCartIntoSession(); } } else { if ($currentUser->guest == 1 and ($register or !$cartObj)) { if ($this->checkCaptcha('index.php?option=com_virtuemart&view=user&task=editaddresscart&addrtype=BT') == FALSE) { $msg = vmText::_('PLG_RECAPTCHA_ERROR_INCORRECT_CAPTCHA_SOL'); if ($cartObj and $cartObj->_fromCart) { $this->redirect(JRoute::_('index.php?option=com_virtuemart&view=user&task=editaddresscart&addrtype=BT'), $msg); } else { if ($cartObj and $cartObj->getInCheckOut()) { $this->redirect(JRoute::_('index.php?option=com_virtuemart&view=user&task=editaddresscheckout&addrtype=BT'), $msg); } else { $this->redirect(JRoute::_('index.php?option=com_virtuemart&view=user&task=edit&addrtype=BT'), $msg); } } return $msg; } } if ($currentUser->guest != 1 or !$cartObj or $currentUser->guest == 1 and $register) { if ($currentUser->guest == 1 and $register) { $userModel->setId(0); } $ret = $userModel->store($data); if ($currentUser->guest == 1 and $register and VmConfig::get('oncheckout_change_shopper')) { $adminID = JFactory::getSession()->get('vmAdminID', false); if ($adminID) { $adminIdUser = JFactory::getUser($adminID); if ($adminIdUser->authorise('core.admin', 'com_virtuemart') or $adminIdUser->authorise('vm.user', 'com_virtuemart')) { //update session $current = JFactory::getUser($ret['newId']); $session = JFactory::getSession(); $session->set('user', $current); } } } } if ($currentUser->guest == 1 and ($register or !$cartObj)) { $msg = is_array($ret) ? $ret['message'] : $ret; $usersConfig = JComponentHelper::getParams('com_users'); $useractivation = $usersConfig->get('useractivation'); if (is_array($ret) and $ret['success'] and !$useractivation) { // Username and password must be passed in an array $credentials = array('username' => $ret['user']->username, 'password' => $ret['user']->password_clear); $return = $mainframe->login($credentials); } else { if (VmConfig::get('oncheckout_only_registered', 0)) { $layout = vRequest::getCmd('layout', 'edit'); $this->redirect(JRoute::_('index.php?option=com_virtuemart&view=user&layout=' . $layout, FALSE), $msg); } } } } return $msg; }
/** * Handle the save task * Checks already in the controller the rights todo so and sets the data by filtering the post * * @author Max Milbers */ function save($data = 0) { $document = JFactory::getDocument(); $viewType = $document->getType(); $view = $this->getView('user', $viewType); if (!vmAccess::manager('user.edit')) { $msg = vmText::_('_NOT_AUTH'); } else { $model = VmModel::getModel('user'); if ($data === 0) { $data = vRequest::getRequest(); } // Store multiple selectlist entries as a ; separated string if (array_key_exists('vendor_accepted_currencies', $data) && is_array($data['vendor_accepted_currencies'])) { $data['vendor_accepted_currencies'] = implode(',', $data['vendor_accepted_currencies']); } // TODO disallow vendor_store_name as HTML ? $data['vendor_store_name'] = vRequest::getHtml('vendor_store_name'); $data['vendor_store_desc'] = vRequest::getHtml('vendor_store_desc'); $data['vendor_terms_of_service'] = vRequest::getHtml('vendor_terms_of_service'); $data['vendor_legal_info'] = vRequest::getHtml('vendor_legal_info'); $data['vendor_letter_css'] = vRequest::getHtml('vendor_letter_css'); $data['vendor_letter_header_html'] = vRequest::getHtml('vendor_letter_header_html'); $data['vendor_letter_footer_html'] = vRequest::getHtml('vendor_letter_footer_html'); $ids = vRequest::getInt('virtuemart_user_id'); if ($ids) { if (is_array($ids) and isset($ids[0])) { $model->setId((int) $ids[0]); vmdebug('my user controller set ' . (int) $ids[0], $ids); } else { $model->setId((int) $ids); vmdebug('my user controller set ' . (int) $ids, $ids); } } $ret = $model->store($data); if (!$ret) { $msg = ''; } else { $msg = $ret['message']; } } $cmd = vRequest::getCmd('task'); $lastTask = vRequest::getCmd('last_task'); if ($cmd == 'apply') { if ($lastTask == 'editshop') { $redirection = 'index.php?option=com_virtuemart&view=user&task=editshop'; } else { $redirection = 'index.php?option=com_virtuemart&view=user&task=edit&virtuemart_user_id[]=' . $ret['newId']; } } else { if ($lastTask == 'editshop') { $redirection = 'index.php?option=com_virtuemart'; } else { $redirection = 'index.php?option=com_virtuemart&view=user'; } } // $this->setRedirect($redirection, $ret['message']); $this->setRedirect($redirection); }
/** * We want to allow html so we need to overwrite some request data * * @author Max Milbers */ function save($data = 0) { if ($data === 0) { $data = vRequest::getRequest(); } if (vmAccess::manager('raw')) { $data['product_desc'] = vRequest::get('product_desc', ''); $data['product_s_desc'] = vRequest::get('product_s_desc', ''); $data['customtitle'] = vRequest::get('customtitle', ''); if (isset($data['field'])) { $data['field'] = vRequest::get('field'); } if (isset($data['childs'])) { foreach ($data['childs'] as $k => $v) { if ($n = vRequest::get('product_name', false, FILTER_UNSAFE_RAW, FILTER_FLAG_NO_ENCODE, $data['childs'][$k])) { $data['childs'][$k]['product_name'] = $n; } } } } else { if (vmAccess::manager('html')) { $data['product_desc'] = vRequest::getHtml('product_desc', ''); $data['product_s_desc'] = vRequest::getHtml('product_s_desc', ''); $data['customtitle'] = vRequest::getHtml('customtitle', ''); if (isset($data['field'])) { $data['field'] = vRequest::getHtml('field'); } } else { $data['product_desc'] = vRequest::getString('product_desc', ''); $data['product_s_desc'] = vRequest::getString('product_s_desc', ''); $data['customtitle'] = vRequest::getString('customtitle', ''); if (isset($data['field'])) { $data['field'] = vRequest::getString('field'); } } //Why we have this? $multix = tsmConfig::get('multix', 'none'); if ($multix != 'none') { //in fact this shoudl be used, when the mode is administrated and the system is so that //every product must be approved by an admin. unset($data['published']); //unset($data['childs']); } } parent::save($data); }