echo full_escape($form_values["username"]);
?>
" /></li>
<li><label <?php
if (!empty($form_errors["password"])) {
?>
class="error" <?php
}
?>
for="password">Password:</label><input type="password" id="password" name="password" size="20" value="<?php
echo full_escape($form_values["password"]);
?>
" /></li>
<li><label <?php
if (!empty($form_errors["password"])) {
?>
class="error" <?php
}
?>
for="password2">Confirm password:</label><input type="password" id="password2" name="password2" size="20" value="<?php
echo full_escape($form_values["password2"]);
?>
" /></li>
<li><label for="password2">Ulid:</label><input type="text" id="ulid" name="ulid" size="20" value="<?php
echo full_escape($form_values["ulid"]);
?>
" /></li>
<li class="submit"><input type="submit" value="Register" /></li>
</ul>
</form>
<?php
}
?>
<p style="text-align: center;"><a href="<?php
echo $photo->mediaUrl;
?>
"><img style="border: none;" src="<?php
if ($photo->thumbLoc) {
echo $photo->mediaThumbUrl;
} else {
echo $photo->mediaUrl;
}
?>
" alt="<?php
echo full_escape($photo->title);
?>
" /></a></p>
<p style="text-align: center;"><?php
echo nl2br(full_escape($photo->description));
?>
</p>
<p style="text-align: center; font-size: 0.8em;">Click image to view full image</p>
<?php
} else {
?>
<h3>Not Found</h3>
<p>Photo could not be found.</p>
<?php
}
<ul><?php
$size = count($tmp_array);
$j = 0;
foreach ($tmp_array as $key => $event) {
?>
<li<?php
if ($j == $size - 1) {
?>
class="last"<?php
}
?>
><a href="<?php
echo $event->getAbsoluteUrl();
?>
"><?php
echo full_escape($event->title);
unset($event_array[$key]);
?>
</a></li><?php
$j++;
}
?>
</ul><?php
}
?>
</td>
<?php
}
?>
</tr>
<?php
class="error" <?php
}
?>
for="published">Published:</label><select name="published" id="published"><option value="false"<?php
if ($form_values["published"] == "false") {
echo "selected=\"selected\"";
}
?>
>False</option><option value="true"<?php
if ($form_values["published"] == "true") {
echo "selected=\"selected\"";
}
?>
>True</option></select></li>
<li><label <?php
if (!empty($form_errors["tags"])) {
?>
class="error" <?php
}
?>
for="tags">Tags:</label><input type="text" name="tags" id="tags" value="<?php
echo full_escape($form_values["tags"]);
?>
" /><p class="help_text">Space-separated string (ex: ssf4 blazblue tekken6)</p></li>
<li class="submit"><input type="submit" value="Submit" /></li>
</ul>
</form>
<?php
include joinPath("fragments", "tinymce_tpl.php");
$dateField = "postDate";
include joinPath("fragments", "jscal2_tpl.php");
</lastBuildDate>
<?php
foreach ($event_array as $event) {
?>
<item>
<title><?php
echo full_escape($event->title);
?>
</title>
<link><?php
echo generate_link_url($event->getAbsoluteUrl());
?>
</link>
<description><?php
echo full_escape(nl2br($event->description));
?>
</description>
<pubDate><?php
echo date("r", $event->date);
?>
</pubDate>
<guid><?php
echo generate_link_url($event->getAbsoluteUrl());
?>
</guid>
</item>
<?php
}
?>
DTEND;VALUE=DATE:<?php
echo gmstrftime("%Y%m%d", $event->date);
?>
TRANSP:TRANSPARENT
ORGANIZER:CN=<?php
echo full_escape($event->user->userName);
?>
SUMMARY:<?php
echo full_escape($event->title);
?>
DESCRIPTION:<?php
$string = full_escape($event->description);
$string = str_replace("\n", "\\n", $string);
$string = str_replace("\r", "", $string);
echo $string;
?>
URL:<?php
echo generate_link_url($event->getAbsoluteUrl());
?>
END:VEVENT
<?php
}
?>
END:VCALENDAR
<?php
if (!empty($page)) {
?>
<h3 class="title"><?php
echo full_escape($page->title);
?>
</h3>
<p class="credit">Created by: <a href="<?php
echo full_escape($page->user->getAbsoluteUrl());
?>
"><?php
echo $page->user->userName;
?>
</a><?php
if ($session->getUser() && $session->getUser()->isAdmin()) {
?>
| <a href="<?php
echo generate_link_url("edit_page.php?id={$page->id}");
?>
">Edit</a><?php
}
?>
</p>
<?php
echo stripslashes($page->content);
} else {
?>
<h3>Not Found</h3>
<p>Page could not be found.</p>
<?php
<?php
if (!empty($user)) {
?>
<h3><?php
echo full_escape($user->userName);
?>
Profile</h3>
<dl>
<dt>Username: </dt><dd><?php
echo $user->userName;
?>
</dd>
<dt>Logo:</dt><dd><img src="<?php
echo full_escape($user->gravatarImage);
?>
" alt="Profile image" /></dd>
<dt>User type: </dt><dd><?php
switch ($user->userType) {
case User::ADMIN_TYPE:
echo "Admin";
break;
case User::TRUSTED_TYPE:
echo "Trusted User";
break;
case User::REGUSER_TYPE:
echo "Regular User";
break;
default:
echo "Unknown";
}
public function action_createPost()
{
if (empty($board_letter)) {
if (defined('ROUTE_CONTROLLER_URL')) {
$board_letter = ROUTE_CONTROLLER_URL;
} else {
$board_letter = 'a';
}
}
if (empty($thread_id)) {
if (defined('ROUTE_SEGMENT')) {
$thread_id = intval(ROUTE_SEGMENT);
} else {
throw new Exception('00404');
}
}
$post_author = full_escape($_POST["topic_author"]);
$post_message = escape($_POST["topic_text"]);
$answer_token = intval($_POST["parrent_token"]);
$image_url = "";
if (isset($_FILES['image_file']["tmp_name"]) && !empty($_FILES['image_file']["tmp_name"])) {
$file = file_get_contents($_FILES['image_file']["tmp_name"]);
$image_url = self::upload_file($file, $_FILES['image_file']["name"]);
}
$video_url = "";
if (isset($_FILES['video_file']["tmp_name"]) && !empty($_FILES['video_file']["tmp_name"])) {
$file = file_get_contents($_FILES['video_file']["tmp_name"]);
$video_url = self::upload_file($file, $_FILES['video_file']["name"]);
}
$query = mysql_query("CALL CreateMessage(@message_id, '" . $answer_token . "', '" . $thread_id . "', '" . (empty($post_author) ? 'Аноним' : $post_author) . "', '" . (empty($post_message) ? 'Я не умею писать сообщения' : $post_message) . "', '" . $image_url . "', 'NULL', '" . $video_url . "');");
redirect("/" . $board_letter . "/" . $thread_id);
}
<td><a href="<?php
echo generate_link_url($event->getAbsoluteUrl());
?>
"><?php
echo $event->id;
?>
</a></td>
<td><?php
echo full_escape($event->title);
?>
</td>
<td><a href="<?php
echo generate_link_url("view_profile.php?id={$event->user->id}");
?>
"><?php
echo full_escape($event->user->userName);
?>
</a></td>
<td><?php
if ($event->sanctioned) {
echo "True";
} else {
echo "False";
}
?>
</td>
<td>
<?php
switch ($event->status) {
case Event::PENDING_STATUS:
echo "Pending";
<p class="credit">Posted by: <a href="<?php
echo full_escape($event->user->getAbsoluteUrl());
?>
"><?php
echo $event->user->userName;
?>
</a><?php
if ($session->getUser() && $session->getUser()->isAdmin()) {
?>
| <a href="<?php
echo generate_link_url("edit_event.php?id={$event->id}");
?>
">Edit</a><?php
}
?>
</p>
<p><span style="font-weight: bold">Date:</span> <?php
echo strftime("%B %d, %Y", $event->date);
?>
</p>
<p style="font-weight: bold">Description:</p><p><?php
echo nl2br(full_escape($event->description));
?>
</p>
<div style="clear: both"></div>
<p><a href="<?php
echo generate_link_url($event->getAbsoluteUrl());
?>
">Read for more details</a></p>
<?php
}
echo $i;
?>
" value="<?php
echo $user->id;
?>
" /></td><td><a href="<?php
echo generate_link_url("edit_profile.php?id={$user->id}");
?>
">Edit</a></td><td><a href="<?php
echo generate_link_url("delete_profile.php?id={$user->id}");
?>
">Delete</a></td><td><a href="<?php
echo $user->getAbsoluteUrl();
?>
"><?php
echo full_escape($user->username);
?>
</a></td><td><a href="http://www.ilstu.edu/home/find/peoplesearch.phtml" onclick="return ulidsearch_submit ('<?php
echo $user->ulid;
?>
');"><?php
echo $user->ulid;
?>
</a></td><td>
<?php
switch ($user->status) {
case User::STATUS_PENDING:
echo "Pending";
break;
case User::STATUS_NEEDADMIN:
echo "Require Admin Approval";
?>
<tr><?php
}
?>
<td style="vertical-align: middle; text-align: center;"><p><a href="<?php
echo $photo->getAbsoluteUrl();
?>
"><img style="border: none;" src="<?php
if ($photo->thumbLoc) {
echo $photo->mediaThumbUrl;
} else {
echo $photo->mediaUrl;
}
?>
" alt="<?php
echo full_escape($photo->title);
?>
" height="100" /></a></p></td>
<?php
if ($i % 3 == 2) {
?>
</tr><?php
}
?>
<?php
/*
<p style="float: left; width: 300px; text-align: center; margin-left: 10px;"><a href="<?php echo $photo->getAbsoluteUrl () ?>"><img style="border: none;" src="<?php if ($photo->thumbLoc) {echo $photo->mediaThumbUrl;} else {echo $photo->mediaUrl;} ?>" alt="<?php echo full_escape ($photo->title) ?>" height="100" /></a><br/><br/><?php echo full_escape ($photo->title) ?></p>
*/
?>
<?php
$i++;
?>
class="error" <?php
}
?>
for="title">Title:</label><input type="text" name="title" id="title" value="<?php
echo full_escape($form_values["title"]);
?>
" /></li>
<li><label <?php
if (!empty($form_errors["description"])) {
?>
class="error" <?php
}
?>
for="description">Description:</label><textarea rows="20" cols="70" name="description" id="description"><?php
echo full_escape($form_values["description"]);
?>
</textarea></li>
<li><label <?php
if (!empty($form_errors["platform"])) {
?>
class="error" <?php
}
?>
for="platform">Platform:</label>
<select name="platform" id="platform">
<?php
foreach ($platform_array as $platform) {
?>
<option value="<?php
echo $platform->id;
<?php
include "fragments/form_errors_tpl.php";
?>
<h3>Login Form</h3>
<form action="" method="post">
<ul>
<li><label <?php
if (!empty($form_errors["username"])) {
?>
class="error" <?php
}
?>
for="username">Username:</label><input type="text" id="username" name="username" size="20" value="<?php
echo full_escape($form_values["username"]);
?>
" /></li>
<li><label <?php
if (!empty($form_errors["password"])) {
?>
class="error" <?php
}
?>
for="password">Password:</label><input type="password" id="password" name="password" size="20" value="<?php
echo full_escape($form_values["password"]);
?>
" /></li>
<li class="submit"><input type="submit" value="Login" /></li>
</ul>
</form>
}
?>
>Delete Photos</option>
<?php
foreach ($album_array as $album) {
?>
<option value="<?php
echo $album->id;
?>
"<?php
if ($album->id == $form_values["album_move"]) {
echo " selected=\"selected\"";
}
?>
>Album: <?php
echo full_escape($album->title);
?>
</option>
<?php
}
?>
</select>
</li>
<?php
}
?>
<li class="submit"><input type="submit" value="Delete" /></li>
</ul>
</form>
<?php
} else {
<?php
if (!empty($article)) {
?>
<h3 class="title"><a href="<?php
echo $article->getAbsoluteUrl();
?>
"><?php
echo full_escape($article->title);
?>
</a></h3>
<p class="credit">
Created by: <a href="<?php
echo full_escape($article->user->getAbsoluteUrl());
?>
"><?php
echo $article->user->userName;
?>
</a><?php
if ($session->getUser() && $session->getUser()->isAdmin()) {
?>
| <a href="<?php
echo generate_link_url("edit_article.php?id={$article->id}");
?>
">Edit</a><?php
}
?>
<br/>
Posted on: <?php
echo strftime("%B %e, %Y", $article->postDate);
?>
<div id="breadcrumb_trail"><p><a href="album_options.php">Album Options</a> > Create</p></div>
<h3>Create Album</h3>
<?php
include joinPath("fragments", "form_errors_tpl.php");
?>
<p>Use the form below to create a album.</p>
<form action="" method="post">
<ul>
<li><label <?php
if (!empty($form_errors["title"])) {
?>
class="error" <?php
}
?>
for="title">Title:</label><input type="text" name="title" id="title" value="<?php
echo full_escape($form_values["title"]);
?>
" /></li>
<li class="submit"><input type="submit" value="Submit" /></li>
</ul>
</form>
