echo full_escape($form_values["username"]);
?>
" /></li>
        <li><label <?php 
if (!empty($form_errors["password"])) {
    ?>
class="error" <?php 
}
?>
for="password">Password:</label><input type="password" id="password" name="password" size="20" value="<?php 
echo full_escape($form_values["password"]);
?>
" /></li>
        <li><label <?php 
if (!empty($form_errors["password"])) {
    ?>
class="error" <?php 
}
?>
for="password2">Confirm password:</label><input type="password" id="password2" name="password2" size="20" value="<?php 
echo full_escape($form_values["password2"]);
?>
" /></li>
        <li><label for="password2">Ulid:</label><input type="text" id="ulid" name="ulid" size="20" value="<?php 
echo full_escape($form_values["ulid"]);
?>
" /></li>
        <li class="submit"><input type="submit" value="Register" /></li>
    </ul>
</form>
    <?php 
    }
    ?>

    <p style="text-align: center;"><a href="<?php 
    echo $photo->mediaUrl;
    ?>
"><img style="border: none;" src="<?php 
    if ($photo->thumbLoc) {
        echo $photo->mediaThumbUrl;
    } else {
        echo $photo->mediaUrl;
    }
    ?>
" alt="<?php 
    echo full_escape($photo->title);
    ?>
" /></a></p>
    <p style="text-align: center;"><?php 
    echo nl2br(full_escape($photo->description));
    ?>
</p>
    <p style="text-align: center; font-size: 0.8em;">Click image to view full image</p>

<?php 
} else {
    ?>
    <h3>Not Found</h3>
    <p>Photo could not be found.</p>
<?php 
}
<ul><?php 
            $size = count($tmp_array);
            $j = 0;
            foreach ($tmp_array as $key => $event) {
                ?>
<li<?php 
                if ($j == $size - 1) {
                    ?>
 class="last"<?php 
                }
                ?>
><a href="<?php 
                echo $event->getAbsoluteUrl();
                ?>
"><?php 
                echo full_escape($event->title);
                unset($event_array[$key]);
                ?>
</a></li><?php 
                $j++;
            }
            ?>
</ul><?php 
        }
        ?>
            </td>
        <?php 
    }
    ?>
        </tr>
    <?php 
class="error" <?php 
}
?>
 for="published">Published:</label><select name="published" id="published"><option value="false"<?php 
if ($form_values["published"] == "false") {
    echo "selected=\"selected\"";
}
?>
>False</option><option value="true"<?php 
if ($form_values["published"] == "true") {
    echo "selected=\"selected\"";
}
?>
>True</option></select></li>
        <li><label <?php 
if (!empty($form_errors["tags"])) {
    ?>
class="error" <?php 
}
?>
 for="tags">Tags:</label><input type="text" name="tags" id="tags" value="<?php 
echo full_escape($form_values["tags"]);
?>
" /><p class="help_text">Space-separated string (ex: ssf4 blazblue tekken6)</p></li>
        <li class="submit"><input type="submit" value="Submit" /></li>
</ul>
</form>
<?php 
include joinPath("fragments", "tinymce_tpl.php");
$dateField = "postDate";
include joinPath("fragments", "jscal2_tpl.php");
</lastBuildDate>
<?php 
foreach ($event_array as $event) {
    ?>

<item>
    <title><?php 
    echo full_escape($event->title);
    ?>
</title>
    <link><?php 
    echo generate_link_url($event->getAbsoluteUrl());
    ?>
</link>
    <description><?php 
    echo full_escape(nl2br($event->description));
    ?>
</description>
    <pubDate><?php 
    echo date("r", $event->date);
    ?>
</pubDate>
    <guid><?php 
    echo generate_link_url($event->getAbsoluteUrl());
    ?>
</guid>
</item>
<?php 
}
?>
DTEND;VALUE=DATE:<?php 
    echo gmstrftime("%Y%m%d", $event->date);
    ?>

TRANSP:TRANSPARENT
ORGANIZER:CN=<?php 
    echo full_escape($event->user->userName);
    ?>

SUMMARY:<?php 
    echo full_escape($event->title);
    ?>

DESCRIPTION:<?php 
    $string = full_escape($event->description);
    $string = str_replace("\n", "\\n", $string);
    $string = str_replace("\r", "", $string);
    echo $string;
    ?>

URL:<?php 
    echo generate_link_url($event->getAbsoluteUrl());
    ?>

END:VEVENT

<?php 
}
?>
END:VCALENDAR
<?php

if (!empty($page)) {
    ?>
    <h3 class="title"><?php 
    echo full_escape($page->title);
    ?>
</h3>
    <p class="credit">Created by: <a href="<?php 
    echo full_escape($page->user->getAbsoluteUrl());
    ?>
"><?php 
    echo $page->user->userName;
    ?>
</a><?php 
    if ($session->getUser() && $session->getUser()->isAdmin()) {
        ?>
 | <a href="<?php 
        echo generate_link_url("edit_page.php?id={$page->id}");
        ?>
">Edit</a><?php 
    }
    ?>
</p>
    <?php 
    echo stripslashes($page->content);
} else {
    ?>
    <h3>Not Found</h3>
    <p>Page could not be found.</p>
<?php 
<?php

if (!empty($user)) {
    ?>
    <h3><?php 
    echo full_escape($user->userName);
    ?>
 Profile</h3>
    <dl>
        <dt>Username: </dt><dd><?php 
    echo $user->userName;
    ?>
</dd>
        <dt>Logo:</dt><dd><img src="<?php 
    echo full_escape($user->gravatarImage);
    ?>
" alt="Profile image" /></dd>
        <dt>User type: </dt><dd><?php 
    switch ($user->userType) {
        case User::ADMIN_TYPE:
            echo "Admin";
            break;
        case User::TRUSTED_TYPE:
            echo "Trusted User";
            break;
        case User::REGUSER_TYPE:
            echo "Regular User";
            break;
        default:
            echo "Unknown";
    }
Esempio n. 9
0
 public function action_createPost()
 {
     if (empty($board_letter)) {
         if (defined('ROUTE_CONTROLLER_URL')) {
             $board_letter = ROUTE_CONTROLLER_URL;
         } else {
             $board_letter = 'a';
         }
     }
     if (empty($thread_id)) {
         if (defined('ROUTE_SEGMENT')) {
             $thread_id = intval(ROUTE_SEGMENT);
         } else {
             throw new Exception('00404');
         }
     }
     $post_author = full_escape($_POST["topic_author"]);
     $post_message = escape($_POST["topic_text"]);
     $answer_token = intval($_POST["parrent_token"]);
     $image_url = "";
     if (isset($_FILES['image_file']["tmp_name"]) && !empty($_FILES['image_file']["tmp_name"])) {
         $file = file_get_contents($_FILES['image_file']["tmp_name"]);
         $image_url = self::upload_file($file, $_FILES['image_file']["name"]);
     }
     $video_url = "";
     if (isset($_FILES['video_file']["tmp_name"]) && !empty($_FILES['video_file']["tmp_name"])) {
         $file = file_get_contents($_FILES['video_file']["tmp_name"]);
         $video_url = self::upload_file($file, $_FILES['video_file']["name"]);
     }
     $query = mysql_query("CALL CreateMessage(@message_id, '" . $answer_token . "', '" . $thread_id . "', '" . (empty($post_author) ? 'Аноним' : $post_author) . "', '" . (empty($post_message) ? 'Я не умею писать сообщения' : $post_message) . "', '" . $image_url . "', 'NULL', '" . $video_url . "');");
     redirect("/" . $board_letter . "/" . $thread_id);
 }
<td><a href="<?php 
        echo generate_link_url($event->getAbsoluteUrl());
        ?>
"><?php 
        echo $event->id;
        ?>
</a></td>
<td><?php 
        echo full_escape($event->title);
        ?>
</td>
<td><a href="<?php 
        echo generate_link_url("view_profile.php?id={$event->user->id}");
        ?>
"><?php 
        echo full_escape($event->user->userName);
        ?>
</a></td>
<td><?php 
        if ($event->sanctioned) {
            echo "True";
        } else {
            echo "False";
        }
        ?>
</td>
<td>
<?php 
        switch ($event->status) {
            case Event::PENDING_STATUS:
                echo "Pending";
    <p class="credit">Posted by: <a href="<?php 
    echo full_escape($event->user->getAbsoluteUrl());
    ?>
"><?php 
    echo $event->user->userName;
    ?>
</a><?php 
    if ($session->getUser() && $session->getUser()->isAdmin()) {
        ?>
 | <a href="<?php 
        echo generate_link_url("edit_event.php?id={$event->id}");
        ?>
">Edit</a><?php 
    }
    ?>
</p>
    <p><span style="font-weight: bold">Date:</span> <?php 
    echo strftime("%B %d, %Y", $event->date);
    ?>
</p>
    <p style="font-weight: bold">Description:</p><p><?php 
    echo nl2br(full_escape($event->description));
    ?>
</p>
    <div style="clear: both"></div>
    <p><a href="<?php 
    echo generate_link_url($event->getAbsoluteUrl());
    ?>
">Read for more details</a></p>
<?php 
}
        echo $i;
        ?>
" value="<?php 
        echo $user->id;
        ?>
" /></td><td><a href="<?php 
        echo generate_link_url("edit_profile.php?id={$user->id}");
        ?>
">Edit</a></td><td><a href="<?php 
        echo generate_link_url("delete_profile.php?id={$user->id}");
        ?>
">Delete</a></td><td><a href="<?php 
        echo $user->getAbsoluteUrl();
        ?>
"><?php 
        echo full_escape($user->username);
        ?>
</a></td><td><a href="http://www.ilstu.edu/home/find/peoplesearch.phtml" onclick="return ulidsearch_submit ('<?php 
        echo $user->ulid;
        ?>
');"><?php 
        echo $user->ulid;
        ?>
</a></td><td>
<?php 
        switch ($user->status) {
            case User::STATUS_PENDING:
                echo "Pending";
                break;
            case User::STATUS_NEEDADMIN:
                echo "Require Admin Approval";
                ?>
<tr><?php 
            }
            ?>
            <td style="vertical-align: middle; text-align: center;"><p><a href="<?php 
            echo $photo->getAbsoluteUrl();
            ?>
"><img style="border: none;" src="<?php 
            if ($photo->thumbLoc) {
                echo $photo->mediaThumbUrl;
            } else {
                echo $photo->mediaUrl;
            }
            ?>
" alt="<?php 
            echo full_escape($photo->title);
            ?>
" height="100" /></a></p></td>
            <?php 
            if ($i % 3 == 2) {
                ?>
</tr><?php 
            }
            ?>
            <?php 
            /*
            <p style="float: left; width: 300px; text-align: center; margin-left: 10px;"><a href="<?php echo $photo->getAbsoluteUrl () ?>"><img style="border: none;" src="<?php if ($photo->thumbLoc) {echo $photo->mediaThumbUrl;} else {echo $photo->mediaUrl;} ?>" alt="<?php echo full_escape ($photo->title) ?>" height="100" /></a><br/><br/><?php echo full_escape ($photo->title) ?></p>
            */
            ?>
        <?php 
            $i++;
    ?>
class="error" <?php 
}
?>
 for="title">Title:</label><input type="text" name="title" id="title" value="<?php 
echo full_escape($form_values["title"]);
?>
" /></li>
    <li><label <?php 
if (!empty($form_errors["description"])) {
    ?>
class="error" <?php 
}
?>
 for="description">Description:</label><textarea rows="20" cols="70" name="description" id="description"><?php 
echo full_escape($form_values["description"]);
?>
</textarea></li>
    <li><label <?php 
if (!empty($form_errors["platform"])) {
    ?>
class="error" <?php 
}
?>
 for="platform">Platform:</label>
        <select name="platform" id="platform">
        <?php 
foreach ($platform_array as $platform) {
    ?>
            <option value="<?php 
    echo $platform->id;
Esempio n. 15
0
<?php

include "fragments/form_errors_tpl.php";
?>
<h3>Login Form</h3>
<form action="" method="post">
    <ul>
        <li><label <?php 
if (!empty($form_errors["username"])) {
    ?>
class="error" <?php 
}
?>
for="username">Username:</label><input type="text" id="username" name="username" size="20" value="<?php 
echo full_escape($form_values["username"]);
?>
" /></li>
        <li><label <?php 
if (!empty($form_errors["password"])) {
    ?>
class="error" <?php 
}
?>
for="password">Password:</label><input type="password" id="password" name="password" size="20" value="<?php 
echo full_escape($form_values["password"]);
?>
" /></li>
        <li class="submit"><input type="submit" value="Login" /></li>
    </ul>
</form>
        }
        ?>
>Delete Photos</option>
                    <?php 
        foreach ($album_array as $album) {
            ?>
                        <option value="<?php 
            echo $album->id;
            ?>
"<?php 
            if ($album->id == $form_values["album_move"]) {
                echo " selected=\"selected\"";
            }
            ?>
>Album: <?php 
            echo full_escape($album->title);
            ?>
</option>
                    <?php 
        }
        ?>
                </select>
            </li>
            <?php 
    }
    ?>
            <li class="submit"><input type="submit" value="Delete" /></li>
        </ul>
    </form>
<?php 
} else {
<?php

if (!empty($article)) {
    ?>
    <h3 class="title"><a href="<?php 
    echo $article->getAbsoluteUrl();
    ?>
"><?php 
    echo full_escape($article->title);
    ?>
</a></h3>
    <p class="credit">
        Created by: <a href="<?php 
    echo full_escape($article->user->getAbsoluteUrl());
    ?>
"><?php 
    echo $article->user->userName;
    ?>
</a><?php 
    if ($session->getUser() && $session->getUser()->isAdmin()) {
        ?>
 | <a href="<?php 
        echo generate_link_url("edit_article.php?id={$article->id}");
        ?>
">Edit</a><?php 
    }
    ?>
<br/>
        Posted on: <?php 
    echo strftime("%B %e, %Y", $article->postDate);
    ?>
    <div id="breadcrumb_trail"><p><a href="album_options.php">Album Options</a> &gt; Create</p></div>
<h3>Create Album</h3>
<?php 
include joinPath("fragments", "form_errors_tpl.php");
?>
<p>Use the form below to create a album.</p>
<form action="" method="post">
<ul>
    <li><label <?php 
if (!empty($form_errors["title"])) {
    ?>
class="error" <?php 
}
?>
for="title">Title:</label><input type="text" name="title" id="title" value="<?php 
echo full_escape($form_values["title"]);
?>
" /></li>
    <li class="submit"><input type="submit" value="Submit" /></li>
</ul>
</form>