*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
/**
*
* properties template, shows the basic page on the properties window
*
* @author Patrick Lockley
* @version 1.0
* @package
*/
require_once "../../../config.php";
include "../template_status.php";
include "../screen_size_library.php";
include "../url_library.php";
include "../user_library.php";
include "properties_library.php";
if (!empty($_POST['template_id']) && is_numeric($_POST['template_id'])) {
$template_id = (int) $_POST['template_id'];
if (has_rights_to_this_template($template_id, $_SESSION['toolkits_logon_id']) || is_user_admin()) {
properties_display($xerte_toolkits_site, $template_id, false, "");
exit(0);
}
}
properties_display_fail();
<?php
/**
*
* properties template, shows the basic page on the properties window
*
* @author Patrick Lockley
* @version 1.0
* @copyright Copyright (c) 2008,2009 University of Nottingham
* @package
*/
require_once "../../../config.php";
include "../template_status.php";
include "../screen_size_library.php";
include "../url_library.php";
include "../user_library.php";
include "properties_library.php";
if (is_numeric($_POST['template_id'])) {
$tutorial_id = mysql_real_escape_string($_POST['template_id']);
$database_id = database_connect("Properties template database connect success", "Properties template database connect failed");
// User has to have some rights to do this
if (has_rights_to_this_template(mysql_real_escape_string($_POST['template_id']), $_SESSION['toolkits_logon_id']) || is_user_admin()) {
properties_display($xerte_toolkits_site, $tutorial_id, false, "");
} else {
properties_display_fail();
}
}
$engine = mysql_real_escape_string($_POST['engine']);
if ($engine != 'flash' && $engine != 'javascript') {
$engine = 'javascript';
}
// Get extra flags
$row = db_query_one("SELECT td.extra_flags FROM {$xerte_toolkits_site->database_table_prefix}templatedetails td WHERE td.template_id = ?", array($template_id));
$extra_flags = explode(";", $row['extra_flags']);
$found = false;
for ($i = 0; $i < count($extra_flags); $i++) {
$parameter = explode("=", $extra_flags[$i]);
if ($parameter[0] == 'engine') {
$extra_flags[$i] = "engine=" . $engine;
$found = true;
break;
}
}
if (!$found) {
$extra_flags[] = "engine=" . $engine;
}
$db_entry = join(";", $extra_flags);
$query = "update " . $xerte_toolkits_site->database_table_prefix . "templatedetails SET extra_flags =\"" . str_replace(" ", "_", mysql_real_escape_string($db_entry)) . "\" WHERE template_id =\"" . $template_id . "\"";
if (mysql_query($query)) {
if ($_REQUEST['page'] == 'properties') {
properties_display($xerte_toolkits_site, $template_id, true, "engine");
} else {
publish_display($template_id);
}
} else {
}
mysql_close($database_id);
}
<?php
/**
*
* rename template, allows a user to rename a template
*
* @author Patrick Lockley
* @version 1.0
* @copyright Copyright (c) 2008,2009 University of Nottingham
* @package
*/
require_once "../../../config.php";
include "../template_status.php";
include "../screen_size_library.php";
include "../url_library.php";
include "properties_library.php";
if (is_numeric($_POST['template_id'])) {
$tutorial_id = mysql_real_escape_string($_POST['template_id']);
$database_id = database_connect("Template rename database connect success", "Template rename database connect failed");
$query = "update " . $xerte_toolkits_site->database_table_prefix . "templatedetails SET template_name =\"" . str_replace(" ", "_", mysql_real_escape_string($_POST['template_name'])) . "\" WHERE template_id =\"" . mysql_real_escape_string($_POST['template_id']) . "\"";
if (mysql_query($query)) {
$query_for_names = "select template_name, date_created, date_modified from " . $xerte_toolkits_site->database_table_prefix . "templatedetails where template_id=\"" . $tutorial_id . "\"";
$query_names_response = mysql_query($query_for_names);
$row = mysql_fetch_array($query_names_response);
echo "~~**~~" . $_POST['template_name'] . "~~**~~";
properties_display($xerte_toolkits_site, $tutorial_id, true, "name");
} else {
}
mysql_close($database_id);
}
