/**
* Prints a context sensitive menu of all pages as a unordered html list
*
* @param string $option The mode for the menu:
* "list" context sensitive toplevel plus sublevel pages,
* "list-top" only top level pages,
* "omit-top" only sub level pages
* "list-sub" lists only the current pages direct offspring
* @param string $mode 'pages' or 'categories'
* @param bool $counter Only $mode = 'categories': Count the articles in each category
* @param string $css_id CSS id of the top level list
* @param string $css_class_topactive class of the active item in the top level list
* @param string $css_class CSS class of the sub level list(s)
* @param string $$css_class_active CSS class of the sub level list(s)
* @param string $indexname insert the name (default "Gallery Index") how you want to call the link to the gallery index, insert "" (default) if you don't use it, it is not printed then.
* @param int $showsubs Set to depth of sublevels that should be shown always. 0 by default. To show all, set to a true! Only valid if option=="list".
* @param bool $startlist set to true to output the UL tab (false automatically if you use 'omit-top' or 'list-sub')
* @param int $limit truncation limit display strings
* @return string
*/
function printNestedMenu($option = 'list', $mode = NULL, $counter = TRUE, $css_id = NULL, $css_class_topactive = NULL, $css_class = NULL, $css_class_active = NULL, $indexname = NULL, $showsubs = 0, $startlist = true, $limit = NULL)
{
global $_zp_zenpage, $_zp_gallery_page, $_zp_current_zenpage_news, $_zp_current_zenpage_page, $_zp_current_category;
if (is_null($limit)) {
$limit = MENU_TRUNCATE_STRING;
}
if ($css_id != "") {
$css_id = " id='" . $css_id . "'";
}
if ($css_class_topactive != "") {
$css_class_topactive = " class='" . $css_class_topactive . "'";
}
if ($css_class != "") {
$css_class = " class='" . $css_class . "'";
}
if ($css_class_active != "") {
$css_class_active = " class='" . $css_class_active . "'";
}
if ($showsubs === true) {
$showsubs = 9999999999.0;
}
switch ($mode) {
case 'pages':
$items = $_zp_zenpage->getPages();
$currentitem_id = getPageID();
if (is_object($_zp_current_zenpage_page)) {
$currentitem_parentid = $_zp_current_zenpage_page->getParentID();
} else {
$currentitem_parentid = NULL;
}
$currentitem_sortorder = getPageSortorder();
break;
case 'categories':
case 'allcategories':
$items = $_zp_zenpage->getAllCategories();
if (is_object($_zp_current_category) && $mode == 'categories') {
$currentitem_sortorder = $_zp_current_category->getSortOrder();
$currentitem_id = $_zp_current_category->getID();
$currentitem_parentid = $_zp_current_category->getParentID();
} else {
$currentitem_sortorder = NULL;
$currentitem_id = NULL;
$currentitem_parentid = NULL;
}
break;
}
// don't highlight current pages or foldout if in search mode as next_page() sets page context
if (in_context(ZP_SEARCH) && $mode == 'pages') {
// categories are not searched
$css_class_topactive = "";
$css_class_active = "";
rem_context(ZP_ZENPAGE_PAGE);
}
if (0 == count($items) + (int) ($mode == 'allcategories')) {
return;
}
// nothing to do
$startlist = $startlist && !($option == 'omit-top' || $option == 'list-sub');
if ($startlist) {
echo "<ul{$css_id}>";
}
// if index link and if if with count
if (!empty($indexname)) {
if ($limit) {
$display = shortenContent($indexname, $limit, MENU_TRUNCATE_INDICATOR);
} else {
$display = $indexname;
}
switch ($mode) {
case 'pages':
if ($_zp_gallery_page == "index.php") {
echo "<li {$css_class_topactive}>" . html_encode($display) . "</li>";
} else {
echo "<li><a href='" . html_encode(getGalleryIndexURL()) . "' title='" . html_encode($indexname) . "'>" . html_encode($display) . "</a></li>";
}
break;
case 'categories':
case 'allcategories':
if ($_zp_gallery_page == "news.php" && !is_NewsCategory() && !is_NewsArchive() && !is_NewsArticle()) {
echo "<li {$css_class_topactive}>" . html_encode($display);
} else {
echo "<li><a href=\"" . html_encode(getNewsIndexURL()) . "\" title=\"" . html_encode($indexname) . "\">" . html_encode($display) . "</a>";
}
if ($counter) {
if (in_context(ZP_ZENPAGE_NEWS_CATEGORY) && $mode == 'categories') {
$totalcount = count($_zp_current_category->getArticles(0));
} else {
save_context();
rem_context(ZP_ZENPAGE_NEWS_DATE);
$totalcount = count($_zp_zenpage->getArticles(0));
restore_context();
}
echo ' <span style="white-space:nowrap;"><small>(' . sprintf(ngettext('%u article', '%u articles', $totalcount), $totalcount) . ')</small></span>';
}
echo "</li>\n";
break;
}
}
$baseindent = max(1, count(explode("-", $currentitem_sortorder)));
$indent = 1;
$open = array($indent => 0);
$parents = array(NULL);
$order = explode('-', $currentitem_sortorder);
$mylevel = count($order);
$myparentsort = array_shift($order);
for ($c = 0; $c <= $mylevel; $c++) {
$parents[$c] = NULL;
}
foreach ($items as $item) {
switch ($mode) {
case 'pages':
$catcount = 1;
// so page items all show.
$pageobj = new ZenpagePage($item['titlelink']);
$itemtitle = $pageobj->getTitle();
$itemsortorder = $pageobj->getSortOrder();
$itemid = $pageobj->getID();
$itemparentid = $pageobj->getParentID();
$itemtitlelink = $pageobj->getTitlelink();
$itemurl = $pageobj->getLink();
$count = '';
break;
case 'categories':
case 'allcategories':
$catobj = new ZenpageCategory($item['titlelink']);
$itemtitle = $catobj->getTitle();
$itemsortorder = $catobj->getSortOrder();
$itemid = $catobj->getID();
$itemparentid = $catobj->getParentID();
$itemtitlelink = $catobj->getTitlelink();
$itemurl = $catobj->getLink();
$catcount = count($catobj->getArticles());
if ($counter) {
$count = ' <span style="white-space:nowrap;"><small>(' . sprintf(ngettext('%u article', '%u articles', $catcount), $catcount) . ')</small></span>';
} else {
$count = '';
}
break;
}
if ($catcount) {
$level = max(1, count(explode('-', $itemsortorder)));
$process = $level <= $showsubs && $option == "list" || ($option == 'list' || $option == 'list-top') && $level == 1 || ($option == 'list' || $option == 'omit-top' && $level > 1) && ($itemid == $currentitem_id || $itemparentid == $currentitem_id || $level < $mylevel && $level > 1 && strpos($itemsortorder, $myparentsort) === 0 || $level == $mylevel && $currentitem_parentid == $itemparentid) || $option == 'list-sub' && $itemparentid == $currentitem_id;
if ($process) {
if ($level > $indent) {
echo "\n" . str_pad("\t", $indent, "\t") . "<ul{$css_class}>\n";
$indent++;
$parents[$indent] = NULL;
$open[$indent] = 0;
} else {
if ($level < $indent) {
$parents[$indent] = NULL;
while ($indent > $level) {
if ($open[$indent]) {
$open[$indent]--;
echo "</li>\n";
}
$indent--;
echo str_pad("\t", $indent, "\t") . "</ul>\n";
}
} else {
// level == indent, have not changed
if ($open[$indent]) {
// level = indent
echo str_pad("\t", $indent, "\t") . "</li>\n";
$open[$indent]--;
} else {
echo "\n";
}
}
}
if ($open[$indent]) {
// close an open LI if it exists
echo "</li>\n";
$open[$indent]--;
}
echo str_pad("\t", $indent - 1, "\t");
$open[$indent]++;
$parents[$indent] = $itemid;
if ($level == 1) {
// top level
$class = $css_class_topactive;
} else {
$class = $css_class_active;
}
if (!is_null($_zp_current_zenpage_page)) {
$gettitle = $_zp_current_zenpage_page->getTitle();
$getname = $_zp_current_zenpage_page->getTitlelink();
} else {
if (!is_null($_zp_current_category)) {
$gettitle = $_zp_current_category->getTitle();
$getname = $_zp_current_category->getTitlelink();
} else {
$gettitle = '';
$getname = '';
}
}
$current = "";
if ($itemtitlelink == $getname && !in_context(ZP_SEARCH)) {
switch ($mode) {
case 'pages':
if ($_zp_gallery_page == 'pages.php') {
$current = $class;
}
break;
case 'categories':
case 'allcategories':
if ($_zp_gallery_page == 'news.php') {
$current = $class;
}
break;
}
}
if ($limit) {
$itemtitle = shortenContent($itemtitle, $limit, MENU_TRUNCATE_INDICATOR);
}
echo "<li><a {$current} href=\"" . html_encode($itemurl) . "\" title=\"" . html_encode(getBare($itemtitle)) . "\">" . html_encode($itemtitle) . "</a>" . $count;
}
}
}
// cleanup any hanging list elements
while ($indent > 1) {
if ($open[$indent]) {
echo "</li>\n";
$open[$indent]--;
}
$indent--;
echo str_pad("\t", $indent, "\t") . "</ul>";
}
if ($open[$indent]) {
echo "</li>\n";
$open[$indent]--;
} else {
echo "\n";
}
if ($startlist) {
echo "</ul>\n";
}
}
/**
* checks password posting
*
* @param string $authType override of athorization type
*/
function zp_handle_password($authType = NULL, $check_auth = NULL, $check_user = NULL)
{
global $_zp_loggedin, $_zp_login_error, $_zp_current_album, $_zp_current_zenpage_page, $_zp_gallery;
if (empty($authType)) {
// not supplied by caller
$check_auth = '';
if (isset($_GET['z']) && @$_GET['p'] == 'full-image' || isset($_GET['p']) && $_GET['p'] == '*full-image') {
$authType = 'zp_image_auth';
$check_auth = getOption('protected_image_password');
$check_user = getOption('protected_image_user');
} else {
if (in_context(ZP_SEARCH)) {
// search page
$authType = 'zp_search_auth';
$check_auth = getOption('search_password');
$check_user = getOption('search_user');
} else {
if (in_context(ZP_ALBUM)) {
// album page
$authType = "zp_album_auth_" . $_zp_current_album->getID();
$check_auth = $_zp_current_album->getPassword();
$check_user = $_zp_current_album->getUser();
if (empty($check_auth)) {
$parent = $_zp_current_album->getParent();
while (!is_null($parent)) {
$check_auth = $parent->getPassword();
$check_user = $parent->getUser();
$authType = "zp_album_auth_" . $parent->getID();
if (!empty($check_auth)) {
break;
}
$parent = $parent->getParent();
}
}
} else {
if (in_context(ZP_ZENPAGE_PAGE)) {
$authType = "zp_page_auth_" . $_zp_current_zenpage_page->getID();
$check_auth = $_zp_current_zenpage_page->getPassword();
$check_user = $_zp_current_zenpage_page->getUser();
if (empty($check_auth)) {
$pageobj = $_zp_current_zenpage_page;
while (empty($check_auth)) {
$parentID = $pageobj->getParentID();
if ($parentID == 0) {
break;
}
$sql = 'SELECT `titlelink` FROM ' . prefix('pages') . ' WHERE `id`=' . $parentID;
$result = query_single_row($sql);
$pageobj = new ZenpagePage($result['titlelink']);
$authType = "zp_page_auth_" . $pageobj->getID();
$check_auth = $pageobj->getPassword();
$check_user = $pageobj->getUser();
}
}
}
}
}
}
if (empty($check_auth)) {
// anything else is controlled by the gallery credentials
$authType = 'zp_gallery_auth';
$check_auth = $_zp_gallery->getPassword();
$check_user = $_zp_gallery->getUser();
}
}
// Handle the login form.
if (DEBUG_LOGIN) {
debugLog("zp_handle_password: \$authType={$authType}; \$check_auth={$check_auth}; \$check_user={$check_user}; ");
}
if (isset($_POST['password']) && isset($_POST['pass'])) {
// process login form
if (isset($_POST['user'])) {
$post_user = sanitize($_POST['user']);
} else {
$post_user = '';
}
$post_pass = $_POST['pass'];
// We should not sanitize the password
foreach (Zenphoto_Authority::$hashList as $hash => $hi) {
$auth = Zenphoto_Authority::passwordHash($post_user, $post_pass, $hi);
$success = $auth == $check_auth && $post_user == $check_user;
if (DEBUG_LOGIN) {
debugLog("zp_handle_password({$success}): \$post_user={$post_user}; \$post_pass={$post_pass}; \$check_auth={$check_auth}; \$auth={$auth}; \$hash={$hash};");
}
if ($success) {
break;
}
}
$success = zp_apply_filter('guest_login_attempt', $success, $post_user, $post_pass, $authType);
if ($success) {
// Correct auth info. Set the cookie.
if (DEBUG_LOGIN) {
debugLog("zp_handle_password: valid credentials");
}
zp_setCookie($authType, $auth);
if (isset($_POST['redirect'])) {
$redirect_to = sanitizeRedirect($_POST['redirect'], true);
if (!empty($redirect_to)) {
header("Location: " . $redirect_to);
exitZP();
}
}
} else {
// Clear the cookie, just in case
if (DEBUG_LOGIN) {
debugLog("zp_handle_password: invalid credentials");
}
zp_clearCookie($authType);
$_zp_login_error = true;
}
return;
}
if (empty($check_auth)) {
//no password on record or admin logged in
return;
}
if (($saved_auth = zp_getCookie($authType)) != '') {
if ($saved_auth == $check_auth) {
if (DEBUG_LOGIN) {
debugLog("zp_handle_password: valid cookie");
}
return;
} else {
// Clear the cookie
if (DEBUG_LOGIN) {
debugLog("zp_handle_password: invalid cookie");
}
zp_clearCookie($authType);
}
}
}
/**
* Prints the nested list for pages and categories
*
* @param string $listtype 'cats-checkboxlist' for a fake nested checkbock list of categories for the news article edit/add page
* 'cats-sortablelist' for a sortable nested list of categories for the admin categories page
* 'pages-sortablelist' for a sortable nested list of pages for the admin pages page
* @param int $articleid Only for $listtype = 'cats-checkboxlist': For ID of the news article if the categories an existing articles is assigned to shall be shown, empty if this is a new article to be added.
* @param string $option Only for $listtype = 'cats-checkboxlist': "all" to show all categories if creating a new article without categories assigned, empty if editing an existing article that already has categories assigned.
* @return string | bool
*/
function printNestedItemsList($listtype = 'cats-sortablelist', $articleid = '', $option = '')
{
global $_zp_zenpage;
switch ($listtype) {
case 'cats-checkboxlist':
default:
$ulclass = "";
break;
case 'cats-sortablelist':
case 'pages-sortablelist':
$ulclass = " class=\"page-list\"";
break;
}
switch ($listtype) {
case 'cats-checkboxlist':
case 'cats-sortablelist':
$items = $_zp_zenpage->getAllCategories(false);
break;
case 'pages-sortablelist':
$items = $_zp_zenpage->getPages(false);
break;
default:
$items = array();
break;
}
$indent = 1;
$open = array(1 => 0);
$rslt = false;
foreach ($items as $item) {
switch ($listtype) {
case 'cats-checkboxlist':
case 'cats-sortablelist':
$itemobj = new ZenpageCategory($item['titlelink']);
$ismypage = $itemobj->isMyItem(ZENPAGE_NEWS_RIGHTS);
break;
case 'pages-sortablelist':
$itemobj = new ZenpagePage($item['titlelink']);
$ismypage = $itemobj->isMyItem(ZENPAGE_PAGES_RIGHTS);
break;
}
$itemsortorder = $itemobj->getSortOrder();
$itemid = $itemobj->getID();
if ($ismypage) {
$order = explode('-', $itemsortorder);
$level = max(1, count($order));
if ($toodeep = $level > 1 && $order[$level - 1] === '') {
$rslt = true;
}
if ($level > $indent) {
echo "\n" . str_pad("\t", $indent, "\t") . "<ul" . $ulclass . ">\n";
$indent++;
$open[$indent] = 0;
} else {
if ($level < $indent) {
while ($indent > $level) {
$open[$indent]--;
$indent--;
echo "</li>\n" . str_pad("\t", $indent, "\t") . "</ul>\n";
}
} else {
// indent == level
if ($open[$indent]) {
echo str_pad("\t", $indent, "\t") . "</li>\n";
$open[$indent]--;
} else {
echo "\n";
}
}
}
if ($open[$indent]) {
echo str_pad("\t", $indent, "\t") . "</li>\n";
$open[$indent]--;
}
switch ($listtype) {
case 'cats-checkboxlist':
echo "<li>\n";
printCategoryCheckboxListEntry($itemobj, $articleid, $option);
break;
case 'cats-sortablelist':
echo str_pad("\t", $indent - 1, "\t") . "<li id=\"id_" . $itemid . "\" class=\"clear-element page-item1 left\">";
printCategoryListSortableTable($itemobj, $toodeep);
break;
case 'pages-sortablelist':
echo str_pad("\t", $indent - 1, "\t") . "<li id=\"id_" . $itemid . "\">";
printPagesListTable($itemobj, $toodeep);
break;
}
$open[$indent]++;
}
}
while ($indent > 1) {
echo "</li>\n";
$open[$indent]--;
$indent--;
echo str_pad("\t", $indent, "\t") . "</ul>";
}
if ($open[$indent]) {
echo "</li>\n";
} else {
echo "\n";
}
return $rslt;
}
/**
* Gets the parent pages recursivly to the page whose parentid is passed or the current object
*
* @param int $parentid The parentid of the page to get the parents of
* @param bool $initparents
* @return array
*/
function getParents(&$parentid = '', $initparents = true)
{
global $parentpages, $_zp_zenpage;
$allitems = $_zp_zenpage->getPages();
if ($initparents) {
$parentpages = array();
}
if (empty($parentid)) {
$currentparentid = $this->getParentID();
} else {
$currentparentid = $parentid;
}
foreach ($allitems as $item) {
$obj = new ZenpagePage($item['titlelink']);
$itemtitlelink = $obj->getTitlelink();
$itemid = $obj->getID();
$itemparentid = $obj->getParentID();
if ($itemid == $currentparentid) {
array_unshift($parentpages, $itemtitlelink);
$obj->getParents($itemparentid, false);
}
}
return $parentpages;
}
/**
* Checks if user is allowed to access the page
* @param $hint
* @param $show
*/
function checkforGuest(&$hint = NULL, &$show = NULL)
{
if (!parent::checkForGuest()) {
return false;
}
$pageobj = $this;
$hash = $pageobj->getPassword();
while (empty($hash) && !is_null($pageobj)) {
$parentID = $pageobj->getParentID();
if (empty($parentID)) {
$pageobj = NULL;
} else {
$sql = 'SELECT `titlelink` FROM ' . prefix('pages') . ' WHERE `id`=' . $parentID;
$result = query_single_row($sql);
$pageobj = new ZenpagePage($result['titlelink']);
$hash = $pageobj->getPassword();
}
}
if (empty($hash)) {
// no password required
return 'zp_public_access';
} else {
$authType = "zp_page_auth_" . $pageobj->getID();
$saved_auth = zp_getCookie($authType);
if ($saved_auth == $hash) {
return $authType;
} else {
$user = $pageobj->getUser();
$show = !empty($user);
$hint = $pageobj->getPasswordHint();
return false;
}
}
}
/**
* Gets all tags used by either all Zenpage news articles or pages.
* @param string $mode "news" for Zenpage news article tags, "pages" for Zenpage pages tags
*
*/
function getAllTagsFromZenpage($mode = 'news')
{
global $_zp_gallery, $_zp_zenpage;
if (!getOption('zp_plugin_zenpage')) {
return FALSE;
}
$passwordcheck = '';
$ids = array();
$where = '';
$tagWhere = "";
switch ($mode) {
case 'news':
if (zp_loggedin(ZENPAGE_NEWS_RIGHTS)) {
$published = 'all';
} else {
$published = 'published';
}
$type = 'news';
$items = $_zp_zenpage->getNewsArticles('', $published);
foreach ($items as $item) {
$obj = new ZenpageNews($item['titlelink']);
if ($obj->checkAccess($hint, $show)) {
$ids[] = $obj->getID();
}
}
break;
case 'pages':
if (zp_loggedin(ZENPAGE_NEWS_RIGHTS)) {
$published = 'all';
} else {
$published = 'published';
}
$type = 'pages';
$items = $_zp_zenpage->getPages('', '', $published);
foreach ($items as $item) {
$obj = new ZenpagePage($item['titlelink']);
if ($obj->checkAccess($hint, $show)) {
$ids[] = $obj->getID();
}
}
break;
}
$count = '';
if (count($ids) == 0) {
return FALSE;
} else {
$tagWhere = " WHERE ";
foreach ($ids as $id) {
$count++;
$tagWhere .= '(o.objectid =' . $id . " AND o.tagid = t.id AND o.type = '" . $type . "')";
if ($count != count($ids)) {
$tagWhere .= " OR ";
}
}
}
if (empty($tagWhere)) {
return FALSE;
} else {
$tags = query_full_array("SELECT DISTINCT t.name, t.id, (SELECT DISTINCT COUNT(*) FROM " . prefix('obj_to_tag') . " WHERE tagid = t.id AND o.type = '" . $type . "') AS count FROM " . prefix('obj_to_tag') . " AS o," . prefix('tags') . " AS t" . $tagWhere . " ORDER BY t.name");
}
return $tags;
}
