function icons_add() { global $set, $apx, $db; if (!checkToken()) { infoInvalidToken(); } else { $max = array_key_max($set['forum']['icons']); if (!$max) { $max = -1; } for ($i = 1; $i <= 5; $i++) { if (!$_POST['file' . $i]) { continue; } if (!count($set['forum']['icons'])) { $set['forum']['icons'][1] = array('file' => $_POST['file' . $i], 'ord' => ++$max); } else { $set['forum']['icons'][] = array('file' => $_POST['file' . $i], 'ord' => ++$max); } logit('FORUM_ICONSADD', $_POST['file' . $i]); } $db->query("UPDATE " . PRE . "_config SET value='" . addslashes(serialize($set['forum']['icons'])) . "' WHERE module='forum' AND varname='icons' LIMIT 1"); printJSRedirect('action.php?action=forum.icons'); } }
function edit() { global $set, $db, $apx; $_REQUEST['id'] = (int) $_REQUEST['id']; if (!$_REQUEST['id']) { die('missing ID!'); } //Sektions-Liste if (!is_array($_POST['secid']) || $_POST['secid'][0] == 'all') { $_POST['secid'] = array('all'); } if ($_POST['send']) { //Mindestens zwei Felder belegt? for ($i = 1; $i <= 20; $i++) { if ($_POST['a' . $i]) { ++$ac; } if ($ac == 2) { break; } } if (!checkToken()) { infoInvalidToken(); } elseif (!$_POST['question'] || !$_POST['days'] || $ac < 2) { infoNotComplete(); } else { for ($i = 1; $i <= 20; $i++) { if ($_POST['a' . $i] && $_POST['color' . $i]) { $qcache[] = array($_POST['a' . $i], $_POST['color' . $i], $_POST['a' . $i . '_c']); } } for ($i = 1; $i <= 20; $i++) { $_POST['a' . $i] = $qcache[$i - 1][0]; $_POST['color' . $i] = $qcache[$i - 1][1]; $_POST['a' . $i . '_c'] = $qcache[$i - 1][2]; } $_POST['secid'] = serialize_section($_POST['secid']); //Veröffentlichung if ($apx->user->has_right('poll.enable') && isset($_POST['t_day_1'])) { $_POST['starttime'] = maketime(1); $_POST['endtime'] = maketime(2); if ($_POST['starttime']) { if (!$_POST['endtime'] || $_POST['endtime'] <= $_POST['starttime']) { $_POST['endtime'] = 3000000000; } $addfields = ',starttime,endtime'; } } $db->dupdate(PRE . '_poll', 'secid,question,meta_description,a1,a2,a3,a4,a5,a6,a7,a8,a9,a10,a11,a12,a13,a14,a15,a16,a17,a18,a19,a20,color1,color2,color3,color4,color5,color6,color7,color8,color9,color10,color11,color12,color13,color14,color15,color16,color17,color18,color19,color20,a1_c,a2_c,a3_c,a4_c,a5_c,a6_c,a7_c,a8_c,a9_c,a10_c,a11_c,a12_c,a13_c,a14_c,a15_c,a16_c,a17_c,a18_c,a19_c,a20_c,days,multiple,searchable,allowcoms' . $addfields, "WHERE ( id='" . $_REQUEST['id'] . "' ) LIMIT 1"); logit('POLL_EDIT', 'ID #' . $_REQUEST['id']); //Tags $db->query("DELETE FROM " . PRE . "_poll_tags WHERE id='" . $_REQUEST['id'] . "'"); $tagids = produceTagIds($_POST['tags']); foreach ($tagids as $tagid) { $db->query("INSERT IGNORE INTO " . PRE . "_poll_tags VALUES('" . $_REQUEST['id'] . "', '" . $tagid . "')"); } printJSRedirect(get_index('poll.show')); } } else { $res = $db->first("SELECT * FROM " . PRE . "_poll WHERE ( id='" . $_REQUEST['id'] . "' ) LIMIT 1"); foreach ($res as $key => $val) { $_POST[$key] = $val; } $_POST['secid'] = unserialize_section($_POST['secid']); //Veröffentlichung if ($res['starttime']) { maketimepost(1, $res['starttime']); if ($res['endtime'] < 2147483647) { maketimepost(2, $res['endtime']); } } //Sektionen auflisten if (is_array($apx->sections) && count($apx->sections)) { $seclist = '<option value="all" style="font-weight:bold;"' . iif(in_array('all', $_POST['secid']), ' selected="selected"') . '>' . $apx->lang->get('ALLSEC') . '</option>'; foreach ($apx->sections as $id => $info) { $seclist .= '<option value="' . $id . '"' . iif(in_array($id, $_POST['secid']), ' selected="selected"') . '>' . replace($info['title']) . '</option>'; } } //Antwortmöglichkeiten for ($i = 1; $i <= 20; $i++) { if ($i > 1 && !$_POST['a' . $i]) { continue; } $answerdata[$i]['TEXT'] = compatible_hsc($_POST['a' . $i]); $answerdata[$i]['VOTES'] = intval($_POST['a' . $i . '_c']); $answerdata[$i]['COLOR'] = iif($_POST['color' . $i], $_POST['color' . $i], $this->colors[0]); $answerdata[$i]['DISPLAY'] = 1; } //Felder auffüllen while (count($answerdata) < 20) { $answerdata[] = array('COLOR' => $this->colors[0]); } //Veröffentlichung if ($apx->user->has_right('poll.enable') && isset($_POST['t_day_1'])) { $apx->tmpl->assign('STARTTIME', choosetime(1, 0, maketime(1))); $apx->tmpl->assign('ENDTIME', choosetime(2, 1, maketime(2))); } //Farben foreach ($this->colors as $color) { $colordata[]['ID'] = $color; } //Tags $tags = array(); $tagdata = $db->fetch("\n\t\t\tSELECT t.tag\n\t\t\tFROM " . PRE . "_poll_tags AS n\n\t\t\tLEFT JOIN " . PRE . "_tags AS t USING(tagid)\n\t\t\tWHERE n.id='" . $_REQUEST['id'] . "'\n\t\t\tORDER BY t.tag ASC\n\t\t"); $tags = get_ids($tagdata, 'tag'); $_POST['tags'] = implode(', ', $tags); $apx->tmpl->assign('COLOR', $colordata); $apx->tmpl->assign('ANSWER', $answerdata); $apx->tmpl->assign('ID', $_REQUEST['id']); $apx->tmpl->assign('SECLIST', $seclist); $apx->tmpl->assign('QUESTION', compatible_hsc($_POST['question'])); $apx->tmpl->assign('DAYS', intval($_POST['days'])); $apx->tmpl->assign('META_DESCRIPTION', compatible_hsc($_POST['meta_description'])); $apx->tmpl->assign('TAGS', compatible_hsc($_POST['tags'])); $apx->tmpl->assign('MULTIPLE', (int) $_POST['multiple']); $apx->tmpl->assign('ALLOWCOMS', (int) $_POST['allowcoms']); $apx->tmpl->assign('SEARCHABLE', (int) $_POST['searchable']); $apx->tmpl->parse('edit'); } }
function group() { global $set, $db, $apx, $html; $_REQUEST['id'] = (int) $_REQUEST['id']; $data = $set['banner']['groups']; //Kategorie löschen if ($_REQUEST['do'] == 'del' && isset($data[$_REQUEST['id']])) { list($count) = $db->first("SELECT count(*) FROM " . PRE . "_banner WHERE " . PRE . "_banner.group='" . $id . "'"); if (!$count) { if (isset($_POST['id'])) { if (!checkToken()) { infoInvalidToken(); } else { unset($data[$_REQUEST['id']]); $db->query("UPDATE " . PRE . "_config SET value='" . addslashes(serialize($data)) . "' WHERE module='banner' AND varname='groups' LIMIT 1"); logit('BANNER_CATDEL', $_REQUEST['id']); printJSReload(); } } else { $apx->tmpl->assign('MESSAGE', $apx->lang->get('MSG_TEXT', array('TITLE' => compatible_hsc($data[$_REQUEST['id']])))); tmessageOverlay('catdel', array('ID' => $_REQUEST['id'])); } return; } } elseif ($_REQUEST['do'] == 'edit' && isset($data[$_REQUEST['id']])) { if (isset($_POST['title'])) { if (!checkToken()) { infoInvalidToken(); } elseif (!$_POST['title']) { infoNotComplete(); } else { $data[$_REQUEST['id']] = $_POST['title']; $db->query("UPDATE " . PRE . "_config SET value='" . addslashes(serialize($data)) . "' WHERE module='banner' AND varname='groups' LIMIT 1"); logit('BANNER_CATEDIT', $_REQUEST['id']); printJSRedirect('action.php?action=banner.group'); return; } } else { $_POST['title'] = $data[$_REQUEST['id']]; $apx->tmpl->assign('TITLE', $_POST['title']); $apx->tmpl->assign('ACTION', 'edit'); $apx->tmpl->assign('ID', $_REQUEST['id']); $apx->tmpl->parse('catadd_catedit'); } } elseif ($_REQUEST['do'] == 'add') { if ($_POST['send']) { if (!checkToken()) { printInvalidToken(); } elseif (!$_POST['title']) { infoNotComplete(); } else { if (!count($data)) { $data[1] = $_POST['title']; } else { $data[] = $_POST['title']; } $db->query("UPDATE " . PRE . "_config SET value='" . addslashes(serialize($data)) . "' WHERE module='banner' AND varname='groups' LIMIT 1"); logit('BANNER_CATADD', array_key_max($data)); printJSRedirect('action.php?action=banner.group'); return; } } } else { $apx->tmpl->assign('ACTION', 'add'); $apx->tmpl->parse('catadd_catedit'); } $col[] = array('ID', 1, 'align="center"'); $col[] = array('COL_TITLE', 80, 'class="title"'); $col[] = array('COL_BANNERS', 20, 'align="center"'); //AUSGABE asort($data); foreach ($data as $id => $res) { ++$i; list($count) = $db->first("SELECT count(*) FROM " . PRE . "_banner WHERE " . PRE . "_banner.group='" . $id . "'"); $tabledata[$i]['COL1'] = $id; $tabledata[$i]['COL2'] = $res; $tabledata[$i]['COL3'] = $count; $tabledata[$i]['OPTIONS'] .= optionHTML('edit.gif', 'banner.group', 'do=edit&id=' . $id, $apx->lang->get('CORE_EDIT')); if (!$count) { $tabledata[$i]['OPTIONS'] .= optionHTMLOverlay('del.gif', 'banner.group', 'do=del&id=' . $id, $apx->lang->get('CORE_DEL')); } else { $tabledata[$i]['OPTIONS'] .= '<img src="design/ispace.gif" alt="" />'; } } $apx->tmpl->assign('TABLE', $tabledata); $html->table($col); }
function edit() { global $set, $db, $apx; $_REQUEST['id'] = (int) $_REQUEST['id']; if (!$_REQUEST['id']) { die('missing ID!'); } if ($_POST['send'] == 1) { $emails = explode(',', $_POST['email']); foreach ($emails as $one) { if (!checkmail(trim($one))) { $wrongmail = true; break; } } if (!checkToken()) { infoInvalidToken(); } elseif (!$_POST['title'] || !$_POST['email']) { infoNotComplete(); } elseif ($wrongmail) { info($apx->lang->get('INFO_NOEMAIL', array('EMAIL' => $one))); } else { $db->dupdate(PRE . '_contact', 'title,email', " WHERE id='" . $_REQUEST['id'] . "' LIMIT 1"); logit('CONTACT_EDIT', 'ID #' . $_REQUEST['id']); printJSRedirect(get_index('contact.show')); } } else { list($_POST['title'], $_POST['email']) = $db->first("SELECT title,email FROM " . PRE . "_contact WHERE id='" . $_REQUEST['id'] . "' LIMIT 1"); $apx->tmpl->assign('TITLE', compatible_hsc($_POST['title'])); $apx->tmpl->assign('EMAIL', compatible_hsc($_POST['email'])); $apx->tmpl->assign('ID', $_REQUEST['id']); $apx->tmpl->assign('ACTION', 'edit'); $apx->tmpl->parse('add_edit'); } }
function group() { global $set, $db, $apx, $html; $_REQUEST['id'] = (int) $_REQUEST['id']; $data = $set['content']['groups']; //Kategorie löschen if ($_REQUEST['do'] == 'del' && isset($data[$_REQUEST['id']])) { list($count) = $db->first("SELECT count(*) FROM " . PRE . "_content WHERE catid='" . $_REQUEST['id'] . "'"); if (!$count) { if (isset($_POST['id'])) { if (!checkToken()) { infoInvalidToken(); } else { unset($data[$_REQUEST['id']]); $db->query("UPDATE " . PRE . "_config SET value='" . addslashes(serialize($data)) . "' WHERE module='content' AND varname='groups' LIMIT 1"); logit('CONTENT_CATDEL', $_REQUEST['id']); printJSReload(); } } else { $apx->tmpl->assign('MESSAGE', $apx->lang->get('MSG_TEXT', array('TITLE' => compatible_hsc($data[$_REQUEST['id']])))); tmessageOverlay('catdel', array('ID' => $_REQUEST['id'])); } } return; } //Kategorie leeren if ($_REQUEST['do'] == 'clean' && isset($data[$_REQUEST['id']])) { if ($_POST['id'] && $_POST['moveto']) { if (!checkToken()) { infoInvalidToken(); } else { $db->query("UPDATE " . PRE . "_content SET catid='" . intval($_POST['moveto']) . "' WHERE catid='" . $_REQUEST['id'] . "'"); logit('CONTENT_CATCLEAN', "ID #" . $_REQUEST['id']); //Kategorie löschen if ($_POST['delcat']) { unset($data[$_REQUEST['id']]); $db->query("UPDATE " . PRE . "_config SET value='" . addslashes(serialize($data)) . "' WHERE module='content' AND varname='groups' LIMIT 1"); logit('CONTENT_CATDEL', $_REQUEST['id']); } printJSReload(); return; } } else { //Kategorien auflisten $catlist = ''; $data = $set['content']['groups']; if (count($data)) { foreach ($data as $id => $title) { if ($id == $_REQUEST['id']) { continue; } $catlist .= '<option value="' . $id . '"' . iif($_REQUEST['catid'] == $id, ' selected="selected"') . '>' . replace($title) . '</option>'; } } $apx->tmpl->assign('ID', $_REQUEST['id']); $apx->tmpl->assign('TITLE', compatible_hsc($data[$_REQUEST['id']])); $apx->tmpl->assign('DELCAT', (int) $_POST['delcat']); $apx->tmpl->assign('CATLIST', $catlist); tmessageOverlay('catclean'); } return; } elseif ($_REQUEST['do'] == 'edit' && isset($data[$_REQUEST['id']])) { if (isset($_POST['title'])) { if (!checkToken()) { infoInvalidToken(); } elseif (!$_POST['title']) { info('back'); } else { $data[$_REQUEST['id']] = $_POST['title']; $db->query("UPDATE " . PRE . "_config SET value='" . addslashes(serialize($data)) . "' WHERE module='content' AND varname='groups' LIMIT 1"); logit('CONTENT_CATEDIT', $_REQUEST['id']); printJSRedirect('action.php?action=content.group'); return; } } else { $_POST['title'] = $data[$_REQUEST['id']]; $apx->tmpl->assign('TITLE', $_POST['title']); $apx->tmpl->assign('ACTION', 'edit'); $apx->tmpl->assign('ID', $_REQUEST['id']); $apx->tmpl->parse('catadd_catedit'); } } elseif ($_REQUEST['do'] == 'add') { if ($_POST['send']) { if (!checkToken()) { printInvalidToken(); } elseif (!$_POST['title']) { info('back'); } else { if (!count($data)) { $data[1] = $_POST['title']; } else { $data[] = $_POST['title']; } $db->query("UPDATE " . PRE . "_config SET value='" . addslashes(serialize($data)) . "' WHERE module='content' AND varname='groups' LIMIT 1"); logit('CONTENT_CATADD', array_key_max($data)); printJSRedirect('action.php?action=content.group'); return; } } } else { $apx->tmpl->assign('ACTION', 'add'); $apx->tmpl->parse('catadd_catedit'); } $col[] = array('ID', 1, 'align="center"'); $col[] = array('COL_TITLE', 80, 'class="title"'); $col[] = array('COL_CONTENTS', 20, 'align="center"'); //AUSGABE asort($data); foreach ($data as $id => $res) { ++$i; list($count) = $db->first("SELECT count(*) FROM " . PRE . "_content WHERE catid='" . $id . "'"); $tabledata[$i]['COL1'] = $id; $tabledata[$i]['COL2'] = $res; $tabledata[$i]['COL3'] = $count; $tabledata[$i]['OPTIONS'] .= optionHTML('edit.gif', 'content.group', 'do=edit&id=' . $id, $apx->lang->get('CORE_EDIT')); if (!$count) { $tabledata[$i]['OPTIONS'] .= optionHTMLOverlay('del.gif', 'content.group', 'do=del&id=' . $id, $apx->lang->get('CORE_DEL')); } else { $tabledata[$i]['OPTIONS'] .= '<img src="design/ispace.gif" alt="" />'; } if ($count) { $tabledata[$i]['OPTIONS'] .= optionHTMLOverlay('clean.gif', 'content.group', 'do=clean&id=' . $id, $apx->lang->get('CLEAN')); } else { $tabledata[$i]['OPTIONS'] .= '<img src="design/ispace.gif" alt="" />'; } } $apx->tmpl->assign('TABLE', $tabledata); $html->table($col); }
function catshow() { global $set, $db, $apx, $html; $_REQUEST['id'] = (int) $_REQUEST['id']; $data = $set['newsletter']['categories']; //Kategorie löschen if ($_REQUEST['do'] == 'del' && isset($data[$_REQUEST['id']])) { if (isset($_POST['id'])) { if (!checkToken()) { printInvalidToken(); } else { unset($data[$_REQUEST['id']]); $db->query("UPDATE " . PRE . "_config SET value='" . addslashes(serialize($data)) . "' WHERE module='newsletter' AND varname='categories' LIMIT 1"); logit('NEWSLETTER_CATDEL', $_REQUEST['id']); printJSRedirect('action.php?action=newsletter.catshow'); } } else { tmessageOverlay('catdel', array('ID' => $_REQUEST['id'])); } return; } elseif ($_REQUEST['do'] == 'edit' && isset($data[$_REQUEST['id']])) { if ($_POST['send']) { if (!checkToken()) { infoInvalidToken(); } elseif (!$_POST['title']) { infoNotComplete(); } else { $data[$_REQUEST['id']] = $_POST['title']; $db->query("UPDATE " . PRE . "_config SET value='" . addslashes(serialize($data)) . "' WHERE module='newsletter' AND varname='categories' LIMIT 1"); logit('NEWSLETTER_CATEDIT', $_REQUEST['id']); printJSRedirect('action.php?action=newsletter.catshow'); } } else { $_POST['title'] = $data[$_REQUEST['id']]; $apx->tmpl->assign('TITLE', $_POST['title']); $apx->tmpl->assign('ACTION', 'edit'); $apx->tmpl->assign('ID', $_REQUEST['id']); $apx->tmpl->parse('catadd_catedit'); } } elseif ($_REQUEST['do'] == 'add') { if ($_POST['send']) { if (!checkToken()) { infoInvalidToken(); } elseif (!$_POST['title']) { infoNotComplete(); } else { $data[] = $_POST['title']; $db->query("UPDATE " . PRE . "_config SET value='" . addslashes(serialize($data)) . "' WHERE module='newsletter' AND varname='categories' LIMIT 1"); logit('NEWSLETTER_CATADD', array_key_max($data)); printJSRedirect('action.php?action=newsletter.catshow'); } } return; } else { $apx->tmpl->assign('ACTION', 'add'); $apx->tmpl->parse('catadd_catedit'); } ////////// AUFLISTUNG $col[] = array('COL_TITLE', 100, 'class="title"'); asort($data); if (count($data)) { foreach ($data as $id => $name) { ++$i; $tabledata[$i]['COL1'] = replace($name); $tabledata[$i]['OPTIONS'] .= optionHTML('edit.gif', 'newsletter.catshow', 'do=edit&id=' . $id, $apx->lang->get('CORE_EDIT')); $tabledata[$i]['OPTIONS'] .= optionHTMLOverlay('del.gif', 'newsletter.catshow', 'do=del&id=' . $id, $apx->lang->get('CORE_DEL')); } } $apx->tmpl->assign('TABLE', $tabledata); $html->table($col); }
function edit() { global $set, $db, $apx; if (!$_REQUEST['id']) { die('missing ID!'); } if ($_POST['send'] == 1) { if (!checkToken()) { infoInvalidToken(); } elseif (!$_POST['id'] || !$_POST['parent'] || !$_POST['question']) { infoNotComplete(); } else { $update = array('question' => $_POST['question'], 'answer' => $_POST['answer'], 'meta_description' => $_POST['meta_description'], 'searchable' => $_POST['searchable']); //Prüfen, ob der neue Elternknoten deaktiviert ist => falls ja den Knoten deaktivieren if (intval($_POST['parent'])) { list($parentEnabled) = $db->first("SELECT starttime FROM " . PRE . "_faq WHERE id='" . intval($_POST['parent']) . "' LIMIT 1"); if (!$parentEnabled) { $update['starttime'] = 0; } } $this->cat->moveNode($_REQUEST['id'], $_POST['parent'], $update); logit('FAQ_EDIT', 'ID #' . $_REQUEST['id']); printJSRedirect(get_index('faq.show')); } } else { $res = $this->cat->getNode($_REQUEST['id'], array('question', 'meta_description', 'answer', 'searchable')); if (!$res['parents']) { $_POST['parent'] = 'root'; } else { $_POST['parent'] = array_pop($res['parents']); } $_POST['question'] = $res['question']; $_POST['answer'] = $res['answer']; $_POST['meta_description'] = $res['meta_description']; $_POST['searchable'] = $res['searchable']; //Baum $catlist = '<option value="root" style="font-weight:bold;"' . iif($_POST['parent'] == 'root', ' selected="selected"') . '>' . $apx->lang->get('ROOT') . '</option>'; $data = $this->cat->getTree(array('question')); if (count($data)) { $catlist .= '<option value=""></option>'; foreach ($data as $res) { if ($jumplevel && $res['level'] > $jumplevel) { continue; } else { $jumplevel = 0; } if ($_REQUEST['id'] == $res['id']) { $jumplevel = $res['level']; continue; } $catlist .= '<option value="' . $res['id'] . '"' . iif($_POST['parent'] === $res['id'], ' selected="selected"') . '>' . str_repeat(' ', $res['level'] - 1) . replace($res['question']) . '</option>'; } } $apx->tmpl->assign('CATLIST', $catlist); $apx->tmpl->assign('QUESTION', compatible_hsc($_POST['question'])); $apx->tmpl->assign('ANSWER', compatible_hsc($_POST['answer'])); $apx->tmpl->assign('META_DESCRIPTION', compatible_hsc($_POST['meta_description'])); $apx->tmpl->assign('SEARCHABLE', (int) $_POST['searchable']); $apx->tmpl->assign('ID', $_REQUEST['id']); $apx->tmpl->assign('ACTION', 'edit'); $apx->tmpl->parse('add_edit'); } }
function catedit() { global $set, $apx, $tmpl, $db, $user; if (!$_REQUEST['id']) { die('missing ID!'); } if (!count($_POST['groupid']) || $_POST['groupid'][0] == 'all') { $_POST['groupid'] = array('all'); } if ($_POST['send'] == 1) { list($videos) = $db->first("SELECT count(id) FROM " . PRE . "_videos WHERE catid='" . $_REQUEST['id'] . "'"); if (!checkToken()) { infoInvalidToken(); } elseif (!$_POST['id'] || !$_POST['parent'] || !$_POST['title']) { infoNotComplete(); } elseif (!$_POST['open'] && $videos) { info($apx->lang->get('INFO_CONTAINSVIDEOS')); } else { if ($_POST['groupid'][0] == 'all') { $_POST['forgroup'] = 'all'; } else { $_POST['forgroup'] = serialize($_POST['groupid']); } $this->cat->moveNode($_REQUEST['id'], intval($_POST['parent']), array('title' => $_POST['title'], 'text' => $_POST['text'], 'icon' => $_POST['icon'], 'open' => $_POST['open'], 'forgroup' => $_POST['forgroup'])); logit('VIDEOS_CATEDIT', 'ID #' . $_REQUEST['id']); printJSRedirect(get_index('videos.catshow')); } } else { $res = $this->cat->getNode($_REQUEST['id'], array('title', 'text', 'icon', 'open', 'forgroup')); $_POST['title'] = $res['title']; $_POST['text'] = $res['text']; $_POST['icon'] = $res['icon']; $_POST['open'] = $res['open']; if ($res['forgroup'] == 'all') { $_POST['groupid'][0] = 'all'; } else { $_POST['groupid'] = unserialize($res['forgroup']); } if (!$res['parents']) { $_POST['parent'] = 'root'; } else { $_POST['parent'] = array_pop($res['parents']); } //Baum $catlist = '<option value="root" style="font-weight:bold;">' . $apx->lang->get('ROOT') . '</option>'; $data = $this->cat->getTree(array('title')); if (count($data)) { $catlist .= '<option value=""></option>'; foreach ($data as $res) { if ($jumplevel && $res['level'] > $jumplevel) { continue; } else { $jumplevel = 0; } if ($_REQUEST['id'] == $res['id']) { $jumplevel = $res['level']; continue; } $catlist .= '<option value="' . $res['id'] . '"' . iif($_POST['parent'] === $res['id'], ' selected="selected"') . '>' . str_repeat(' ', $res['level'] - 1) . replace($res['title']) . '</option>'; } } //Benutzergruppen $data = $db->fetch("SELECT groupid,name FROM " . PRE . "_user_groups WHERE ( gtype='admin' OR gtype='indiv' ) ORDER BY name ASC"); $grouplist .= '<option value="all"' . iif(!isset($_POST['groupid']) || $_POST['groupid'][0] == 'all', ' selected="selected"') . ' style="font-weight:bold;">' . $apx->lang->get('ALL') . '</option>'; if (count($data)) { foreach ($data as $res) { $grouplist .= '<option value="' . $res['groupid'] . '"' . iif(isset($_POST['groupid']) && in_array($res['groupid'], $_POST['groupid']), ' selected="selected"') . '>' . replace($res['name']) . '</option>'; } } $apx->tmpl->assign('TITLE', compatible_hsc($_POST['title'])); $apx->tmpl->assign('TEXT', compatible_hsc($_POST['text'])); $apx->tmpl->assign('ICON', compatible_hsc($_POST['icon'])); $apx->tmpl->assign('OPEN', (int) $_POST['open']); $apx->tmpl->assign('CATLIST', $catlist); $apx->tmpl->assign('USERGROUPS', $grouplist); $apx->tmpl->assign('ID', $_REQUEST['id']); $apx->tmpl->assign('ACTION', 'edit'); $apx->tmpl->parse('catadd_catedit'); } }
function del() { global $set, $db, $apx; $_REQUEST['id'] = (int) $_REQUEST['id']; if (!$_REQUEST['id']) { die('missing ID!'); } if ($_POST['send'] == 1) { if (!checkToken()) { infoInvalidToken(); } else { list($image) = $db->first("SELECT image FROM " . PRE . "_affiliates WHERE id='" . $_REQUEST['id'] . "' LIMIT 1"); require BASEDIR . 'lib/class.mediamanager.php'; $mm = new mediamanager(); $mm->deletefile($image); $db->query("DELETE FROM " . PRE . "_affiliates WHERE id='" . $_REQUEST['id'] . "' LIMIT 1"); logit('AFFILIATES_DEL', 'ID #' . $_REQUEST['id']); printJSRedirect(get_index('affiliates.show')); } } else { list($title) = $db->first("SELECT title FROM " . PRE . "_affiliates WHERE id='" . $_REQUEST['id'] . "' LIMIT 1"); $apx->tmpl->assign('MESSAGE', $apx->lang->get('MSG_TEXT', array('TITLE' => compatible_hsc($title)))); tmessageOverlay('del', array('ID' => $_REQUEST['id'])); } }
function sedit() { global $set, $db, $apx; $_REQUEST['id'] = (int) $_REQUEST['id']; if (!$_REQUEST['id']) { die('missing ID!'); } if ($_POST['send'] == 1) { if (!checkToken()) { infoInvalidToken(); } elseif (!$_POST['title'] || !$_POST['link']) { infoNotComplete(); } else { $db->dupdate(PRE . '_news_sources', 'title,link', "WHERE id='" . $_REQUEST['id'] . "' LIMIT 1"); logit('NEWS_SEDIT', 'ID #' . $_REQUEST['id']); printJSRedirect(get_index('news.sshow')); } } else { list($_POST['title'], $_POST['link']) = $db->first("SELECT title,link FROM " . PRE . "_news_sources WHERE id='" . intval($_REQUEST['id']) . "' LIMIT 1"); $apx->tmpl->assign('TITLE', compatible_hsc($_POST['title'])); $apx->tmpl->assign('LINK', compatible_hsc($_POST['link'])); $apx->tmpl->assign('ACTION', 'sedit'); $apx->tmpl->assign('ID', $_REQUEST['id']); $apx->tmpl->parse('sadd_sedit'); } }
function rdel() { global $set, $apx, $db; if (!$_REQUEST['id']) { die('missing ID!'); } $_REQUEST['id'] = (int) $_REQUEST['id']; if ($_POST['send'] == 1) { if (!checkToken()) { infoInvalidToken(); } else { $db->query("DELETE FROM " . PRE . "_mediarules WHERE id='" . $_REQUEST['id'] . "' LIMIT 1"); logit('MEDIAMANAGER_RDEL', 'ID #' . $_REQUEST['id']); printJSRedirect('action.php?action=mediamanager.rules&module=' . $this->module); } } else { list($title) = $db->first("SELECT extension FROM " . PRE . "_mediarules WHERE id='" . $_REQUEST['id'] . "' LIMIT 1"); $apx->tmpl->assign('MESSAGE', $apx->lang->get('MSG_TEXT', array('TITLE' => compatible_hsc($title)))); $input['ID'] = $_REQUEST['id']; tmessageOverlay('rdel', $input); } }
function catedit() { global $set, $apx, $db; if (!$_REQUEST['id']) { die('missing ID!'); } //ABSENDEN if ($_POST['send'] == 1) { if (!checkToken()) { infoInvalidToken(); } elseif (!$_POST['id'] || !$_POST['title']) { infoNotComplete(); } else { $db->dupdate(PRE . '_glossar_cat', 'title,icon,text', "WHERE id='" . $_REQUEST['id'] . "' LIMIT 1"); logit('GLOSSAR_CATEDIT', 'ID #' . $_REQUEST['id']); printJSRedirect(get_index('glossar.catshow')); } } else { list($_POST['title'], $_POST['icon'], $_POST['text']) = $db->first("SELECT title,icon,text FROM " . PRE . "_glossar_cat WHERE id='" . $_REQUEST['id'] . "' LIMIT 1"); $apx->tmpl->assign('TITLE', compatible_hsc($_POST['title'])); $apx->tmpl->assign('ICON', compatible_hsc($_POST['icon'])); $apx->tmpl->assign('TEXT', compatible_hsc($_POST['text'])); $apx->tmpl->assign('ID', $_REQUEST['id']); $apx->tmpl->assign('ACTION', 'edit'); $apx->tmpl->parse('catadd_catedit'); } }
function catedit() { global $set, $apx, $tmpl, $db, $user; if (!$_REQUEST['id']) { die('missing ID!'); } if ($_POST['send'] == 1) { list($links) = $db->first("SELECT count(id) FROM " . PRE . "_links WHERE catid='" . $_REQUEST['id'] . "'"); if (!checkToken()) { infoInvalidToken(); } elseif (!$_POST['id'] || !$_POST['parent'] || !$_POST['title']) { infoNotComplete(); } elseif (!$_POST['open'] && $links) { info($apx->lang->get('INFO_CONTAINSLINKS')); } else { $this->cat->moveNode($_REQUEST['id'], intval($_POST['parent']), array('title' => $_POST['title'], 'text' => $_POST['text'], 'icon' => $_POST['icon'], 'open' => $_POST['open'])); logit('LINKS_CATEDIT', 'ID #' . $_REQUEST['id']); printJSRedirect(get_index('links.catshow')); } } else { $res = $this->cat->getNode($_REQUEST['id'], array('title', 'text', 'icon', 'open')); $_POST['title'] = $res['title']; $_POST['text'] = $res['text']; $_POST['icon'] = $res['icon']; $_POST['open'] = $res['open']; if (!$res['parents']) { $_POST['parent'] = 'root'; } else { $_POST['parent'] = array_pop($res['parents']); } //Baum $catlist = '<option value="root" style="font-weight:bold;">' . $apx->lang->get('ROOT') . '</option>'; $data = $this->cat->getTree(array('title')); if (count($data)) { $catlist .= '<option value=""></option>'; foreach ($data as $res) { if ($jumplevel && $res['level'] > $jumplevel) { continue; } else { $jumplevel = 0; } if ($_REQUEST['id'] == $res['id']) { $jumplevel = $res['level']; continue; } $catlist .= '<option value="' . $res['id'] . '"' . iif($_POST['parent'] === $res['id'], ' selected="selected"') . '>' . str_repeat(' ', $res['level'] - 1) . replace($res['title']) . '</option>'; } } $apx->tmpl->assign('TITLE', compatible_hsc($_POST['title'])); $apx->tmpl->assign('TEXT', compatible_hsc($_POST['text'])); $apx->tmpl->assign('ICON', compatible_hsc($_POST['icon'])); $apx->tmpl->assign('OPEN', (int) $_POST['open']); $apx->tmpl->assign('CATLIST', $catlist); $apx->tmpl->assign('ID', $_REQUEST['id']); $apx->tmpl->assign('ACTION', 'edit'); $apx->tmpl->parse('catadd_catedit'); } }
function group() { global $set, $db, $apx, $html; $_REQUEST['id'] = (int) $_REQUEST['id']; $data = $set['navi']['groups']; //Kategorie löschen if ($_REQUEST['do'] == 'del' && isset($data[$_REQUEST['id']])) { list($count) = $db->first("SELECT count(*) FROM " . PRE . "_navi WHERE nid='" . $id . "'"); if (!$count) { if (isset($_POST['id'])) { if (!checkToken()) { infoInvalidToken(); } else { //Navigationspunkte löschen $queryData = $db->fetch("SELECT id FROM " . PRE . "_navi WHERE nid='" . $_REQUEST['id'] . "' AND parents='|'"); foreach ($queryData as $res) { $this->cat->deleteSubtree($res['id']); } //Navigation löschen unset($data[$_REQUEST['id']]); $db->query("UPDATE " . PRE . "_config SET value='" . addslashes(serialize($data)) . "' WHERE module='navi' AND varname='groups' LIMIT 1"); logit('NAVI_CATDEL', $_REQUEST['id']); printJSReload(); } } else { $apx->tmpl->assign('MESSAGE', $apx->lang->get('MSG_TEXT', array('TITLE' => compatible_hsc($data[$_REQUEST['id']])))); tmessageOverlay('catdel', array('ID' => $_REQUEST['id'])); } return; } } elseif ($_REQUEST['do'] == 'edit' && isset($data[$_REQUEST['id']])) { if (isset($_POST['title'])) { if (!checkToken()) { infoInvalidToken(); } elseif (!$_POST['title']) { info('back'); } else { $data[$_REQUEST['id']] = $_POST['title']; $db->query("UPDATE " . PRE . "_config SET value='" . addslashes(serialize($data)) . "' WHERE module='navi' AND varname='groups' LIMIT 1"); logit('NAVI_CATEDIT', $_REQUEST['id']); printJSRedirect('action.php?action=navi.group'); return; } } else { $_POST['title'] = $data[$_REQUEST['id']]; $apx->tmpl->assign('TITLE', $_POST['title']); $apx->tmpl->assign('ACTION', 'edit'); $apx->tmpl->assign('ID', $_REQUEST['id']); $apx->tmpl->parse('catadd_catedit'); } } elseif ($_REQUEST['do'] == 'add') { if ($_POST['send']) { if (!checkToken()) { printInvalidToken(); } elseif (!$_POST['title']) { info('back'); } else { if (!count($data)) { $data[1] = $_POST['title']; } else { $data[] = $_POST['title']; } $db->query("UPDATE " . PRE . "_config SET value='" . addslashes(serialize($data)) . "' WHERE module='navi' AND varname='groups' LIMIT 1"); logit('NAVI_CATADD', array_key_max($data)); printJSRedirect('action.php?action=navi.group'); return; } } } else { $apx->tmpl->assign('ACTION', 'add'); $apx->tmpl->parse('catadd_catedit'); } $col[] = array('ID', 1, 'align="center"'); $col[] = array('COL_TITLE', 80, 'class="title"'); $col[] = array('COL_ENTRIES', 20, 'align="center"'); //AUSGABE asort($data); foreach ($data as $id => $res) { ++$i; list($count) = $db->first("SELECT count(*) FROM " . PRE . "_navi WHERE nid='" . $id . "'"); $tabledata[$i]['COL1'] = $id; $tabledata[$i]['COL2'] = $res; $tabledata[$i]['COL3'] = $count; $tabledata[$i]['OPTIONS'] .= optionHTML('edit.gif', 'navi.group', 'do=edit&id=' . $id, $apx->lang->get('CORE_EDIT')); $tabledata[$i]['OPTIONS'] .= optionHTMLOverlay('del.gif', 'navi.group', 'do=del&id=' . $id, $apx->lang->get('CORE_DEL')); } $apx->tmpl->assign('TABLE', $tabledata); $html->table($col); }
function sendpm() { global $set, $db, $apx; //Senden durchführen if ($_REQUEST['doit']) { $this->sendpm_exec(); return; } //Gruppen selected if (!is_array($_POST['groupid']) || $_POST['groupid'][0] == 'all') { $_POST['groupid'] = array('all'); } //Daten speichern if ($_POST['send']) { if (!checkToken()) { infoInvalidToken(); } elseif (!$_POST['subject'] || !$_POST['text'] || !count($_POST['groupid'])) { infoNotComplete(); } else { $groups = array(); if ($_POST['groupid'][0] != 'all') { $groups = array_map('intval', $_POST['groupid']); } $data = array('subject' => $_POST['subject'], 'text' => $_POST['text'], 'groups' => $groups); $db->query("UPDATE " . PRE . "_config SET value='" . addslashes(serialize($data)) . "' WHERE module='user' AND varname='sendpm_data' LIMIT 1"); //die('action.php?action=user.sendpm&doit=1'); printJSRedirect('action.php?action=user.sendpm&doit=1§oken=' . $apx->session->get('sectoken')); } } else { //Sektionen auflisten $grouplist = '<option value="all"' . iif($_POST['groupid'][0] == 'all', 'selected="selected"') . ' style="font-weight:bold;">' . $apx->lang->get('ALL') . '</option>'; $data = $db->fetch("SELECT groupid,name FROM " . PRE . "_user_groups ORDER BY name ASC"); if (count($data)) { foreach ($data as $res) { $grouplist .= '<option value="' . $res['groupid'] . '"' . iif(in_array($res['groupid'], $_POST['groupid']), ' selected="selected"') . '>' . replace($res['name']) . '</option>'; } } $apx->tmpl->assign('GROUP', $grouplist); $apx->tmpl->assign('SUBJECT', compatible_hsc($_POST['subject'])); $apx->tmpl->assign('TEXT', compatible_hsc($_POST['text'])); $apx->tmpl->parse('sendpm'); } }
function systems_edit() { global $set, $db, $apx; $_REQUEST['id'] = (int) $_REQUEST['id']; if (!$_REQUEST['id']) { die('missing ID!'); } //Absenden if ($_POST['send']) { if (!checkToken()) { infoInvalidToken(); } elseif (!$_POST['title']) { info($apx->lang->get('CORE_BACK'), 'back'); } else { $db->dupdate(PRE . '_products_groups', 'title,icon', "WHERE grouptype='system' AND id='" . $_REQUEST['id'] . "' LIMIT 1"); logit('PRODUCTS_SYSTEMS_EDIT', 'ID #' . $_REQUEST['id']); printJSRedirect(get_index('products.systems')); } } else { list($_POST['title'], $_POST['icon']) = $db->first("SELECT title,icon FROM " . PRE . "_products_groups WHERE grouptype='system' AND id='" . $_REQUEST['id'] . "' LIMIT 1"); $apx->tmpl->assign('TITLE', compatible_hsc($_POST['title'])); $apx->tmpl->assign('ICON', compatible_hsc($_POST['icon'])); $apx->tmpl->assign('ID', $_REQUEST['id']); $apx->tmpl->assign('ACTION', 'edit'); $apx->tmpl->parse('sysadd_sysedit'); } }
function blockip() { global $set, $db, $apx, $html; $_REQUEST['key'] = (int) $_REQUEST['key']; //IP löschen if ($_REQUEST['do'] == 'del') { if ($_POST['send']) { if (!checkToken()) { printInvalidToken(); } else { unset($set['guestbook']['blockip'][$_REQUEST['id']]); $db->query("UPDATE " . PRE . "_config SET value='" . addslashes(serialize($set['guestbook']['blockip'])) . "' WHERE module='guestbook' AND varname='blockip' LIMIT 1"); printJSRedirect('action.php?action=guestbook.blockip'); } } else { $ip = float2ip($set['guestbook']['blockip'][$_REQUEST['id']]['startip']); if ($set['guestbook']['blockip'][$_REQUEST['id']]['endip']) { $ip .= ' - ' . float2ip($set['guestbook']['blockip'][$_REQUEST['id']]['endip']); } $apx->tmpl->assign('MESSAGE', $apx->lang->get('MSG_DEL', array('TITLE' => compatible_hsc($ip)))); tmessageOverlay('ipdel', array('ID' => $_REQUEST['id'])); } return; } elseif ($_REQUEST['do'] == 'add') { if (!checkToken()) { infoInvalidToken(); } else { for ($i = 1; $i <= 4; $i++) { $_POST['startip_' . $i] = (int) $_POST['startip_' . $i]; $_POST['endip_' . $i] = (int) $_POST['endip_' . $i]; if ($_POST['startip_' . $i] > 255) { $_POST['startip_' . $i] = 255; } if ($_POST['startip_' . $i] < 0) { $_POST['startip_' . $i] = 0; } if ($_POST['endip_' . $i] > 255) { $_POST['endip_' . $i] = 255; } if ($_POST['endip_' . $i] < 0) { $_POST['endip_' . $i] = 0; } } $start = ip2float($_POST['startip_1'] . '.' . $_POST['startip_2'] . '.' . $_POST['startip_3'] . '.' . $_POST['startip_4']); $end = ip2float($_POST['endip_1'] . '.' . $_POST['endip_2'] . '.' . $_POST['endip_3'] . '.' . $_POST['endip_4']); if ($_POST['type'] == 1) { $end = false; } //IPs umdrehen if ($end !== false && $end < $start) { $cache = $end; $end = $start; $start = $cache; } $set['guestbook']['blockip'][] = array('startip' => $start, 'endip' => $end); $db->query("UPDATE " . PRE . "_config SET value='" . addslashes(serialize($set['guestbook']['blockip'])) . "' WHERE module='guestbook' AND varname='blockip' LIMIT 1"); printJSRedirect('action.php?action=guestbook.blockip'); } return; } quicklink_index('guestbook.show'); quicklink_out(); //AUFLISTUNG BEGINNT $ips = $set['guestbook']['blockip']; if (!is_array($ips)) { $ips = array(); } $ips = array_sort($ips, 'startip', 'asc'); $col[] = array('COL_IPRANGE', 100, 'class="title"'); foreach ($ips as $i => $res) { $start = float2ip($res['startip']); $end = float2ip($res['endip']); $tabledata[$i]['COL1'] = $start . iif($res['endip'], ' – ' . $end); $tabledata[$i]['OPTIONS'] = optionHTMLOverlay('del.gif', 'guestbook.blockip', 'do=del&id=' . $i, $apx->lang->get('CORE_DEL')); } $apx->tmpl->assign('TABLE', $tabledata); $html->table($col); //Hinzufügen if ($_REQUEST['setip']) { $ipp = explode('.', $_REQUEST['setip'], 4); $apx->tmpl->assign('IP_1', (int) $ipp[0]); $apx->tmpl->assign('IP_2', (int) $ipp[1]); $apx->tmpl->assign('IP_3', (int) $ipp[2]); $apx->tmpl->assign('IP_4', (int) $ipp[3]); } $apx->tmpl->parse('blockip'); }
function padd() { global $set, $db, $apx, $html; $_REQUEST['id'] = (int) $_REQUEST['id']; if (!$_REQUEST['id']) { die('missing ID!'); } @set_time_limit(600); if ($_POST['send'] == 1) { if (!checkToken()) { infoInvalidToken(); } else { $files = array(); require_once BASEDIR . 'lib/class.mediamanager.php'; $mm = new mediamanager(); //ZIP if ($_REQUEST['what'] == 'zip' && $_FILES['zip']['tmp_name']) { $mm->uploadfile($_FILES['zip'], 'gallery/uploads', $mm->getfile($_FILES['zip']['tmp_name'])); $zipfile = zip_open(BASEDIR . getpath('uploads') . 'gallery/uploads/' . $mm->getfile($_FILES['zip']['tmp_name'])); while ($zipentry = zip_read($zipfile)) { if (zip_entry_open($zipfile, $zipentry, 'r')) { if (substr(zip_entry_name($zipentry), -1) == '/') { continue; } $content = zip_entry_read($zipentry, zip_entry_filesize($zipentry)); $zipname = str_replace('/', '%1%', zip_entry_name($zipentry)); $outfilepath = 'gallery/uploads/' . $zipname; zip_entry_close($zipentry); //Datei schreiben $outfile = fopen(BASEDIR . getpath('uploads') . $outfilepath, 'w'); fwrite($outfile, $content); fclose($outfile); $ext = strtolower($mm->getext($outfilepath)); if ($ext == 'gif') { $ext = 'jpg'; } $files[] = array('ext' => $ext, 'source' => $outfilepath, 'watermark' => $_POST['watermark'], 'noresize' => $_POST['noresize'], 'allowcoms' => $_POST['allowcoms'], 'allowrating' => $_POST['allowrating'], 'caption' => $_POST['caption']); } } zip_close($zipfile); $mm->deletefile('gallery/uploads/' . $mm->getfile($_FILES['zip']['tmp_name'])); } elseif ($_REQUEST['what'] == 'ftp') { if (!is_array($_POST['ftp'])) { $_POST['ftp'] = array(); } require_once BASEDIR . 'lib/class.mediamanager.php'; $mm = new mediamanager(); foreach ($_POST['ftp'] as $key => $file) { $file = $mm->securefile($file); $ext = strtolower($mm->getext($file)); if ($ext == 'gif') { $ext = 'jpg'; } $files[] = array('ext' => $ext, 'source' => 'gallery/uploads/' . $file, 'watermark' => $_POST['watermark' . $key], 'noresize' => $_POST['noresize' . $key], 'allowcoms' => $_POST['allowcoms' . $key], 'allowrating' => $_POST['allowrating' . $key], 'caption' => $_POST['caption' . $key]); } } else { for ($i = 1; $i <= $set['gallery']['addpics']; $i++) { if (!$_FILES['upload' . $i]['tmp_name']) { continue; } //Erfolgreichen Upload prüfen if (!$mm->uploadfile($_FILES['upload' . $i], 'gallery/uploads', $mm->getfile($_FILES['upload' . $i]['tmp_name']))) { continue; } $ext = strtolower($mm->getext($_FILES['upload' . $i]['name'])); if ($ext == 'gif') { $ext = 'jpg'; } $files[] = array('ext' => $ext, 'source' => 'gallery/uploads/' . $mm->getfile($_FILES['upload' . $i]['tmp_name']), 'watermark' => $_POST['watermark' . $i], 'noresize' => $_POST['noresize' . $i], 'allowcoms' => $_POST['allowcoms' . $i], 'allowrating' => $_POST['allowrating' . $i], 'caption' => $_POST['caption' . $i]); } } $this->process_files($files); //Gallery Updatetime $this->setGalleryUpdatetime($_REQUEST['id']); //Weitere Bilder anfügen if ($_POST['addnext']) { printJSRedirect('action.php?action=gallery.padd&id=' . $_REQUEST['id'] . '&updateparent=' . $_REQUEST['updateparent']); } else { if ($_REQUEST['updateparent']) { printJSUpdateObject($_REQUEST['updateparent'], get_gallery_list($_REQUEST['id'])); } else { printJSRedirect('action.php?action=gallery.pshow&id=' . $_REQUEST['id']); } } } } else { //Layer $layerdef[] = array('LAYER_UPLOAD', 'action.php?action=gallery.padd&id=' . $_REQUEST['id'] . '&updateparent=' . $_REQUEST['updateparent'], !$_REQUEST['what']); $layerdef[] = array('LAYER_ZIP', 'action.php?action=gallery.padd&id=' . $_REQUEST['id'] . '&what=zip&updateparent=' . $_REQUEST['updateparent'], $_REQUEST['what'] == 'zip'); $layerdef[] = array('LAYER_FTP', 'action.php?action=gallery.padd&id=' . $_REQUEST['id'] . '&what=ftp&updateparent=' . $_REQUEST['updateparent'], $_REQUEST['what'] == 'ftp'); if (!function_exists('zip_open')) { unset($layerdef[1]); } $html->layer_header($layerdef); //ZIP if ($_REQUEST['what'] == 'zip') { $apx->tmpl->assign('ID', $_REQUEST['id']); $apx->tmpl->assign('SET_OPTIONS', $apx->is_module('comments') && $set['gallery']['coms'] || $apx->is_module('ratings') && $set['gallery']['ratings'] || $set['gallery']['watermark'] || $set['gallery']['picwidth'] && $set['gallery']['picheight']); $apx->tmpl->assign('SET_COMS', $apx->is_module('comments') && $set['gallery']['coms']); $apx->tmpl->assign('SET_RATING', $apx->is_module('ratings') && $set['gallery']['ratings']); $apx->tmpl->assign('SET_WATERMARK', iif($set['gallery']['watermark'], 1, 0)); $apx->tmpl->assign('SET_NORESIZE', iif($set['gallery']['picwidth'] && $set['gallery']['picheight'], 1, 0)); $apx->tmpl->assign('UPDATEPARENT', (int) $_REQUEST['updateparent']); $apx->tmpl->parse('padd_zip'); } elseif ($_REQUEST['what'] == 'ftp') { require_once BASEDIR . 'lib/class.mediamanager.php'; $mm = new mediamanager(); $extensions = array('jpg', 'jpeg', 'jpe', 'png', 'gif'); $files = array(); $dirs = array(); if (is_dir(BASEDIR . getpath('uploads') . 'gallery/uploads/' . iif($_REQUEST['dir'], $_REQUEST['dir'] . '/'))) { $dir = opendir(BASEDIR . getpath('uploads') . 'gallery/uploads/' . iif($_REQUEST['dir'], $_REQUEST['dir'] . '/')); while ($file = readdir($dir)) { if ($file == '.' || $file == '..') { continue; } //Ordner if (is_dir(BASEDIR . getpath('uploads') . 'gallery/uploads/' . iif($_REQUEST['dir'], $_REQUEST['dir'] . '/') . $file)) { $dirs[] = $file; continue; } //Datei if (!in_array(strtolower($mm->getext($file)), $extensions)) { continue; } $files[] = $file; } closedir($dir); } sort($files); sort($dirs); //Ordner auflisten foreach ($dirs as $dir) { ++$i; $subdir[$i]['NAME'] = $dir; $subdir[$i]['LINK'] = 'action.php?action=gallery.padd&id=' . $_REQUEST['id'] . '&what=ftp&dir=' . iif($_REQUEST['dir'], $_REQUEST['dir'] . '/') . $dir; } //Dateien auflisten foreach ($files as $file) { ++$i; $upload[$i]['FILE'] = $file; $upload[$i]['FILEID'] = iif($_REQUEST['dir'], $_REQUEST['dir'] . '/') . $file; $upload[$i]['LINK'] = HTTPDIR . getpath('uploads') . 'gallery/uploads/' . iif($_REQUEST['dir'], $_REQUEST['dir'] . '/') . $file; } //Pfad erstellen $pp = explode('/', $_REQUEST['dir']); if ($_REQUEST['dir'] && count($pp)) { foreach ($pp as $dirname) { ++$i; $path .= iif($path, '/') . $dirname; $pathdata[$i]['NAME'] = $dirname; $pathdata[$i]['LINK'] = 'action.php?action=gallery.padd&id=' . $_REQUEST['id'] . '&what=ftp&dir=' . $path; } } $apx->tmpl->assign('ID', $_REQUEST['id']); $apx->tmpl->assign('FTP', $upload); $apx->tmpl->assign('DIR', $subdir); $apx->tmpl->assign('PATH', $pathdata); $apx->tmpl->assign('SET_OPTIONS', $apx->is_module('comments') && $set['gallery']['coms'] || $apx->is_module('ratings') && $set['gallery']['ratings'] || $set['gallery']['watermark'] || $set['gallery']['picwidth'] && $set['gallery']['picheight']); $apx->tmpl->assign('SET_COMS', $apx->is_module('comments') && $set['gallery']['coms']); $apx->tmpl->assign('SET_RATING', $apx->is_module('ratings') && $set['gallery']['ratings']); $apx->tmpl->assign('SET_WATERMARK', iif($set['gallery']['watermark'], 1, 0)); $apx->tmpl->assign('SET_NORESIZE', iif($set['gallery']['picwidth'] && $set['gallery']['picheight'], 1, 0)); $apx->tmpl->assign('UPDATEPARENT', (int) $_REQUEST['updateparent']); $apx->tmpl->parse('padd_ftp'); } else { for ($i = 1; $i <= $set['gallery']['addpics']; $i++) { $upload[$i]['ASD'] = 1; } $apx->tmpl->assign('ID', $_REQUEST['id']); $apx->tmpl->assign('UPLOAD', $upload); $apx->tmpl->assign('SET_COMS', $apx->is_module('comments') && $set['gallery']['coms']); $apx->tmpl->assign('SET_RATING', $apx->is_module('ratings') && $set['gallery']['ratings']); $apx->tmpl->assign('SET_WATERMARK', iif($set['gallery']['watermark'], 1, 0)); $apx->tmpl->assign('SET_NORESIZE', iif($set['gallery']['picwidth'] && $set['gallery']['picheight'], 1, 0)); $apx->tmpl->assign('UPDATEPARENT', (int) $_REQUEST['updateparent']); $apx->tmpl->parse('padd_upload'); } //Layer Ende $html->layer_footer(); } }